$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa File: a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa (raw, json) Hash identifier: 6ORiS2LMjoHx7SoBtVJA35u82/xxrLLwO3TrMZCxaao= Subject key identifier: 71:46:04:6F:FE:10:EB:D8:54:04:C3:E5:4A:E0:F1:93:9D:26:FA:15 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 19730A5A67738A2F064AB4B71F384D0CD45DE78F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:73:0a:5a:67:73:8a:2f:06:4a:b4:b7:1f:38:4d:0c:d4:5d:e7:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=5dab782eafe82b5a1d0501878dad55d965d379ccb291d0bf3ce756e160b298a1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:91:6d:9b:1e:0a:98:b6:1a:cb:51:7d:a7:b9: 68:ad:ab:89:3e:f0:55:03:b9:82:f3:da:9a:66:8b: 8d:cf:06:64:02:a5:d8:8a:47:cb:7b:b1:1a:bd:38: a0:6d:52:f8:b1:b3:7c:b4:76:95:00:18:d1:2b:4f: fd:4d:13:8b:41:f2:7c:fd:bc:98:c9:ce:89:d5:10: 9c:e5:3f:b8:1a:c9:05:13:2b:88:14:23:af:5f:ca: fb:59:9d:ae:19:db:a8:5e:c8:39:12:95:5c:e7:a6: ad:22:c8:af:e3:b0:1a:2f:73:70:52:54:35:18:f0: bf:d3:dc:eb:7b:4e:35:16:de:a6:a9:46:e8:f0:c7: 9d:08:c4:58:64:9c:8f:93:d3:0d:ef:d9:41:04:f9: dc:f0:97:b3:70:83:16:e4:43:81:02:49:cc:2d:7e: 32:66:4d:84:1b:2d:41:73:63:d2:0e:76:dc:84:d5: 2a:2a:d2:d8:4f:3c:2b:a7:e7:ef:8f:fd:44:45:02: 98:49:7d:f3:9a:9c:32:89:58:ec:fe:2a:c3:9f:19: 43:ad:9a:11:df:25:8f:b8:fc:43:4f:90:84:fc:82: 71:8b:9a:03:a7:f5:e9:77:21:df:c8:15:16:8f:97: 84:3b:a3:28:20:ef:7c:5c:43:c8:e8:eb:a6:a4:2f: 57:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:46:04:6F:FE:10:EB:D8:54:04:C3:E5:4A:E0:F1:93:9D:26:FA:15 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 02:1f:c3:42:89:e1:06:1d:dc:ba:29:a6:dc:ef:aa:0a:bd:4b: b9:f2:b3:c0:f5:e6:c0:74:5e:b1:86:09:41:25:94:be:b1:67: 65:76:a3:20:0e:62:c3:a5:3d:50:9e:e1:21:0b:43:e6:fd:1f: 7a:4b:af:03:e5:78:84:91:11:eb:5b:50:91:33:61:1f:65:61: c5:e8:98:fc:47:eb:07:4e:c2:0f:6b:2c:3b:88:15:11:00:92: e0:4e:91:b5:2d:f3:cd:f2:cd:eb:c5:6b:47:8c:e0:63:37:d7: cf:9c:2e:f8:a9:07:30:42:b7:1b:9a:63:9f:77:45:3f:05:8d: fc:bf:c5:67:2c:58:a1:b7:80:59:47:2a:cb:27:1a:cb:e2:72: 5c:ce:da:7c:e0:77:4c:37:03:74:c3:39:e7:69:5f:2d:c3:4c: 8b:69:6c:fd:5f:a4:d8:cc:a9:80:f9:36:77:19:e0:89:53:c9: a3:d4:61:09:f6:50:d8:e5:2f:e2:11:4a:4d:76:34:1a:2f:d0: 55:32:1a:c6:68:54:ed:55:a6:af:68:ed:07:c5:89:38:ec:60: 11:9a:c4:89:99:ee:e5:d4:dc:bb:ad:b4:09:e3:f5:61:99:e5: b9:dc:9e:ca:92:9f:69:19:eb:24:8a:fe:b7:68:57:27:d8:69: 54:db:88:47 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGXMKWmdzii8GSrS3HzhNDNRd548wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZGFiNzgyZWFmZTgyYjVhMWQwNTAxODc4ZGFkNTVkOTY1 ZDM3OWNjYjI5MWQwYmYzY2U3NTZlMTYwYjI5OGExMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrkW2bHgqYthrLUX2nuWitq4k+8FUDuYLz2ppmi43PBmQC pdiKR8t7sRq9OKBtUvixs3y0dpUAGNErT/1NE4tB8nz9vJjJzonVEJzlP7gayQUT K4gUI69fyvtZna4Z26heyDkSlVznpq0iyK/jsBovc3BSVDUY8L/T3Ot7TjUW3qap Rujwx50IxFhknI+T0w3v2UEE+dzwl7NwgxbkQ4ECScwtfjJmTYQbLUFzY9IOdtyE 1Soq0thPPCun5++P/URFAphJffOanDKJWOz+KsOfGUOtmhHfJY+4/ENPkIT8gnGL mgOn9el3Id/IFRaPl4Q7oygg73xcQ8jo66akL1fpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcUYEb/4Q69hUBMPlSuDxk50m+hUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2NWRjNTc5LTU1ZDAtNDY0MC04ZWU1LTZiZDcwZTNkZDcyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAAIfw0KJ4QYd3Lopptzvqgq9 S7nys8D15sB0XrGGCUEllL6xZ2V2oyAOYsOlPVCe4SELQ+b9H3pLrwPleISREetb UJEzYR9lYcXomPxH6wdOwg9rLDuIFREAkuBOkbUt883yzevFa0eM4GM318+cLvip BzBCtxuaY593RT8Fjfy/xWcsWKG3gFlHKssnGsviclzO2nzgd0w3A3TDOedpXy3D TItpbP1fpNjMqYD5NncZ4IlTyaPUYQn2UNjlL+IRSk12NBov0FUyGsZoVO1Vpq9o 7QfFiTjsYBGaxImZ7uXU3LuttAnj9WGZ5bncnsqSn2kZ6ySK/rdoVyfYaVTbiEc= -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:47 2024 by rpki-client on console-fra.rpki-client.org