$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a2fa40dc-a59d-4392-9b20-a75691696079.roa File: a2fa40dc-a59d-4392-9b20-a75691696079.roa (raw, json) Hash identifier: v4UP1Tre5iZtmLtAnP9ykhh6wm1f+hav2FcudSkOMK0= Subject key identifier: AE:F3:97:7A:DE:DA:72:90:98:7E:60:4C:72:03:FE:BC:75:11:BA:45 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 17BB510E91EA8B6936CBBEEB29222598C1DC052B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a2fa40dc-a59d-4392-9b20-a75691696079.roa Signing time: Thu 14 Nov 2024 00:00:00 +0000 ROA not before: Thu 14 Nov 2024 00:00:00 +0000 ROA not after: Thu 19 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e300::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:bb:51:0e:91:ea:8b:69:36:cb:be:eb:29:22:25:98:c1:dc:05:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 14 00:00:00 2024 GMT Not After : Dec 19 23:59:59 2024 GMT Subject: serialNumber=54fd6056be861f9b0059eabe00fb102996c876bab5a392db53ddb43a7437d4ff, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:64:1d:f1:b0:0a:b9:fb:56:fb:d5:3d:16:db: ba:c1:a4:5a:d9:b8:ef:62:c6:67:fc:17:90:d1:ca: 5b:e9:3c:b3:ff:65:01:eb:9c:d6:67:82:b8:09:6f: d4:3a:ad:2e:fc:58:8e:51:ea:6e:cd:03:5f:8d:16: 92:9b:6a:41:66:bd:dd:a0:8c:08:52:d1:b4:34:e7: 0d:18:69:8e:cf:ed:39:20:16:bd:a5:cb:a0:6c:e7: 24:43:50:c1:fa:a9:b0:30:d7:c3:c5:55:c3:c6:6c: c4:52:18:2b:40:85:e7:e9:f4:45:c0:7b:01:b2:81: 43:b1:bc:4f:e9:77:75:5a:6a:d7:0f:9e:82:1c:bb: 25:46:7f:26:37:07:46:4f:bb:fd:23:8d:d0:b8:f4: 2c:cd:84:9d:e6:61:1d:8f:67:05:a2:09:76:8c:f0: bb:6d:75:99:05:7d:3a:35:81:7a:6d:5e:e3:e0:a7: ec:d5:59:fd:85:6f:f4:78:65:b2:74:af:ce:43:ab: a1:6f:ec:b2:95:20:ac:bf:e8:bb:0a:bf:55:17:a9: 9f:15:0e:28:0f:a2:36:fc:d4:c8:12:e4:16:3c:77: 1c:4d:69:ca:ab:84:a0:7e:b6:35:05:e0:67:4c:35: 0f:ce:aa:fa:df:a2:26:a3:2f:f3:75:9e:39:14:ea: 53:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:F3:97:7A:DE:DA:72:90:98:7E:60:4C:72:03:FE:BC:75:11:BA:45 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a2fa40dc-a59d-4392-9b20-a75691696079.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/40 Signature Algorithm: sha256WithRSAEncryption 55:fe:90:ae:cb:2f:29:9a:82:07:62:92:e6:5a:61:26:d0:fa: b4:d7:fb:b0:56:53:1b:c7:c4:b5:04:2a:ab:ae:63:f4:af:a4: f6:72:76:8c:11:dc:7c:6a:87:5c:98:37:c9:1e:0d:3d:05:44: 0e:55:48:75:eb:5e:9c:4d:cb:1d:9f:b9:39:51:bd:34:cc:fc: bc:80:fc:74:94:b6:28:4f:f6:80:83:39:9b:e3:3d:cb:db:7a: 8d:5d:2d:9c:6e:5b:92:bc:f9:01:89:52:c1:58:9e:4d:21:79: 5c:6e:bb:a0:12:9d:2b:6f:51:2b:3e:5f:76:56:be:af:2c:4f: 12:21:9f:66:e6:2e:b4:d5:54:6f:34:0b:1d:dd:ef:6c:6a:16: d1:e2:fd:da:ea:8f:de:90:3c:88:6c:3c:5d:27:96:1c:28:b9: ce:33:e8:e2:bf:28:57:ac:cc:0f:63:da:57:6b:9f:5e:6e:cb: ea:fd:ac:0f:4d:27:0a:58:7a:91:6d:8e:95:65:a1:b2:7c:a7: 8a:84:1b:e1:ff:fa:0a:e0:b8:72:e5:ca:fa:d5:3b:8e:e0:04: 50:ba:9f:98:02:83:2a:5f:d2:c4:28:5f:84:ff:65:5c:52:6a: 7b:8c:1a:3d:33:53:ee:27:41:ba:22:d6:db:ab:58:72:27:3a: d9:4e:9e:2a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUF7tRDpHqi2k2y77rKSIlmMHcBSswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE0MDAwMDAwWhcNMjQxMjE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGZkNjA1NmJlODYxZjliMDA1OWVhYmUwMGZiMTAyOTk2 Yzg3NmJhYjVhMzkyZGI1M2RkYjQzYTc0MzdkNGZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLZB3xsAq5+1b71T0W27rBpFrZuO9ixmf8F5DRylvpPLP/ ZQHrnNZngrgJb9Q6rS78WI5R6m7NA1+NFpKbakFmvd2gjAhS0bQ05w0YaY7P7Tkg Fr2ly6Bs5yRDUMH6qbAw18PFVcPGbMRSGCtAhefp9EXAewGygUOxvE/pd3VaatcP noIcuyVGfyY3B0ZPu/0jjdC49CzNhJ3mYR2PZwWiCXaM8LttdZkFfTo1gXptXuPg p+zVWf2Fb/R4ZbJ0r85Dq6Fv7LKVIKy/6LsKv1UXqZ8VDigPojb81MgS5BY8dxxN acqrhKB+tjUF4GdMNQ/OqvrfoiajL/N1njkU6lNXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrvOXet7acpCYfmBMcgP+vHURukUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EyZmE0MGRjLWE1OWQtNDM5Mi05YjIwLWE3NTY5MTY5NjA3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74zANBgkqhkiG9w0BAQsFAAOCAQEAVf6QrssvKZqCB2KS5lphJtD6 tNf7sFZTG8fEtQQqq65j9K+k9nJ2jBHcfGqHXJg3yR4NPQVEDlVIdetenE3LHZ+5 OVG9NMz8vID8dJS2KE/2gIM5m+M9y9t6jV0tnG5bkrz5AYlSwVieTSF5XG67oBKd K29RKz5fdla+ryxPEiGfZuYutNVUbzQLHd3vbGoW0eL92uqP3pA8iGw8XSeWHCi5 zjPo4r8oV6zMD2PaV2ufXm7L6v2sD00nClh6kW2OlWWhsnynioQb4f/6CuC4cuXK +tU7juAEULqfmAKDKl/SxChfhP9lXFJqe4waPTNT7idBuiLW26tYcic62U6eKg== -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org