$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3e66065c-803b-4b16-998f-c22a451550ca.roa File: 3e66065c-803b-4b16-998f-c22a451550ca.roa (raw, json) Hash identifier: 1+/LHN0UWj4rEC9psUIFK/qqFcC+lK1qxtCarpo6EFk= Subject key identifier: 3D:A5:9B:28:57:70:75:0E:13:D4:5F:46:C3:DE:AB:CC:CB:14:A4:74 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7B2671A70BA93A5907DA3E291ACC9437BC0DF9D8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3e66065c-803b-4b16-998f-c22a451550ca.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:552a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:26:71:a7:0b:a9:3a:59:07:da:3e:29:1a:cc:94:37:bc:0d:f9:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=2ca1fd836bef09b5ea09102bf2c6b80d74c46085c59172a198cea9630bc1130c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:92:f3:71:4e:63:55:0f:ff:ef:50:f3:c5:b4: 2b:38:eb:23:15:21:5a:79:12:8f:31:c8:58:23:51: d5:48:2b:ab:a2:39:5b:52:b1:47:9f:5a:87:62:21: 8d:b4:d4:1d:45:fc:b1:51:ff:15:4a:e4:e8:8e:8b: 94:0b:bc:c1:dd:40:ea:50:d0:fa:77:7a:bc:17:14: 2f:0d:73:1a:d8:7e:bc:a1:83:53:cc:b0:fe:3d:2a: ff:cc:22:b8:e7:34:90:0f:a0:0d:16:31:69:3d:eb: dd:41:cd:23:9d:3a:96:60:9c:da:e8:4f:01:67:5e: c0:a1:61:56:fb:db:a6:30:c2:1b:b1:ea:97:45:bb: 64:a0:58:5b:66:0a:2a:a2:36:cf:f8:65:0a:32:2b: bf:ec:42:ef:3a:a6:77:f5:62:87:5d:79:6c:b1:d1: 4c:df:af:9f:71:cf:53:63:48:f7:c5:d3:8f:11:36: 64:ff:5e:68:e0:7a:71:27:7f:3a:7a:c2:47:bf:b8: e4:37:37:60:37:d2:b7:95:5f:da:22:d4:20:e4:7e: d6:47:74:2b:97:1a:38:e4:a3:10:fb:33:47:3f:ef: 03:20:18:e4:bf:67:f3:14:c8:25:f0:43:25:b1:b2: c5:cb:69:2c:7b:10:e5:32:ec:a8:3e:33:22:79:0d: d5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A5:9B:28:57:70:75:0E:13:D4:5F:46:C3:DE:AB:CC:CB:14:A4:74 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3e66065c-803b-4b16-998f-c22a451550ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:552a::/48 Signature Algorithm: sha256WithRSAEncryption 60:02:61:da:1a:89:0e:d0:91:18:27:3e:fb:03:c7:ea:ab:e2: 9f:95:3f:10:36:76:83:20:c7:1a:46:2e:e0:83:5c:44:68:56: d9:47:27:cb:1d:63:97:56:d7:47:d4:ca:16:ea:9c:e4:60:70: b9:9c:8f:30:70:83:f1:e0:da:f3:f7:bb:da:b2:37:bc:f3:83: 19:fa:85:6e:09:43:b5:e8:4e:b3:3c:76:24:89:98:c8:0d:f0: 76:5d:69:30:7c:f7:94:5d:c4:94:fb:88:c3:11:0a:57:a5:8a: f7:64:74:5c:d4:79:ad:af:f5:44:2a:6c:0a:7a:a1:16:fc:2f: bc:08:2e:97:fa:08:2e:d6:be:b3:54:f4:d8:e5:e7:88:56:bd: 02:54:91:c1:43:2e:52:fa:a6:a7:79:6f:db:a9:a1:7b:5f:ea: 2b:3a:ca:d3:43:16:38:a9:61:10:d2:1d:70:f9:dd:7d:c7:33: 79:d6:3c:b1:3c:90:b4:a3:ca:df:35:5d:14:14:b5:1c:e9:3c: e5:df:d6:72:0b:97:b0:45:0b:70:80:e3:c8:c7:c8:64:e4:d2: e0:ed:85:59:e6:84:7c:35:7d:96:51:66:4c:8b:25:29:a0:a0: e2:e2:d8:69:ef:c5:f4:7f:22:b8:21:3b:cb:1a:05:a2:7b:71: 7d:b2:f2:d2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeyZxpwupOlkH2j4pGsyUN7wN+dgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2ExZmQ4MzZiZWYwOWI1ZWEwOTEwMmJmMmM2YjgwZDc0 YzQ2MDg1YzU5MTcyYTE5OGNlYTk2MzBiYzExMzBjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkkvNxTmNVD//vUPPFtCs46yMVIVp5Eo8xyFgjUdVIK6ui OVtSsUefWodiIY201B1F/LFR/xVK5OiOi5QLvMHdQOpQ0Pp3erwXFC8NcxrYfryh g1PMsP49Kv/MIrjnNJAPoA0WMWk9691BzSOdOpZgnNroTwFnXsChYVb726Ywwhux 6pdFu2SgWFtmCiqiNs/4ZQoyK7/sQu86pnf1YoddeWyx0Uzfr59xz1NjSPfF048R NmT/XmjgenEnfzp6wke/uOQ3N2A30reVX9oi1CDkftZHdCuXGjjkoxD7M0c/7wMg GOS/Z/MUyCXwQyWxssXLaSx7EOUy7Kg+MyJ5DdWtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPaWbKFdwdQ4T1F9Gw96rzMsUpHQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNlNjYwNjVjLTgwM2ItNGIxNi05OThmLWMyMmE0NTE1NTBjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVSowDQYJKoZIhvcNAQELBQADggEBAGACYdoaiQ7QkRgnPvsDx+qr 4p+VPxA2doMgxxpGLuCDXERoVtlHJ8sdY5dW10fUyhbqnORgcLmcjzBwg/Hg2vP3 u9qyN7zzgxn6hW4JQ7XoTrM8diSJmMgN8HZdaTB895RdxJT7iMMRClelivdkdFzU ea2v9UQqbAp6oRb8L7wILpf6CC7WvrNU9Njl54hWvQJUkcFDLlL6pqd5b9upoXtf 6is6ytNDFjipYRDSHXD53X3HM3nWPLE8kLSjyt81XRQUtRzpPOXf1nILl7BFC3CA 48jHyGTk0uDthVnmhHw1fZZRZkyLJSmgoOLi2GnvxfR/IrghO8saBaJ7cX2y8tI= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org