$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa File: a84b381b-bc70-4b19-91a5-fa66fa80011e.roa (raw, json) Hash identifier: RsDwT6YEmxn3I7dBnjCNKKNq308Of0fCetrBhwrLVBI= Subject key identifier: 49:19:41:25:0F:56:8F:95:D0:47:2A:0C:06:11:E9:AB:7B:AB:DE:9E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5E5E6A070FA95A5E6AF17EF0E2F5DB44014F54EE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa Signing time: Wed 08 May 2024 00:00:00 +0000 ROA not before: Wed 08 May 2024 00:00:00 +0000 ROA not after: Wed 12 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Jun 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:5e:6a:07:0f:a9:5a:5e:6a:f1:7e:f0:e2:f5:db:44:01:4f:54:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 8 00:00:00 2024 GMT Not After : Jun 12 23:59:59 2024 GMT Subject: serialNumber=e9090cdc90e850d78351dc96a76ba1dc121cec46e94d195a557df12d29b45332, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3e:95:0e:7f:79:b7:43:db:4c:4e:78:84:dd: bd:45:ca:16:cf:1f:38:59:6d:b1:f5:7d:96:41:02: fa:7d:6d:f6:25:47:0d:e5:97:fb:96:ce:6e:98:d7: 82:9c:3d:4f:8a:98:fb:e9:5a:83:a9:32:ba:a6:1b: 75:f7:71:57:1b:d1:e6:72:ed:ff:37:7d:3f:d1:21: 29:d4:03:ed:aa:05:94:86:d7:9e:e6:d6:4b:ce:76: aa:0e:3a:d7:a6:de:42:2e:01:87:88:0b:b6:9b:c6: 46:c0:03:84:5c:2f:50:12:d3:1c:92:18:fb:90:61: bc:53:23:49:7d:43:4d:41:d5:96:19:6c:54:88:ab: 4f:75:ed:76:65:ef:be:46:c8:d2:e8:1c:44:88:12: 35:0d:b5:da:80:c4:8e:20:ed:ea:95:11:2b:d9:90: 6f:5c:76:5c:be:35:b4:12:c0:08:22:25:2d:af:b6: 28:d5:9f:2b:3c:f2:70:75:b3:14:d8:8f:3e:32:95: 93:3e:9e:56:9a:3d:cc:13:e5:af:c1:ad:8b:5b:2b: da:b3:5d:b8:f7:32:92:ae:f7:1e:5c:34:bb:47:40: 84:f0:04:b0:c9:d6:33:a9:4e:42:e8:a6:12:57:3f: c0:c4:0b:c0:4e:51:8d:48:4a:73:6a:80:77:1c:4e: e8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:19:41:25:0F:56:8F:95:D0:47:2A:0C:06:11:E9:AB:7B:AB:DE:9E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7000::/44 Signature Algorithm: sha256WithRSAEncryption 19:a7:2f:70:54:6a:8b:e9:4b:d5:0d:b1:7d:61:36:bc:f0:86: 50:cb:af:dc:ba:57:d4:69:bb:e4:01:cf:ca:62:81:6b:7f:5d: c3:87:ad:d4:c3:d5:0c:44:76:c1:72:9c:b7:bd:6c:4c:ee:c9: e1:d2:34:9c:67:4b:c7:ff:9c:ec:c6:6d:c0:3e:ab:45:9f:82: f1:4b:55:b5:8b:6d:c4:15:8a:f0:e1:68:71:e5:d8:6f:8b:0d: 48:e8:b0:9e:85:40:3e:26:71:2f:81:28:84:42:79:bd:7c:75: 32:6a:fd:ba:29:f2:df:02:d7:58:41:c3:a7:a5:26:7b:3c:93: a6:2b:c1:cc:40:01:4a:df:f3:c3:bc:de:9d:90:c0:22:26:44: 0d:10:ef:ee:32:f5:1d:55:2c:9c:d4:6a:8e:a0:31:71:12:e1: 33:89:7a:82:3a:87:28:29:b9:dc:89:42:a6:c8:79:19:4f:40: 5f:31:2a:17:8f:91:3a:c8:1a:bc:d8:6f:fe:b2:a0:b5:d4:bf: e0:a1:00:6d:56:3d:05:e7:6c:78:bf:0f:18:8a:19:f9:e8:02: 63:a1:d3:87:39:b8:f5:bb:b4:54:62:bc:cf:d5:88:d1:84:43: 7f:0d:23:2b:4e:88:8d:aa:f2:01:b4:a3:a1:6b:91:af:40:77: 70:66:30:6a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXl5qBw+pWl5q8X7w4vXbRAFPVO4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNTA4MDAwMDAwWhcNMjQwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTA5MGNkYzkwZTg1MGQ3ODM1MWRjOTZhNzZiYTFkYzEy MWNlYzQ2ZTk0ZDE5NWE1NTdkZjEyZDI5YjQ1MzMyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOPpUOf3m3Q9tMTniE3b1FyhbPHzhZbbH1fZZBAvp9bfYl Rw3ll/uWzm6Y14KcPU+KmPvpWoOpMrqmG3X3cVcb0eZy7f83fT/RISnUA+2qBZSG 157m1kvOdqoOOtem3kIuAYeIC7abxkbAA4RcL1AS0xySGPuQYbxTI0l9Q01B1ZYZ bFSIq0917XZl775GyNLoHESIEjUNtdqAxI4g7eqVESvZkG9cdly+NbQSwAgiJS2v tijVnys88nB1sxTYjz4ylZM+nlaaPcwT5a/BrYtbK9qzXbj3MpKu9x5cNLtHQITw BLDJ1jOpTkLophJXP8DEC8BOUY1ISnNqgHccTuhbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSRlBJQ9Wj5XQRyoMBhHpq3ur3p4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E4NGIzODFiLWJjNzAtNGIxOS05MWE1LWZhNjZmYTgwMDExZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycAAwDQYJKoZIhvcNAQELBQADggEBABmnL3BUaovpS9UNsX1hNrzw hlDLr9y6V9Rpu+QBz8pigWt/XcOHrdTD1QxEdsFynLe9bEzuyeHSNJxnS8f/nOzG bcA+q0WfgvFLVbWLbcQVivDhaHHl2G+LDUjosJ6FQD4mcS+BKIRCeb18dTJq/bop 8t8C11hBw6elJns8k6YrwcxAAUrf88O83p2QwCImRA0Q7+4y9R1VLJzUao6gMXES 4TOJeoI6hygpudyJQqbIeRlPQF8xKhePkTrIGrzYb/6yoLXUv+ChAG1WPQXnbHi/ DxiKGfnoAmOh04c5uPW7tFRivM/ViNGEQ38NIytOiI2q8gG0o6Frka9Ad3BmMGo= -----END CERTIFICATE-----Generated at Sun Jun 2 01:37:49 2024 by rpki-client on console-ams.rpki-client.org