$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa File: 6632e911-ee11-4bc9-a573-00ef83fd31d7.roa (raw, json) Hash identifier: ztVx9VPuEUJsaDMIv35U38Ud/D4res3RMmXjmhxQsiw= Subject key identifier: 72:27:A2:CA:BB:A6:05:9E:FC:B1:FE:9D:90:88:D4:1C:5E:DD:BA:43 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 61EAD1D75842782186232F23AACFB96C35F63D64 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ea:d1:d7:58:42:78:21:86:23:2f:23:aa:cf:b9:6c:35:f6:3d:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=e2047db482d340d3ba48a3457a85a2098d6820a2fb1f0ab91f12363e9133acea, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:37:6b:ba:6c:fe:bd:07:58:9b:5c:c2:c1:db: 70:50:8a:50:e7:92:24:18:97:5c:9d:cf:e6:5a:30: d1:e2:b5:aa:24:f9:9a:c8:5a:71:de:4e:3c:78:13: 31:01:32:5d:8c:22:ee:41:49:a3:41:1b:36:78:85: 05:86:c0:f5:ee:6d:00:f3:22:ca:91:64:b5:ea:7a: 24:c3:51:3c:b3:02:03:4e:fa:fa:1d:8e:49:42:76: 74:ee:3f:0b:5a:ce:ea:f1:1a:79:15:13:53:66:17: 69:f7:4e:80:46:cf:36:e7:c6:c5:10:78:34:eb:d5: 91:40:e0:85:a4:86:30:6d:ed:2e:67:b2:1e:04:c9: 15:8f:77:3d:22:e3:cc:de:d0:4b:32:3e:8b:4f:19: da:48:b9:99:8e:f7:46:37:98:bc:aa:7e:95:f7:35: fb:0a:fd:b8:fb:01:fe:bc:43:ff:b8:73:4b:27:c1: 6c:32:42:f9:12:7b:ab:a9:5d:f4:52:2e:01:5a:d7: 72:1e:78:18:36:fa:24:b4:86:1f:05:d7:61:5b:69: 10:3e:45:d5:ec:c3:a1:50:47:53:f6:ca:e7:b7:38: 45:fb:05:d9:63:47:28:ef:2e:25:2a:a6:00:59:92: f7:3b:bc:93:dd:f1:72:0b:6c:9f:ba:8f:e8:de:84: 61:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:27:A2:CA:BB:A6:05:9E:FC:B1:FE:9D:90:88:D4:1C:5E:DD:BA:43 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6632e911-ee11-4bc9-a573-00ef83fd31d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6000::/44 Signature Algorithm: sha256WithRSAEncryption 69:ca:c0:2f:f0:38:78:7c:10:a7:27:a1:11:75:39:25:a2:b8: a3:40:10:81:c5:0e:4f:81:45:e7:b3:58:3d:e7:0e:92:ac:db: 46:97:13:f3:9e:08:91:48:ba:de:60:61:87:81:9e:c9:d8:5e: 56:47:9e:b3:a6:5d:22:25:f1:2a:ec:af:42:5e:de:5d:9e:2e: 86:9e:c0:5c:a1:02:e8:b3:01:1a:68:d8:7a:be:37:75:fa:07: b4:c8:0e:15:7e:68:50:10:27:60:40:3a:53:b6:2a:eb:3b:97: 78:23:44:a5:0a:62:87:44:5f:4f:85:78:9e:30:a9:3b:4a:26: 9a:94:cb:16:90:bf:b1:e0:7b:97:0f:af:09:14:e6:39:04:31: cb:a1:12:a0:1a:b1:66:e0:8e:f1:e6:09:cb:25:d2:bf:f8:50: 40:5c:45:8d:5c:94:2a:8d:92:16:58:c8:ac:97:d5:84:76:81: 5e:12:d9:d1:ee:24:c6:3f:30:92:4b:37:5c:76:6c:71:58:7c: 81:d3:be:5a:25:ff:f2:11:ce:23:7c:45:52:03:1f:04:df:05: c3:a1:56:69:98:dc:c2:63:49:c8:2f:d3:3c:5f:99:4a:74:fe: 34:73:68:f6:a1:f5:f3:41:c2:f2:b6:bf:7e:2a:91:c1:2a:94: 21:9f:e7:28 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYerR11hCeCGGIy8jqs+5bDX2PWQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjA0N2RiNDgyZDM0MGQzYmE0OGEzNDU3YTg1YTIwOThk NjgyMGEyZmIxZjBhYjkxZjEyMzYzZTkxMzNhY2VhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5N2u6bP69B1ibXMLB23BQilDnkiQYl1ydz+ZaMNHitaok +ZrIWnHeTjx4EzEBMl2MIu5BSaNBGzZ4hQWGwPXubQDzIsqRZLXqeiTDUTyzAgNO +vodjklCdnTuPwtazurxGnkVE1NmF2n3ToBGzzbnxsUQeDTr1ZFA4IWkhjBt7S5n sh4EyRWPdz0i48ze0EsyPotPGdpIuZmO90Y3mLyqfpX3NfsK/bj7Af68Q/+4c0sn wWwyQvkSe6upXfRSLgFa13IeeBg2+iS0hh8F12FbaRA+RdXsw6FQR1P2yue3OEX7 BdljRyjvLiUqpgBZkvc7vJPd8XILbJ+6j+jehGEBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcieiyrumBZ78sf6dkIjUHF7dukMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY2MzJlOTExLWVlMTEtNGJjOS1hNTczLTAwZWY4M2ZkMzFkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYAAwDQYJKoZIhvcNAQELBQADggEBAGnKwC/wOHh8EKcnoRF1OSWi uKNAEIHFDk+BReezWD3nDpKs20aXE/OeCJFIut5gYYeBnsnYXlZHnrOmXSIl8Srs r0Je3l2eLoaewFyhAuizARpo2Hq+N3X6B7TIDhV+aFAQJ2BAOlO2Kus7l3gjRKUK YodEX0+FeJ4wqTtKJpqUyxaQv7Hge5cPrwkU5jkEMcuhEqAasWbgjvHmCcsl0r/4 UEBcRY1clCqNkhZYyKyX1YR2gV4S2dHuJMY/MJJLN1x2bHFYfIHTvlol//IRziN8 RVIDHwTfBcOhVmmY3MJjScgv0zxfmUp0/jRzaPah9fNBwvK2v34qkcEqlCGf5yg= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org