$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a057d928-cbb8-42a7-8833-36c45fa2a922.roa File: a057d928-cbb8-42a7-8833-36c45fa2a922.roa (raw, json) Hash identifier: ld1yz3o1GM8jZimfTGFXGnHyK0TukZ22gSBnT2j0bCs= Subject key identifier: 66:E9:87:C2:8F:EE:EC:2F:D4:E3:25:DC:74:0F:02:E7:09:B3:95:F3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 03F4B762079E575EB2214E978277F1B393B7F4CF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a057d928-cbb8-42a7-8833-36c45fa2a922.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:86::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:f4:b7:62:07:9e:57:5e:b2:21:4e:97:82:77:f1:b3:93:b7:f4:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=d4f34a7ff69bee1d789e2376ebf8e64a8b72d9518e7a4131f2e044505f7d4b9f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:10:86:ef:ae:6f:fd:7d:87:b4:2f:9b:8b:68: bb:e6:86:0d:ab:66:46:22:e4:f9:e2:86:3a:26:c0: 57:d0:47:90:dc:2c:88:48:ac:31:39:91:57:38:e5: 7b:40:c2:a0:8c:c0:0f:7d:0f:bd:b9:ce:5a:04:8a: af:54:9a:2e:8c:de:1f:70:9f:c5:cd:4b:b2:92:4b: 0d:78:bb:76:37:a8:29:27:43:0a:61:7b:f5:2f:e4: ef:14:3f:13:40:f1:70:32:9c:7e:97:3b:f7:4b:64: 51:fe:bf:b8:d0:eb:38:e5:27:c3:be:2f:de:cf:c4: 6b:6d:9c:f4:60:9b:b7:c6:56:79:b9:8e:19:7e:aa: 8e:b9:f0:72:c7:bf:05:d6:c8:08:df:ee:48:f8:ee: 1b:82:32:23:14:d9:8d:36:ac:86:51:d5:f7:02:e9: 58:ad:22:4f:a8:fb:8a:d2:93:7e:2a:fd:1c:37:ee: c0:61:df:1b:d7:0b:c0:d9:d3:7b:72:30:59:d6:a6: 8b:a2:da:ab:2f:d5:c1:7b:9d:77:89:ed:e1:f2:9a: 8b:23:b0:a4:ce:1b:db:90:b1:8c:08:82:a5:6f:42: dd:fb:d4:8e:aa:06:f3:c7:23:3b:e4:d3:01:c4:91: 4b:91:e5:27:74:cf:d8:a0:b7:af:8d:d2:b1:18:65: 6a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E9:87:C2:8F:EE:EC:2F:D4:E3:25:DC:74:0F:02:E7:09:B3:95:F3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a057d928-cbb8-42a7-8833-36c45fa2a922.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:86::/48 Signature Algorithm: sha256WithRSAEncryption 54:57:ed:ff:b5:50:22:fb:db:10:a6:ee:00:e9:a0:01:ec:2e: cc:7a:d4:c0:9a:f0:b3:d0:5d:15:0b:0e:d9:69:c2:ed:08:7d: 26:57:0c:43:01:f9:8d:61:5d:c0:27:9f:78:5e:3a:ab:18:ea: 2d:5f:ac:e6:58:5d:10:d3:db:68:1d:45:7b:40:b2:5a:08:ec: a5:a9:45:ed:e1:9c:a7:d6:6b:13:a8:f4:a7:f8:20:a2:fb:37: df:c9:f0:b6:52:29:d7:b0:5d:32:30:2b:dc:f9:de:26:63:61: 36:94:b6:67:60:7d:d5:3b:bd:f2:d2:3e:fd:80:84:fb:84:d5: ea:99:cb:e3:4d:6d:d1:5a:6d:97:2e:b6:73:4d:17:4f:f2:c8: 8c:72:1e:70:a6:e0:f7:01:4b:d8:a4:cf:ea:b6:bd:b6:c0:6a: 65:64:80:dc:3c:de:29:0f:a9:ec:2e:c2:16:2c:fd:38:d0:b1: 46:a2:7b:bd:46:b5:f3:92:6d:7e:28:b5:d8:5f:6d:39:a9:19: 8f:b6:5a:21:44:c2:08:d6:73:13:c4:16:de:00:39:25:64:d6: b9:d1:67:e1:b1:56:b0:b6:28:f7:75:38:3f:6e:e9:c4:0f:50: 38:91:d1:a8:71:a4:57:92:be:fb:fc:0b:f2:89:71:a0:40:c5: 15:8f:0f:f4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUA/S3YgeeV16yIU6Xgnfxs5O39M8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNGYzNGE3ZmY2OWJlZTFkNzg5ZTIzNzZlYmY4ZTY0YThi NzJkOTUxOGU3YTQxMzFmMmUwNDQ1MDVmN2Q0YjlmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxEIbvrm/9fYe0L5uLaLvmhg2rZkYi5PnihjomwFfQR5Dc LIhIrDE5kVc45XtAwqCMwA99D725zloEiq9Umi6M3h9wn8XNS7KSSw14u3Y3qCkn Qwphe/Uv5O8UPxNA8XAynH6XO/dLZFH+v7jQ6zjlJ8O+L97PxGttnPRgm7fGVnm5 jhl+qo658HLHvwXWyAjf7kj47huCMiMU2Y02rIZR1fcC6VitIk+o+4rSk34q/Rw3 7sBh3xvXC8DZ03tyMFnWpoui2qsv1cF7nXeJ7eHymosjsKTOG9uQsYwIgqVvQt37 1I6qBvPHIzvk0wHEkUuR5Sd0z9igt6+N0rEYZWqXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZumHwo/u7C/U4yXcdA8C5wmzlfMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EwNTdkOTI4LWNiYjgtNDJhNy04ODMzLTM2YzQ1ZmEyYTkyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIYwDQYJKoZIhvcNAQELBQADggEBAFRX7f+1UCL72xCm7gDpoAHs Lsx61MCa8LPQXRULDtlpwu0IfSZXDEMB+Y1hXcAnn3heOqsY6i1frOZYXRDT22gd RXtAsloI7KWpRe3hnKfWaxOo9Kf4IKL7N9/J8LZSKdewXTIwK9z53iZjYTaUtmdg fdU7vfLSPv2AhPuE1eqZy+NNbdFabZcutnNNF0/yyIxyHnCm4PcBS9ikz+q2vbbA amVkgNw83ikPqewuwhYs/TjQsUaie71GtfOSbX4otdhfbTmpGY+2WiFEwgjWcxPE Ft4AOSVk1rnRZ+GxVrC2KPd1OD9u6cQPUDiR0ahxpFeSvvv8C/KJcaBAxRWPD/Q= -----END CERTIFICATE-----Generated at Thu May 2 01:05:46 2024 by rpki-client on console-fra.rpki-client.org