$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa File: 5443f26e-949a-460a-b187-e26290bfcf24.roa (raw, json) Hash identifier: zxkie1Kt2ct14//yu/Xc7CKhQ9qaIt+qHzP3d34TxjM= Subject key identifier: 4F:35:B0:2B:03:74:57:D3:D4:C4:E1:83:87:FA:B9:0C:AD:08:C3:81 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 05A9DC05547891FB21C21E28651515FD4E2B355A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a9:dc:05:54:78:91:fb:21:c2:1e:28:65:15:15:fd:4e:2b:35:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=a76ce3be4eac015a335d22b49f6d7efb570e75e074086d2674563f4ad705bdf3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:19:af:fe:dc:85:54:14:99:61:9a:09:11:01: f4:4a:3a:11:2e:d1:dd:88:9a:15:d7:7e:30:a6:15: 5f:11:a0:dc:70:7b:1f:f2:01:85:40:ee:5e:e5:dc: dc:90:7d:82:19:62:63:51:9e:13:50:3f:b3:2a:b6: c1:4d:07:72:8c:c9:5c:30:fe:d2:1d:48:2f:6b:9c: 73:89:09:1f:eb:e2:d4:66:57:19:bf:24:01:74:31: 01:8c:22:4f:1b:19:cc:39:30:63:31:d7:4e:11:aa: 06:8c:79:2f:ed:43:a1:87:66:04:4b:29:c5:2b:c1: f9:b3:f7:8f:55:49:e1:e3:17:6d:6e:ed:98:a2:e5: 64:7b:41:ef:85:88:24:f9:f2:bd:8b:e1:ca:50:97: 39:1a:93:34:25:3c:a2:dd:4a:d8:ac:54:52:4c:e2: 31:42:31:46:f9:9d:68:4c:64:d2:a2:9e:12:92:d5: 9a:b9:24:aa:54:5d:f4:c2:92:48:20:76:b2:4c:c3: f0:29:32:85:15:aa:d7:99:81:58:ac:27:63:04:79: d8:7a:73:d3:b4:98:9e:b3:05:98:07:6b:53:56:4a: be:40:1c:34:6f:ab:61:90:3a:66:fa:16:0f:74:b0: da:56:36:84:fc:8c:1f:28:61:21:d0:35:aa:9a:bb: 0c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:35:B0:2B:03:74:57:D3:D4:C4:E1:83:87:FA:B9:0C:AD:08:C3:81 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4000::/44 Signature Algorithm: sha256WithRSAEncryption 5b:fc:26:fc:7b:af:93:4f:41:6d:0d:ef:a0:db:3e:30:6f:10: c8:51:2f:40:db:1d:59:e8:5a:b2:a8:81:6c:47:65:94:22:88: bc:b2:1f:45:ad:12:12:a1:b8:ae:f6:d4:c8:77:64:d7:cb:4b: 32:f0:9b:93:23:7c:49:ea:28:b5:78:95:da:d7:24:fd:98:d1: b5:b6:a2:c7:d2:56:97:17:ed:88:e8:a9:a2:ff:ec:21:02:03: 52:4d:27:78:97:77:e4:a2:4f:b7:47:81:df:c7:2a:3d:e4:c0: d1:8f:c4:9f:06:01:66:02:59:aa:c7:b4:7e:10:b4:0d:cd:97: a6:cb:7c:dd:90:b3:b6:1f:49:37:f1:d1:4e:3d:12:a6:18:c8: a3:c4:4d:1b:30:81:fd:2e:4e:c3:9d:48:6b:7c:57:ff:91:3c: 89:29:45:2b:1a:36:d7:8c:b0:99:e0:54:81:1f:58:19:98:88: 46:17:11:9a:de:ec:fa:d1:76:9c:86:9e:bf:75:49:2c:37:40: 4c:58:23:7a:3e:b4:46:42:cf:44:24:f7:13:e5:a8:ac:77:78: 34:ab:97:24:ed:8c:00:c7:7e:5f:5a:e5:20:a4:4b:7d:1f:7a: 48:13:e7:99:af:6c:d8:5c:c5:83:58:73:07:44:ee:f1:5a:db: d5:6e:cc:86 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBancBVR4kfshwh4oZRUV/U4rNVowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzZjZTNiZTRlYWMwMTVhMzM1ZDIyYjQ5ZjZkN2VmYjU3 MGU3NWUwNzQwODZkMjY3NDU2M2Y0YWQ3MDViZGYzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpGa/+3IVUFJlhmgkRAfRKOhEu0d2ImhXXfjCmFV8RoNxw ex/yAYVA7l7l3NyQfYIZYmNRnhNQP7MqtsFNB3KMyVww/tIdSC9rnHOJCR/r4tRm Vxm/JAF0MQGMIk8bGcw5MGMx104RqgaMeS/tQ6GHZgRLKcUrwfmz949VSeHjF21u 7Zii5WR7Qe+FiCT58r2L4cpQlzkakzQlPKLdStisVFJM4jFCMUb5nWhMZNKinhKS 1Zq5JKpUXfTCkkggdrJMw/ApMoUVqteZgVisJ2MEedh6c9O0mJ6zBZgHa1NWSr5A HDRvq2GQOmb6Fg90sNpWNoT8jB8oYSHQNaqauwwnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTzWwKwN0V9PUxOGDh/q5DK0Iw4EwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NDNmMjZlLTk0OWEtNDYwYS1iMTg3LWUyNjI5MGJmY2YyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwQAAwDQYJKoZIhvcNAQELBQADggEBAFv8Jvx7r5NPQW0N76DbPjBv EMhRL0DbHVnoWrKogWxHZZQiiLyyH0WtEhKhuK721Mh3ZNfLSzLwm5MjfEnqKLV4 ldrXJP2Y0bW2osfSVpcX7YjoqaL/7CECA1JNJ3iXd+SiT7dHgd/HKj3kwNGPxJ8G AWYCWarHtH4QtA3Nl6bLfN2Qs7YfSTfx0U49EqYYyKPETRswgf0uTsOdSGt8V/+R PIkpRSsaNteMsJngVIEfWBmYiEYXEZre7PrRdpyGnr91SSw3QExYI3o+tEZCz0Qk 9xPlqKx3eDSrlyTtjADHfl9a5SCkS30fekgT55mvbNhcxYNYcwdE7vFa29VuzIY= -----END CERTIFICATE-----Generated at Wed Apr 24 18:34:43 2024 by rpki-client on console-ams.rpki-client.org