$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a9dbf8ca-af14-47d7-aea4-9556cb337059.roa File: a9dbf8ca-af14-47d7-aea4-9556cb337059.roa (raw, json) Hash identifier: vnPTsm9vEI1SNgKU70Uvu+Rn9hf7YuNVUROcrRDetJs= Subject key identifier: A6:A9:40:58:CB:EE:50:31:19:9A:14:E2:2A:A6:CA:D0:B3:CC:43:2B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 75F75242AF0D52925A5FCF6C81658D83FB2AEEE4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a9dbf8ca-af14-47d7-aea4-9556cb337059.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5510::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:f7:52:42:af:0d:52:92:5a:5f:cf:6c:81:65:8d:83:fb:2a:ee:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=697c5b31a76a23754e9518bdecf1784beca77954fadf29586b4630c515871c47, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d4:15:6b:c0:78:9d:e4:ee:25:c7:0b:ea:31: 70:e4:30:ea:b2:f6:59:0a:1c:8e:16:70:5b:80:ae: b2:d5:21:3b:10:85:cf:d6:a6:1d:dc:4a:b8:6e:58: 2e:3c:5a:a9:85:03:38:1c:1c:95:97:e9:99:d7:af: 94:70:02:07:ff:1d:d7:72:c3:7e:9d:9e:3d:be:34: f8:7e:75:e4:9a:52:e1:db:89:cb:cc:01:8b:cc:26: fd:18:be:6c:4b:f3:16:9e:cb:79:b2:2f:21:17:3c: 6c:97:78:91:64:63:43:c2:83:6e:97:8b:48:dc:89: ac:02:80:5c:bf:a0:49:07:b9:68:fb:2a:e0:64:60: 89:a4:cf:9b:8a:67:3a:2a:e5:6b:fe:5b:6b:1e:b0: 31:40:31:a2:53:a3:f1:7f:5b:d6:08:e9:93:9d:07: 03:a3:8c:28:a5:7a:cb:cd:77:77:d6:dd:eb:14:98: 64:c0:ed:a0:3b:a5:ec:1b:e9:46:a7:ce:f0:ce:05: 7f:0d:86:ac:b8:17:ec:57:2b:0f:b6:12:08:57:0e: e1:82:19:39:bc:ae:05:57:17:d8:29:48:15:5c:c0: 2f:54:1b:a5:56:a6:c8:17:fe:a9:07:cd:17:4b:35: 27:6d:e9:e0:33:8a:df:dc:3e:7f:3b:97:cb:e8:1b: 3f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A9:40:58:CB:EE:50:31:19:9A:14:E2:2A:A6:CA:D0:B3:CC:43:2B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a9dbf8ca-af14-47d7-aea4-9556cb337059.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5510::/48 Signature Algorithm: sha256WithRSAEncryption 4f:d7:5f:76:7a:dc:d1:4b:f2:36:24:4b:05:dd:1e:48:d7:27: 6d:24:56:0c:b0:fb:4a:f4:d0:52:7a:92:e6:47:96:ea:78:21: 85:6d:8e:31:56:ab:e0:dc:75:89:59:00:7b:bc:3f:db:0f:c1: 16:e1:49:28:e3:6d:67:ac:dc:34:80:9b:b5:e2:9f:d0:66:e8: c2:ba:4e:9f:51:fd:c7:22:af:2f:48:b2:d5:78:53:c3:61:57: 5e:07:91:25:81:9e:6b:ee:b4:92:5e:8f:27:88:98:f6:bc:41: 3a:75:19:d1:63:91:52:71:5f:e0:05:75:d6:68:3f:5e:f9:94: 2e:9d:13:07:ff:ec:c3:7d:ed:15:3f:24:84:0a:77:bc:35:94: 54:7c:f6:fe:18:cb:04:38:37:81:ff:fe:79:fa:9c:d3:89:89: 3b:73:e8:b4:80:bc:27:b8:ce:ce:58:77:c7:f9:49:5f:d1:92: 9e:42:f8:10:0d:e8:a3:6c:4e:43:7b:89:96:d7:60:16:eb:48: 1f:b6:76:8d:c6:c5:77:fc:7c:15:37:b8:0f:b1:20:02:fe:ae: fc:28:7e:e8:18:6c:b9:77:ea:55:b8:5b:47:2c:88:33:1b:75: ea:88:7d:10:e0:06:6f:b5:37:cf:b3:08:40:2f:e3:a3:50:51: 2d:c2:7a:03 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdfdSQq8NUpJaX89sgWWNg/sq7uQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTdjNWIzMWE3NmEyMzc1NGU5NTE4YmRlY2YxNzg0YmVj YTc3OTU0ZmFkZjI5NTg2YjQ2MzBjNTE1ODcxYzQ3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM1BVrwHid5O4lxwvqMXDkMOqy9lkKHI4WcFuArrLVITsQ hc/Wph3cSrhuWC48WqmFAzgcHJWX6ZnXr5RwAgf/Hddyw36dnj2+NPh+deSaUuHb icvMAYvMJv0YvmxL8xaey3myLyEXPGyXeJFkY0PCg26Xi0jciawCgFy/oEkHuWj7 KuBkYImkz5uKZzoq5Wv+W2sesDFAMaJTo/F/W9YI6ZOdBwOjjCilesvNd3fW3esU mGTA7aA7pewb6UanzvDOBX8Nhqy4F+xXKw+2EghXDuGCGTm8rgVXF9gpSBVcwC9U G6VWpsgX/qkHzRdLNSdt6eAzit/cPn87l8voGz9tAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpqlAWMvuUDEZmhTiKqbK0LPMQyswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E5ZGJmOGNhLWFmMTQtNDdkNy1hZWE0LTk1NTZjYjMzNzA1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRAwDQYJKoZIhvcNAQELBQADggEBAE/XX3Z63NFL8jYkSwXdHkjX J20kVgyw+0r00FJ6kuZHlup4IYVtjjFWq+DcdYlZAHu8P9sPwRbhSSjjbWes3DSA m7Xin9Bm6MK6Tp9R/cciry9IstV4U8NhV14HkSWBnmvutJJejyeImPa8QTp1GdFj kVJxX+AFddZoP175lC6dEwf/7MN97RU/JIQKd7w1lFR89v4YywQ4N4H//nn6nNOJ iTtz6LSAvCe4zs5Yd8f5SV/Rkp5C+BAN6KNsTkN7iZbXYBbrSB+2do3GxXf8fBU3 uA+xIAL+rvwofugYbLl36lW4W0csiDMbdeqIfRDgBm+1N8+zCEAv46NQUS3CegM= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org