$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/425263d2-1443-4c26-b2e0-0cad299e4931.roa File: 425263d2-1443-4c26-b2e0-0cad299e4931.roa (raw, json) Hash identifier: TMN6nFpXUOxB1pjE6OEWlC0ZRRR6O3kg63CaEBWAjF0= Subject key identifier: 7F:48:26:FE:D3:6A:46:62:7B:F5:BA:8A:AB:ED:4A:C3:F9:87:E3:DF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 229A1F192FB0D3E275B3CB4FAD3BCB7FB90C8CE5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/425263d2-1443-4c26-b2e0-0cad299e4931.roa Signing time: Tue 30 Apr 2024 00:00:00 +0000 ROA not before: Tue 30 Apr 2024 00:00:00 +0000 ROA not after: Tue 04 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:730::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:9a:1f:19:2f:b0:d3:e2:75:b3:cb:4f:ad:3b:cb:7f:b9:0c:8c:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 30 00:00:00 2024 GMT Not After : Jun 4 23:59:59 2024 GMT Subject: serialNumber=6b5366d8ff8c4fb5a16232f6613db6bc89514ecb29485c5a3c0c17c26ce59aa4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e7:e4:ac:1e:c6:ed:a1:84:38:7a:41:77:99: f9:ff:fd:d5:c8:45:bc:a9:04:6c:4e:4d:6f:1e:25: 9a:c3:db:0a:0b:90:de:51:21:e5:eb:d2:7b:98:44: 67:a9:df:9d:0c:0e:7b:cf:c4:ff:c0:43:cb:e3:1c: ff:07:29:1a:e4:65:38:6b:30:cd:75:dd:34:93:b3: 29:ff:c0:64:25:89:ac:8e:c2:37:70:23:c4:f5:5f: 59:d3:5b:0e:2f:82:05:dd:5e:8c:2d:14:08:a4:5f: 2b:5a:fe:53:ce:c5:f4:8f:c6:89:88:a7:9c:04:fe: ba:39:f2:e1:42:10:3d:55:bb:d0:eb:92:a1:57:d8: 63:4c:e0:af:8d:5c:69:70:e0:b6:84:dd:2a:20:0f: 0b:4c:64:94:3a:11:f5:7e:fd:61:62:aa:9f:ec:13: 94:af:87:3a:59:84:2c:f3:a1:85:4c:35:0f:be:78: de:4b:f1:87:aa:ce:42:50:8b:7c:72:c1:31:96:c4: 32:39:3b:64:46:9b:00:7a:e9:ea:b3:b2:f7:dc:d4: af:96:27:2d:8c:bb:f4:ce:30:bd:35:8b:4e:1a:74: e3:12:33:33:67:7d:a2:6b:6b:93:a9:92:27:f4:07: cf:01:a7:3b:fa:8e:c0:6b:33:9e:14:27:08:ff:a2: a6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:48:26:FE:D3:6A:46:62:7B:F5:BA:8A:AB:ED:4A:C3:F9:87:E3:DF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/425263d2-1443-4c26-b2e0-0cad299e4931.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:730::/48 Signature Algorithm: sha256WithRSAEncryption 6d:8d:ae:5b:34:51:48:60:c3:79:6b:ff:d5:d6:5d:25:68:c4: 2e:5c:8e:23:3c:c9:b6:7d:e3:5d:1b:e5:56:e1:87:8a:23:81: 06:49:51:4e:3a:e5:42:e7:11:b4:fc:31:9c:18:89:4d:9f:f3: 5c:03:17:63:f3:b4:b6:f6:22:17:6d:fa:53:e1:ff:a2:7f:d7: f5:16:76:22:44:4f:c2:c2:3a:86:d6:c1:9e:ed:38:d3:99:43: dd:e3:5d:5b:bf:5c:9e:3d:41:94:87:a2:4e:f8:a4:df:58:6c: 88:23:c9:c5:36:d4:5d:0b:d8:fa:44:a6:27:82:fc:c2:3e:34: 40:a2:3c:23:7e:be:ca:80:3c:c3:48:ff:b2:f2:cc:b4:29:01: 18:bc:f7:f8:d0:49:fc:93:70:ec:ee:1c:f5:69:1f:93:0f:47: e9:1b:8f:d3:da:37:e9:64:74:97:c6:42:91:9e:8d:77:fc:93: c5:31:f8:cb:88:b7:f8:ac:ec:60:02:73:a3:68:8f:00:6c:e4: 5d:83:05:96:17:63:1c:f7:c5:e6:e0:d2:42:cd:50:6e:3b:30: b2:b1:15:68:0b:ab:90:a5:95:06:f7:5c:6c:05:07:1f:a2:c1: b6:d5:56:e8:f1:fb:67:b6:c6:99:33:a3:c9:35:6f:6b:80:a1: e7:c8:01:03 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIpofGS+w0+J1s8tPrTvLf7kMjOUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDMwMDAwMDAwWhcNMjQwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjUzNjZkOGZmOGM0ZmI1YTE2MjMyZjY2MTNkYjZiYzg5 NTE0ZWNiMjk0ODVjNWEzYzBjMTdjMjZjZTU5YWE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV5+SsHsbtoYQ4ekF3mfn//dXIRbypBGxOTW8eJZrD2woL kN5RIeXr0nuYRGep350MDnvPxP/AQ8vjHP8HKRrkZThrMM113TSTsyn/wGQliayO wjdwI8T1X1nTWw4vggXdXowtFAikXyta/lPOxfSPxomIp5wE/ro58uFCED1Vu9Dr kqFX2GNM4K+NXGlw4LaE3SogDwtMZJQ6EfV+/WFiqp/sE5SvhzpZhCzzoYVMNQ++ eN5L8YeqzkJQi3xywTGWxDI5O2RGmwB66eqzsvfc1K+WJy2Mu/TOML01i04adOMS MzNnfaJra5Opkif0B88Bpzv6jsBrM54UJwj/oqY9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUf0gm/tNqRmJ79bqKq+1Kw/mH498wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQyNTI2M2QyLTE0NDMtNGMyNi1iMmUwLTBjYWQyOTllNDkzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBzAwDQYJKoZIhvcNAQELBQADggEBAG2Nrls0UUhgw3lr/9XWXSVo xC5cjiM8ybZ9410b5Vbhh4ojgQZJUU465ULnEbT8MZwYiU2f81wDF2PztLb2Ihdt +lPh/6J/1/UWdiJET8LCOobWwZ7tONOZQ93jXVu/XJ49QZSHok74pN9YbIgjycU2 1F0L2PpEpieC/MI+NECiPCN+vsqAPMNI/7LyzLQpARi89/jQSfyTcOzuHPVpH5MP R+kbj9PaN+lkdJfGQpGejXf8k8Ux+MuIt/is7GACc6NojwBs5F2DBZYXYxz3xebg 0kLNUG47MLKxFWgLq5CllQb3XGwFBx+iwbbVVujx+2e2xpkzo8k1b2uAoefIAQM= -----END CERTIFICATE-----Generated at Thu May 2 01:05:46 2024 by rpki-client on console-fra.rpki-client.org