$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa File: 7fef00dc-1a9a-497c-b857-792da38e532f.roa (raw, json) Hash identifier: GiTneZfCW+0dRPVf8YZyxKdIH0ASMdU0AyVwj5yZNv8= Subject key identifier: 05:52:32:E9:25:22:6C:1B:69:8F:35:E6:E7:F3:75:E2:88:0B:1D:68 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5021AD859FB7015C015D625179D4062E4E70BB86 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:21:ad:85:9f:b7:01:5c:01:5d:62:51:79:d4:06:2e:4e:70:bb:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=25ffb6f1eb23b3a8e3acc3809169de36213e0c5b707e7055b73e783489c92015, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:d9:dd:e7:e3:ae:62:84:02:14:c6:52:6e:95: 86:b2:26:1a:9f:67:69:c0:26:db:15:5c:93:50:e3: be:6b:cf:b0:8e:f1:c7:0b:7b:65:b0:24:d9:45:49: 3b:56:f0:9f:58:9b:e8:85:c4:b7:38:f0:4d:d8:d6: 1e:d2:dd:fd:83:0a:d7:44:59:c0:ab:b4:b3:23:2e: 97:45:ba:f6:f8:66:ec:03:9e:88:55:1d:43:cd:77: dc:e7:7c:4a:ac:df:be:7e:70:df:33:28:ea:1e:64: 8e:5e:26:6f:34:26:02:0e:92:a1:45:b6:c3:02:24: 29:6b:8e:de:e0:d8:81:2a:09:a3:05:a7:95:e2:d6: 34:f4:de:8c:df:51:38:55:53:00:a2:0e:f3:02:44: 84:1b:f9:6b:2b:57:e7:76:18:9c:cb:38:74:5b:34: fc:78:4a:ae:79:a8:bf:28:07:f6:23:7a:64:5f:4b: f6:2e:d3:75:6a:60:c1:10:56:65:05:a5:77:68:e8: 99:a3:91:2a:7e:8d:16:33:62:62:6c:5f:9e:ba:16: 01:f8:80:5a:fa:af:f9:3a:cf:94:76:cd:d1:48:8f: 52:9b:f1:47:0c:7c:14:c4:03:d8:c0:77:63:69:dd: b8:ad:2b:b8:b6:9b:ae:0c:6a:ee:4f:45:51:a0:66: 30:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:52:32:E9:25:22:6C:1B:69:8F:35:E6:E7:F3:75:E2:88:0B:1D:68 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5500::/48 Signature Algorithm: sha256WithRSAEncryption 19:af:83:4b:3e:7a:93:2d:c8:26:bd:b7:6e:f0:c9:c6:05:48: 1e:4a:d7:77:12:a2:d9:15:0e:48:b6:f9:a7:08:8c:f9:71:ee: ab:e6:d0:d4:b3:70:20:4e:e5:9d:5a:ff:04:f6:44:c4:ad:c7: bc:db:c6:0e:2b:30:12:65:85:3a:93:c4:6b:04:94:69:09:25: 56:85:34:eb:47:0a:fb:86:11:db:51:08:b5:2d:97:d6:ca:df: e2:ac:3a:af:a3:18:9e:af:89:60:c7:39:42:61:eb:b8:60:62: c4:6b:69:23:a3:b1:49:de:6c:e3:ca:06:e0:22:98:a7:1c:85: 97:7d:8c:bc:f8:02:56:90:ad:ac:1e:5c:fd:6c:c3:f2:66:88: fc:8c:ca:50:06:a6:f7:70:d3:27:08:5f:64:27:d5:d9:49:63: 76:b2:0b:66:0d:9a:54:42:c7:47:c9:72:e6:11:22:d3:04:ca: e9:7c:6e:7d:59:83:ab:36:02:9e:34:da:72:25:f4:55:53:22: cf:94:4d:7d:46:f6:36:fe:9d:67:04:7d:d5:92:39:fa:df:3f: 65:5f:a4:cd:85:e2:d5:10:67:90:7e:e0:6c:7d:58:37:30:7e: 47:b5:e5:65:a3:3f:79:a0:98:45:62:00:f6:68:78:96:7e:31: a1:46:3d:13 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUCGthZ+3AVwBXWJRedQGLk5wu4YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWZmYjZmMWViMjNiM2E4ZTNhY2MzODA5MTY5ZGUzNjIx M2UwYzViNzA3ZTcwNTViNzNlNzgzNDg5YzkyMDE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCM2d3n465ihAIUxlJulYayJhqfZ2nAJtsVXJNQ475rz7CO 8ccLe2WwJNlFSTtW8J9Ym+iFxLc48E3Y1h7S3f2DCtdEWcCrtLMjLpdFuvb4ZuwD nohVHUPNd9znfEqs375+cN8zKOoeZI5eJm80JgIOkqFFtsMCJClrjt7g2IEqCaMF p5Xi1jT03ozfUThVUwCiDvMCRIQb+WsrV+d2GJzLOHRbNPx4Sq55qL8oB/YjemRf S/Yu03VqYMEQVmUFpXdo6JmjkSp+jRYzYmJsX566FgH4gFr6r/k6z5R2zdFIj1Kb 8UcMfBTEA9jAd2Np3bitK7i2m64Mau5PRVGgZjCLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBVIy6SUibBtpjzXm5/N14ogLHWgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdmZWYwMGRjLTFhOWEtNDk3Yy1iODU3LTc5MmRhMzhlNTMyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQAwDQYJKoZIhvcNAQELBQADggEBABmvg0s+epMtyCa9t27wycYF SB5K13cSotkVDki2+acIjPlx7qvm0NSzcCBO5Z1a/wT2RMStx7zbxg4rMBJlhTqT xGsElGkJJVaFNOtHCvuGEdtRCLUtl9bK3+KsOq+jGJ6viWDHOUJh67hgYsRraSOj sUnebOPKBuAimKcchZd9jLz4AlaQraweXP1sw/JmiPyMylAGpvdw0ycIX2Qn1dlJ Y3ayC2YNmlRCx0fJcuYRItMEyul8bn1Zg6s2Ap402nIl9FVTIs+UTX1G9jb+nWcE fdWSOfrfP2VfpM2F4tUQZ5B+4Gx9WDcwfke15WWjP3mgmEViAPZoeJZ+MaFGPRM= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org