$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa File: 789a1aef-77f7-4108-9d41-1a97c18e12cb.roa (raw, json) Hash identifier: Mfmf9yDMIoYLOgK22zbTnqjUkmH9skHj/+PgQ86P/tk= Subject key identifier: 33:B9:F8:E6:4C:63:5C:1D:19:BD:D8:EA:EC:0D:E0:72:D0:88:2C:D0 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 231930953129303048F38207B3DFCC9FC4D37192 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f00c::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:19:30:95:31:29:30:30:48:f3:82:07:b3:df:cc:9f:c4:d3:71:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=b3ad6b38d629c61336ce037faf6f00bc6cc48ee769bf740de57f9e168b0a8363, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:49:b7:af:e6:52:68:0b:f1:18:9e:e0:7a:8a: e3:42:37:41:2e:7f:ff:76:b7:2e:99:0f:63:67:83: 4b:8a:49:d6:5a:21:30:4a:2c:48:a0:ec:bf:7d:b1: d0:74:d3:91:48:6b:fa:f6:e9:0e:2c:bf:49:3c:aa: 1e:22:3a:bc:27:38:5d:0a:21:28:f3:f6:70:69:07: 9a:3e:1f:23:fd:5b:4a:f8:b1:0b:ee:68:48:c4:67: a5:1c:23:39:70:ac:ed:64:8b:e9:0e:4b:95:bc:e3: 47:59:00:e5:47:fa:8e:d7:2e:71:b4:50:e3:d3:2d: 26:da:df:28:29:8b:38:ac:7c:04:ae:a3:61:ed:5b: 3a:0c:50:96:b9:47:52:e2:33:28:4f:70:3f:71:6c: f2:10:9a:8d:04:62:cd:a4:54:9e:2f:aa:b8:5e:75: f3:11:bd:69:27:2f:b8:b0:54:e8:44:eb:d9:c3:3c: 36:d6:d3:a4:58:64:a8:21:5a:50:6c:0e:e0:3a:66: 48:3a:d3:cb:53:ff:dc:94:9e:ce:1a:7b:82:86:2c: 19:0d:28:a1:48:81:de:1a:da:a6:36:57:c0:7d:1e: fa:fe:ab:3f:31:cf:50:8a:3a:52:7c:01:6c:2a:f4: b8:1d:11:58:65:e8:38:af:f5:63:05:c7:aa:c7:4e: e5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B9:F8:E6:4C:63:5C:1D:19:BD:D8:EA:EC:0D:E0:72:D0:88:2C:D0 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/789a1aef-77f7-4108-9d41-1a97c18e12cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f00c::/39 Signature Algorithm: sha256WithRSAEncryption 01:b4:82:67:44:3c:65:25:57:56:b9:8b:0d:7e:35:47:51:ca: 4f:a7:01:8a:6e:d4:fb:71:be:90:ed:18:b8:07:27:ed:05:b9: 14:fd:be:68:e9:3d:7f:bb:ba:f4:28:39:5b:e3:92:c2:33:45: 30:00:17:63:0c:d0:8e:d4:8c:35:b7:c1:6a:d9:a8:ce:42:c9: 55:7d:92:9a:f7:f1:f2:3f:67:9e:93:8b:b2:8f:0d:10:61:75: e1:67:3e:fd:cf:69:c6:f7:b3:46:e6:64:e7:29:cc:9d:b4:40: bc:14:84:8c:a2:51:ff:f2:6f:76:7f:37:ef:41:b3:73:30:a1: 98:c6:d7:fd:3f:65:fe:ae:6d:56:1d:5e:89:6e:e0:59:7c:a6: d0:9a:52:dd:a7:2a:51:7a:9a:6a:17:dc:6f:03:c0:41:59:83: 72:c0:f1:0c:9c:f9:68:ad:e2:19:0a:77:ab:84:9c:95:c4:38: b7:87:20:6f:57:67:4a:56:61:dd:c7:c8:19:66:0a:16:1e:cc: 2a:b3:8f:8a:1b:9b:3c:66:e9:3f:6b:e8:8b:fd:c5:75:57:db: 6f:37:60:c9:91:69:7f:c1:3c:9a:63:aa:2e:7b:8e:81:a5:da: f2:b9:9b:ed:64:7e:56:5c:4d:30:d9:4f:2f:9b:27:40:67:2b: 8d:8c:5e:48 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIxkwlTEpMDBI84IHs9/Mn8TTcZIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2FkNmIzOGQ2MjljNjEzMzZjZTAzN2ZhZjZmMDBiYzZj YzQ4ZWU3NjliZjc0MGRlNTdmOWUxNjhiMGE4MzYzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWSbev5lJoC/EYnuB6iuNCN0Euf/92ty6ZD2Nng0uKSdZa ITBKLEig7L99sdB005FIa/r26Q4sv0k8qh4iOrwnOF0KISjz9nBpB5o+HyP9W0r4 sQvuaEjEZ6UcIzlwrO1ki+kOS5W840dZAOVH+o7XLnG0UOPTLSba3ygpizisfASu o2HtWzoMUJa5R1LiMyhPcD9xbPIQmo0EYs2kVJ4vqrhedfMRvWknL7iwVOhE69nD PDbW06RYZKghWlBsDuA6Zkg608tT/9yUns4ae4KGLBkNKKFIgd4a2qY2V8B9Hvr+ qz8xz1CKOlJ8AWwq9LgdEVhl6Div9WMFx6rHTuV9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUM7n45kxjXB0Zvdjq7A3gctCILNAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc4OWExYWVmLTc3ZjctNDEwOC05ZDQxLTFhOTdjMThlMTJjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAMADANBgkqhkiG9w0BAQsFAAOCAQEAAbSCZ0Q8ZSVXVrmLDX41R1HK T6cBim7U+3G+kO0YuAcn7QW5FP2+aOk9f7u69Cg5W+OSwjNFMAAXYwzQjtSMNbfB atmozkLJVX2Smvfx8j9nnpOLso8NEGF14Wc+/c9pxvezRuZk5ynMnbRAvBSEjKJR //Jvdn8370GzczChmMbX/T9l/q5tVh1eiW7gWXym0JpS3acqUXqaahfcbwPAQVmD csDxDJz5aK3iGQp3q4SclcQ4t4cgb1dnSlZh3cfIGWYKFh7MKrOPihubPGbpP2vo i/3FdVfbbzdgyZFpf8E8mmOqLnuOgaXa8rmb7WR+VlxNMNlPL5snQGcrjYxeSA== -----END CERTIFICATE-----Generated at Thu May 2 01:05:46 2024 by rpki-client on console-fra.rpki-client.org