$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4634d2fa-4169-42c0-a7d7-63b635776dcc.roa File: 4634d2fa-4169-42c0-a7d7-63b635776dcc.roa (raw, json) Hash identifier: bbBHotLjApLEDpxPw0MlBPa1d9DHqGJYSrWDjuzlmrc= Subject key identifier: 4D:37:93:66:57:3F:3C:74:F6:27:2C:6D:0A:4E:DD:2B:21:93:A6:45 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6C670879E0077B837780BEA0909206707137260B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4634d2fa-4169-42c0-a7d7-63b635776dcc.roa Signing time: Thu 14 Nov 2024 00:00:00 +0000 ROA not before: Thu 14 Nov 2024 00:00:00 +0000 ROA not after: Thu 19 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:67:08:79:e0:07:7b:83:77:80:be:a0:90:92:06:70:71:37:26:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 14 00:00:00 2024 GMT Not After : Dec 19 23:59:59 2024 GMT Subject: serialNumber=8b2e7d6ad2bb6d98a0513e0446a008df7d35926eae92b8e976ff39ecba80ca2c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:db:0e:27:3a:ab:4a:ec:7e:79:80:29:7f:68: 24:25:d3:82:b8:32:ec:86:c7:d3:7d:2a:19:5c:da: 86:00:a9:bf:1f:e4:b7:5d:37:3d:2b:4b:5d:ad:4e: 75:20:de:01:ac:86:66:57:c3:bf:fe:00:eb:36:c5: 16:51:76:1a:17:d1:1f:97:09:af:7d:1d:6f:07:39: 30:c9:1d:08:cd:4b:ab:99:ea:ff:65:a4:eb:f4:35: a5:cf:fc:07:ed:3f:5b:e6:0d:4d:bd:84:91:b9:ac: 32:59:6a:72:e4:e5:81:2f:90:01:8c:05:ea:d2:85: b3:22:85:92:12:27:5d:67:77:13:65:fe:6b:7b:1a: f1:b6:64:34:f4:ad:6c:b7:4a:49:84:3d:c6:fb:1b: e4:01:57:2d:7a:48:78:83:36:7d:ac:cd:12:62:6a: 2e:95:3d:7a:0a:4b:c8:08:08:40:18:0e:63:f2:1f: 6d:84:6b:68:9d:0c:1f:ea:10:f6:51:ef:70:b5:e7: 67:f5:c5:6e:73:a7:36:ad:22:7d:37:a7:c8:b4:89: ca:85:ba:6a:63:aa:79:54:b9:a5:a3:02:61:c5:82: f4:09:f5:a9:60:4b:6a:81:98:23:17:ac:78:88:68: 84:41:fb:f0:96:43:03:fc:51:5b:f0:0a:08:96:53: bb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:37:93:66:57:3F:3C:74:F6:27:2C:6D:0A:4E:DD:2B:21:93:A6:45 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4634d2fa-4169-42c0-a7d7-63b635776dcc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/40 Signature Algorithm: sha256WithRSAEncryption 04:d9:66:3a:cb:f4:02:f0:72:17:9f:5f:3a:8f:6f:02:74:fd: 71:7f:7a:c3:99:0d:40:a1:81:27:18:db:1a:36:5b:0e:0e:e5: 50:2b:40:61:87:64:fd:c7:0b:e6:6c:58:87:6f:98:65:8f:e2: 9c:2a:57:db:26:ff:0f:6c:9a:40:cd:1e:63:fd:a0:c5:3b:40: 88:ab:42:2c:a6:65:4e:ae:67:48:31:e5:d2:dc:13:aa:03:6b: 6a:10:59:a8:07:cc:3f:19:ed:63:af:d0:04:9d:d9:fa:d0:d7: e5:16:e7:a7:39:1d:6c:b6:a1:cb:7b:3d:0f:92:48:75:72:ba: ac:03:21:e7:0e:e6:ea:4f:c2:10:83:12:c0:9c:11:38:2b:60: 9b:73:9d:f8:93:bd:b0:b1:7a:f2:f9:08:dd:b2:08:c5:51:a0: 2e:4c:33:ef:c9:f8:24:34:f6:30:ab:a3:86:8b:c5:f8:5f:95: a9:e2:78:97:32:88:74:54:70:17:9e:ba:12:8a:af:51:93:c1: 6e:07:3e:ca:75:44:78:b5:fb:cc:88:0d:39:eb:91:07:00:52: c5:80:4d:69:69:19:c3:0d:d0:15:fd:8e:20:fa:fe:72:75:03: 51:8c:8c:ae:90:16:b6:4f:b8:f5:d9:f4:af:28:8c:eb:94:ea: e2:b1:1c:c1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbGcIeeAHe4N3gL6gkJIGcHE3JgswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE0MDAwMDAwWhcNMjQxMjE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjJlN2Q2YWQyYmI2ZDk4YTA1MTNlMDQ0NmEwMDhkZjdk MzU5MjZlYWU5MmI4ZTk3NmZmMzllY2JhODBjYTJjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD52w4nOqtK7H55gCl/aCQl04K4MuyGx9N9Khlc2oYAqb8f 5LddNz0rS12tTnUg3gGshmZXw7/+AOs2xRZRdhoX0R+XCa99HW8HOTDJHQjNS6uZ 6v9lpOv0NaXP/AftP1vmDU29hJG5rDJZanLk5YEvkAGMBerShbMihZISJ11ndxNl /mt7GvG2ZDT0rWy3SkmEPcb7G+QBVy16SHiDNn2szRJiai6VPXoKS8gICEAYDmPy H22Ea2idDB/qEPZR73C152f1xW5zpzatIn03p8i0icqFumpjqnlUuaWjAmHFgvQJ 9algS2qBmCMXrHiIaIRB+/CWQwP8UVvwCgiWU7tFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUTTeTZlc/PHT2JyxtCk7dKyGTpkUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ2MzRkMmZhLTQxNjktNDJjMC1hN2Q3LTYzYjYzNTc3NmRjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75TANBgkqhkiG9w0BAQsFAAOCAQEABNlmOsv0AvByF59fOo9vAnT9 cX96w5kNQKGBJxjbGjZbDg7lUCtAYYdk/ccL5mxYh2+YZY/inCpX2yb/D2yaQM0e Y/2gxTtAiKtCLKZlTq5nSDHl0twTqgNrahBZqAfMPxntY6/QBJ3Z+tDX5Rbnpzkd bLahy3s9D5JIdXK6rAMh5w7m6k/CEIMSwJwROCtgm3Od+JO9sLF68vkI3bIIxVGg Lkwz78n4JDT2MKujhovF+F+VqeJ4lzKIdFRwF566EoqvUZPBbgc+ynVEeLX7zIgN OeuRBwBSxYBNaWkZww3QFf2OIPr+cnUDUYyMrpAWtk+49dn0ryiM65Tq4rEcwQ== -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org