$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/263c986d-6d69-4baa-a444-e3885ce515f3.roa File: 263c986d-6d69-4baa-a444-e3885ce515f3.roa (raw, json) Hash identifier: 2iciVWX9FKHDaVg5DjbWHiVlMWm9/Vz5UMrJLe7+BcU= Subject key identifier: 45:EB:E0:E8:44:62:DE:D3:83:98:66:BB:A4:86:C2:81:AF:1C:75:CA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 32CB2E4205F57EDBAD9C33C5F17E3FE0A56C0F8F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/263c986d-6d69-4baa-a444-e3885ce515f3.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5524::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:cb:2e:42:05:f5:7e:db:ad:9c:33:c5:f1:7e:3f:e0:a5:6c:0f:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=fe2143f1e07ccaa1d1675d5db36a69753993b6f88b19c85540016fe7e96144a2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0e:3a:75:42:ee:61:3c:26:50:d3:f2:c4:0a: 90:4b:bf:8c:df:31:b6:61:18:14:4f:8d:f3:87:0b: cd:71:b7:88:44:ca:1f:61:05:ee:16:59:db:5d:60: c7:eb:de:14:b9:1d:3c:68:5a:26:4a:12:48:06:8f: 03:5a:65:2b:b3:5c:63:12:f3:7e:8c:62:40:d6:f8: 7e:38:fa:e1:19:d9:24:ae:20:e8:25:37:06:28:bd: a6:7c:aa:28:d2:19:01:2a:c6:b4:dc:58:28:34:00: c1:6e:38:e9:a0:5e:cb:26:f3:a6:ed:a3:92:35:46: 10:30:fb:61:34:85:ae:5e:bf:03:04:4f:64:36:d1: fa:62:af:fb:e8:6b:29:3a:74:62:07:14:9c:1d:a2: de:a9:a2:18:2a:ce:42:03:98:bc:65:80:c2:d2:c6: d9:91:43:63:bc:4c:39:dc:b2:e3:0c:16:01:bf:d4: e1:17:f0:44:42:c0:b1:06:6a:9b:dc:74:83:5c:a1: 78:0f:a0:6e:fa:ce:a4:81:52:23:b5:4c:29:4f:27: b6:61:f7:8d:06:15:0c:03:67:d5:72:22:f1:44:ed: a5:c3:f7:63:19:84:81:f1:e3:94:c9:7d:8f:e5:f4: a5:8e:54:ca:41:5a:78:af:41:a8:c7:b0:85:0d:1a: a6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EB:E0:E8:44:62:DE:D3:83:98:66:BB:A4:86:C2:81:AF:1C:75:CA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/263c986d-6d69-4baa-a444-e3885ce515f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5524::/48 Signature Algorithm: sha256WithRSAEncryption 24:6a:37:e8:94:1b:ae:ba:31:73:38:47:fb:b6:29:5c:7c:40: 11:93:9f:6c:40:fa:ad:44:f0:20:50:e2:b4:37:02:92:1d:05: b1:1c:56:57:35:eb:c1:de:b0:86:f4:35:b4:40:f0:97:92:47: c2:23:98:84:92:1c:54:71:d1:c1:71:77:6e:77:81:62:8d:ff: 2f:a2:5e:ff:31:3d:d8:b7:e8:c2:5c:93:aa:71:cf:4c:4a:a3: 13:fd:af:49:ee:46:91:fe:8d:c6:2d:5f:30:79:75:e1:5d:7a: 3d:3d:a9:ef:8a:77:23:94:2f:24:7f:bb:a2:38:d0:79:af:b0: 24:9f:56:2c:4d:76:3d:e7:93:cd:47:ba:3e:be:4e:66:55:d1: 1a:26:df:ff:82:f0:d1:98:51:81:2a:34:91:c4:47:95:4a:d1: f7:81:8f:d4:0a:45:dd:07:9d:82:18:bc:dd:ac:83:cd:08:7c: 73:1b:db:9a:31:b5:9f:75:4e:82:a0:de:a3:9d:5b:cb:5c:f0: 7e:93:f8:dd:3d:dd:de:41:b7:96:91:81:d4:e2:f7:41:d5:0a: 8b:ca:14:50:34:c7:4d:90:da:b4:a2:71:6e:d3:5c:41:84:ce: fe:62:d4:c1:db:ee:dd:b3:5a:e5:2e:ef:d7:c5:ff:41:a7:47: 1c:45:68:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMssuQgX1ftutnDPF8X4/4KVsD48wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTIxNDNmMWUwN2NjYWExZDE2NzVkNWRiMzZhNjk3NTM5 OTNiNmY4OGIxOWM4NTU0MDAxNmZlN2U5NjE0NGEyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfDjp1Qu5hPCZQ0/LECpBLv4zfMbZhGBRPjfOHC81xt4hE yh9hBe4WWdtdYMfr3hS5HTxoWiZKEkgGjwNaZSuzXGMS836MYkDW+H44+uEZ2SSu IOglNwYovaZ8qijSGQEqxrTcWCg0AMFuOOmgXssm86bto5I1RhAw+2E0ha5evwME T2Q20fpir/voayk6dGIHFJwdot6pohgqzkIDmLxlgMLSxtmRQ2O8TDncsuMMFgG/ 1OEX8ERCwLEGapvcdINcoXgPoG76zqSBUiO1TClPJ7Zh940GFQwDZ9VyIvFE7aXD 92MZhIHx45TJfY/l9KWOVMpBWnivQajHsIUNGqaPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURevg6ERi3tODmGa7pIbCga8cdcowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI2M2M5ODZkLTZkNjktNGJhYS1hNDQ0LWUzODg1Y2U1MTVmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVSQwDQYJKoZIhvcNAQELBQADggEBACRqN+iUG666MXM4R/u2KVx8 QBGTn2xA+q1E8CBQ4rQ3ApIdBbEcVlc168HesIb0NbRA8JeSR8IjmISSHFRx0cFx d253gWKN/y+iXv8xPdi36MJck6pxz0xKoxP9r0nuRpH+jcYtXzB5deFdej09qe+K dyOULyR/u6I40HmvsCSfVixNdj3nk81Huj6+TmZV0Rom3/+C8NGYUYEqNJHER5VK 0feBj9QKRd0HnYIYvN2sg80IfHMb25oxtZ91ToKg3qOdW8tc8H6T+N093d5Bt5aR gdTi90HVCovKFFA0x02Q2rSicW7TXEGEzv5i1MHb7t2zWuUu79fF/0GnRxxFaBg= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org