$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/958ff9b2-2a71-408a-a63d-bf8515b23c8e.roa File: 958ff9b2-2a71-408a-a63d-bf8515b23c8e.roa (raw, json) Hash identifier: tTuAKBwPm419X+GIRtlTbET9GJHARk2fsVXZq5Gl4vk= Subject key identifier: F9:31:7D:1C:0F:4D:3C:5E:38:04:C5:9E:7B:E3:A1:03:D0:BF:A6:B5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0667FD60045396DE9A08A81FDD1DAC98F59F06CA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/958ff9b2-2a71-408a-a63d-bf8515b23c8e.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5527::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:67:fd:60:04:53:96:de:9a:08:a8:1f:dd:1d:ac:98:f5:9f:06:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=51cb4071f31267ecc147c27d4fda675032a04bab86fb6911c65eb1787d9c8dff, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:27:e1:5d:34:17:79:fe:a3:a0:71:d5:09:f8: b2:df:a9:e7:81:7a:d2:75:5a:2c:bb:2f:82:0d:48: 81:5b:91:09:59:6c:91:20:e0:db:a4:c7:97:ba:12: 0d:f8:09:d5:2e:50:e5:6e:6f:02:fe:2c:a7:0c:30: 2d:d5:49:ad:96:ef:65:15:ba:01:2e:63:aa:8a:93: cb:50:c9:20:ed:e0:1f:a3:46:6b:61:57:be:0b:55: fc:30:75:e6:c6:f1:e4:d7:58:5d:d7:b2:f3:fe:54: d7:73:ea:32:d2:68:77:7a:ea:e9:af:80:06:7c:6e: 80:8a:07:36:4a:aa:a9:60:eb:78:59:81:d4:93:48: f8:ac:bb:ba:de:4a:e2:44:91:55:95:fa:f5:93:6a: ad:e3:19:83:d7:4b:a6:ce:f8:b0:e0:ff:34:44:11: 12:c2:c3:2e:84:bd:61:85:eb:61:37:b7:01:a4:ca: 19:23:9e:c6:5d:a1:64:97:40:cb:19:54:39:f9:d3: 4c:02:2a:e0:68:1e:27:0b:39:ba:05:6e:9b:0b:9b: b9:56:c6:f7:82:83:bd:ca:f9:e8:9b:f0:f9:55:a7: 90:48:fb:28:30:94:c6:00:86:11:be:d3:14:d0:d4: e4:b0:7d:ad:d8:05:d6:b6:82:55:92:23:8e:37:58: d8:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:31:7D:1C:0F:4D:3C:5E:38:04:C5:9E:7B:E3:A1:03:D0:BF:A6:B5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/958ff9b2-2a71-408a-a63d-bf8515b23c8e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5527::/48 Signature Algorithm: sha256WithRSAEncryption 85:cb:2f:93:a1:e4:83:dc:09:cb:2c:33:7e:0c:8c:d9:cf:e6: ca:e6:cb:38:53:ab:39:71:a5:42:17:b7:31:b1:69:22:3e:6d: 1a:55:dc:29:1f:4d:4c:75:ef:b2:a9:36:48:c8:bb:f4:aa:b1: a8:44:f8:e7:a7:db:cb:82:95:18:a2:12:a0:86:57:be:17:79: 3e:6c:7b:d3:6b:c2:e6:7d:9b:98:68:a0:c5:04:d1:a3:03:be: fc:a4:8b:88:9b:5b:c6:bd:f2:ce:30:12:f0:d6:ae:f3:3a:8b: 97:0c:1b:5f:b5:e4:f5:47:22:62:58:09:d9:04:1d:c5:44:56: f9:23:cf:17:6d:7e:1f:7d:60:9b:da:33:7a:6b:29:b6:6f:75: 7b:fa:da:26:7b:bc:66:c0:dc:d9:6f:2c:26:8d:a7:71:0a:80: a9:cd:94:86:45:8b:fe:b2:50:c2:ea:07:32:d3:cb:d5:eb:8f: 98:2d:71:5f:dd:f6:69:7d:d7:3a:23:b5:ea:fc:6a:d7:e8:1d: 2c:93:a8:cc:fc:6a:37:13:3b:e4:98:21:7b:1f:1b:d9:33:21: 00:8e:57:e1:eb:a1:4f:aa:14:f3:34:69:b5:67:ca:4c:59:3b: 08:a0:ee:f5:df:fc:6b:c9:87:a8:ab:eb:63:30:d0:b3:34:c3: af:5f:6c:eb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBmf9YARTlt6aCKgf3R2smPWfBsowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MWNiNDA3MWYzMTI2N2VjYzE0N2MyN2Q0ZmRhNjc1MDMy YTA0YmFiODZmYjY5MTFjNjVlYjE3ODdkOWM4ZGZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7J+FdNBd5/qOgcdUJ+LLfqeeBetJ1Wiy7L4INSIFbkQlZ bJEg4Nukx5e6Eg34CdUuUOVubwL+LKcMMC3VSa2W72UVugEuY6qKk8tQySDt4B+j RmthV74LVfwwdebG8eTXWF3XsvP+VNdz6jLSaHd66umvgAZ8boCKBzZKqqlg63hZ gdSTSPisu7reSuJEkVWV+vWTaq3jGYPXS6bO+LDg/zREERLCwy6EvWGF62E3twGk yhkjnsZdoWSXQMsZVDn500wCKuBoHicLOboFbpsLm7lWxveCg73K+eib8PlVp5BI +ygwlMYAhhG+0xTQ1OSwfa3YBda2glWSI443WNjBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+TF9HA9NPF44BMWee+OhA9C/prUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk1OGZmOWIyLTJhNzEtNDA4YS1hNjNkLWJmODUxNWIyM2M4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVScwDQYJKoZIhvcNAQELBQADggEBAIXLL5Oh5IPcCcssM34MjNnP 5srmyzhTqzlxpUIXtzGxaSI+bRpV3CkfTUx177KpNkjIu/SqsahE+Oen28uClRii EqCGV74XeT5se9NrwuZ9m5hooMUE0aMDvvyki4ibW8a98s4wEvDWrvM6i5cMG1+1 5PVHImJYCdkEHcVEVvkjzxdtfh99YJvaM3prKbZvdXv62iZ7vGbA3NlvLCaNp3EK gKnNlIZFi/6yUMLqBzLTy9Xrj5gtcV/d9ml91zojter8atfoHSyTqMz8ajcTO+SY IXsfG9kzIQCOV+HroU+qFPM0abVnykxZOwig7vXf/GvJh6ir62Mw0LM0w69fbOs= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org