$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c20fc31-bbe3-460c-9c8b-8e10fc7dedb1.roa File: 2c20fc31-bbe3-460c-9c8b-8e10fc7dedb1.roa (raw, json) Hash identifier: TCDo479i+gFGuVTdugG6D6LEFY85Tu13gN1ilgpaHLw= Subject key identifier: 9E:02:9D:0B:B8:F2:AF:3B:03:08:A0:23:32:BD:12:E0:ED:BC:C3:C0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2360667C4D69F18790E2D67C77B1285C14702269 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c20fc31-bbe3-460c-9c8b-8e10fc7dedb1.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:84::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:60:66:7c:4d:69:f1:87:90:e2:d6:7c:77:b1:28:5c:14:70:22:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=e0d5ba3ffdc9d2ff947eb4889bc4f6a54713b1222ca8098193918480bfb4c8f9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1b:b0:eb:d1:4c:2b:f9:38:46:c3:fe:8d:f3: 83:54:fe:5d:0c:49:da:5b:89:64:82:eb:8f:30:92: 58:14:ca:6c:44:8a:0c:1f:35:87:4b:aa:a8:a3:c8: 6f:2f:b5:39:17:4c:a8:23:bb:e0:4a:5f:f8:25:c1: 7e:95:85:b0:17:b9:c9:da:3a:b7:5a:c8:af:62:f2: 3c:ed:fc:77:74:ae:f7:8f:7c:69:d0:61:75:69:3e: e1:d5:d6:1e:93:15:71:30:60:c6:16:07:b6:a5:87: c0:73:b5:9a:07:5a:a3:fd:d0:df:d2:a7:a8:27:e6: ca:bc:a4:f9:2b:5e:d6:2a:02:72:d9:41:dd:2a:7c: 99:24:d8:f0:51:cf:bd:28:e5:ab:69:64:86:71:a8: 35:0c:b9:34:be:58:2e:b9:c0:4d:ab:98:00:b6:d4: 3a:82:0b:ef:21:82:7d:40:e2:b3:2f:e8:46:55:96: 7b:41:20:d2:cb:5d:5b:05:bf:19:0b:4f:67:aa:19: b0:fc:68:5a:30:fa:d4:e5:bd:3a:0b:26:7b:cd:63: 74:86:f8:43:d1:58:8e:4f:70:0c:60:04:55:f5:bb: 1f:20:17:7f:f9:76:24:ae:42:16:59:55:04:8d:58: c1:2a:55:a0:1b:1c:2a:ff:d7:6f:c7:f4:9f:72:5f: 67:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:02:9D:0B:B8:F2:AF:3B:03:08:A0:23:32:BD:12:E0:ED:BC:C3:C0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2c20fc31-bbe3-460c-9c8b-8e10fc7dedb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:84::/48 Signature Algorithm: sha256WithRSAEncryption 90:dd:99:83:34:47:0c:bf:bb:97:3e:ec:8b:b9:6e:f6:81:c1: 71:07:94:6b:85:26:ff:a0:1f:52:14:fb:32:35:16:70:d0:6e: 61:2e:92:23:3a:b4:b4:58:3e:b6:01:34:82:1a:2b:b9:b2:87: ef:89:d7:4f:76:08:fd:05:01:4a:8b:60:f9:09:aa:00:51:13: c5:c2:d8:5f:fd:97:54:67:25:72:af:e5:1e:2b:79:b6:f0:da: fc:7c:1a:b0:ee:f2:cf:d4:11:6c:34:96:0f:68:cd:e4:05:b1: 97:ff:7b:08:41:55:d7:d6:7b:c5:25:31:40:fe:cf:7d:6d:1c: 50:0e:12:4c:d3:ad:95:1f:06:f4:4b:ed:4b:e6:9d:b3:e7:8d: 84:4e:c5:bc:69:d3:23:12:24:59:15:45:2d:85:9d:52:58:39: b1:e2:ab:db:9f:68:34:06:7f:0d:94:00:db:20:43:c8:74:b8: 04:77:ff:c9:97:aa:6d:d0:8b:8a:69:cc:ca:70:94:8e:d9:7b: 56:7a:47:60:9d:b0:c3:34:c3:3a:e9:7d:b2:3a:77:11:56:0c: ae:fa:bd:2c:84:51:a7:98:da:98:19:3f:37:cb:a7:2c:3b:39: b6:93:12:14:10:61:2f:de:f8:b0:3e:4a:79:bd:ac:3a:e4:79: f8:f7:3c:53 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI2BmfE1p8YeQ4tZ8d7EoXBRwImkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGQ1YmEzZmZkYzlkMmZmOTQ3ZWI0ODg5YmM0ZjZhNTQ3 MTNiMTIyMmNhODA5ODE5MzkxODQ4MGJmYjRjOGY5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqG7Dr0Uwr+ThGw/6N84NU/l0MSdpbiWSC648wklgUymxE igwfNYdLqqijyG8vtTkXTKgju+BKX/glwX6VhbAXucnaOrdayK9i8jzt/Hd0rveP fGnQYXVpPuHV1h6TFXEwYMYWB7alh8BztZoHWqP90N/Sp6gn5sq8pPkrXtYqAnLZ Qd0qfJkk2PBRz70o5atpZIZxqDUMuTS+WC65wE2rmAC21DqCC+8hgn1A4rMv6EZV lntBINLLXVsFvxkLT2eqGbD8aFow+tTlvToLJnvNY3SG+EPRWI5PcAxgBFX1ux8g F3/5diSuQhZZVQSNWMEqVaAbHCr/12/H9J9yX2cRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUngKdC7jyrzsDCKAjMr0S4O28w8AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzJjMjBmYzMxLWJiZTMtNDYwYy05YzhiLThlMTBmYzdkZWRiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIQwDQYJKoZIhvcNAQELBQADggEBAJDdmYM0Rwy/u5c+7Iu5bvaB wXEHlGuFJv+gH1IU+zI1FnDQbmEukiM6tLRYPrYBNIIaK7myh++J1092CP0FAUqL YPkJqgBRE8XC2F/9l1RnJXKv5R4rebbw2vx8GrDu8s/UEWw0lg9ozeQFsZf/ewhB VdfWe8UlMUD+z31tHFAOEkzTrZUfBvRL7UvmnbPnjYROxbxp0yMSJFkVRS2FnVJY ObHiq9ufaDQGfw2UANsgQ8h0uAR3/8mXqm3Qi4ppzMpwlI7Ze1Z6R2CdsMM0wzrp fbI6dxFWDK76vSyEUaeY2pgZPzfLpyw7ObaTEhQQYS/e+LA+Snm9rDrkefj3PFM= -----END CERTIFICATE-----Generated at Thu May 2 01:05:46 2024 by rpki-client on console-fra.rpki-client.org