$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/348f5e60-8c02-48e8-8bab-280a4365a7cb.roa File: 348f5e60-8c02-48e8-8bab-280a4365a7cb.roa (raw, json) Hash identifier: qM5XidpUHTmtEuvIq9nEU7imTVQY9KtlEqUPtkqQCfw= Subject key identifier: 71:18:9F:0F:EB:A8:9A:E5:C4:96:1C:E5:13:C1:30:49:B9:D6:A4:F1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 183A3494661820FD40B28D522B4755EBF07C1F01 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/348f5e60-8c02-48e8-8bab-280a4365a7cb.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8802::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:3a:34:94:66:18:20:fd:40:b2:8d:52:2b:47:55:eb:f0:7c:1f:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=1fbb3211868c803494f5bf649354d11844bdc07e85802bcacbc6e830292ea78b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:51:22:a6:2c:86:bd:ef:fe:b0:d5:a7:ed:d5: e4:cb:9e:ca:16:f4:50:ba:62:72:20:0d:37:99:59: d0:e1:73:15:51:29:13:ad:77:c5:74:c4:94:0e:a3: 96:8f:e9:ee:96:9c:12:9c:87:ff:f1:49:db:0b:f8: da:7a:21:14:a0:05:fc:85:36:77:5c:d0:30:c6:f2: b0:e3:8d:cc:b7:77:bd:c1:a0:72:a9:c6:b7:67:0e: 95:bf:14:5a:c9:4b:cf:06:b3:76:17:8a:6a:64:f6: b0:d8:e6:38:48:a4:83:15:43:75:1b:3d:fa:93:16: 63:b9:10:06:d6:3c:ce:32:96:0f:14:11:37:6f:eb: 09:28:c0:ea:bc:2d:26:ff:34:28:20:2a:e2:84:ca: b1:99:71:17:f5:ed:a0:ee:44:76:af:41:5b:1b:da: 06:35:db:8e:be:1a:6a:ba:c0:72:38:78:a9:8b:1c: dd:4d:ff:50:f5:31:ea:25:3c:18:66:e0:94:5e:ef: 7f:18:94:77:77:19:52:76:9a:af:f6:45:4e:4b:a3: a7:77:ef:8e:cb:15:87:04:eb:42:33:5b:46:5f:a5: 0b:9b:55:33:db:05:01:5b:54:36:42:9d:ca:ab:fd: 07:b5:79:5e:eb:a4:35:74:eb:3e:40:fa:65:a9:2c: 59:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:18:9F:0F:EB:A8:9A:E5:C4:96:1C:E5:13:C1:30:49:B9:D6:A4:F1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/348f5e60-8c02-48e8-8bab-280a4365a7cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8802::/48 Signature Algorithm: sha256WithRSAEncryption 19:27:cb:16:79:0c:ec:c4:59:84:ab:4b:34:fd:a6:c8:b3:dc: 37:58:91:8e:f4:bf:1d:33:e0:45:76:10:a9:a7:ce:8b:2f:1e: e4:39:f7:7a:a7:7d:09:21:74:c3:8c:e9:e8:50:3a:e3:22:c2: 63:8e:80:51:90:3f:c5:01:c3:64:d7:4b:64:06:3a:24:02:9e: a4:3d:f5:26:ab:e7:35:96:15:90:68:bd:e5:f8:8e:df:b5:4d: 4d:3c:8e:fc:ca:5c:99:ed:02:51:38:05:ef:21:0a:d1:e7:1a: 22:22:e0:f9:c9:31:ac:30:92:6f:d4:b8:38:05:f8:52:90:bf: a7:8b:6f:9c:0b:5e:a6:f0:77:8d:75:8a:6f:d6:79:fe:4b:ca: 07:4e:a3:0e:ce:5e:7b:7e:8c:12:3f:4c:2a:84:4f:91:98:47: c8:80:bd:f8:7a:db:2b:42:34:d0:1e:4d:e4:be:62:5d:72:51: 46:9d:4f:c6:c3:79:70:96:f6:d8:04:51:4b:cd:9d:c6:ab:4b: f8:7f:7d:c7:69:77:d8:f4:a1:d1:36:9a:dc:03:91:94:38:ae: fe:df:93:05:5e:88:fb:62:27:2d:bb:ce:9a:f6:75:85:d7:f6: ee:13:10:07:96:8c:5e:ab:a3:4b:42:e8:9d:5d:60:96:2c:d5: 08:7d:b8:03 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGDo0lGYYIP1Aso1SK0dV6/B8HwEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZmJiMzIxMTg2OGM4MDM0OTRmNWJmNjQ5MzU0ZDExODQ0 YmRjMDdlODU4MDJiY2FjYmM2ZTgzMDI5MmVhNzhiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUUSKmLIa97/6w1aft1eTLnsoW9FC6YnIgDTeZWdDhcxVR KROtd8V0xJQOo5aP6e6WnBKch//xSdsL+Np6IRSgBfyFNndc0DDG8rDjjcy3d73B oHKpxrdnDpW/FFrJS88Gs3YXimpk9rDY5jhIpIMVQ3UbPfqTFmO5EAbWPM4ylg8U ETdv6wkowOq8LSb/NCggKuKEyrGZcRf17aDuRHavQVsb2gY1246+Gmq6wHI4eKmL HN1N/1D1MeolPBhm4JRe738YlHd3GVJ2mq/2RU5Lo6d3747LFYcE60IzW0ZfpQub VTPbBQFbVDZCncqr/Qe1eV7rpDV06z5A+mWpLFlhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcRifD+uomuXElhzlE8EwSbnWpPEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM0OGY1ZTYwLThjMDItNDhlOC04YmFiLTI4MGE0MzY1YTdjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiAIwDQYJKoZIhvcNAQELBQADggEBABknyxZ5DOzEWYSrSzT9psiz 3DdYkY70vx0z4EV2EKmnzosvHuQ593qnfQkhdMOM6ehQOuMiwmOOgFGQP8UBw2TX S2QGOiQCnqQ99Sar5zWWFZBoveX4jt+1TU08jvzKXJntAlE4Be8hCtHnGiIi4PnJ Mawwkm/UuDgF+FKQv6eLb5wLXqbwd411im/Wef5LygdOow7OXnt+jBI/TCqET5GY R8iAvfh62ytCNNAeTeS+Yl1yUUadT8bDeXCW9tgEUUvNncarS/h/fcdpd9j0odE2 mtwDkZQ4rv7fkwVeiPtiJy27zpr2dYXX9u4TEAeWjF6ro0tC6J1dYJYs1Qh9uAM= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org