$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7d766739-1e1d-4cc2-aa74-f851801a7751.roa File: 7d766739-1e1d-4cc2-aa74-f851801a7751.roa (raw, json) Hash identifier: X7Rob2zGdlkMTIBe60QrjnB/N8H8m8uQbfXnRBHTNCA= Subject key identifier: FC:72:E7:FD:09:29:8D:3C:DF:41:FD:5F:DC:DF:89:21:92:11:72:8E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 37CF98A9B280B185185283FDC7126EC6A67250AF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7d766739-1e1d-4cc2-aa74-f851801a7751.roa Signing time: Sat 13 Apr 2024 00:00:00 +0000 ROA not before: Sat 13 Apr 2024 00:00:00 +0000 ROA not after: Sat 18 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:cf:98:a9:b2:80:b1:85:18:52:83:fd:c7:12:6e:c6:a6:72:50:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 13 00:00:00 2024 GMT Not After : May 18 23:59:59 2024 GMT Subject: serialNumber=489328e49f45072fdc10d82d4be32be43663f48853013892b38699f5bd067583, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ad:0e:96:dc:0d:bb:49:2b:2d:ac:53:33:14: 6b:ea:07:8e:7d:40:35:2b:90:50:a7:a0:e1:13:80: ce:78:7c:2a:ae:7c:34:90:2c:57:3d:4d:7b:09:5e: 93:f0:52:ab:ef:fd:fe:c3:70:f3:f9:b8:84:32:44: 14:9c:15:11:e9:cb:29:b1:60:66:a5:a0:ce:fa:b0: 9c:4a:fa:c9:c0:e7:f6:32:19:01:11:21:72:60:ed: 5b:32:ea:d2:d9:d2:ec:2c:39:c4:5c:c4:d9:5c:f0: b7:24:b7:74:15:1a:7c:8e:e4:e5:5c:49:de:82:a6: 49:b6:f1:67:46:91:f1:fb:35:92:3e:d4:1f:b6:9a: bf:68:b3:23:9f:cc:bb:cb:78:e4:9b:33:97:cf:56: 71:01:c6:2d:19:ca:8d:f9:80:15:43:ba:bf:ba:15: dd:40:4b:14:b1:10:c0:76:df:10:e3:61:41:5f:6d: 78:4b:bf:6c:88:ef:d1:c3:7c:57:b3:f3:2a:a8:1a: 98:9b:96:9c:53:df:43:5e:2a:df:8d:32:6c:39:42: c9:3b:7e:7b:f4:59:fc:d8:1a:82:fd:2d:ca:d4:f7: 6a:4b:ac:76:61:5c:6a:e1:1e:9b:52:e6:78:00:d3: 81:81:29:ae:26:7e:1e:e4:bf:bf:4a:b0:9e:07:e5: 9a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:72:E7:FD:09:29:8D:3C:DF:41:FD:5F:DC:DF:89:21:92:11:72:8E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7d766739-1e1d-4cc2-aa74-f851801a7751.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:300::/48 Signature Algorithm: sha256WithRSAEncryption 0a:1a:b9:8b:a7:ec:ef:e1:8b:68:1b:86:0d:0c:4f:e9:8b:d6: 80:56:91:46:94:a2:c5:0e:91:7a:01:94:8e:f3:a9:ea:73:be: 85:65:61:8e:dc:cb:09:06:fb:c0:63:31:ee:48:38:c3:95:aa: 64:8f:61:12:70:77:9e:a2:0e:c0:98:c4:49:1d:e2:88:39:eb: 6d:7c:3c:4e:65:75:8d:1f:59:c4:48:e4:ce:d8:c4:b3:a6:e1: 5b:d3:df:0d:b6:76:57:17:ee:b6:6f:ed:ae:a0:31:1c:4e:34: ef:47:a2:ae:6a:31:50:02:2b:17:a7:d6:d9:ca:b6:ee:25:c1: 42:df:ad:c3:35:58:a5:e2:38:1f:3e:40:38:98:be:09:d3:a3: f3:37:3e:cd:9b:91:cf:38:c7:5f:32:47:41:2f:6f:a9:ff:5c: f8:b0:7c:4a:16:e2:f6:32:df:04:32:6c:3d:a4:bb:91:c7:ba: 97:2c:b0:21:35:1c:0f:65:2b:f2:be:04:8f:dc:cf:13:d7:34: 39:31:df:28:0c:e1:ab:76:66:cc:99:2c:27:bd:80:a0:ac:ef: 0e:c3:79:4b:d4:67:7b:0f:dd:e7:31:2f:b9:12:0c:e8:4b:b4: 95:2f:0f:d2:f9:08:c1:a7:1a:4c:38:4b:57:1b:25:bf:10:3a: d8:33:94:84 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUN8+YqbKAsYUYUoP9xxJuxqZyUK8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDEzMDAwMDAwWhcNMjQwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODkzMjhlNDlmNDUwNzJmZGMxMGQ4MmQ0YmUzMmJlNDM2 NjNmNDg4NTMwMTM4OTJiMzg2OTlmNWJkMDY3NTgzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7rQ6W3A27SSstrFMzFGvqB459QDUrkFCnoOETgM54fCqu fDSQLFc9TXsJXpPwUqvv/f7DcPP5uIQyRBScFRHpyymxYGaloM76sJxK+snA5/Yy GQERIXJg7Vsy6tLZ0uwsOcRcxNlc8Lckt3QVGnyO5OVcSd6Cpkm28WdGkfH7NZI+ 1B+2mr9osyOfzLvLeOSbM5fPVnEBxi0Zyo35gBVDur+6Fd1ASxSxEMB23xDjYUFf bXhLv2yI79HDfFez8yqoGpiblpxT30NeKt+NMmw5Qsk7fnv0WfzYGoL9LcrU92pL rHZhXGrhHptS5ngA04GBKa4mfh7kv79KsJ4H5ZqJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/HLn/QkpjTzfQf1f3N+JIZIRco4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdkNzY2NzM5LTFlMWQtNGNjMi1hYTc0LWY4NTE4MDFhNzc1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAwAwDQYJKoZIhvcNAQELBQADggEBAAoauYun7O/hi2gbhg0MT+mL 1oBWkUaUosUOkXoBlI7zqepzvoVlYY7cywkG+8BjMe5IOMOVqmSPYRJwd56iDsCY xEkd4og56218PE5ldY0fWcRI5M7YxLOm4VvT3w22dlcX7rZv7a6gMRxONO9Hoq5q MVACKxen1tnKtu4lwULfrcM1WKXiOB8+QDiYvgnTo/M3Ps2bkc84x18yR0Evb6n/ XPiwfEoW4vYy3wQybD2ku5HHupcssCE1HA9lK/K+BI/czxPXNDkx3ygM4at2ZsyZ LCe9gKCs7w7DeUvUZ3sP3ecxL7kSDOhLtJUvD9L5CMGnGkw4S1cbJb8QOtgzlIQ= -----END CERTIFICATE-----Generated at Thu May 2 00:52:16 2024 by rpki-client on console-ams.rpki-client.org