$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa File: 3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa (raw, json) Hash identifier: axvLs7+imaGP1eRyC264aNuoRXqDlXjbA45cBv3PUiY= Subject key identifier: B7:CA:0B:7A:82:27:E8:0D:B2:02:72:8A:51:86:B7:26:1D:0C:33:70 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 70A4285465F03453866C6CDDEBED562B7826E2B8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f002::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:a4:28:54:65:f0:34:53:86:6c:6c:dd:eb:ed:56:2b:78:26:e2:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=4469eb66317a32b56d80cd034c987d8abfba6c56e4bfb707bf96d8e646f504db, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:46:7d:a0:2d:64:66:41:07:05:7e:e4:25:85: da:bc:6a:d7:06:f6:9e:0c:07:dc:c5:eb:b6:1a:41: 1f:f4:3f:ee:b9:2f:76:df:9a:cb:35:ee:db:32:f8: 77:83:f0:20:04:28:04:07:02:bb:2b:cf:1d:57:39: 23:78:ee:95:33:80:e4:dd:a9:a4:f8:ed:3b:8d:a5: 0f:79:42:77:d0:7b:8d:2c:6f:64:ea:1e:ac:b9:1a: c7:91:d1:8e:89:dd:7b:f8:90:8c:d9:19:ff:97:80: c1:c6:c8:93:04:2e:96:65:8f:47:0b:50:27:61:db: b6:b1:dd:77:77:21:37:50:c9:7a:b3:2a:20:1f:05: f6:19:69:c1:71:47:a4:52:a4:3f:ba:b9:48:31:c8: ea:30:e0:cf:f0:11:2c:22:01:6a:15:90:67:0d:a3: 56:cd:dd:42:0b:97:74:91:93:43:b4:d0:fd:b5:7e: 97:de:02:72:55:ba:b6:90:4d:ef:1e:3d:e0:97:e2: 71:b9:8e:6f:1c:dd:5a:7a:c7:b0:85:a0:11:8d:c3: 54:cd:83:af:05:73:17:18:9e:e6:e2:dc:e0:68:c1: 25:bb:b2:10:33:b9:66:76:27:ec:0a:4f:c8:11:6e: f2:08:22:7b:11:5b:cb:d3:1f:75:cb:d0:58:79:c6: de:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CA:0B:7A:82:27:E8:0D:B2:02:72:8A:51:86:B7:26:1D:0C:33:70 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f002::/39 Signature Algorithm: sha256WithRSAEncryption 2a:7e:86:b3:c6:95:71:39:27:8b:79:ae:31:90:ef:dd:26:43: 2f:23:b4:00:a8:7f:85:fe:61:1c:e7:3f:02:f6:de:18:b9:bd: 1e:d9:8f:eb:7b:6c:b0:94:0d:ed:f8:1b:29:88:ef:2d:94:6e: 2f:39:46:4d:56:ac:d1:12:df:7f:b0:e1:89:2e:6e:23:e3:3a: e7:50:21:bf:6f:00:a2:8f:ca:5e:9e:d0:69:22:65:0a:c0:26: 97:b6:9f:ba:5c:ee:19:eb:25:d3:9d:8f:17:04:75:a6:13:f3: c6:a1:87:ce:52:aa:f4:3c:74:ea:ca:2a:3f:06:d3:59:68:c3: 60:5f:8f:06:ba:f5:80:30:18:13:59:13:45:1f:c3:20:b3:64: 04:ef:34:1d:a9:dc:80:c7:57:3a:aa:53:ee:3e:ea:09:c1:cf: 47:48:42:0d:9b:4e:c8:57:53:fa:04:d2:1f:a4:fa:ba:ce:d1: db:6b:bf:eb:8a:d0:ed:43:aa:50:f0:7b:c1:c8:3b:2d:2b:b9: 41:40:c6:be:79:89:a7:72:e5:d2:36:6c:c7:72:37:b9:04:a8: 21:fb:9d:88:9a:79:6b:ae:fe:f9:7a:bd:53:aa:e0:35:52:92: 36:f0:e3:f5:08:c5:dd:42:16:fa:e8:df:9b:8c:8c:d7:1b:69: eb:36:7c:53 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcKQoVGXwNFOGbGzd6+1WK3gm4rgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDY5ZWI2NjMxN2EzMmI1NmQ4MGNkMDM0Yzk4N2Q4YWJm YmE2YzU2ZTRiZmI3MDdiZjk2ZDhlNjQ2ZjUwNGRiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqRn2gLWRmQQcFfuQlhdq8atcG9p4MB9zF67YaQR/0P+65 L3bfmss17tsy+HeD8CAEKAQHArsrzx1XOSN47pUzgOTdqaT47TuNpQ95QnfQe40s b2TqHqy5GseR0Y6J3Xv4kIzZGf+XgMHGyJMELpZlj0cLUCdh27ax3Xd3ITdQyXqz KiAfBfYZacFxR6RSpD+6uUgxyOow4M/wESwiAWoVkGcNo1bN3UILl3SRk0O00P21 fpfeAnJVuraQTe8ePeCX4nG5jm8c3Vp6x7CFoBGNw1TNg68FcxcYnubi3OBowSW7 shAzuWZ2J+wKT8gRbvIIInsRW8vTH3XL0Fh5xt5RAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUt8oLeoIn6A2yAnKKUYa3Jh0MM3AwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNhYzg1Y2Y1LWIyNDgtNDE2Yi1hYjMwLTVhNDMwZjNmYTQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPACADANBgkqhkiG9w0BAQsFAAOCAQEAKn6Gs8aVcTkni3muMZDv3SZD LyO0AKh/hf5hHOc/AvbeGLm9HtmP63tssJQN7fgbKYjvLZRuLzlGTVas0RLff7Dh iS5uI+M651Ahv28Aoo/KXp7QaSJlCsAml7afulzuGesl052PFwR1phPzxqGHzlKq 9Dx06soqPwbTWWjDYF+PBrr1gDAYE1kTRR/DILNkBO80HancgMdXOqpT7j7qCcHP R0hCDZtOyFdT+gTSH6T6us7R22u/64rQ7UOqUPB7wcg7LSu5QUDGvnmJp3Ll0jZs x3I3uQSoIfudiJp5a67++Xq9U6rgNVKSNvDj9QjF3UIW+ujfm4yM1xtp6zZ8Uw== -----END CERTIFICATE-----Generated at Thu May 2 00:52:16 2024 by rpki-client on console-ams.rpki-client.org