$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7df85c95-e0fa-41de-aaf6-6af8d04e1250.roa File: 7df85c95-e0fa-41de-aaf6-6af8d04e1250.roa (raw, json) Hash identifier: qs9LHWERvuGFZ7T/v+Qgz0/q8ompM2FzbbfsH0x3Mms= Subject key identifier: 9B:61:DC:06:54:85:7D:E9:E9:68:2A:89:29:24:21:A8:3A:DC:13:87 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 46520D8D281B074F6E307AF64641C87ED06953E7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7df85c95-e0fa-41de-aaf6-6af8d04e1250.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f002:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:52:0d:8d:28:1b:07:4f:6e:30:7a:f6:46:41:c8:7e:d0:69:53:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=33fd7e7645ae9496681e5f1763cd1b583965ae4d3c01d74bd5c42451a0aa2b7c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:dd:64:46:ac:c1:c7:10:30:72:9d:78:1a:5f: 8d:6d:24:bc:4b:93:d2:ce:a4:37:2e:95:67:6a:79: c9:67:07:f6:1e:dc:11:6f:00:f6:aa:46:73:8c:04: b8:3d:7c:e0:8b:a3:e4:4e:6c:fd:4b:fb:a9:88:59: 1d:a6:93:27:45:32:0b:bd:c7:dd:71:ed:34:cc:9c: 89:43:89:ef:ab:73:c9:77:27:8d:ca:a4:23:73:59: 45:17:a1:bc:08:fe:9b:e4:e2:5a:c4:dc:1c:ee:3b: 4c:17:62:fd:52:63:b6:41:1a:ad:1e:56:d2:c5:61: 44:2d:49:6d:a9:2f:12:4c:17:cd:81:5f:04:70:5e: 95:54:18:9a:b5:d2:5b:84:e8:f2:01:2d:34:67:e4: 30:a5:1e:d0:de:6b:7f:cd:6d:65:90:31:64:ae:ae: 8b:bb:09:35:9e:a0:ed:19:ac:9d:fd:33:cd:93:8b: fa:4c:73:8d:ec:c4:1a:79:34:47:37:c8:b2:74:e2: c7:07:5a:aa:23:ad:ae:fb:5c:70:1e:92:d2:cc:81: 4d:f2:a5:e8:d2:3b:4f:c8:da:dc:74:f1:31:17:67: c9:38:f1:79:a7:2e:b0:6d:29:b8:93:2a:81:0c:75: db:9e:6d:38:4b:f4:9d:82:55:f8:c2:b4:31:ec:cb: f4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:61:DC:06:54:85:7D:E9:E9:68:2A:89:29:24:21:A8:3A:DC:13:87 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7df85c95-e0fa-41de-aaf6-6af8d04e1250.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f002:c000::/40 Signature Algorithm: sha256WithRSAEncryption 8c:2c:c3:6c:ae:01:1f:be:f5:1a:cb:1a:b3:55:89:b3:ce:a0: 89:50:13:28:c2:16:9d:23:71:0d:fb:3e:9b:6a:5e:96:9f:29: e8:62:8c:75:c8:79:54:d6:df:a8:bd:7a:ac:88:c0:51:24:7b: b6:28:2d:ab:75:8e:2c:e2:20:63:5f:6f:2c:98:57:a9:00:09: 59:92:b4:02:f8:00:d5:7d:f1:04:73:c7:84:3b:42:a7:98:1d: cb:bb:78:c1:58:14:98:12:5f:87:93:99:26:24:40:dc:e3:8e: 26:30:fa:28:04:bb:9d:b3:88:46:34:6c:16:3b:15:e7:a7:12: f8:69:ef:b6:c5:bc:9c:06:9f:b5:a2:e9:37:6f:39:d6:1d:ca: ec:75:50:a6:76:43:1b:64:8f:a9:b4:4c:cb:bb:0e:0f:92:aa: 24:97:36:5c:bd:ea:b0:7e:3c:b9:69:3d:aa:3d:57:83:25:ef: 14:b1:b1:dd:c4:93:72:2d:73:93:06:8c:25:6a:96:54:c3:e8: 8d:44:a6:b9:31:bf:2a:87:80:f6:50:3a:4d:11:4b:b4:2c:69: 0f:7a:50:a8:35:b8:7a:1c:94:14:2c:3f:16:0d:00:87:c9:84: 11:3b:a2:08:ff:2e:81:b6:6f:af:1d:e9:8b:b2:b3:67:83:dd: 3a:e9:92:2b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURlINjSgbB09uMHr2RkHIftBpU+cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzM2ZkN2U3NjQ1YWU5NDk2NjgxZTVmMTc2M2NkMWI1ODM5 NjVhZTRkM2MwMWQ3NGJkNWM0MjQ1MWEwYWEyYjdjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh3WRGrMHHEDBynXgaX41tJLxLk9LOpDculWdqeclnB/Ye 3BFvAPaqRnOMBLg9fOCLo+RObP1L+6mIWR2mkydFMgu9x91x7TTMnIlDie+rc8l3 J43KpCNzWUUXobwI/pvk4lrE3BzuO0wXYv1SY7ZBGq0eVtLFYUQtSW2pLxJMF82B XwRwXpVUGJq10luE6PIBLTRn5DClHtDea3/NbWWQMWSurou7CTWeoO0ZrJ39M82T i/pMc43sxBp5NEc3yLJ04scHWqojra77XHAektLMgU3ypejSO0/I2tx08TEXZ8k4 8XmnLrBtKbiTKoEMdduebThL9J2CVfjCtDHsy/RZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUm2HcBlSFfenpaCqJKSQhqDrcE4cwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdkZjg1Yzk1LWUwZmEtNDFkZS1hYWY2LTZhZjhkMDRlMTI1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPACwDANBgkqhkiG9w0BAQsFAAOCAQEAjCzDbK4BH771Gssas1WJs86g iVATKMIWnSNxDfs+m2pelp8p6GKMdch5VNbfqL16rIjAUSR7tigtq3WOLOIgY19v LJhXqQAJWZK0AvgA1X3xBHPHhDtCp5gdy7t4wVgUmBJfh5OZJiRA3OOOJjD6KAS7 nbOIRjRsFjsV56cS+GnvtsW8nAaftaLpN2851h3K7HVQpnZDG2SPqbRMy7sOD5Kq JJc2XL3qsH48uWk9qj1XgyXvFLGx3cSTci1zkwaMJWqWVMPojUSmuTG/KoeA9lA6 TRFLtCxpD3pQqDW4ehyUFCw/Fg0Ah8mEETuiCP8ugbZvrx3pi7KzZ4PdOumSKw== -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org