$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7df85c95-e0fa-41de-aaf6-6af8d04e1250.roa File: 7df85c95-e0fa-41de-aaf6-6af8d04e1250.roa (raw, json) Hash identifier: tHnEw5vpq9CglrYdYL0aGyth1YXWc6oH/9WHa4Wz0H8= Subject key identifier: 49:4C:D2:C2:15:59:CB:65:D5:6F:E7:7F:49:52:78:D1:D3:AD:48:F9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 65CE0716DE4E7C271BE943710B3DD88BACF35CAB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7df85c95-e0fa-41de-aaf6-6af8d04e1250.roa Signing time: Fri 16 Aug 2024 00:00:00 +0000 ROA not before: Fri 16 Aug 2024 00:00:00 +0000 ROA not after: Fri 20 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f002:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Sep 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ce:07:16:de:4e:7c:27:1b:e9:43:71:0b:3d:d8:8b:ac:f3:5c:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 16 00:00:00 2024 GMT Not After : Sep 20 23:59:59 2024 GMT Subject: serialNumber=1e298777b051e0477777a67efc4e23d24a3cbb3e7d046e53bcbbc416a1311954, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c1:c3:06:b1:b5:ee:70:b2:7d:1d:d6:52:de: a0:67:36:f9:dd:a8:23:c3:38:9f:64:eb:90:d9:38: ce:3b:d9:b1:b8:1b:83:b8:51:56:ea:27:d0:f7:87: cc:70:5b:fd:6b:e0:be:73:c4:fc:93:9e:88:44:56: 3b:28:b6:cc:33:ff:38:cf:f0:2a:d4:41:a3:9c:16: 78:9e:4f:dd:87:ce:6f:8e:53:89:66:e6:8d:9d:c0: da:0d:de:1f:8c:79:15:86:c1:72:d5:ef:90:cc:9d: 1a:c9:90:dd:26:59:39:93:de:1b:55:f2:b5:29:82: a0:1f:07:c6:54:82:b2:4b:df:36:22:b0:4b:cf:e3: 5b:be:0d:a8:4e:53:9c:0f:08:93:e9:d6:52:f7:5f: 68:83:57:7d:72:04:21:de:30:a2:09:ec:43:1d:53: b6:18:c9:92:f2:5e:70:da:0a:e7:a4:76:80:41:ef: 33:94:b6:56:11:73:55:8a:18:1f:e9:cf:b3:70:68: 23:c5:2d:0e:69:e7:d9:cb:df:a1:6e:07:6a:72:36: 63:f7:35:68:36:ba:df:8e:40:38:0e:26:ff:b0:fe: 33:df:53:24:b3:58:69:1b:3e:a2:df:94:a7:a7:50: 96:76:d0:bc:e9:14:fd:2f:db:32:0f:90:8f:0b:40: e0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:4C:D2:C2:15:59:CB:65:D5:6F:E7:7F:49:52:78:D1:D3:AD:48:F9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7df85c95-e0fa-41de-aaf6-6af8d04e1250.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f002:c000::/40 Signature Algorithm: sha256WithRSAEncryption 4a:32:44:8b:6d:44:f1:19:1d:99:5c:75:16:ea:fa:52:54:be: 9f:dc:34:0e:ee:15:e5:bd:7c:f1:ea:5c:00:25:e6:aa:24:96: a6:59:eb:67:55:5d:e7:89:75:cc:87:fc:7c:e6:e5:8a:3f:f5: 42:54:84:b2:9e:b5:13:85:95:d2:d1:41:23:0c:bd:8b:b6:a1: b5:41:63:30:7b:05:74:89:a3:18:6d:21:fe:9e:74:78:3a:f0: dd:44:42:21:63:25:14:a1:f5:98:c9:b4:ea:bd:ee:f4:32:f8: fb:87:33:ad:4a:9f:55:c8:45:ab:54:af:ff:80:1f:58:2a:bf: 91:b0:17:97:1c:71:b8:62:ad:4f:0c:0c:03:6b:20:81:22:bd: cb:85:29:db:c9:29:85:b3:46:a9:e1:7e:62:6e:55:ba:e6:be: 4d:73:91:0f:75:f5:33:6b:7f:fc:66:d0:61:c2:eb:3d:d4:86: 0f:ca:14:fc:05:2a:e6:44:e2:bc:c3:01:bb:9e:4d:7f:b9:d2: 68:6c:a3:a3:b3:66:3f:ec:bc:0d:64:0d:ac:84:34:13:bd:fc: 31:6b:1c:9b:87:d1:5e:a0:9b:c2:37:d7:6f:0a:4a:78:7c:88: f7:be:97:e2:37:87:02:c0:b1:70:db:35:15:79:44:a8:1e:5d: 27:84:1f:c8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZc4HFt5OfCcb6UNxCz3Yi6zzXKswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwODE2MDAwMDAwWhcNMjQwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTI5ODc3N2IwNTFlMDQ3Nzc3N2E2N2VmYzRlMjNkMjRh M2NiYjNlN2QwNDZlNTNiY2JiYzQxNmExMzExOTU0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0wcMGsbXucLJ9HdZS3qBnNvndqCPDOJ9k65DZOM472bG4 G4O4UVbqJ9D3h8xwW/1r4L5zxPyTnohEVjsotswz/zjP8CrUQaOcFnieT92Hzm+O U4lm5o2dwNoN3h+MeRWGwXLV75DMnRrJkN0mWTmT3htV8rUpgqAfB8ZUgrJL3zYi sEvP41u+DahOU5wPCJPp1lL3X2iDV31yBCHeMKIJ7EMdU7YYyZLyXnDaCuekdoBB 7zOUtlYRc1WKGB/pz7NwaCPFLQ5p59nL36FuB2pyNmP3NWg2ut+OQDgOJv+w/jPf UySzWGkbPqLflKenUJZ20LzpFP0v2zIPkI8LQOAvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUSUzSwhVZy2XVb+d/SVJ40dOtSPkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdkZjg1Yzk1LWUwZmEtNDFkZS1hYWY2LTZhZjhkMDRlMTI1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPACwDANBgkqhkiG9w0BAQsFAAOCAQEASjJEi21E8RkdmVx1Fur6UlS+ n9w0Du4V5b188epcACXmqiSWplnrZ1Vd54l1zIf8fOblij/1QlSEsp61E4WV0tFB Iwy9i7ahtUFjMHsFdImjGG0h/p50eDrw3URCIWMlFKH1mMm06r3u9DL4+4czrUqf VchFq1Sv/4AfWCq/kbAXlxxxuGKtTwwMA2sggSK9y4Up28kphbNGqeF+Ym5Vuua+ TXORD3X1M2t//GbQYcLrPdSGD8oU/AUq5kTivMMBu55Nf7nSaGyjo7NmP+y8DWQN rIQ0E738MWscm4fRXqCbwjfXbwpKeHyI976X4jeHAsCxcNs1FXlEqB5dJ4QfyA== -----END CERTIFICATE-----Generated at Sat Sep 7 00:39:52 2024 by rpki-client on console-fra.rpki-client.org