$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa File: 5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa (raw, json) Hash identifier: Wwf5PaaQcJydxb5EqkphqUpPLwYLwf1ncMjHFlX44U8= Subject key identifier: 2D:63:BD:C5:15:57:BF:C5:85:6E:4C:CE:2E:54:1D:E5:B2:7E:3B:FC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1332057A157D8A3E17FEC943903C84DA17A8D535 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:32:05:7a:15:7d:8a:3e:17:fe:c9:43:90:3c:84:da:17:a8:d5:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=44940a48e27ff387f311da90c97afb8ff49e99321ff02aadc5d14cbaaaef43e3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0c:70:98:ab:73:db:95:2c:f1:6f:a3:ed:91: ac:9e:da:e3:7c:49:e0:60:67:ce:db:2b:5f:47:88: 53:f5:2d:29:13:1f:22:1f:16:63:a6:96:82:27:e5: b6:4a:21:97:a1:f2:85:c8:ae:94:da:8e:62:3b:ed: 76:21:b7:cb:e7:60:d1:ec:62:d1:bd:98:06:2d:46: e9:2d:5b:9a:03:10:45:2b:1e:24:6b:b7:fa:b0:fb: 9a:69:15:5e:44:7d:6a:24:10:06:a3:1e:50:b8:09: 6b:31:a1:c2:6f:e3:8c:41:fd:4d:b5:78:16:f2:d8: 66:15:96:2a:65:b2:ea:d5:9f:6e:40:2a:56:78:1b: fe:79:df:a1:17:7f:89:5e:2c:b0:42:e3:cd:5a:48: 51:9c:78:74:10:24:c1:7a:e1:3a:ce:d6:75:43:72: d3:9d:3e:82:79:a1:35:bf:f3:52:ab:e4:cc:ef:a0: 8c:d2:6b:86:19:da:36:95:1d:87:e7:36:47:8e:bd: 81:c6:33:ee:e7:a1:17:da:50:10:4e:18:a8:36:79: fd:b8:ec:eb:0e:25:77:2b:ea:1e:39:68:2a:99:5f: 58:83:30:fe:48:c7:81:03:d8:28:4d:97:96:2b:4a: c2:e5:08:5c:7e:57:16:5c:ae:f4:2f:60:38:1c:19: 31:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:63:BD:C5:15:57:BF:C5:85:6E:4C:CE:2E:54:1D:E5:B2:7E:3B:FC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5ae357e1-ef95-4f5f-a6c3-8ad4f4fa3014.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551a::/48 Signature Algorithm: sha256WithRSAEncryption 3a:7b:ad:72:73:93:11:42:8d:b3:0a:71:83:8d:d0:dc:ff:3b: 0a:41:27:94:9d:93:1a:dd:fb:21:55:2c:41:12:25:25:6e:79: d5:f5:3e:39:d3:9f:17:03:7f:ff:8b:f7:9d:0a:98:89:e9:c8: 6e:c7:13:68:c5:75:05:87:59:63:b6:1f:ed:32:c2:fc:44:95: d4:15:3d:c9:6a:23:5d:61:8a:06:76:e8:ca:62:d8:ef:49:55: 61:55:d9:33:83:53:53:b1:fe:62:44:29:43:e0:ef:f9:c0:fa: 5f:99:8e:16:a6:56:49:31:35:43:66:c4:18:d7:76:a7:dc:16: c8:34:06:fb:8e:0d:96:0b:88:c8:bf:ef:28:1e:22:bb:6d:d5: eb:a9:dc:00:6c:d6:6b:24:54:e2:d7:44:bb:6b:d7:d8:e8:31: 65:26:24:4d:db:de:1c:03:ac:34:a1:5a:4d:03:46:2a:57:1c: 4b:23:9f:91:ca:ff:4a:3b:f9:96:e8:d8:00:40:4b:8d:c5:52: db:d1:2e:38:dc:1a:a0:1c:20:1d:4c:f1:dc:24:be:4e:db:55: db:02:8b:65:95:0f:87:a9:f3:22:5d:9a:6f:e0:63:42:4c:ef: dd:5e:69:00:e0:32:3d:71:11:4a:1a:78:9b:16:28:92:d5:c5: 50:cd:eb:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEzIFehV9ij4X/slDkDyE2heo1TUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDk0MGE0OGUyN2ZmMzg3ZjMxMWRhOTBjOTdhZmI4ZmY0 OWU5OTMyMWZmMDJhYWRjNWQxNGNiYWFhZWY0M2UzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeDHCYq3PblSzxb6Ptkaye2uN8SeBgZ87bK19HiFP1LSkT HyIfFmOmloIn5bZKIZeh8oXIrpTajmI77XYht8vnYNHsYtG9mAYtRuktW5oDEEUr HiRrt/qw+5ppFV5EfWokEAajHlC4CWsxocJv44xB/U21eBby2GYVliplsurVn25A KlZ4G/5536EXf4leLLBC481aSFGceHQQJMF64TrO1nVDctOdPoJ5oTW/81Kr5Mzv oIzSa4YZ2jaVHYfnNkeOvYHGM+7noRfaUBBOGKg2ef247OsOJXcr6h45aCqZX1iD MP5Ix4ED2ChNl5YrSsLlCFx+VxZcrvQvYDgcGTFLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULWO9xRVXv8WFbkzOLlQd5bJ+O/wwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVhZTM1N2UxLWVmOTUtNGY1Zi1hNmMzLThhZDRmNGZhMzAxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRowDQYJKoZIhvcNAQELBQADggEBADp7rXJzkxFCjbMKcYON0Nz/ OwpBJ5Sdkxrd+yFVLEESJSVuedX1PjnTnxcDf/+L950KmInpyG7HE2jFdQWHWWO2 H+0ywvxEldQVPclqI11higZ26Mpi2O9JVWFV2TODU1Ox/mJEKUPg7/nA+l+Zjham VkkxNUNmxBjXdqfcFsg0BvuODZYLiMi/7ygeIrtt1eup3ABs1mskVOLXRLtr19jo MWUmJE3b3hwDrDShWk0DRipXHEsjn5HK/0o7+Zbo2ABAS43FUtvRLjjcGqAcIB1M 8dwkvk7bVdsCi2WVD4ep8yJdmm/gY0JM791eaQDgMj1xEUoaeJsWKJLVxVDN6+A= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org