$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa File: 6632e911-ee11-4bc9-a573-00ef83fd31d7.roa (raw, json) Hash identifier: Z0483iklFP3RGfc/Mq8dCZt3pPl9vdPoJkphhbz4bLs= Subject key identifier: 0D:F9:89:AF:DC:B8:93:76:B0:69:83:79:0E:9B:2B:E8:AB:65:4D:FE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3D488BE0DF0F42EEE003F7D247D1D2C6495C8B00 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:48:8b:e0:df:0f:42:ee:e0:03:f7:d2:47:d1:d2:c6:49:5c:8b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=a898a740685e1c78647c250c933722fad2f545674156f01e212eafa752c68c3e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:71:37:a9:c0:9b:72:85:58:cf:22:ed:bd:3e: 60:a0:14:1d:97:02:97:ec:86:ad:ce:46:d9:2b:a4: 19:e5:65:69:35:96:07:d8:71:5e:fe:36:b8:1e:6c: 5b:cd:ec:49:8c:93:b5:35:fc:69:14:4d:44:41:17: 05:20:13:2c:e2:88:58:93:1d:f9:b5:d0:4a:d9:25: b0:79:70:61:fb:de:01:d2:52:14:fd:8b:23:f4:a6: 8a:da:19:bc:ba:43:50:d7:80:b7:74:72:27:d1:44: 94:7c:f4:ae:33:20:72:cc:38:cb:89:26:fa:a0:9f: be:07:51:5c:52:87:98:b9:a1:0e:02:3d:4d:44:1b: 09:90:40:54:0a:3d:07:fc:41:dc:d9:5b:b0:01:92: 65:05:3b:73:ae:47:a1:91:ee:5e:db:fc:97:7d:0b: 02:1c:db:3d:34:f0:be:3f:2d:05:39:86:ce:15:f6: b3:85:72:cf:3a:6b:1b:b2:1d:0a:59:f6:b8:d9:e4: c8:61:db:3c:10:db:d3:48:33:9c:d1:e9:ce:f3:a4: d4:22:11:2b:34:b3:2f:15:55:de:03:67:cc:88:8e: 6c:19:ea:b3:f6:64:6f:5c:6b:e4:7f:eb:e4:7f:fd: 9c:14:04:22:85:9b:77:49:4d:19:aa:2c:12:ae:2d: 03:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F9:89:AF:DC:B8:93:76:B0:69:83:79:0E:9B:2B:E8:AB:65:4D:FE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6000::/44 Signature Algorithm: sha256WithRSAEncryption 5a:1b:76:5c:e0:57:b5:4d:22:6b:5e:54:b9:5d:31:92:7a:56: 32:8a:9e:dd:fd:27:d5:2f:86:d9:98:b7:b8:ca:00:98:94:e8: c8:6d:ab:ca:3d:b5:e9:f1:3b:3d:69:87:e4:be:55:be:e3:b1: c2:08:e0:e6:d4:b5:6a:cc:5c:eb:1d:9f:6c:80:d6:9e:5d:28: 58:73:c6:eb:55:5a:f0:d0:4e:ea:7f:c5:1e:ef:ee:a7:f6:ba: 49:bb:26:c8:76:82:68:15:09:8c:7e:4a:6b:8e:f9:4d:c1:71: ef:48:37:fc:e9:cc:b2:28:4c:8d:8d:86:4d:d0:ca:2e:b0:50: 41:db:c4:f5:d9:a6:3d:07:0f:fb:0a:6e:a7:a5:e0:ae:4d:c8: 09:c7:c0:16:d0:06:39:b8:1e:96:13:63:76:56:42:10:96:8e: 99:12:71:ab:5d:11:e3:cf:43:53:c6:e6:ed:42:bd:f3:73:5d: 3b:1d:6f:d1:6c:f8:3a:32:1b:19:40:1e:f0:4b:4b:eb:17:bd: 72:12:26:59:f3:1c:da:f8:55:c2:4f:7e:df:64:b5:56:15:b6: 03:f4:d6:a6:c4:37:ce:eb:27:05:94:cd:4f:e7:d3:37:05:46: 57:7e:40:b8:3f:d0:18:03:7e:3e:73:b9:c0:e0:13:9e:9c:33: c6:f7:b6:2e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPUiL4N8PQu7gA/fSR9HSxklciwAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODk4YTc0MDY4NWUxYzc4NjQ3YzI1MGM5MzM3MjJmYWQy ZjU0NTY3NDE1NmYwMWUyMTJlYWZhNzUyYzY4YzNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChcTepwJtyhVjPIu29PmCgFB2XApfshq3ORtkrpBnlZWk1 lgfYcV7+NrgebFvN7EmMk7U1/GkUTURBFwUgEyziiFiTHfm10ErZJbB5cGH73gHS UhT9iyP0poraGby6Q1DXgLd0cifRRJR89K4zIHLMOMuJJvqgn74HUVxSh5i5oQ4C PU1EGwmQQFQKPQf8QdzZW7ABkmUFO3OuR6GR7l7b/Jd9CwIc2z008L4/LQU5hs4V 9rOFcs86axuyHQpZ9rjZ5Mhh2zwQ29NIM5zR6c7zpNQiESs0sy8VVd4DZ8yIjmwZ 6rP2ZG9ca+R/6+R//ZwUBCKFm3dJTRmqLBKuLQMVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDfmJr9y4k3awaYN5Dpsr6KtlTf4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY2MzJlOTExLWVlMTEtNGJjOS1hNTczLTAwZWY4M2ZkMzFkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYAAwDQYJKoZIhvcNAQELBQADggEBAFobdlzgV7VNImteVLldMZJ6 VjKKnt39J9UvhtmYt7jKAJiU6Mhtq8o9tenxOz1ph+S+Vb7jscII4ObUtWrMXOsd n2yA1p5dKFhzxutVWvDQTup/xR7v7qf2ukm7Jsh2gmgVCYx+SmuO+U3Bce9IN/zp zLIoTI2Nhk3Qyi6wUEHbxPXZpj0HD/sKbqel4K5NyAnHwBbQBjm4HpYTY3ZWQhCW jpkScatdEePPQ1PG5u1CvfNzXTsdb9Fs+DoyGxlAHvBLS+sXvXISJlnzHNr4VcJP ft9ktVYVtgP01qbEN87rJwWUzU/n0zcFRld+QLg/0BgDfj5zucDgE56cM8b3ti4= -----END CERTIFICATE-----Generated at Thu May 2 01:05:46 2024 by rpki-client on console-fra.rpki-client.org