$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5cc1388b-8bfd-4999-b677-56c7781ef530.roa File: 5cc1388b-8bfd-4999-b677-56c7781ef530.roa (raw, json) Hash identifier: pSq1ZOna89qZHyhrvSIkwM2Uv9YR3T88/5GDYatxSY0= Subject key identifier: 0C:47:A8:17:B0:FD:51:76:76:6C:82:EC:FE:0C:5F:1F:C7:D5:FD:3E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1BB56D1F11C12E0BB64E142872AF1FDC08C3658B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5cc1388b-8bfd-4999-b677-56c7781ef530.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:87::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:b5:6d:1f:11:c1:2e:0b:b6:4e:14:28:72:af:1f:dc:08:c3:65:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=0842aec32397200022365d92ba9578cf4c2b4ee799ee757919fa4e865388d304, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d8:cb:82:fb:3f:70:ad:ec:19:f5:b8:99:c7: 2c:6e:d3:6b:2f:9a:86:48:8c:08:06:89:38:3b:7e: e4:d0:a1:cf:66:3b:f1:3d:96:4b:1e:62:92:43:ac: 4d:ee:0a:a8:73:c0:7f:3b:1f:5c:6c:22:e7:d7:01: c6:28:40:03:50:72:6b:2f:61:1f:5b:ae:4f:c1:fa: ec:92:a1:ba:3a:5c:d6:63:d7:c1:92:8f:12:73:6d: 8a:43:db:f6:64:53:b1:40:e6:52:e2:fc:4a:3b:bf: 29:30:7e:74:7f:41:ba:7a:2b:29:d3:24:a2:96:38: 2d:97:75:95:08:0a:cf:f7:47:23:f9:ad:7d:4e:70: ef:af:89:67:10:69:34:ac:40:c8:5d:99:32:61:65: fd:4c:3d:d5:84:eb:ce:37:a7:fd:f5:2c:4f:6b:4a: c5:de:64:77:a3:b8:b9:76:23:a5:ba:51:66:c0:12: 66:63:5d:0b:2e:3b:99:4c:28:27:49:8d:42:43:00: 2c:7c:9f:5a:14:c8:a1:64:59:03:2c:19:65:1c:16: d9:69:07:9e:0b:d8:6f:a7:a0:52:34:09:bd:20:f2: f9:d7:88:91:97:7e:f4:c6:48:ba:0e:14:54:64:4d: 18:b6:68:a9:e5:a4:4d:96:9a:59:e3:a1:a7:3e:2d: 61:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:47:A8:17:B0:FD:51:76:76:6C:82:EC:FE:0C:5F:1F:C7:D5:FD:3E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5cc1388b-8bfd-4999-b677-56c7781ef530.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:87::/48 Signature Algorithm: sha256WithRSAEncryption 0c:13:b1:0e:3e:7a:35:7c:d3:f9:fd:15:09:9a:c9:d4:42:5a: 0f:39:38:fe:45:b1:e1:4a:07:93:f1:23:40:e2:94:5c:4b:78: 6a:de:25:96:bb:ea:86:ac:ea:8d:3e:90:06:44:e5:f3:3c:c1: e3:1d:9d:a9:53:62:a7:de:d8:ae:15:a8:cf:ca:32:0c:01:68: c4:f9:d3:97:67:05:99:d0:26:c1:1a:f1:0d:ff:dd:0b:ab:c8: 3b:3d:66:28:95:ab:fe:24:fb:2d:fc:b2:9e:92:5e:dd:74:1d: bf:17:19:22:8c:99:f6:de:cc:c6:9c:b8:35:d3:2b:1d:ec:7c: 4c:ce:d5:51:b3:d6:8d:18:6e:9f:76:30:85:fd:56:23:4d:e1: 2a:25:ce:7c:68:28:01:54:26:14:c2:de:63:c6:d3:ac:19:5e: 15:c5:fd:34:8a:cd:d8:ee:87:c5:12:78:e7:1a:65:0f:4e:47: a9:e5:f1:23:31:0e:89:6e:4d:46:5b:77:d9:ee:3d:9e:97:c1: 8f:08:ef:01:79:71:e8:43:7c:eb:b4:71:8a:03:81:34:bc:be: 95:69:14:65:8e:59:65:85:4f:49:cb:0d:ce:bf:59:81:66:9a: c4:31:c6:08:fd:f7:bf:ea:67:f8:5c:ca:ff:5d:15:a9:e2:f9: 02:ed:b4:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG7VtHxHBLgu2ThQocq8f3AjDZYswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwODQyYWVjMzIzOTcyMDAwMjIzNjVkOTJiYTk1NzhjZjRj MmI0ZWU3OTllZTc1NzkxOWZhNGU4NjUzODhkMzA0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP2MuC+z9wrewZ9biZxyxu02svmoZIjAgGiTg7fuTQoc9m O/E9lkseYpJDrE3uCqhzwH87H1xsIufXAcYoQANQcmsvYR9brk/B+uySobo6XNZj 18GSjxJzbYpD2/ZkU7FA5lLi/Eo7vykwfnR/Qbp6KynTJKKWOC2XdZUICs/3RyP5 rX1OcO+viWcQaTSsQMhdmTJhZf1MPdWE6843p/31LE9rSsXeZHejuLl2I6W6UWbA EmZjXQsuO5lMKCdJjUJDACx8n1oUyKFkWQMsGWUcFtlpB54L2G+noFI0Cb0g8vnX iJGXfvTGSLoOFFRkTRi2aKnlpE2Wmlnjoac+LWHTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDEeoF7D9UXZ2bILs/gxfH8fV/T4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVjYzEzODhiLThiZmQtNDk5OS1iNjc3LTU2Yzc3ODFlZjUzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIcwDQYJKoZIhvcNAQELBQADggEBAAwTsQ4+ejV80/n9FQmaydRC Wg85OP5FseFKB5PxI0DilFxLeGreJZa76oas6o0+kAZE5fM8weMdnalTYqfe2K4V qM/KMgwBaMT505dnBZnQJsEa8Q3/3QuryDs9ZiiVq/4k+y38sp6SXt10Hb8XGSKM mfbezMacuDXTKx3sfEzO1VGz1o0Ybp92MIX9ViNN4SolznxoKAFUJhTC3mPG06wZ XhXF/TSKzdjuh8USeOcaZQ9OR6nl8SMxDoluTUZbd9nuPZ6XwY8I7wF5cehDfOu0 cYoDgTS8vpVpFGWOWWWFT0nLDc6/WYFmmsQxxgj997/qZ/hcyv9dFani+QLttAU= -----END CERTIFICATE-----Generated at Thu May 2 00:52:16 2024 by rpki-client on console-ams.rpki-client.org