$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa File: 3b1d79f6-944a-4da0-acd2-15477b975226.roa (raw, json) Hash identifier: jXAGSJwnQ7FKN4Yy9Me7IG3l3ukLWG7Fe7NQMmhtoik= Subject key identifier: 9D:08:2F:21:91:10:97:93:99:19:3E:4D:44:E3:42:0C:89:5A:10:3D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 428FA229704A5558ABAB8C876CE77B73E5307070 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:8f:a2:29:70:4a:55:58:ab:ab:8c:87:6c:e7:7b:73:e5:30:70:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=e1019af30c6ed0555cfdea226f8c6ea72c4af7d33404f8ab944b3529243f294a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bc:d5:80:8e:06:f5:9b:c9:4f:cf:41:30:b9: 3c:bd:1f:e6:cb:b1:5e:71:3b:71:d5:30:e4:d2:2d: 20:91:6e:0c:41:5a:33:9f:e6:b4:49:6f:4f:ac:76: b0:4f:36:90:7b:4f:6b:b8:e9:16:6f:50:e4:1f:e2: 1d:58:a6:df:08:90:f1:9f:b5:e8:a1:57:5b:fc:1a: b3:67:5c:02:9a:5a:e9:58:61:26:f3:4f:af:21:50: bc:bc:0e:73:09:f0:83:7b:65:d9:b1:9a:e7:e4:59: a3:82:d0:f9:81:ae:31:9b:30:99:a7:be:64:92:34: e9:7e:2a:ea:8e:79:fe:79:3c:57:3d:33:e9:64:9b: 11:dc:22:4f:1f:59:64:23:3a:df:fe:d2:df:49:d4: f8:3e:45:9c:18:3e:86:0f:9b:ba:2a:db:80:c4:e7: f0:2d:68:fb:c0:6c:b4:08:28:0d:ab:2a:e6:8f:2b: 9b:52:15:af:af:16:6c:44:a6:42:82:20:be:d0:2f: 44:8a:00:82:7d:ed:62:3d:1c:7c:db:83:67:e5:ce: f0:36:58:4e:df:50:03:0c:8a:9a:8c:d9:5f:0e:c1: ed:2a:17:68:28:65:0e:80:38:02:24:65:a8:e6:b4: dc:92:88:a3:1e:f0:ef:2b:b0:07:77:fe:eb:26:34: 1a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:08:2F:21:91:10:97:93:99:19:3E:4D:44:E3:42:0C:89:5A:10:3D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3b1d79f6-944a-4da0-acd2-15477b975226.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551b::/48 Signature Algorithm: sha256WithRSAEncryption 6a:d2:11:54:32:9e:47:d9:37:13:36:56:fd:2e:7f:7b:8d:62: 9a:a0:05:38:47:4f:04:5f:ee:84:c2:26:04:21:90:dc:fd:04: df:fb:ce:a5:72:22:e4:7a:c7:c2:b3:b6:d3:ba:46:f2:70:e4: 8d:c4:8a:8a:2d:6b:ec:f9:3b:d1:b4:6a:d6:27:5f:3c:10:45: db:d7:f4:87:76:d1:9b:7c:ed:00:72:83:66:6a:45:3d:1d:22: ef:7a:8d:3c:13:a3:c4:91:b8:b2:2b:9e:5d:8a:43:d5:1d:cb: 06:74:23:d0:00:4f:74:48:5a:0d:9a:d4:f2:fb:99:b6:d4:10: 6b:2a:17:7a:e2:f2:5d:c5:e2:df:09:5c:c6:e2:11:7d:2a:3d: 52:a5:5f:e9:54:b9:5c:b7:57:0f:f6:15:b2:06:9d:dd:f8:a3: 7f:e3:47:48:0a:7f:8d:ce:45:42:64:7c:9e:4d:e8:1a:c6:b5: d7:a2:39:d5:80:42:df:7f:e3:4f:7d:73:09:c6:42:d5:3a:f3: 05:15:c0:8e:7e:ad:0a:bf:4b:b8:10:41:4b:97:0c:18:de:0b: ab:62:3a:48:54:83:23:9e:19:87:f0:7a:2c:68:97:95:a5:72: bc:a5:85:cb:ef:99:63:d9:e4:6d:5c:a7:db:e6:5a:f7:fb:ed: 7b:72:d0:00 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQo+iKXBKVVirq4yHbOd7c+UwcHAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMTAxOWFmMzBjNmVkMDU1NWNmZGVhMjI2ZjhjNmVhNzJj NGFmN2QzMzQwNGY4YWI5NDRiMzUyOTI0M2YyOTRhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEvNWAjgb1m8lPz0EwuTy9H+bLsV5xO3HVMOTSLSCRbgxB WjOf5rRJb0+sdrBPNpB7T2u46RZvUOQf4h1Ypt8IkPGfteihV1v8GrNnXAKaWulY YSbzT68hULy8DnMJ8IN7ZdmxmufkWaOC0PmBrjGbMJmnvmSSNOl+KuqOef55PFc9 M+lkmxHcIk8fWWQjOt/+0t9J1Pg+RZwYPoYPm7oq24DE5/AtaPvAbLQIKA2rKuaP K5tSFa+vFmxEpkKCIL7QL0SKAIJ97WI9HHzbg2flzvA2WE7fUAMMipqM2V8Owe0q F2goZQ6AOAIkZajmtNySiKMe8O8rsAd3/usmNBpTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnQgvIZEQl5OZGT5NRONCDIlaED0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNiMWQ3OWY2LTk0NGEtNGRhMC1hY2QyLTE1NDc3Yjk3NTIyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRswDQYJKoZIhvcNAQELBQADggEBAGrSEVQynkfZNxM2Vv0uf3uN YpqgBThHTwRf7oTCJgQhkNz9BN/7zqVyIuR6x8KzttO6RvJw5I3Eioota+z5O9G0 atYnXzwQRdvX9Id20Zt87QByg2ZqRT0dIu96jTwTo8SRuLIrnl2KQ9UdywZ0I9AA T3RIWg2a1PL7mbbUEGsqF3ri8l3F4t8JXMbiEX0qPVKlX+lUuVy3Vw/2FbIGnd34 o3/jR0gKf43ORUJkfJ5N6BrGtdeiOdWAQt9/4099cwnGQtU68wUVwI5+rQq/S7gQ QUuXDBjeC6tiOkhUgyOeGYfweixol5WlcrylhcvvmWPZ5G1cp9vmWvf77Xty0AA= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org