$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/656de0c4-8d15-4b0a-bca4-a372c2430656.roa File: 656de0c4-8d15-4b0a-bca4-a372c2430656.roa (raw, json) Hash identifier: dSHg0pIWBXNpz0ceEVpp23vRKBHBRrraCxaPbYADqy4= Subject key identifier: 5C:7F:DA:23:41:8E:8A:5B:79:FD:BB:53:AB:3C:3B:82:8E:3B:23:2A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 22EA39EE4DA8F3FD6D521EDB974AC60F48CF4E99 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/656de0c4-8d15-4b0a-bca4-a372c2430656.roa Signing time: Mon 29 Apr 2024 00:00:00 +0000 ROA not before: Mon 29 Apr 2024 00:00:00 +0000 ROA not after: Mon 03 Jun 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ea:39:ee:4d:a8:f3:fd:6d:52:1e:db:97:4a:c6:0f:48:cf:4e:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 29 00:00:00 2024 GMT Not After : Jun 3 23:59:59 2024 GMT Subject: serialNumber=80be583d0b35bffd52eb004b676e12062c86d020fd4e814260c5213bbe731600, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bb:c7:3c:71:bc:df:72:f5:8a:2d:8d:d1:3a: 8e:87:74:f2:14:31:5c:11:36:5a:03:39:cd:1c:9f: cb:cc:a7:5e:30:3a:46:1a:60:c7:f3:e9:2f:1e:2f: b2:53:fb:04:f8:c1:5e:94:6e:83:4a:ef:d8:66:52: c3:02:8b:38:2a:4a:04:2a:41:0b:91:41:90:85:41: c2:99:32:c3:c8:de:8b:4c:a7:34:ef:2d:d5:a5:2f: 1e:c4:48:bd:47:69:d3:8b:e8:ee:8b:9a:bc:69:20: 1f:d2:48:b7:56:7c:fc:2c:c6:40:be:1a:01:4a:f0: de:58:b9:29:8d:2e:28:62:83:70:5a:b7:09:76:bd: 93:95:aa:0a:69:00:c2:ea:ff:e1:07:99:97:06:b4: f3:d7:71:ef:42:03:9b:e5:9e:28:05:b2:e4:98:73: 01:ca:df:05:7f:1a:21:80:94:82:e1:fa:a5:be:42: 69:9d:32:7f:46:45:18:90:f0:c9:28:b8:bc:8c:d9: 43:ec:6e:9a:9d:d8:85:ae:98:c9:a0:bc:58:0a:4c: 3e:09:91:41:b6:bb:39:49:d0:6c:8f:03:4e:8d:c3: e8:08:bd:33:e5:80:50:7a:9c:28:19:43:23:a7:09: 24:a1:ec:d8:40:66:10:4a:21:fd:c8:dc:d0:92:b0: 86:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:7F:DA:23:41:8E:8A:5B:79:FD:BB:53:AB:3C:3B:82:8E:3B:23:2A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/656de0c4-8d15-4b0a-bca4-a372c2430656.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:600::/48 Signature Algorithm: sha256WithRSAEncryption 1c:87:9b:f4:62:16:01:7f:f1:f8:d8:fd:dd:31:22:3f:d2:52: 49:0c:28:b1:75:b8:85:0e:66:82:c5:85:a5:58:c1:19:93:8f: ce:d2:ac:87:1d:25:a1:d2:de:36:09:cb:2f:c4:32:57:62:49: c2:96:de:08:34:28:5a:52:17:17:f3:1a:11:24:7c:ab:5a:01: 24:18:80:ec:42:d2:7e:d8:13:d6:2f:dd:77:8d:ba:f9:52:b2: d9:98:98:a9:f3:7c:ac:52:b0:4e:24:04:36:ac:ea:c3:6b:b5: 6e:3a:18:ad:e9:c9:f9:30:2d:55:df:8f:ce:85:ea:af:11:3a: f8:32:12:d6:91:32:da:5c:d7:ef:19:4c:d2:aa:8b:c4:68:80: c2:42:86:ce:ef:b4:56:c2:4e:99:01:5e:90:06:4e:c6:e6:3c: ca:1d:e0:a9:b9:59:4e:a2:9f:43:d1:22:4b:01:7d:85:23:e4: 23:23:a6:67:0d:86:1d:66:a8:a7:b2:7c:a1:2c:c8:2f:b4:16: 76:0f:03:fa:e0:8c:71:9b:30:3c:1f:fe:38:79:0e:70:f2:5b: 1a:70:de:ad:ca:37:f7:c2:19:58:80:fe:4f:1c:72:05:e5:b0: 77:15:be:a7:f3:88:c9:e7:6b:e2:4a:84:58:9b:02:5d:4c:fa: 90:ac:aa:a0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIuo57k2o8/1tUh7bl0rGD0jPTpkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDI5MDAwMDAwWhcNMjQwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MGJlNTgzZDBiMzViZmZkNTJlYjAwNGI2NzZlMTIwNjJj ODZkMDIwZmQ0ZTgxNDI2MGM1MjEzYmJlNzMxNjAwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQu8c8cbzfcvWKLY3ROo6HdPIUMVwRNloDOc0cn8vMp14w OkYaYMfz6S8eL7JT+wT4wV6UboNK79hmUsMCizgqSgQqQQuRQZCFQcKZMsPI3otM pzTvLdWlLx7ESL1HadOL6O6LmrxpIB/SSLdWfPwsxkC+GgFK8N5YuSmNLihig3Ba twl2vZOVqgppAMLq/+EHmZcGtPPXce9CA5vlnigFsuSYcwHK3wV/GiGAlILh+qW+ QmmdMn9GRRiQ8MkouLyM2UPsbpqd2IWumMmgvFgKTD4JkUG2uzlJ0GyPA06Nw+gI vTPlgFB6nCgZQyOnCSSh7NhAZhBKIf3I3NCSsIbHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXH/aI0GOilt5/btTqzw7go47IyowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY1NmRlMGM0LThkMTUtNGIwYS1iY2E0LWEzNzJjMjQzMDY1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBgAwDQYJKoZIhvcNAQELBQADggEBAByHm/RiFgF/8fjY/d0xIj/S UkkMKLF1uIUOZoLFhaVYwRmTj87SrIcdJaHS3jYJyy/EMldiScKW3gg0KFpSFxfz GhEkfKtaASQYgOxC0n7YE9Yv3XeNuvlSstmYmKnzfKxSsE4kBDas6sNrtW46GK3p yfkwLVXfj86F6q8ROvgyEtaRMtpc1+8ZTNKqi8RogMJChs7vtFbCTpkBXpAGTsbm PMod4Km5WU6in0PRIksBfYUj5CMjpmcNhh1mqKeyfKEsyC+0FnYPA/rgjHGbMDwf /jh5DnDyWxpw3q3KN/fCGViA/k8ccgXlsHcVvqfziMnna+JKhFibAl1M+pCsqqA= -----END CERTIFICATE-----Generated at Thu May 2 00:52:16 2024 by rpki-client on console-ams.rpki-client.org