$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3615c317-c337-40cd-8aa5-dc3a42e98151.roa File: 3615c317-c337-40cd-8aa5-dc3a42e98151.roa (raw, json) Hash identifier: Dhj3Z1L/2DZXXGGy3k5TSBQJuTBsarFGpB/jJZH4tic= Subject key identifier: E6:D7:1F:50:73:15:46:0F:FE:51:33:2B:72:9E:8C:BE:2E:B4:B1:FF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 71D597FE7531E28B922B559428338C11FF0FB115 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3615c317-c337-40cd-8aa5-dc3a42e98151.roa Signing time: Thu 05 Dec 2024 00:00:00 +0000 ROA not before: Thu 05 Dec 2024 00:00:00 +0000 ROA not after: Thu 09 Jan 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f3:ce80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 28 Dec 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:d5:97:fe:75:31:e2:8b:92:2b:55:94:28:33:8c:11:ff:0f:b1:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 5 00:00:00 2024 GMT Not After : Jan 9 23:59:59 2025 GMT Subject: serialNumber=6b1139c05ff4880ddb1df4965544d553de35318ac96126de5e12017f9d013a0a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fb:b6:d6:bc:74:c1:e5:73:e4:f4:9c:ed:04: 26:02:ad:ae:bf:5d:43:e9:c4:70:ac:0e:b5:b4:ce: 37:39:c7:d1:59:4d:3a:22:2b:7e:9f:63:93:55:af: 98:19:39:b1:b1:10:2c:8c:a9:24:a2:e7:cf:07:20: f2:7a:c8:29:fd:2f:9f:97:cc:c4:78:ba:5c:1a:7b: bc:72:1a:a1:ab:14:f0:7b:17:9e:39:19:53:32:96: 66:b2:c6:c9:90:5e:20:c2:6f:99:9a:3b:e3:9a:36: ef:27:5c:3e:0b:f2:dc:eb:4b:26:50:fe:c1:cf:e2: 51:c0:78:8c:3e:90:c8:66:47:1b:0d:5b:ec:1d:1f: 57:ca:5b:29:ff:39:df:37:9e:57:ce:05:f6:b7:51: 6f:b0:4f:5f:08:18:74:dd:be:5d:66:c1:14:10:e4: 41:f4:57:72:69:1c:e6:dc:08:53:f4:ac:4f:68:45: 57:0f:04:dc:23:7c:30:c3:af:da:69:62:55:07:1f: 65:d1:b9:87:31:18:67:61:b8:bb:99:6f:cd:bc:35: 67:69:e8:f6:2d:7b:a5:e5:8c:54:72:77:71:71:bd: b6:cf:7c:f1:21:19:21:26:5d:f4:e6:d8:af:f2:14: 38:71:ef:24:d6:00:87:e3:94:ac:3b:d8:fd:d4:54: be:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:D7:1F:50:73:15:46:0F:FE:51:33:2B:72:9E:8C:BE:2E:B4:B1:FF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3615c317-c337-40cd-8aa5-dc3a42e98151.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:ce80::/48 Signature Algorithm: sha256WithRSAEncryption 62:ec:41:5a:0e:4e:62:67:9b:ea:ca:55:74:8e:8b:3c:5a:f2: 9b:24:8a:a2:66:df:c2:0c:30:6a:cd:70:f9:86:be:2d:e5:fd: cc:2e:f0:a1:e3:51:a7:a1:fc:98:e7:a5:5d:34:3a:12:b0:b4: 88:d4:37:f0:d3:15:53:26:3a:d7:98:2f:12:92:18:e9:46:44: 26:e2:00:d1:de:1b:14:b2:2f:62:c3:65:38:a8:1c:5f:07:70: b3:76:78:d2:ba:d6:fb:11:48:3a:dc:d6:58:8d:f4:5b:a5:7d: 22:fd:91:6e:68:1c:18:6c:e9:35:0c:96:92:96:a8:3d:0f:ff: 1c:27:63:d6:3f:f7:4c:07:a7:77:95:c7:3e:ae:4e:7d:af:b1: 64:03:24:b5:e0:21:b0:0e:f5:5a:c8:ce:5f:b5:06:df:81:e5: 8a:01:e4:43:e8:11:0d:d1:7f:0e:1f:c0:68:2b:00:96:55:b2: 34:78:ff:bb:b9:ff:d7:73:c2:9a:cf:af:27:b1:51:be:c7:1d: a0:5d:59:76:69:18:1b:6e:5e:27:b7:79:a6:0c:e4:1e:09:24: 66:27:ef:4a:68:97:ce:4d:1c:fa:09:99:3b:b0:ce:aa:c2:f8: 4d:46:2b:4e:06:15:53:07:88:44:22:35:8c:43:c5:90:dc:c9: 56:04:82:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcdWX/nUx4ouSK1WUKDOMEf8PsRUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMjA1MDAwMDAwWhcNMjUwMTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjExMzljMDVmZjQ4ODBkZGIxZGY0OTY1NTQ0ZDU1M2Rl MzUzMThhYzk2MTI2ZGU1ZTEyMDE3ZjlkMDEzYTBhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM+7bWvHTB5XPk9JztBCYCra6/XUPpxHCsDrW0zjc5x9FZ TToiK36fY5NVr5gZObGxECyMqSSi588HIPJ6yCn9L5+XzMR4ulwae7xyGqGrFPB7 F545GVMylmayxsmQXiDCb5maO+OaNu8nXD4L8tzrSyZQ/sHP4lHAeIw+kMhmRxsN W+wdH1fKWyn/Od83nlfOBfa3UW+wT18IGHTdvl1mwRQQ5EH0V3JpHObcCFP0rE9o RVcPBNwjfDDDr9ppYlUHH2XRuYcxGGdhuLuZb828NWdp6PYte6XljFRyd3FxvbbP fPEhGSEmXfTm2K/yFDhx7yTWAIfjlKw72P3UVL5nAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5tcfUHMVRg/+UTMrcp6Mvi60sf8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM2MTVjMzE3LWMzMzctNDBjZC04YWE1LWRjM2E0MmU5ODE1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDzzoAwDQYJKoZIhvcNAQELBQADggEBAGLsQVoOTmJnm+rKVXSOizxa 8pskiqJm38IMMGrNcPmGvi3l/cwu8KHjUaeh/JjnpV00OhKwtIjUN/DTFVMmOteY LxKSGOlGRCbiANHeGxSyL2LDZTioHF8HcLN2eNK61vsRSDrc1liN9FulfSL9kW5o HBhs6TUMlpKWqD0P/xwnY9Y/90wHp3eVxz6uTn2vsWQDJLXgIbAO9VrIzl+1Bt+B 5YoB5EPoEQ3Rfw4fwGgrAJZVsjR4/7u5/9dzwprPryexUb7HHaBdWXZpGBtuXie3 eaYM5B4JJGYn70pol85NHPoJmTuwzqrC+E1GK04GFVMHiEQiNYxDxZDcyVYEgvE= -----END CERTIFICATE-----Generated at Thu Dec 26 19:31:16 2024 by rpki-client on console-ams.rpki-client.org