$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/29c4a1ba-28eb-4346-8889-a97d5186a1ff.roa File: 29c4a1ba-28eb-4346-8889-a97d5186a1ff.roa (raw, json) Hash identifier: Wz0pZvtAGM12CyDz5JX34ZODBs9XMRjqieS89WXjQ78= Subject key identifier: 77:5F:FC:F3:91:F7:54:4D:FD:68:88:11:8F:82:9C:14:AD:72:F6:9C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 39057E405D770FFD3DBD5B3EDD27C45A06EAC35F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/29c4a1ba-28eb-4346-8889-a97d5186a1ff.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5523::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:05:7e:40:5d:77:0f:fd:3d:bd:5b:3e:dd:27:c4:5a:06:ea:c3:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=72730684647816df6e0ab0098fa0662ac471b2975b3231e6ee773078e515ab3d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:00:58:ba:59:68:67:a3:5e:14:b8:dc:a3:44: 80:77:23:04:3d:9e:ae:73:f0:5e:72:c8:94:8e:70: c5:54:6b:13:d0:4f:de:30:8c:c1:ac:be:3d:7d:96: 8c:25:15:a9:98:ef:df:89:80:e1:67:f9:54:fc:75: 4b:03:cb:7d:55:4e:ea:c7:8f:88:56:76:07:a2:ba: 58:1e:80:09:24:98:90:06:4e:fc:3c:35:a8:c8:df: c2:a6:9c:f3:29:93:20:ee:db:5e:95:08:8f:e9:25: 43:78:f2:5a:ad:69:e0:f2:ec:09:0b:96:ed:38:72: 8a:1d:91:d6:ac:89:66:fe:ec:13:b2:f2:88:c4:ce: f1:73:97:2c:09:c0:a6:c8:4c:48:72:12:ba:78:83: 13:10:63:7a:92:fd:5e:28:03:eb:e8:e9:b5:bf:f4: ae:dc:52:b5:7a:73:49:a1:2b:0c:c7:ae:94:d5:cd: 9c:be:ae:cc:5f:b2:21:f3:3c:1f:5b:d4:f2:18:3e: 1c:d3:a1:2e:71:ec:67:66:b3:7e:d9:50:dc:6a:8d: d4:b9:68:d1:38:50:82:d2:85:c1:94:9b:b1:6c:e8: 0a:7a:2d:72:52:30:cb:21:e4:eb:73:5d:5a:2e:94: ce:a2:7f:73:29:cb:c0:f0:37:55:85:ff:43:d5:65: 55:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:5F:FC:F3:91:F7:54:4D:FD:68:88:11:8F:82:9C:14:AD:72:F6:9C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/29c4a1ba-28eb-4346-8889-a97d5186a1ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5523::/48 Signature Algorithm: sha256WithRSAEncryption 7e:3f:55:37:d5:f1:ed:f7:1b:93:d5:53:d8:c2:d3:cb:75:74: 33:a8:7d:33:c3:0f:a0:c0:a9:6e:6a:3c:84:56:b4:e5:3d:da: 34:60:72:1f:64:a6:2a:2e:e8:a7:85:32:bb:18:10:b8:29:07: 52:a0:f0:42:9e:3c:bc:88:72:d0:88:49:65:b8:aa:ba:2d:3f: 75:5e:c0:fd:b3:69:a7:43:2f:bb:d9:45:72:f6:f4:f0:92:6a: 2b:6c:7b:aa:12:0d:25:61:25:0b:45:72:66:9e:ae:a3:60:6b: 73:41:68:b8:c9:9f:b2:b6:61:3f:43:a0:15:d5:4b:cd:c4:73: c5:aa:2b:ad:ef:0e:6a:2b:d2:08:bf:e6:f2:15:89:d4:59:ae: 24:a8:ec:cc:1d:77:a2:e6:e3:df:f4:84:5d:cb:15:bb:d6:29: 8b:2f:fa:8a:ec:2d:16:87:6e:e6:76:d6:cd:c6:07:e9:dd:2d: de:f0:b3:6d:f0:47:0a:34:45:33:5f:81:bd:a1:cb:73:57:38: 6d:30:8f:e1:e1:9c:d5:64:7a:81:75:6e:d3:96:07:5d:f1:9d: 5d:ef:eb:5e:2c:7d:d1:3e:0c:a6:97:01:b0:9a:23:6c:25:0c: 98:1e:83:06:45:2b:0f:ba:37:6b:df:56:0d:bd:12:54:6a:15: 61:c8:e7:a9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOQV+QF13D/09vVs+3SfEWgbqw18wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjczMDY4NDY0NzgxNmRmNmUwYWIwMDk4ZmEwNjYyYWM0 NzFiMjk3NWIzMjMxZTZlZTc3MzA3OGU1MTVhYjNkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkAFi6WWhno14UuNyjRIB3IwQ9nq5z8F5yyJSOcMVUaxPQ T94wjMGsvj19lowlFamY79+JgOFn+VT8dUsDy31VTurHj4hWdgeiulgegAkkmJAG Tvw8NajI38KmnPMpkyDu216VCI/pJUN48lqtaeDy7AkLlu04coodkdasiWb+7BOy 8ojEzvFzlywJwKbITEhyErp4gxMQY3qS/V4oA+vo6bW/9K7cUrV6c0mhKwzHrpTV zZy+rsxfsiHzPB9b1PIYPhzToS5x7Gdms37ZUNxqjdS5aNE4UILShcGUm7Fs6Ap6 LXJSMMsh5OtzXVoulM6if3Mpy8DwN1WF/0PVZVW/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUd1/885H3VE39aIgRj4KcFK1y9pwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI5YzRhMWJhLTI4ZWItNDM0Ni04ODg5LWE5N2Q1MTg2YTFmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVSMwDQYJKoZIhvcNAQELBQADggEBAH4/VTfV8e33G5PVU9jC08t1 dDOofTPDD6DAqW5qPIRWtOU92jRgch9kpiou6KeFMrsYELgpB1Kg8EKePLyIctCI SWW4qrotP3VewP2zaadDL7vZRXL29PCSaitse6oSDSVhJQtFcmaerqNga3NBaLjJ n7K2YT9DoBXVS83Ec8WqK63vDmor0gi/5vIVidRZriSo7Mwdd6Lm49/0hF3LFbvW KYsv+orsLRaHbuZ21s3GB+ndLd7ws23wRwo0RTNfgb2hy3NXOG0wj+HhnNVkeoF1 btOWB13xnV3v614sfdE+DKaXAbCaI2wlDJgegwZFKw+6N2vfVg29ElRqFWHI56k= -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:47 2024 by rpki-client on console-fra.rpki-client.org