$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa File: 1ad26571-c674-4a73-b205-77cb32fe83bd.roa (raw, json) Hash identifier: L7hxk0KcHKTzuQ5qEvsiBrIR7/ygnEPFqv0eeGsiiJs= Subject key identifier: 71:20:45:49:7D:06:CD:B0:53:ED:2A:6F:B4:8E:EE:FA:AE:82:C8:89 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4A2C783058789F3260765F3B759D851BC45009B8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa Signing time: Fri 29 Mar 2024 00:00:00 +0000 ROA not before: Fri 29 Mar 2024 00:00:00 +0000 ROA not after: Fri 03 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:2c:78:30:58:78:9f:32:60:76:5f:3b:75:9d:85:1b:c4:50:09:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Mar 29 00:00:00 2024 GMT Not After : May 3 23:59:59 2024 GMT Subject: serialNumber=828d78b52e88731e15e7548690096f2643b7ae6c73ee556e40453137ab0b1c0f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:61:5b:5c:69:8a:f1:00:3f:a5:09:40:24:6c: d0:7b:4e:8a:bc:4a:38:3c:7b:cb:8f:a3:6a:7c:c2: f5:b6:5c:cb:35:71:7b:86:6e:f4:33:f8:b2:5b:53: e9:0d:b2:bb:56:3a:e1:23:9a:af:85:c1:ed:f1:83: 1a:41:e4:be:ef:3b:a1:b4:2c:74:f1:88:9b:26:f6: 96:d3:7b:b6:58:3a:8f:d8:9d:fb:19:6d:a7:f4:76: f6:4b:88:39:d4:c2:e9:5e:5b:ca:bc:9e:27:d8:8d: cd:fb:78:2e:13:29:e8:75:31:87:04:ae:3d:d3:19: 25:b2:12:11:72:39:69:6a:8c:26:94:6d:8f:2a:11: 55:b6:60:d8:c8:a4:28:60:0b:a5:68:c1:42:13:22: d2:2f:dd:73:51:53:c9:0f:6a:16:fd:7d:db:d0:61: 19:66:c0:dd:5e:8b:ce:e3:92:02:98:4d:83:75:2a: c2:e2:f3:60:b0:29:34:20:3d:39:60:3b:d2:90:cd: 0c:ff:e2:4a:e9:e8:c8:81:6e:b9:90:c2:cf:a7:c3: ab:02:57:71:2d:f7:48:54:39:ce:6f:b6:bd:a9:20: 56:93:b4:dd:fb:e1:db:45:42:53:8d:1d:8a:1d:f7: b4:4d:58:5e:1e:f3:09:93:bf:03:c0:c1:53:c7:4e: ad:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:20:45:49:7D:06:CD:B0:53:ED:2A:6F:B4:8E:EE:FA:AE:82:C8:89 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10::/48 Signature Algorithm: sha256WithRSAEncryption 0c:40:b4:27:39:b2:60:c8:39:79:35:1e:c5:9d:f8:d6:67:33: f5:da:6d:8e:03:31:da:d7:73:0a:5b:80:18:a1:f6:e6:bc:00: 09:5c:ef:39:b8:e7:48:9f:80:05:81:f4:c6:2c:e5:be:43:0c: b0:a3:a9:c9:0e:59:e9:b6:d9:50:0d:2c:f7:5e:c4:bc:c6:ce: 64:0a:13:88:b2:e6:66:54:58:0f:34:36:65:2a:8a:ce:52:55: 0c:4a:dd:e7:14:a1:04:7a:3c:f2:0b:07:47:9f:67:48:39:ca: a8:00:97:53:78:4d:c2:51:70:c6:02:64:18:64:7c:6e:50:48: 4b:1f:93:02:2e:d9:0c:89:72:82:89:1a:a1:e6:7e:1c:be:a7: 94:53:9f:f3:c2:a9:c1:1c:c4:fe:19:b4:ce:9c:95:f5:19:39: ea:16:a7:b3:bd:cc:c1:66:eb:6b:4e:08:1b:86:af:b5:0b:21: 25:6c:1d:6a:39:21:15:30:26:fd:45:4a:d0:5e:2e:5d:d9:42: 47:bc:0d:e4:05:e9:07:c7:79:11:18:9d:63:d9:b1:d0:16:6a: da:49:5e:0d:9a:46:63:a8:0f:e4:31:b8:33:d5:b3:55:ba:24: 50:02:08:93:03:08:f0:dd:4f:e9:48:3a:5d:8d:8f:65:24:d1: 9b:b5:07:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSix4MFh4nzJgdl87dZ2FG8RQCbgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwMzI5MDAwMDAwWhcNMjQwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MjhkNzhiNTJlODg3MzFlMTVlNzU0ODY5MDA5NmYyNjQz YjdhZTZjNzNlZTU1NmU0MDQ1MzEzN2FiMGIxYzBmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCYVtcaYrxAD+lCUAkbNB7Toq8Sjg8e8uPo2p8wvW2XMs1 cXuGbvQz+LJbU+kNsrtWOuEjmq+Fwe3xgxpB5L7vO6G0LHTxiJsm9pbTe7ZYOo/Y nfsZbaf0dvZLiDnUwuleW8q8nifYjc37eC4TKeh1MYcErj3TGSWyEhFyOWlqjCaU bY8qEVW2YNjIpChgC6VowUITItIv3XNRU8kPahb9fdvQYRlmwN1ei87jkgKYTYN1 KsLi82CwKTQgPTlgO9KQzQz/4krp6MiBbrmQws+nw6sCV3Et90hUOc5vtr2pIFaT tN374dtFQlONHYod97RNWF4e8wmTvwPAwVPHTq21AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcSBFSX0GzbBT7SpvtI7u+q6CyIkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhZDI2NTcxLWM2NzQtNGE3My1iMjA1LTc3Y2IzMmZlODNiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABAwDQYJKoZIhvcNAQELBQADggEBAAxAtCc5smDIOXk1HsWd+NZn M/XabY4DMdrXcwpbgBih9ua8AAlc7zm450ifgAWB9MYs5b5DDLCjqckOWem22VAN LPdexLzGzmQKE4iy5mZUWA80NmUqis5SVQxK3ecUoQR6PPILB0efZ0g5yqgAl1N4 TcJRcMYCZBhkfG5QSEsfkwIu2QyJcoKJGqHmfhy+p5RTn/PCqcEcxP4ZtM6clfUZ OeoWp7O9zMFm62tOCBuGr7ULISVsHWo5IRUwJv1FStBeLl3ZQke8DeQF6QfHeREY nWPZsdAWatpJXg2aRmOoD+QxuDPVs1W6JFACCJMDCPDdT+lIOl2Nj2Uk0Zu1B6g= -----END CERTIFICATE-----Generated at Sat Apr 20 01:08:47 2024 by rpki-client on console-ams.rpki-client.org