$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/348f5e60-8c02-48e8-8bab-280a4365a7cb.roa File: 348f5e60-8c02-48e8-8bab-280a4365a7cb.roa (raw, json) Hash identifier: MMiaIv0VEL4nUsYHWIrXrRvgK5LK/EfQdgOOnuWYyR4= Subject key identifier: A5:BD:90:38:07:4B:B2:79:6C:67:8B:90:ED:F3:56:53:90:5A:32:F0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2A6FD073AB19FF6F1B6351FD974FEDB238144B85 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/348f5e60-8c02-48e8-8bab-280a4365a7cb.roa Signing time: Sat 13 Apr 2024 00:00:00 +0000 ROA not before: Sat 13 Apr 2024 00:00:00 +0000 ROA not after: Sat 18 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8802::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:6f:d0:73:ab:19:ff:6f:1b:63:51:fd:97:4f:ed:b2:38:14:4b:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 13 00:00:00 2024 GMT Not After : May 18 23:59:59 2024 GMT Subject: serialNumber=dd4e03629e40d98f1095a94e5e52254a3b3c9fd0ef18331143984998f7ac2ea5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a9:28:11:4b:28:56:71:ca:0f:2e:30:78:a5: f3:fe:6a:8a:38:11:f8:c8:d9:6c:a2:d2:d4:82:ba: da:90:d1:60:79:6d:39:2f:74:06:16:83:a9:ab:a4: 94:78:c5:09:0e:4d:05:3a:35:26:e6:11:ec:21:60: 3e:52:d6:ae:0e:89:5d:cc:78:40:9f:da:d6:fc:ff: 00:04:70:38:72:ef:5f:a2:13:26:bd:d7:9c:5c:83: d4:1d:fa:d2:6f:8d:a9:0b:c1:35:be:e3:6a:64:6f: b3:51:2f:31:f1:34:0c:49:8e:d9:50:36:d1:b7:3d: 25:32:82:5f:62:1c:08:21:d8:cd:f9:4f:f7:77:7e: 16:22:69:0d:cc:cc:2e:aa:7f:22:2e:fe:54:d9:7f: d3:db:70:01:e3:70:55:9b:8c:81:e4:75:03:bf:0e: 4d:91:4a:b7:96:ff:22:39:74:9b:56:0a:d7:cf:a5: 64:a1:53:0a:4f:d9:53:10:e8:14:75:ce:f1:07:8c: 10:50:97:34:b5:e3:a5:70:5e:e2:e4:35:a4:ac:7e: 56:42:85:8d:4b:be:81:5f:4d:9a:03:46:4e:0d:60: 8e:ff:ee:5d:61:44:fd:ad:f5:23:2b:7f:2a:23:81: 87:6c:a8:bf:8e:ac:40:ef:30:86:2e:c7:ee:2b:c6: 1a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:BD:90:38:07:4B:B2:79:6C:67:8B:90:ED:F3:56:53:90:5A:32:F0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/348f5e60-8c02-48e8-8bab-280a4365a7cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8802::/48 Signature Algorithm: sha256WithRSAEncryption 70:32:de:14:0e:29:0e:af:d1:3e:52:07:56:61:39:02:3d:80: c1:b0:bf:44:9e:57:14:01:94:65:df:d3:3c:07:d8:43:8d:98: 84:ef:0b:72:55:06:55:39:9e:12:63:4b:db:db:94:98:54:44: 70:9a:4b:d7:fa:6f:fb:7a:29:c7:bc:e8:c9:4e:33:04:db:50: 5f:52:e4:60:c6:bf:8f:9f:a5:c6:7a:da:18:c8:e3:57:b1:4a: 4b:9f:50:65:a8:76:70:0e:7f:35:cb:4f:b5:aa:ac:9b:3d:e2: 10:91:88:ae:14:95:e2:58:4f:e7:e1:99:86:42:e7:6b:f8:fa: 87:14:15:6c:8c:39:e3:b1:eb:96:e1:3a:b8:2b:67:a8:00:61: db:2f:d9:06:8c:55:ab:77:70:f8:aa:ce:84:c7:dc:95:e6:fa: 90:b7:e0:2a:4f:09:7f:ad:ad:eb:ea:a3:f0:08:c2:2e:d9:d3: a7:95:7b:95:c7:4f:7a:cb:06:0e:8d:14:66:aa:76:04:5f:c5: 33:79:f3:f1:16:d4:93:b3:10:a9:b1:98:bc:bd:dc:43:c2:5a: 1d:f6:89:29:d5:24:83:c7:f7:de:fc:10:48:79:63:b0:72:59: ea:32:86:ae:1b:73:dc:93:c4:e5:7f:30:59:82:c3:da:2a:f5: 63:a8:19:29 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKm/Qc6sZ/28bY1H9l0/tsjgUS4UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDEzMDAwMDAwWhcNMjQwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDRlMDM2MjllNDBkOThmMTA5NWE5NGU1ZTUyMjU0YTNi M2M5ZmQwZWYxODMzMTE0Mzk4NDk5OGY3YWMyZWE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQqSgRSyhWccoPLjB4pfP+aoo4EfjI2Wyi0tSCutqQ0WB5 bTkvdAYWg6mrpJR4xQkOTQU6NSbmEewhYD5S1q4OiV3MeECf2tb8/wAEcDhy71+i Eya915xcg9Qd+tJvjakLwTW+42pkb7NRLzHxNAxJjtlQNtG3PSUygl9iHAgh2M35 T/d3fhYiaQ3MzC6qfyIu/lTZf9PbcAHjcFWbjIHkdQO/Dk2RSreW/yI5dJtWCtfP pWShUwpP2VMQ6BR1zvEHjBBQlzS146VwXuLkNaSsflZChY1LvoFfTZoDRk4NYI7/ 7l1hRP2t9SMrfyojgYdsqL+OrEDvMIYux+4rxhqhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpb2QOAdLsnlsZ4uQ7fNWU5BaMvAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM0OGY1ZTYwLThjMDItNDhlOC04YmFiLTI4MGE0MzY1YTdjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiAIwDQYJKoZIhvcNAQELBQADggEBAHAy3hQOKQ6v0T5SB1ZhOQI9 gMGwv0SeVxQBlGXf0zwH2EONmITvC3JVBlU5nhJjS9vblJhURHCaS9f6b/t6Kce8 6MlOMwTbUF9S5GDGv4+fpcZ62hjI41exSkufUGWodnAOfzXLT7WqrJs94hCRiK4U leJYT+fhmYZC52v4+ocUFWyMOeOx65bhOrgrZ6gAYdsv2QaMVat3cPiqzoTH3JXm +pC34CpPCX+trevqo/AIwi7Z06eVe5XHT3rLBg6NFGaqdgRfxTN58/EW1JOzEKmx mLy93EPCWh32iSnVJIPH9978EEh5Y7ByWeoyhq4bc9yTxOV/MFmCw9oq9WOoGSk= -----END CERTIFICATE-----Generated at Thu Apr 25 16:39:46 2024 by rpki-client on console-ams.rpki-client.org