$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87fc20f7-0de9-48d8-850e-c430d88860e9.roa File: 87fc20f7-0de9-48d8-850e-c430d88860e9.roa (raw, json) Hash identifier: Ner8p8z27EoYTUbNZXvX/WjGIziHiKAYFIhUmUoV8kk= Subject key identifier: 45:87:2A:FA:0C:D5:45:79:21:9F:42:4E:C3:41:3B:51:40:C6:3B:37 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 308EC62826178554BC894C4BC3CFCD115446BC2B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87fc20f7-0de9-48d8-850e-c430d88860e9.roa Signing time: Fri 26 Apr 2024 00:00:00 +0000 ROA not before: Fri 26 Apr 2024 00:00:00 +0000 ROA not after: Fri 31 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:8e:c6:28:26:17:85:54:bc:89:4c:4b:c3:cf:cd:11:54:46:bc:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 26 00:00:00 2024 GMT Not After : May 31 23:59:59 2024 GMT Subject: serialNumber=ee53a0916cd471a0db367a00f33ade3335a30a0b141d3997434022060635de0d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:07:de:0a:68:a5:a9:78:7f:e4:18:73:2f:fa: b9:9b:d2:55:5b:61:f1:59:aa:e3:8d:87:d3:6e:7b: a5:c6:ef:0b:e4:ae:3b:49:58:80:9d:e6:06:76:2a: 21:72:d6:6b:7b:e5:ce:a4:ef:21:34:c9:5a:c2:89: ee:17:42:b0:d8:55:d9:50:1e:d4:0f:74:e6:33:ae: 94:56:5c:72:74:ea:eb:43:65:61:19:23:75:c4:61: 22:7e:95:65:dc:a5:73:71:32:ca:23:67:8c:3b:eb: 7d:84:5d:88:07:c1:09:57:3b:8c:0b:2d:e9:5f:87: 43:3a:2b:97:ab:53:3a:0e:33:ad:04:4a:16:4a:2e: 11:c2:8d:20:86:ac:43:e2:11:ed:77:09:ca:c1:04: 11:ba:b5:46:cd:79:b9:42:c4:f3:cc:14:b9:7c:c5: 09:77:d9:e4:a9:83:53:5a:8c:b1:5d:ed:53:a8:ca: a7:d7:80:62:98:d2:a2:0b:9e:28:d6:69:da:b6:b2: 66:b5:88:c9:72:97:e5:46:c8:b1:9f:b9:a9:35:0f: cd:91:5f:67:b0:38:a1:bf:5c:f8:ef:b7:4a:10:f4: 2d:41:c5:26:fa:cf:7e:c9:32:09:2e:aa:80:1d:d6: 2d:f3:b5:a5:8c:ec:1a:df:77:0f:93:b5:07:00:3b: a4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:87:2A:FA:0C:D5:45:79:21:9F:42:4E:C3:41:3B:51:40:C6:3B:37 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87fc20f7-0de9-48d8-850e-c430d88860e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:3::/48 Signature Algorithm: sha256WithRSAEncryption 70:cc:43:a9:f5:ba:ae:43:f8:cc:fa:8d:aa:f4:65:1f:87:18: 93:0d:91:a8:f1:e7:9a:f5:e6:10:cf:83:f1:03:58:b4:5d:0b: 37:6e:0c:49:6c:37:09:a9:0a:1d:88:37:b2:50:83:32:dd:53: 59:5e:e0:57:89:83:fd:57:24:67:ec:92:28:b4:ca:11:94:e2: 10:dc:4a:d5:73:16:1f:ac:38:d0:98:6e:c6:94:00:e6:51:77: 85:56:c3:4f:48:84:c4:0f:a3:df:33:1c:ab:af:a1:6a:28:f7: 59:c0:d7:14:cf:03:fd:94:22:c7:af:1e:93:06:9e:00:55:95: 97:c2:c6:6f:ec:67:d3:3a:f4:8d:af:28:e2:82:dd:f0:2e:84: 30:2c:87:29:e2:ed:5f:3b:77:86:7b:fc:38:46:ff:9c:a4:b7: 9b:31:ce:48:8e:03:d2:78:79:4d:76:bf:03:da:47:bc:7b:dc: 35:89:96:2c:37:81:37:d6:7f:93:84:3a:5c:54:57:c9:e2:97: 84:dd:84:88:11:9e:fa:fb:bf:d5:9b:7f:36:da:18:3e:57:57: 4f:9c:6b:c9:00:69:29:7b:0a:8b:9d:31:6b:8e:7f:fb:26:fc: 7d:c4:44:cd:05:d8:6d:f7:92:63:1d:f1:23:fa:31:2a:6b:1b: 2b:90:64:ec -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMI7GKCYXhVS8iUxLw8/NEVRGvCswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDI2MDAwMDAwWhcNMjQwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTUzYTA5MTZjZDQ3MWEwZGIzNjdhMDBmMzNhZGUzMzM1 YTMwYTBiMTQxZDM5OTc0MzQwMjIwNjA2MzVkZTBkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCB94KaKWpeH/kGHMv+rmb0lVbYfFZquONh9Nue6XG7wvk rjtJWICd5gZ2KiFy1mt75c6k7yE0yVrCie4XQrDYVdlQHtQPdOYzrpRWXHJ06utD ZWEZI3XEYSJ+lWXcpXNxMsojZ4w7632EXYgHwQlXO4wLLelfh0M6K5erUzoOM60E ShZKLhHCjSCGrEPiEe13CcrBBBG6tUbNeblCxPPMFLl8xQl32eSpg1NajLFd7VOo yqfXgGKY0qILnijWadq2sma1iMlyl+VGyLGfuak1D82RX2ewOKG/XPjvt0oQ9C1B xSb6z37JMgkuqoAd1i3ztaWM7Brfdw+TtQcAO6QFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURYcq+gzVRXkhn0JOw0E7UUDGOzcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg3ZmMyMGY3LTBkZTktNDhkOC04NTBlLWM0MzBkODg4NjBlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAMwDQYJKoZIhvcNAQELBQADggEBAHDMQ6n1uq5D+Mz6jar0ZR+H GJMNkajx55r15hDPg/EDWLRdCzduDElsNwmpCh2IN7JQgzLdU1le4FeJg/1XJGfs kii0yhGU4hDcStVzFh+sONCYbsaUAOZRd4VWw09IhMQPo98zHKuvoWoo91nA1xTP A/2UIsevHpMGngBVlZfCxm/sZ9M69I2vKOKC3fAuhDAshyni7V87d4Z7/DhG/5yk t5sxzkiOA9J4eU12vwPaR7x73DWJliw3gTfWf5OEOlxUV8nil4TdhIgRnvr7v9Wb fzbaGD5XV0+ca8kAaSl7CoudMWuOf/sm/H3ERM0F2G33kmMd8SP6MSprGyuQZOw= -----END CERTIFICATE-----Generated at Thu May 2 01:05:46 2024 by rpki-client on console-fra.rpki-client.org