$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa File: 3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa (raw, json) Hash identifier: QyecRTCS+XbY47ZbFKQ7QPREj/D6EaQxy/xuED+b3DA= Subject key identifier: 90:57:8D:32:B9:EB:EC:CB:A6:8B:8E:49:F1:99:5B:63:DC:72:81:96 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 33DCAD48798D41680917041F7D2CA6CBD157ADCF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f002::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:dc:ad:48:79:8d:41:68:09:17:04:1f:7d:2c:a6:cb:d1:57:ad:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=a7bc1c420533d5d24b971ecac0bec6d43c21dfa4f14f87e8fdb49ccccc014fa9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0d:6d:41:ca:a7:48:c4:3b:f2:6b:4d:8c:1c: db:37:78:c4:8b:1d:2f:02:4d:bd:a9:be:0f:c6:6a: fb:f6:23:3c:d0:92:d8:c9:d4:0d:38:9b:ed:1e:4c: 11:a9:a5:48:55:8e:b1:94:11:b9:e1:a0:85:56:7d: 3e:8a:03:a8:8e:28:d2:8b:6f:e3:9b:b5:12:a0:39: 69:54:81:b4:71:3a:ad:3b:42:4d:e4:88:36:37:bd: f2:7b:d1:93:00:b8:33:33:3f:20:08:12:c2:ad:dc: d3:b7:9a:85:03:b5:70:40:ca:4e:66:b3:4b:7c:54: 0e:7b:6f:49:49:cc:56:44:6a:d3:ca:b4:7a:ee:43: cc:9b:25:5c:e1:cf:3c:1e:38:d8:de:28:a7:bb:01: 09:9a:8c:67:49:ba:ed:92:9d:99:90:90:3c:88:10: e5:58:e3:12:70:b9:ad:47:ba:98:a8:e0:6c:86:3a: d8:1f:31:ca:21:db:d8:81:71:99:c8:a3:85:16:bf: bd:79:07:c0:e8:8b:aa:2b:51:38:33:bf:d0:f6:1a: 0c:bc:4f:a6:e7:12:1d:8e:3e:3f:42:03:76:1e:08: 27:12:3f:4c:e0:ab:fe:86:6c:55:30:eb:47:54:b3: 18:f8:64:11:b1:be:80:7a:bb:10:12:98:50:bc:f1: 03:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:57:8D:32:B9:EB:EC:CB:A6:8B:8E:49:F1:99:5B:63:DC:72:81:96 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f002::/39 Signature Algorithm: sha256WithRSAEncryption a2:c0:46:94:d3:34:ab:b0:7f:99:12:80:fe:f6:f0:32:e8:6e: 7b:4a:9b:36:86:59:c7:de:56:15:b9:0f:a1:ca:d5:09:15:66: f0:e1:3e:ab:6b:48:fd:cd:bb:77:c0:b2:6c:e9:32:50:c2:cd: 28:8c:1d:d1:7a:88:79:b5:c9:38:b0:70:d2:8b:03:be:0f:ac: f2:bd:56:12:56:42:53:8c:6e:a6:7d:d6:fe:8e:a7:15:91:c3: 28:bc:a2:53:0f:8f:42:2b:88:48:8d:b3:be:34:ef:f3:48:ce: f1:3c:2d:37:8d:52:34:3d:5e:75:c1:9a:d3:f2:22:3e:c2:ea: 63:2d:5d:52:1c:9d:5b:ba:fd:de:2d:61:9f:08:83:17:35:d6: b9:eb:51:2b:f7:3d:4d:9c:44:73:9d:65:50:3f:71:be:25:3d: da:a7:07:9b:bb:6b:cf:49:46:d8:21:b5:27:a5:47:50:cf:f2: 5b:e1:f9:e0:c2:d6:14:b7:72:5e:46:a1:88:63:89:c7:78:e9: 92:ad:5c:08:3c:58:96:a9:ae:46:bd:71:d6:f9:64:9a:36:aa: 34:6c:af:f1:25:04:15:67:fc:e8:27:a2:63:60:13:a6:aa:41: 25:d0:f4:2b:b1:8d:3e:cb:f3:c0:7d:3c:61:78:5b:53:2f:4a: b2:98:65:1a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUM9ytSHmNQWgJFwQffSymy9FXrc8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhN2JjMWM0MjA1MzNkNWQyNGI5NzFlY2FjMGJlYzZkNDNj MjFkZmE0ZjE0Zjg3ZThmZGI0OWNjY2NjMDE0ZmE5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8DW1ByqdIxDvya02MHNs3eMSLHS8CTb2pvg/Gavv2IzzQ ktjJ1A04m+0eTBGppUhVjrGUEbnhoIVWfT6KA6iOKNKLb+ObtRKgOWlUgbRxOq07 Qk3kiDY3vfJ70ZMAuDMzPyAIEsKt3NO3moUDtXBAyk5ms0t8VA57b0lJzFZEatPK tHruQ8ybJVzhzzweONjeKKe7AQmajGdJuu2SnZmQkDyIEOVY4xJwua1Hupio4GyG OtgfMcoh29iBcZnIo4UWv715B8Doi6orUTgzv9D2Ggy8T6bnEh2OPj9CA3YeCCcS P0zgq/6GbFUw60dUsxj4ZBGxvoB6uxASmFC88QNNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkFeNMrnr7Mumi45J8ZlbY9xygZYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNhYzg1Y2Y1LWIyNDgtNDE2Yi1hYjMwLTVhNDMwZjNmYTQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPACADANBgkqhkiG9w0BAQsFAAOCAQEAosBGlNM0q7B/mRKA/vbwMuhu e0qbNoZZx95WFbkPocrVCRVm8OE+q2tI/c27d8CybOkyUMLNKIwd0XqIebXJOLBw 0osDvg+s8r1WElZCU4xupn3W/o6nFZHDKLyiUw+PQiuISI2zvjTv80jO8TwtN41S ND1edcGa0/IiPsLqYy1dUhydW7r93i1hnwiDFzXWuetRK/c9TZxEc51lUD9xviU9 2qcHm7trz0lG2CG1J6VHUM/yW+H54MLWFLdyXkahiGOJx3jpkq1cCDxYlqmuRr1x 1vlkmjaqNGyv8SUEFWf86CeiY2ATpqpBJdD0K7GNPsvzwH08YXhbUy9KsphlGg== -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:45 2024 by rpki-client on console-ams.rpki-client.org