$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a057d928-cbb8-42a7-8833-36c45fa2a922.roa File: a057d928-cbb8-42a7-8833-36c45fa2a922.roa (raw, json) Hash identifier: mI8LUz2XLXF+cEzF9QivozBbwxAZPOIoaguNK+3kXtw= Subject key identifier: 8D:67:04:20:2F:02:68:E5:D1:E5:C0:B2:05:32:D8:84:13:0F:B6:3A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 49A90803B4029E2806B4D07D682E5C005ED4B036 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a057d928-cbb8-42a7-8833-36c45fa2a922.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:86::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:a9:08:03:b4:02:9e:28:06:b4:d0:7d:68:2e:5c:00:5e:d4:b0:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=8ca176a904cf612157ed6eaaaafb0aec5972d6d4cfa881b085971b108d3b6dc0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:82:22:73:2c:81:30:ad:14:1d:08:7f:fd:8e: e2:53:da:e8:99:15:d4:c0:1a:81:15:01:c2:dc:f2: 4b:c6:b1:ec:13:4e:b5:eb:5e:ee:8c:b2:2f:4a:44: 31:a0:d0:7f:6d:e9:ce:66:89:6a:b2:31:3c:fe:9a: 03:a1:ac:64:9c:52:31:89:de:19:a4:f9:54:66:52: 3b:cc:84:c8:cb:74:6c:b3:bd:2f:80:d7:a4:b9:f6: 48:cd:8d:a5:76:5d:8a:65:3a:b6:95:68:8c:00:2b: 88:a0:ce:e2:8e:cb:2f:5a:72:96:12:af:b4:b9:84: c8:94:14:b9:67:05:7c:c0:19:d5:37:2a:95:ed:9a: 31:11:77:5d:d1:e8:b0:90:c1:2f:5f:cf:54:8f:5c: 05:9c:3a:65:e3:17:13:f7:39:a0:75:05:b7:84:7f: 99:8e:7b:ba:b9:d8:36:b5:0d:5f:b5:a5:d0:f6:a0: c3:8f:77:3c:e6:e6:01:e8:c2:e5:81:af:12:3a:fe: 41:34:a3:f0:a2:a4:9e:85:14:9d:56:20:a7:d1:27: 6f:d8:7f:15:a1:56:95:43:76:a6:e7:4f:97:8f:6b: e9:62:37:c6:db:17:01:88:09:ca:8b:49:87:15:11: 3a:c6:9e:31:e6:0c:40:88:00:d8:78:5f:e3:e8:fc: 8e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:67:04:20:2F:02:68:E5:D1:E5:C0:B2:05:32:D8:84:13:0F:B6:3A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a057d928-cbb8-42a7-8833-36c45fa2a922.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:86::/48 Signature Algorithm: sha256WithRSAEncryption 60:16:89:de:aa:e3:09:9b:8b:46:73:d8:63:6d:aa:78:d9:fc: cc:8c:51:cf:52:d9:a7:2e:fd:86:a0:c6:09:57:a4:8a:fb:fe: 9d:ea:21:fb:a1:d5:76:2d:d2:04:85:76:1b:bc:14:fb:99:61: 28:ef:10:d3:c2:b0:6a:31:39:f1:cf:16:84:f4:e7:2f:ff:bb: ef:6f:cc:01:da:54:7c:29:3b:6e:9a:b0:65:dc:87:30:88:4b: bc:fb:5e:57:4f:52:ff:10:06:7e:65:8b:07:b8:5b:5c:eb:62: a4:95:fd:de:da:47:1b:43:05:e3:cb:ab:fc:eb:d7:06:6a:86: 1d:bd:6f:8e:ac:f8:12:b2:02:67:7c:46:a4:bc:af:da:25:1f: e0:26:ae:74:83:a5:37:37:73:8e:b9:42:03:69:26:b2:84:0f: 06:1b:3c:66:e2:9f:4a:f2:e0:51:f6:b4:01:7a:7f:b7:3a:0f: 16:39:8d:82:30:83:63:88:83:da:14:a0:16:fd:a3:b2:99:49: 83:18:64:d3:fb:5a:e5:1f:b2:eb:0a:59:6c:5f:04:73:69:35: 0b:b5:55:60:d7:fe:e9:ec:33:9b:d0:df:29:63:a3:92:9b:12: 69:62:ee:b8:af:a9:48:86:eb:22:fb:87:2c:6c:09:07:b7:03: 90:dd:60:13 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSakIA7QCnigGtNB9aC5cAF7UsDYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4Y2ExNzZhOTA0Y2Y2MTIxNTdlZDZlYWFhYWZiMGFlYzU5 NzJkNmQ0Y2ZhODgxYjA4NTk3MWIxMDhkM2I2ZGMwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOgiJzLIEwrRQdCH/9juJT2uiZFdTAGoEVAcLc8kvGsewT TrXrXu6Msi9KRDGg0H9t6c5miWqyMTz+mgOhrGScUjGJ3hmk+VRmUjvMhMjLdGyz vS+A16S59kjNjaV2XYplOraVaIwAK4igzuKOyy9acpYSr7S5hMiUFLlnBXzAGdU3 KpXtmjERd13R6LCQwS9fz1SPXAWcOmXjFxP3OaB1BbeEf5mOe7q52Da1DV+1pdD2 oMOPdzzm5gHowuWBrxI6/kE0o/CipJ6FFJ1WIKfRJ2/YfxWhVpVDdqbnT5ePa+li N8bbFwGICcqLSYcVETrGnjHmDECIANh4X+Po/I5fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjWcEIC8CaOXR5cCyBTLYhBMPtjowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EwNTdkOTI4LWNiYjgtNDJhNy04ODMzLTM2YzQ1ZmEyYTkyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIYwDQYJKoZIhvcNAQELBQADggEBAGAWid6q4wmbi0Zz2GNtqnjZ /MyMUc9S2acu/YagxglXpIr7/p3qIfuh1XYt0gSFdhu8FPuZYSjvENPCsGoxOfHP FoT05y//u+9vzAHaVHwpO26asGXchzCIS7z7XldPUv8QBn5liwe4W1zrYqSV/d7a RxtDBePLq/zr1wZqhh29b46s+BKyAmd8RqS8r9olH+AmrnSDpTc3c465QgNpJrKE DwYbPGbin0ry4FH2tAF6f7c6DxY5jYIwg2OIg9oUoBb9o7KZSYMYZNP7WuUfsusK WWxfBHNpNQu1VWDX/unsM5vQ3yljo5KbEmli7rivqUiG6yL7hyxsCQe3A5DdYBM= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org