$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/500a3cf1-3f40-4339-812a-4cafda9ec993.roa File: 500a3cf1-3f40-4339-812a-4cafda9ec993.roa (raw, json) Hash identifier: DyIcRGkATfZ78jBKBUJ75j/TWsjGFQ4mtfHNU2w0D+w= Subject key identifier: 2D:24:1C:FE:A5:78:CA:A6:EF:6A:B1:E1:03:F2:28:97:42:D7:62:C2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 24A6D3E70AC1001AC6A52FC55194869E708C9885 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/500a3cf1-3f40-4339-812a-4cafda9ec993.roa Signing time: Sat 16 Nov 2024 00:00:00 +0000 ROA not before: Sat 16 Nov 2024 00:00:00 +0000 ROA not after: Sat 21 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5539::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:a6:d3:e7:0a:c1:00:1a:c6:a5:2f:c5:51:94:86:9e:70:8c:98:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 16 00:00:00 2024 GMT Not After : Dec 21 23:59:59 2024 GMT Subject: serialNumber=934b5ed6f4a97759999e5ec03b85547f0d6fd754c5e08114605bc34d453d0f9b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:42:23:3c:dd:ca:f7:5f:ab:b0:b9:25:33:1b: 89:f2:e2:71:ca:c2:ec:db:da:23:7e:cf:bd:ab:a5: 80:7b:6d:d7:d2:7a:11:97:c7:cc:4c:3c:1b:ff:82: b5:4c:b2:81:b0:3e:8f:56:7f:00:d5:77:af:4f:12: a6:5f:de:be:db:32:9a:6a:ac:40:25:95:f9:c0:f2: 06:ff:39:f0:8b:15:c1:05:73:a9:20:cc:c3:fe:64: ef:31:36:68:0f:b4:39:2f:f2:da:5f:ba:35:a0:46: c7:a1:70:0f:6b:40:53:f2:3d:05:2f:1e:d3:6f:8e: 8b:4d:bc:e6:2e:a1:ae:e1:b1:c3:e6:e8:69:c6:dc: f0:56:94:60:8d:2c:5b:73:cc:41:65:b6:b6:5d:c5: 57:8a:22:27:d3:16:f8:9d:62:68:cd:d3:87:60:d4: 7c:4f:3a:7c:4f:14:ac:c4:84:a4:32:c8:d8:8c:0c: 78:f1:df:44:88:3a:56:dd:7d:54:db:0f:a4:95:14: 5a:25:ed:63:8c:98:ff:80:7a:39:5d:0c:2f:c1:8c: ae:c3:05:ad:ad:9f:95:4a:48:fe:90:af:69:43:03: f5:22:b1:a9:26:f4:c5:c3:b6:f9:9e:3d:16:ef:59: c8:69:22:8f:df:47:cc:7e:01:23:d0:65:1d:42:98: 27:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:24:1C:FE:A5:78:CA:A6:EF:6A:B1:E1:03:F2:28:97:42:D7:62:C2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/500a3cf1-3f40-4339-812a-4cafda9ec993.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5539::/48 Signature Algorithm: sha256WithRSAEncryption 12:32:84:6b:d9:72:83:fb:63:e2:a8:88:b4:0b:22:3b:30:89: 89:6b:2c:0a:fc:c6:49:ff:77:b8:1c:08:97:d2:74:09:60:26: 1b:15:35:30:a1:57:f3:5f:24:42:a5:66:d6:83:8b:86:4d:ee: 46:ac:5e:f0:ab:00:27:4e:26:99:07:fd:0f:c7:a5:c0:c9:af: b4:62:ad:db:f8:cc:a0:ed:de:66:7d:e2:cd:d2:fb:43:bb:48: b3:a5:6e:6c:06:e4:5f:74:de:9a:83:e9:e5:78:c7:59:46:d6: 7e:66:49:54:16:e1:da:e5:40:54:10:f1:f9:9c:d4:3c:9d:5b: d2:4f:40:82:bb:ea:8f:d4:b3:ea:d5:90:fe:75:f0:17:7c:7e: 95:8f:29:07:4c:eb:b8:31:09:55:d1:bb:71:de:c7:be:7f:92: 42:fb:ad:70:00:0d:07:05:84:d5:52:e9:f0:85:2b:76:d8:b6: 86:c6:f1:4e:c7:f5:fc:31:7f:a8:c7:e5:51:dc:b9:bd:53:aa: bb:a6:9b:02:ae:29:0a:ed:9e:e7:96:10:4f:3b:8b:49:c8:02: e0:c2:f4:86:04:d0:0d:9a:33:a7:a2:45:47:d2:83:c3:38:9a: 5a:ff:e6:f1:47:e5:1c:a2:64:75:85:48:41:2d:2c:b9:93:21: 00:49:9f:88 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJKbT5wrBABrGpS/FUZSGnnCMmIUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE2MDAwMDAwWhcNMjQxMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzRiNWVkNmY0YTk3NzU5OTk5ZTVlYzAzYjg1NTQ3ZjBk NmZkNzU0YzVlMDgxMTQ2MDViYzM0ZDQ1M2QwZjliMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCQiM83cr3X6uwuSUzG4ny4nHKwuzb2iN+z72rpYB7bdfS ehGXx8xMPBv/grVMsoGwPo9WfwDVd69PEqZf3r7bMppqrEAllfnA8gb/OfCLFcEF c6kgzMP+ZO8xNmgPtDkv8tpfujWgRsehcA9rQFPyPQUvHtNvjotNvOYuoa7hscPm 6GnG3PBWlGCNLFtzzEFltrZdxVeKIifTFvidYmjN04dg1HxPOnxPFKzEhKQyyNiM DHjx30SIOlbdfVTbD6SVFFol7WOMmP+AejldDC/BjK7DBa2tn5VKSP6Qr2lDA/Ui sakm9MXDtvmePRbvWchpIo/fR8x+ASPQZR1CmCcpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULSQc/qV4yqbvarHhA/Iol0LXYsIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUwMGEzY2YxLTNmNDAtNDMzOS04MTJhLTRjYWZkYTllYzk5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVTkwDQYJKoZIhvcNAQELBQADggEBABIyhGvZcoP7Y+KoiLQLIjsw iYlrLAr8xkn/d7gcCJfSdAlgJhsVNTChV/NfJEKlZtaDi4ZN7kasXvCrACdOJpkH /Q/HpcDJr7Rirdv4zKDt3mZ94s3S+0O7SLOlbmwG5F903pqD6eV4x1lG1n5mSVQW 4drlQFQQ8fmc1DydW9JPQIK76o/Us+rVkP518Bd8fpWPKQdM67gxCVXRu3Hex75/ kkL7rXAADQcFhNVS6fCFK3bYtobG8U7H9fwxf6jH5VHcub1TqrummwKuKQrtnueW EE87i0nIAuDC9IYE0A2aM6eiRUfSg8M4mlr/5vFH5RyiZHWFSEEtLLmTIQBJn4g= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org