$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/69850bb0-f26d-4624-a949-fdc9b29a2ac4.roa File: 69850bb0-f26d-4624-a949-fdc9b29a2ac4.roa (raw, json) Hash identifier: YtMzyqiv8CNY/rYDVZr7WimUWZP43RkZLzotiKzMG8g= Subject key identifier: 9C:56:D4:C1:34:66:9C:05:81:11:CD:CD:D4:F7:13:BD:88:2B:9E:49 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2658614C5E5BA4B418D2A90C858B4C8ED23600E6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/69850bb0-f26d-4624-a949-fdc9b29a2ac4.roa Signing time: Thu 14 Nov 2024 00:00:00 +0000 ROA not before: Thu 14 Nov 2024 00:00:00 +0000 ROA not after: Thu 19 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ed00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:58:61:4c:5e:5b:a4:b4:18:d2:a9:0c:85:8b:4c:8e:d2:36:00:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 14 00:00:00 2024 GMT Not After : Dec 19 23:59:59 2024 GMT Subject: serialNumber=61fee44ac270a6d305316efbb46e1ad78eaa28d1ccd9fee22daee52d4f0a0acc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0b:a7:57:e0:61:37:03:23:24:02:53:47:ae: 6f:6c:a6:05:0e:87:88:fa:b0:55:88:1a:fc:e1:c7: 7c:08:65:b6:be:e5:ea:05:43:81:c5:4b:f2:2a:39: 6c:4b:46:28:8e:fe:d1:3b:a8:f8:e8:8d:8f:ea:a9: f0:37:43:28:29:bc:db:78:91:4c:32:a0:12:98:e2: 69:46:e1:11:96:3d:55:c1:f4:b0:70:17:9c:9c:02: ef:f3:fe:4d:b2:d2:15:bf:6d:66:5c:d2:e6:87:d1: ed:f1:14:9a:d1:19:62:2c:fd:3b:c6:23:b4:bf:e7: 7d:c7:1b:b3:d2:07:dd:8a:98:a1:80:2a:13:0a:c3: c7:78:9a:f4:e8:bc:df:5e:0a:a9:72:da:45:ee:20: 5d:68:8d:2f:1b:56:94:0b:ab:3d:34:9f:7c:e8:7a: 34:e9:28:6a:95:6a:49:54:bb:9d:a3:a3:86:03:65: ba:ed:72:6a:91:e2:a5:7c:2d:7f:1f:d1:46:d1:87: ba:84:08:e9:96:38:61:2b:12:0d:91:57:ba:65:41: 4e:6b:90:72:d3:a3:05:10:b6:54:be:d0:88:ea:e3: 10:33:99:e1:f2:b0:8b:d0:89:21:aa:7d:5c:c5:7f: 19:a3:7f:3c:a3:e3:c8:14:08:9d:0d:31:e9:d9:fe: f3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:56:D4:C1:34:66:9C:05:81:11:CD:CD:D4:F7:13:BD:88:2B:9E:49 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/69850bb0-f26d-4624-a949-fdc9b29a2ac4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ed00::/40 Signature Algorithm: sha256WithRSAEncryption 0d:57:01:85:dc:47:5c:26:20:3f:73:58:f0:7c:e3:e7:bf:3f: 19:9d:1d:40:fd:fe:aa:1b:6f:70:56:7c:dc:7c:07:58:11:84: c0:b2:47:4e:1c:f2:b5:ae:85:31:20:2f:ff:4e:0a:13:46:25: c3:20:28:fa:95:bc:51:56:af:a0:79:91:19:07:63:52:3d:c0: 6a:7f:64:fb:73:ba:b6:36:7c:da:04:37:3f:c3:73:8d:8c:04: f5:82:8a:3d:e8:07:f9:d0:e5:ae:d2:74:35:c1:2d:64:3d:f8: aa:e1:ac:96:c0:d8:89:83:f0:d3:c0:63:c3:16:b5:d5:8f:60: 74:3a:d9:84:b5:22:10:f6:74:af:4a:9e:11:94:75:70:9b:ca: aa:eb:06:f9:d8:12:b5:90:7e:dc:d1:a1:68:dd:eb:3d:3e:da: 56:58:27:be:c5:8a:33:89:db:20:cc:a1:ae:a6:87:e5:4d:47: 8d:84:39:0e:66:ff:09:ed:b7:fb:88:a7:1f:5f:14:21:0f:ad: f5:e6:28:46:42:90:23:60:10:94:15:59:39:c4:8c:0f:c0:f9: f0:ba:f1:87:6b:36:eb:60:2c:04:4c:08:d7:15:f1:c9:da:69: 12:4e:a7:ee:22:cf:d7:3d:2c:50:a7:eb:d6:a3:58:0f:13:4a: 21:f5:50:60 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJlhhTF5bpLQY0qkMhYtMjtI2AOYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE0MDAwMDAwWhcNMjQxMjE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWZlZTQ0YWMyNzBhNmQzMDUzMTZlZmJiNDZlMWFkNzhl YWEyOGQxY2NkOWZlZTIyZGFlZTUyZDRmMGEwYWNjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnC6dX4GE3AyMkAlNHrm9spgUOh4j6sFWIGvzhx3wIZba+ 5eoFQ4HFS/IqOWxLRiiO/tE7qPjojY/qqfA3QygpvNt4kUwyoBKY4mlG4RGWPVXB 9LBwF5ycAu/z/k2y0hW/bWZc0uaH0e3xFJrRGWIs/TvGI7S/533HG7PSB92KmKGA KhMKw8d4mvTovN9eCqly2kXuIF1ojS8bVpQLqz00n3zoejTpKGqVaklUu52jo4YD ZbrtcmqR4qV8LX8f0UbRh7qECOmWOGErEg2RV7plQU5rkHLTowUQtlS+0Ijq4xAz meHysIvQiSGqfVzFfxmjfzyj48gUCJ0NMenZ/vN9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnFbUwTRmnAWBEc3N1PcTvYgrnkkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY5ODUwYmIwLWYyNmQtNDYyNC1hOTQ5LWZkYzliMjlhMmFjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77TANBgkqhkiG9w0BAQsFAAOCAQEADVcBhdxHXCYgP3NY8Hzj578/ GZ0dQP3+qhtvcFZ83HwHWBGEwLJHThzyta6FMSAv/04KE0YlwyAo+pW8UVavoHmR GQdjUj3Aan9k+3O6tjZ82gQ3P8NzjYwE9YKKPegH+dDlrtJ0NcEtZD34quGslsDY iYPw08Bjwxa11Y9gdDrZhLUiEPZ0r0qeEZR1cJvKqusG+dgStZB+3NGhaN3rPT7a VlgnvsWKM4nbIMyhrqaH5U1HjYQ5Dmb/Ce23+4inH18UIQ+t9eYoRkKQI2AQlBVZ OcSMD8D58Lrxh2s262AsBEwI1xXxydppEk6n7iLP1z0sUKfr1qNYDxNKIfVQYA== -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org