$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/857e6b8e-7f35-4691-b07b-42d8d959bd2b.roa File: 857e6b8e-7f35-4691-b07b-42d8d959bd2b.roa (raw, json) Hash identifier: /crWJHYxnhl22fHV0DKhfYaybUIvreEo8CPE/LTMGtY= Subject key identifier: AB:E3:4F:4C:06:57:5C:B7:C1:E8:9D:B1:F5:E4:35:87:A1:9F:52:8D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6E3761342D7D62D5BCEFC691CF357DB56DE1E1AD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/857e6b8e-7f35-4691-b07b-42d8d959bd2b.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:552d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:37:61:34:2d:7d:62:d5:bc:ef:c6:91:cf:35:7d:b5:6d:e1:e1:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=876c5847a7b2c51a745582e74f9387134025b5eb8c28a9ed2805ceeb035ced51, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:59:1e:97:9e:28:fc:00:6c:1c:d2:4c:5b:cc: 30:59:e0:04:c8:5c:3b:77:d1:72:bf:72:05:47:7e: 25:32:e7:a4:a4:5e:7d:03:9c:3a:b8:47:20:72:af: d9:9e:be:9b:9c:67:f2:21:cb:6f:61:e6:37:c4:f7: bd:aa:e2:43:7b:c2:68:04:4a:a9:19:e8:a0:2c:3f: 37:20:67:56:25:96:ac:d8:a9:2d:e9:ca:41:db:79: ee:14:f5:bc:e0:a0:7a:26:ea:01:dd:fb:e8:42:0a: 53:76:36:65:0e:91:8c:24:3c:46:56:b6:9b:90:20: 3a:dc:db:13:5f:6d:7b:28:92:79:cd:d2:bf:91:71: a0:fd:b9:d4:11:d7:da:6c:b9:e0:c2:31:6e:b9:e3: fb:24:d8:c6:a0:0d:c5:24:c6:ff:42:3e:c3:a7:a2: e5:db:02:db:84:06:31:55:fd:84:de:97:0d:0b:bb: 65:ab:85:a4:03:97:a9:7c:af:0e:6d:1c:73:bc:e5: cd:0d:d3:a6:1c:cd:ea:6a:36:91:bd:b7:a5:77:c7: 8c:de:52:17:36:39:d0:c1:19:9c:ea:a8:bc:90:07: 17:c8:c6:19:f1:66:13:bb:2e:b9:58:41:b0:3b:69: 52:42:09:b7:86:b2:d5:4b:67:a1:08:f4:09:f4:9d: 77:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E3:4F:4C:06:57:5C:B7:C1:E8:9D:B1:F5:E4:35:87:A1:9F:52:8D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/857e6b8e-7f35-4691-b07b-42d8d959bd2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:552d::/48 Signature Algorithm: sha256WithRSAEncryption 16:d9:8c:7c:76:47:42:84:c1:0a:02:a5:6e:0d:1f:4b:46:96: 7f:dd:aa:4e:86:9d:dd:02:80:11:32:3b:53:24:62:43:84:0d: 87:c2:97:ae:e4:d2:2f:5d:e6:d9:66:de:d1:b1:7b:31:d5:a5: 12:c7:54:a9:1d:bd:2f:c6:ae:77:94:86:f1:a2:05:cc:12:0f: 5c:74:12:ac:9a:b4:ec:55:c9:e9:79:ed:d3:ec:82:64:b2:ad: 37:b5:a9:cf:68:19:06:93:03:c3:3c:d2:f5:71:01:a2:9f:21: 5b:5e:e0:5d:c7:ae:a0:86:7d:ff:f1:2d:9c:08:82:b7:91:32: af:17:47:58:83:20:54:c5:d9:32:85:73:cb:32:9c:f0:3e:43: da:a2:cf:93:14:e0:c3:b7:14:ef:f7:bd:ec:26:0c:83:d9:78: 9e:de:23:de:26:b3:4a:77:57:90:f6:9d:59:15:bc:7a:fb:a4: 27:5e:c6:97:8e:ba:42:51:97:80:54:c5:68:f5:28:de:26:30: 24:1a:3e:57:66:56:26:d3:4a:a1:78:67:09:74:33:4b:b1:e2: cb:55:4a:b3:75:5e:8b:96:b5:75:5d:16:b9:fb:a8:12:63:2c: 87:63:d5:74:98:e9:d4:06:55:bf:f2:87:15:5f:34:b2:15:1f: 7a:b0:2e:17 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbjdhNC19YtW878aRzzV9tW3h4a0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzZjNTg0N2E3YjJjNTFhNzQ1NTgyZTc0ZjkzODcxMzQw MjViNWViOGMyOGE5ZWQyODA1Y2VlYjAzNWNlZDUxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/WR6Xnij8AGwc0kxbzDBZ4ATIXDt30XK/cgVHfiUy56Sk Xn0DnDq4RyByr9mevpucZ/Ihy29h5jfE972q4kN7wmgESqkZ6KAsPzcgZ1YllqzY qS3pykHbee4U9bzgoHom6gHd++hCClN2NmUOkYwkPEZWtpuQIDrc2xNfbXsoknnN 0r+RcaD9udQR19psueDCMW654/sk2MagDcUkxv9CPsOnouXbAtuEBjFV/YTelw0L u2WrhaQDl6l8rw5tHHO85c0N06YczepqNpG9t6V3x4zeUhc2OdDBGZzqqLyQBxfI xhnxZhO7LrlYQbA7aVJCCbeGstVLZ6EI9An0nXdtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUq+NPTAZXXLfB6J2x9eQ1h6GfUo0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg1N2U2YjhlLTdmMzUtNDY5MS1iMDdiLTQyZDhkOTU5YmQyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVS0wDQYJKoZIhvcNAQELBQADggEBABbZjHx2R0KEwQoCpW4NH0tG ln/dqk6Gnd0CgBEyO1MkYkOEDYfCl67k0i9d5tlm3tGxezHVpRLHVKkdvS/GrneU hvGiBcwSD1x0EqyatOxVyel57dPsgmSyrTe1qc9oGQaTA8M80vVxAaKfIVte4F3H rqCGff/xLZwIgreRMq8XR1iDIFTF2TKFc8synPA+Q9qiz5MU4MO3FO/3vewmDIPZ eJ7eI94ms0p3V5D2nVkVvHr7pCdexpeOukJRl4BUxWj1KN4mMCQaPldmVibTSqF4 Zwl0M0ux4stVSrN1XouWtXVdFrn7qBJjLIdj1XSY6dQGVb/yhxVfNLIVH3qwLhc= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org