$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6df7bef5-f878-4122-9545-de0f9e8e05d4.roa File: 6df7bef5-f878-4122-9545-de0f9e8e05d4.roa (raw, json) Hash identifier: 0vO1+8IjsnaeUgNC8go3rgvxi/RwjQJ2uH92s+/OXsc= Subject key identifier: 41:6F:E2:99:FD:4A:36:97:55:16:F8:E1:55:04:52:1A:00:FD:18:B1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 169164C4A3645FFF1EE54E2C093DBB2DD575E33E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6df7bef5-f878-4122-9545-de0f9e8e05d4.roa Signing time: Thu 14 Nov 2024 00:00:00 +0000 ROA not before: Thu 14 Nov 2024 00:00:00 +0000 ROA not after: Thu 19 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e600::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:91:64:c4:a3:64:5f:ff:1e:e5:4e:2c:09:3d:bb:2d:d5:75:e3:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 14 00:00:00 2024 GMT Not After : Dec 19 23:59:59 2024 GMT Subject: serialNumber=18ed63eefdda7b20576bc363aa711a58e8765fb05dc0a030b55426e266c8de2f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f6:62:91:5b:7e:61:cf:d3:a2:59:65:86:84: a2:8a:46:42:ec:31:4d:56:8e:03:89:9e:ad:7e:8d: b9:e8:f1:da:2e:01:53:21:63:8d:84:d6:ed:4c:05: 96:c1:36:ac:91:99:79:70:98:98:dc:60:21:bd:08: 10:29:5a:db:c8:1b:95:40:af:b7:56:4e:2d:41:fc: 9c:1f:0f:79:33:9f:a1:fd:b3:d7:30:b3:6c:67:4b: af:cf:e2:bc:55:b1:1d:1b:9c:7d:8b:0b:d1:2c:ea: ec:72:66:4d:d4:ad:24:98:55:1a:b0:f0:dd:10:ea: 45:33:de:61:0e:05:aa:20:2a:25:72:dc:3a:b3:71: a2:90:e0:2c:20:c1:99:12:6c:00:ac:8d:ba:4a:42: 8f:a6:2d:cb:75:2d:f0:0c:7e:9d:34:03:bd:2d:17: c4:e9:e8:7b:e6:78:e7:1b:9e:61:b2:05:e4:e7:bb: a0:15:e2:c4:57:ab:b5:01:e4:b0:f6:e4:e5:86:a7: 17:88:cf:d1:ca:9f:59:de:55:32:91:34:ff:93:a0: c9:f0:42:9b:a5:cc:0b:0f:27:79:dd:41:63:f7:7c: af:ff:d1:c4:50:ff:43:b9:5a:96:3e:7f:21:1e:c6: 3a:3a:2a:8d:7a:bc:75:39:a8:2c:8f:a7:d4:5f:ab: 39:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:6F:E2:99:FD:4A:36:97:55:16:F8:E1:55:04:52:1A:00:FD:18:B1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6df7bef5-f878-4122-9545-de0f9e8e05d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/40 Signature Algorithm: sha256WithRSAEncryption 4f:78:24:cf:a1:bc:03:b8:ed:6c:42:f4:a9:81:f7:b8:31:d5: 5b:e5:e8:b0:b5:f9:7f:04:c4:68:f0:aa:f0:74:46:83:18:ff: 27:07:a0:c9:e7:16:4b:1e:54:80:2e:1b:b4:3a:9d:7e:78:45: d9:13:9c:ef:b2:6c:12:f3:92:34:be:35:98:21:0c:fe:f3:32: f1:e4:fa:02:5f:1b:ca:4a:d2:87:42:04:e0:43:cb:19:f0:b4: 4c:b2:a1:3f:0d:d3:db:6a:95:bb:da:9b:ce:e5:7e:6d:0e:9f: 53:0e:7c:43:19:62:47:4e:9b:10:1e:7f:1f:e0:bf:a2:84:b5: d0:9a:1f:93:9c:57:49:37:fb:ba:d9:01:0a:fa:2a:0a:53:33: 23:70:72:24:c3:1a:20:0e:54:c7:d9:93:61:75:d6:8f:c4:f6: 37:9f:0e:13:68:ec:6e:1c:8c:7c:01:c5:e9:ae:7f:ae:7e:9a: 47:47:a9:a7:ae:61:41:16:6e:a4:71:f3:29:3e:1d:cd:95:ee: 7e:4e:33:b5:52:30:cb:57:bc:fe:e6:63:41:90:1f:89:6c:32: 50:ef:d6:1f:8b:aa:2b:4b:22:2c:8e:89:77:c7:c2:9d:4f:aa: de:b8:10:ae:21:84:c9:ec:5d:1b:8b:90:ad:12:e6:2f:75:f1: 2a:9e:a2:79 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFpFkxKNkX/8e5U4sCT27LdV14z4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE0MDAwMDAwWhcNMjQxMjE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGVkNjNlZWZkZGE3YjIwNTc2YmMzNjNhYTcxMWE1OGU4 NzY1ZmIwNWRjMGEwMzBiNTU0MjZlMjY2YzhkZTJmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv9mKRW35hz9OiWWWGhKKKRkLsMU1WjgOJnq1+jbno8dou AVMhY42E1u1MBZbBNqyRmXlwmJjcYCG9CBApWtvIG5VAr7dWTi1B/JwfD3kzn6H9 s9cws2xnS6/P4rxVsR0bnH2LC9Es6uxyZk3UrSSYVRqw8N0Q6kUz3mEOBaogKiVy 3DqzcaKQ4CwgwZkSbACsjbpKQo+mLct1LfAMfp00A70tF8Tp6HvmeOcbnmGyBeTn u6AV4sRXq7UB5LD25OWGpxeIz9HKn1neVTKRNP+ToMnwQpulzAsPJ3ndQWP3fK// 0cRQ/0O5WpY+fyEexjo6Ko16vHU5qCyPp9RfqzkNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUQW/imf1KNpdVFvjhVQRSGgD9GLEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzZkZjdiZWY1LWY4NzgtNDEyMi05NTQ1LWRlMGY5ZThlMDVkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75jANBgkqhkiG9w0BAQsFAAOCAQEAT3gkz6G8A7jtbEL0qYH3uDHV W+XosLX5fwTEaPCq8HRGgxj/JwegyecWSx5UgC4btDqdfnhF2ROc77JsEvOSNL41 mCEM/vMy8eT6Al8bykrSh0IE4EPLGfC0TLKhPw3T22qVu9qbzuV+bQ6fUw58Qxli R06bEB5/H+C/ooS10Jofk5xXSTf7utkBCvoqClMzI3ByJMMaIA5Ux9mTYXXWj8T2 N58OE2jsbhyMfAHF6a5/rn6aR0epp65hQRZupHHzKT4dzZXufk4ztVIwy1e8/uZj QZAfiWwyUO/WH4uqK0siLI6Jd8fCnU+q3rgQriGEyexdG4uQrRLmL3XxKp6ieQ== -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org