$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa File: a84b381b-bc70-4b19-91a5-fa66fa80011e.roa (raw, json) Hash identifier: uNtIKisUrPxXXqA1/onszBof1IdKn/TJOhbyxNdSXQM= Subject key identifier: 9C:E0:0E:E7:F6:04:3F:D5:DB:0F:21:D6:7B:04:1D:F5:14:4A:BF:56 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2D60AE6932DD6CD4175894DF9E7B13BF7E83A7AB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:60:ae:69:32:dd:6c:d4:17:58:94:df:9e:7b:13:bf:7e:83:a7:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=455c6ee7767a979253f804c3c27dd31e2b836b3bb0bc4e20d1aae976e73984bd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:43:51:19:ed:c8:09:92:0b:ba:7b:2c:63:bc: 81:73:44:0f:25:cc:d1:8a:19:ae:79:78:26:84:d0: 66:6a:f0:a8:4c:27:24:e5:fd:33:2e:f7:56:8a:f9: db:51:ea:39:f9:f9:8d:d4:07:b8:17:90:ff:7c:a6: e4:34:c5:d3:41:29:3a:0a:2a:8b:59:fc:91:d5:43: 9b:73:ae:0a:04:4c:de:21:6e:f7:b1:86:93:a1:20: 1b:8a:00:7c:e1:66:ca:48:8a:a7:f7:9e:59:91:2e: ef:0d:ef:b9:dc:03:cc:ef:4d:49:5d:f9:72:ff:68: e9:58:26:ae:be:e1:70:cb:10:0e:66:d3:75:cc:c1: da:7d:4f:da:d8:78:2c:4e:c1:ee:01:95:00:67:b9: 30:b6:8e:a8:73:87:e5:4f:67:62:70:56:17:bc:31: 61:7d:77:6d:85:e9:30:91:aa:38:e8:89:53:db:bc: 91:75:fb:23:f3:de:ca:b6:80:65:36:dc:6a:cc:d2: 08:6d:51:20:d7:14:48:41:ae:fa:9a:57:af:bb:cd: b8:8f:fd:a2:c7:72:64:eb:01:95:7f:9e:ae:01:db: e8:32:4b:af:0d:85:7d:8e:bb:4a:f0:5b:3d:11:bb: 06:51:75:71:fa:42:80:db:a1:3f:da:9c:51:93:ac: 6e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E0:0E:E7:F6:04:3F:D5:DB:0F:21:D6:7B:04:1D:F5:14:4A:BF:56 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a84b381b-bc70-4b19-91a5-fa66fa80011e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7000::/44 Signature Algorithm: sha256WithRSAEncryption 8b:08:fc:a7:6f:36:f9:43:79:2a:73:0f:90:88:df:b1:11:7a: 25:7b:f2:65:b5:2d:f3:e7:f9:0f:0b:90:92:48:a2:96:36:bc: 76:f0:c7:62:54:23:7d:ca:60:92:f9:54:fe:37:bf:fe:01:6b: fc:74:24:05:85:d9:95:5e:be:bd:2d:c2:8b:25:ea:1e:35:64: ef:c9:32:7a:a9:fd:e6:87:1f:68:5b:a9:40:5f:60:61:2b:b6: ed:9a:70:0c:af:5c:72:ac:57:30:6e:72:59:e4:51:8e:08:4f: a7:21:67:48:8c:b8:fc:66:83:c0:d5:85:c0:91:7f:8c:78:e0: ca:0c:43:3f:2b:33:d9:da:92:cc:01:80:70:d8:d1:ad:3b:b8: ba:91:1e:2d:5c:25:ee:07:1b:ff:1a:47:39:3a:ad:45:a3:62: 6b:ff:92:4f:70:2d:a0:ff:54:1a:64:78:d8:46:51:c0:40:21: d1:db:75:1a:05:6e:c8:dc:be:ff:d5:a3:fe:52:46:67:0c:64: aa:ed:64:ea:5c:a2:00:e1:41:73:0a:33:7d:0c:da:32:f6:58: 9b:a6:84:52:ef:e1:36:c0:df:ac:2a:44:c7:3e:03:a5:e1:65: 2a:e5:86:1e:aa:32:df:1a:61:c6:ba:54:ca:5b:dc:d9:3b:dc: a5:3a:e0:78 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULWCuaTLdbNQXWJTfnnsTv36Dp6swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTVjNmVlNzc2N2E5NzkyNTNmODA0YzNjMjdkZDMxZTJi ODM2YjNiYjBiYzRlMjBkMWFhZTk3NmU3Mzk4NGJkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGQ1EZ7cgJkgu6eyxjvIFzRA8lzNGKGa55eCaE0GZq8KhM JyTl/TMu91aK+dtR6jn5+Y3UB7gXkP98puQ0xdNBKToKKotZ/JHVQ5tzrgoETN4h bvexhpOhIBuKAHzhZspIiqf3nlmRLu8N77ncA8zvTUld+XL/aOlYJq6+4XDLEA5m 03XMwdp9T9rYeCxOwe4BlQBnuTC2jqhzh+VPZ2JwVhe8MWF9d22F6TCRqjjoiVPb vJF1+yPz3sq2gGU23GrM0ghtUSDXFEhBrvqaV6+7zbiP/aLHcmTrAZV/nq4B2+gy S68NhX2Ou0rwWz0RuwZRdXH6QoDboT/anFGTrG59AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnOAO5/YEP9XbDyHWewQd9RRKv1YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E4NGIzODFiLWJjNzAtNGIxOS05MWE1LWZhNjZmYTgwMDExZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycAAwDQYJKoZIhvcNAQELBQADggEBAIsI/KdvNvlDeSpzD5CI37ER eiV78mW1LfPn+Q8LkJJIopY2vHbwx2JUI33KYJL5VP43v/4Ba/x0JAWF2ZVevr0t wosl6h41ZO/JMnqp/eaHH2hbqUBfYGErtu2acAyvXHKsVzBuclnkUY4IT6chZ0iM uPxmg8DVhcCRf4x44MoMQz8rM9nakswBgHDY0a07uLqRHi1cJe4HG/8aRzk6rUWj Ymv/kk9wLaD/VBpkeNhGUcBAIdHbdRoFbsjcvv/Vo/5SRmcMZKrtZOpcogDhQXMK M30M2jL2WJumhFLv4TbA36wqRMc+A6XhZSrlhh6qMt8aYca6VMpb3Nk73KU64Hg= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org