$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa File: 5443f26e-949a-460a-b187-e26290bfcf24.roa (raw, json) Hash identifier: WGJ1MKicwD2jXYBpslKgK9DzmaUzF/S3ckuRBPRFb/k= Subject key identifier: 8B:50:77:96:10:01:5E:39:1E:A8:6E:76:80:0F:00:C7:0A:3F:40:6A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7E5AF87E0ADDAF42F48AA65B3F88ACE1624F5F96 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:5a:f8:7e:0a:dd:af:42:f4:8a:a6:5b:3f:88:ac:e1:62:4f:5f:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=870a7fb003663edb69a8c55f2b14764dfbf7d875ff2da7b1adf8c8c26fbc038a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c8:6d:a4:c0:a3:6c:df:00:32:e3:7b:d5:59: f0:f0:14:89:94:61:96:0d:5a:68:7c:c6:d3:bd:c2: 84:47:10:0e:47:3a:a3:44:ed:2c:0c:cd:cb:3c:42: 26:15:d0:75:67:f7:f8:44:0d:01:bd:05:58:8e:22: 0b:89:a2:eb:7d:7a:e1:4a:9f:3d:14:a1:c6:0c:0f: bb:65:7e:ff:74:05:c4:b2:46:bd:6f:ef:0a:25:79: 46:f6:6a:4e:90:6f:a5:20:5d:67:ed:60:42:72:24: ed:13:74:d2:ec:46:26:66:b8:31:50:5b:ab:dc:1c: aa:89:69:7d:c1:82:0a:9f:23:03:87:17:82:d0:83: a9:f9:e4:2f:1a:f3:34:49:c8:72:42:8d:0e:d5:ee: 7a:d6:2e:54:49:dc:96:67:dc:fb:0e:c7:dc:34:4c: 3a:7f:6e:4a:f6:64:8f:4f:01:62:15:b0:f2:e9:4e: 39:8c:f4:72:ef:52:da:ed:32:30:2e:1d:ad:dc:b1: 58:76:4a:58:4e:de:8d:5b:c9:43:7c:95:68:08:ad: 80:f5:41:f4:07:46:91:a4:93:02:b5:f2:af:a6:ee: a1:14:23:95:42:3c:ae:af:c1:d7:69:ea:51:1e:de: 50:a2:c1:29:51:5b:64:6d:d2:c7:c9:5d:39:3f:7e: a6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:50:77:96:10:01:5E:39:1E:A8:6E:76:80:0F:00:C7:0A:3F:40:6A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4000::/44 Signature Algorithm: sha256WithRSAEncryption 65:f3:38:43:54:74:bc:95:4e:d6:a8:ee:85:99:f6:14:cc:8a: 3a:a6:3a:8e:9e:59:bd:85:61:f1:68:c3:36:70:3e:64:11:08: be:bb:2d:e7:ef:6c:ca:97:b4:2d:2f:b7:9e:40:8a:c3:aa:34: e2:be:4c:70:c7:73:69:8c:5c:98:c7:f0:cf:a4:ba:cf:52:92: 82:22:8f:1b:f8:fa:49:6b:44:ef:f5:ec:b8:ea:11:99:f5:c5: be:af:c8:45:73:f7:8c:0f:29:b4:8b:1e:9b:07:11:d1:a4:16: 4b:48:fa:b0:c6:b1:a9:e6:9a:7c:e2:0f:f6:47:f5:f5:47:16: 24:d9:f8:9d:bb:c5:23:5e:2b:8c:db:f3:e8:6a:d1:83:e4:50: ae:fc:38:6e:ba:ee:1c:4d:f3:49:36:30:74:8c:5b:a9:a5:c7: 29:ce:ee:99:2c:e6:30:cd:d2:4c:29:5e:09:b9:b2:58:bb:41: c7:e2:7d:b5:6f:0d:3a:40:ea:54:c6:64:5b:8d:dc:7e:38:17: 7b:2b:d5:0e:3e:56:34:da:82:07:0b:fc:1b:26:90:72:aa:ae: 82:c0:13:fc:1c:6b:b9:08:76:fc:a5:3c:d2:6b:8e:6d:87:8b: a1:f5:6f:64:68:77:f3:25:24:3f:8b:2a:05:b1:69:4d:34:30: cb:fa:05:08 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUflr4fgrdr0L0iqZbP4is4WJPX5YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzBhN2ZiMDAzNjYzZWRiNjlhOGM1NWYyYjE0NzY0ZGZi ZjdkODc1ZmYyZGE3YjFhZGY4YzhjMjZmYmMwMzhhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkyG2kwKNs3wAy43vVWfDwFImUYZYNWmh8xtO9woRHEA5H OqNE7SwMzcs8QiYV0HVn9/hEDQG9BViOIguJout9euFKnz0UocYMD7tlfv90BcSy Rr1v7woleUb2ak6Qb6UgXWftYEJyJO0TdNLsRiZmuDFQW6vcHKqJaX3BggqfIwOH F4LQg6n55C8a8zRJyHJCjQ7V7nrWLlRJ3JZn3PsOx9w0TDp/bkr2ZI9PAWIVsPLp TjmM9HLvUtrtMjAuHa3csVh2SlhO3o1byUN8lWgIrYD1QfQHRpGkkwK18q+m7qEU I5VCPK6vwddp6lEe3lCiwSlRW2Rt0sfJXTk/fqYfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUi1B3lhABXjkeqG52gA8Axwo/QGowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NDNmMjZlLTk0OWEtNDYwYS1iMTg3LWUyNjI5MGJmY2YyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwQAAwDQYJKoZIhvcNAQELBQADggEBAGXzOENUdLyVTtao7oWZ9hTM ijqmOo6eWb2FYfFowzZwPmQRCL67LefvbMqXtC0vt55AisOqNOK+THDHc2mMXJjH 8M+kus9SkoIijxv4+klrRO/17LjqEZn1xb6vyEVz94wPKbSLHpsHEdGkFktI+rDG sanmmnziD/ZH9fVHFiTZ+J27xSNeK4zb8+hq0YPkUK78OG667hxN80k2MHSMW6ml xynO7pks5jDN0kwpXgm5sli7QcfifbVvDTpA6lTGZFuN3H44F3sr1Q4+VjTaggcL /BsmkHKqroLAE/wca7kIdvylPNJrjm2Hi6H1b2Rod/MlJD+LKgWxaU00MMv6BQg= -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:47 2024 by rpki-client on console-fra.rpki-client.org