$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/82f646b7-13e7-4f95-aac4-032527e626b6.roa File: 82f646b7-13e7-4f95-aac4-032527e626b6.roa (raw, json) Hash identifier: twtB/21rZFVl3y39fP0sYqecoAtT3mXoJHNLwntnIJc= Subject key identifier: DF:B4:F5:E0:F5:F4:47:C8:FC:1F:E0:EE:64:DD:77:78:22:91:1C:2D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2117F940300EAD75EB3690CDFFBEE21065FBEB2E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/82f646b7-13e7-4f95-aac4-032527e626b6.roa Signing time: Mon 29 Apr 2024 00:00:00 +0000 ROA not before: Mon 29 Apr 2024 00:00:00 +0000 ROA not after: Mon 03 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:81::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:17:f9:40:30:0e:ad:75:eb:36:90:cd:ff:be:e2:10:65:fb:eb:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 29 00:00:00 2024 GMT Not After : Jun 3 23:59:59 2024 GMT Subject: serialNumber=cc87339aef60e3d74f1c6166d2cade28550291e6d5c5b26ff10eeedf258b0ce6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8e:eb:cf:24:c9:43:cb:ea:fb:e5:e4:44:57: c4:04:d7:4e:95:4a:5d:bc:a1:88:a9:bc:d6:d5:a6: 4f:72:d2:88:ee:2d:47:72:f8:8b:bf:67:2f:e9:ac: 25:b8:79:a9:39:96:16:c8:c7:df:f6:16:5b:51:e1: 7b:ba:43:43:ed:37:72:ee:0d:60:e5:0d:c3:9b:f0: 8b:80:74:43:c9:a1:ba:fd:dc:29:6b:a8:6c:31:26: 71:39:5f:d4:72:07:48:26:c5:c9:00:aa:1c:32:ae: 46:c9:84:7b:37:ed:f6:c7:61:a0:b7:92:96:3f:57: 13:b7:11:13:80:ac:f7:e1:0e:31:8c:fa:c1:4c:76: 1e:3f:25:a4:79:d9:87:1b:b7:8c:e1:ca:9d:97:5b: d0:39:18:e3:55:be:7c:ba:41:d0:74:85:69:8a:ef: 02:3a:cf:3b:e1:74:f7:2d:9a:29:6f:bf:9b:e9:e0: 04:d7:d5:34:fd:88:06:a5:ae:17:ce:fc:79:c0:21: df:70:b9:67:0b:8a:2b:bd:ca:76:c0:d7:a6:05:20: 7b:a1:a6:06:9c:1a:3c:0e:ca:3e:b1:51:a5:b2:0f: 85:50:94:84:01:92:1a:35:ad:43:c9:2d:5b:be:e3: 85:5d:62:5d:a1:0e:ab:ac:c4:92:9c:41:a1:f2:6d: 77:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:B4:F5:E0:F5:F4:47:C8:FC:1F:E0:EE:64:DD:77:78:22:91:1C:2D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/82f646b7-13e7-4f95-aac4-032527e626b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:81::/48 Signature Algorithm: sha256WithRSAEncryption 21:df:16:cf:aa:3e:56:81:16:4d:bc:45:00:e8:e9:16:56:98: f5:54:ef:ee:ca:6c:4b:64:98:5f:f4:e3:9e:b4:f7:a5:a6:2c: 86:3e:21:ad:b0:00:99:05:e9:15:6c:df:0c:6e:f5:e8:98:cd: e8:bd:07:65:10:6a:97:1f:0d:ed:47:af:9c:b9:34:07:0c:e3: 07:59:8d:4e:41:ee:0d:dc:36:05:bf:bf:57:d0:64:6f:51:7e: 29:27:7a:09:e0:44:ef:5c:29:e5:a6:f9:91:1c:61:49:bf:41: 41:2e:9f:e7:c1:0f:a9:bc:67:3f:92:8b:30:be:df:19:e1:e5: d3:ae:f3:93:d7:b5:60:e2:37:2f:2f:3b:f0:51:41:74:c9:67: 99:9e:a5:a6:03:72:56:82:88:89:f9:e3:be:dc:2d:f1:2e:99: 2f:18:02:f6:82:11:f4:44:25:60:2c:63:1c:5c:6d:42:2c:c8: a8:25:b2:61:a3:99:33:0f:e9:19:4e:5f:d4:04:6b:76:12:e5: 4e:a3:ba:01:a3:40:21:bc:c7:46:19:01:1c:aa:97:fb:db:b3: 4e:82:18:ec:40:bf:3d:0e:4a:36:21:5b:25:76:b7:32:cb:f7: e2:c5:77:d4:83:4d:46:f1:6e:be:9c:ea:d9:0f:51:e0:67:fe: 0a:21:eb:6e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIRf5QDAOrXXrNpDN/77iEGX76y4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDI5MDAwMDAwWhcNMjQwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzg3MzM5YWVmNjBlM2Q3NGYxYzYxNjZkMmNhZGUyODU1 MDI5MWU2ZDVjNWIyNmZmMTBlZWVkZjI1OGIwY2U2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2juvPJMlDy+r75eREV8QE106VSl28oYipvNbVpk9y0oju LUdy+Iu/Zy/prCW4eak5lhbIx9/2FltR4Xu6Q0PtN3LuDWDlDcOb8IuAdEPJobr9 3ClrqGwxJnE5X9RyB0gmxckAqhwyrkbJhHs37fbHYaC3kpY/VxO3EROArPfhDjGM +sFMdh4/JaR52Ycbt4zhyp2XW9A5GONVvny6QdB0hWmK7wI6zzvhdPctmilvv5vp 4ATX1TT9iAalrhfO/HnAId9wuWcLiiu9ynbA16YFIHuhpgacGjwOyj6xUaWyD4VQ lIQBkho1rUPJLVu+44VdYl2hDqusxJKcQaHybXeHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU37T14PX0R8j8H+DuZN13eCKRHC0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzgyZjY0NmI3LTEzZTctNGY5NS1hYWM0LTAzMjUyN2U2MjZiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIEwDQYJKoZIhvcNAQELBQADggEBACHfFs+qPlaBFk28RQDo6RZW mPVU7+7KbEtkmF/0456096WmLIY+Ia2wAJkF6RVs3wxu9eiYzei9B2UQapcfDe1H r5y5NAcM4wdZjU5B7g3cNgW/v1fQZG9RfiknegngRO9cKeWm+ZEcYUm/QUEun+fB D6m8Zz+SizC+3xnh5dOu85PXtWDiNy8vO/BRQXTJZ5mepaYDclaCiIn5477cLfEu mS8YAvaCEfREJWAsYxxcbUIsyKglsmGjmTMP6RlOX9QEa3YS5U6jugGjQCG8x0YZ ARyql/vbs06CGOxAvz0OSjYhWyV2tzLL9+LFd9SDTUbxbr6c6tkPUeBn/goh624= -----END CERTIFICATE-----Generated at Thu May 2 01:05:46 2024 by rpki-client on console-fra.rpki-client.org