$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa File: aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa (raw, json) Hash identifier: 4UYFT2Nh7KsMMDa+NQ/Q0coIpYAU/G7Q473ZxS394jI= Subject key identifier: B8:A3:A2:54:5B:CE:65:38:25:6B:A0:7C:2B:60:83:D9:29:E2:DA:5D Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 61B25934E6E1AAD7BA31CA04647444B459752BB2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa Signing time: Sat 24 Aug 2024 00:00:00 +0000 ROA not before: Sat 24 Aug 2024 00:00:00 +0000 ROA not after: Sat 28 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5502::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Sep 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b2:59:34:e6:e1:aa:d7:ba:31:ca:04:64:74:44:b4:59:75:2b:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 24 00:00:00 2024 GMT Not After : Sep 28 23:59:59 2024 GMT Subject: serialNumber=b8f68940ee20169c2bd107b79a6f0e20057e89e8937a14e46e2fce862f74958b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:66:07:9d:c7:9c:10:80:67:2c:44:e6:02:15: 34:73:b8:4e:45:aa:c2:89:a9:00:bc:73:a5:0c:56: 65:f6:f3:01:50:ed:af:a2:2a:f9:28:19:08:ab:91: 24:ba:48:36:ba:e8:f0:90:49:aa:2b:e1:70:6e:a0: e4:ac:80:8f:e8:51:d8:8d:2e:bd:1c:80:ce:d2:94: 17:52:61:91:c0:46:94:7e:c3:2f:7e:13:b5:df:4b: 7d:9f:aa:91:f2:54:63:40:ee:26:29:99:af:5d:1e: 50:31:de:e2:b5:25:49:d8:85:27:ee:78:f2:83:5b: 0d:ba:0e:4b:05:15:ba:ba:93:7e:30:bc:f4:30:4c: 5b:53:00:51:29:42:9d:5a:45:b5:71:17:49:e5:c7: 70:b6:f5:42:70:52:63:b4:12:f4:b6:fb:80:fa:69: 99:b7:a9:78:38:d6:63:3d:7e:93:74:14:a6:bd:85: 2f:ab:1e:21:bf:58:06:bc:53:6a:68:6c:c2:99:d2: 4c:96:c1:8f:ab:fe:28:c8:8b:02:8b:6d:65:b5:a1: a7:dc:5c:99:af:fc:1e:ae:28:6c:e1:2b:8c:1e:df: 6a:0a:3f:0c:15:fa:9f:29:77:ae:bb:0f:64:70:fc: 24:ab:ab:01:12:d1:9c:9b:b3:f6:dc:64:db:89:fd: 5f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A3:A2:54:5B:CE:65:38:25:6B:A0:7C:2B:60:83:D9:29:E2:DA:5D X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5502::/48 Signature Algorithm: sha256WithRSAEncryption 1a:41:3c:91:15:bc:72:90:75:02:80:c9:02:59:bd:b7:ac:45: b2:4c:d2:d2:4c:1c:4a:4f:5f:f8:0c:55:27:13:d8:ec:98:64: 1b:4b:b8:b8:c4:25:ff:de:d4:f9:2c:32:23:30:da:9c:e6:5d: b7:7e:02:7f:e4:3f:32:92:8a:aa:74:f7:87:2d:ee:4f:50:12: 2a:35:38:d0:54:1e:ab:7a:15:61:ee:e9:34:ba:0c:5c:73:81: 07:8d:54:74:44:33:a7:8c:89:61:74:d5:42:d7:0b:e1:fd:cb: 85:4a:73:80:3c:d9:0e:3b:c9:fc:13:b0:70:7e:2c:99:55:b2: 27:d3:1c:23:24:5b:c0:c8:16:e9:13:3c:da:6a:77:f7:82:60: 7e:53:04:53:6d:af:1e:72:19:bb:0e:03:ba:32:04:3e:ee:c0: 63:9c:22:3f:4b:4f:40:87:c7:f4:8d:ff:0c:54:89:ea:ee:bd: 12:1e:e7:0d:e9:2c:84:7c:48:40:b9:a6:8f:a9:fb:5d:3a:67: 60:7c:99:99:e3:2c:e9:42:ce:3d:c1:dc:d6:d2:bb:be:de:2b: 17:88:c6:c2:99:22:05:33:92:6c:aa:6b:5b:b8:69:f6:9d:b0: 85:8f:55:d8:95:85:78:95:9b:58:b6:24:f6:77:2a:5d:fb:4c: d5:af:eb:b8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYbJZNObhqte6McoEZHREtFl1K7IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwODI0MDAwMDAwWhcNMjQwOTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGY2ODk0MGVlMjAxNjljMmJkMTA3Yjc5YTZmMGUyMDA1 N2U4OWU4OTM3YTE0ZTQ2ZTJmY2U4NjJmNzQ5NThiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdZgedx5wQgGcsROYCFTRzuE5FqsKJqQC8c6UMVmX28wFQ 7a+iKvkoGQirkSS6SDa66PCQSaor4XBuoOSsgI/oUdiNLr0cgM7SlBdSYZHARpR+ wy9+E7XfS32fqpHyVGNA7iYpma9dHlAx3uK1JUnYhSfuePKDWw26DksFFbq6k34w vPQwTFtTAFEpQp1aRbVxF0nlx3C29UJwUmO0EvS2+4D6aZm3qXg41mM9fpN0FKa9 hS+rHiG/WAa8U2pobMKZ0kyWwY+r/ijIiwKLbWW1oafcXJmv/B6uKGzhK4we32oK PwwV+p8pd667D2Rw/CSrqwES0Zybs/bcZNuJ/V+pAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuKOiVFvOZTgla6B8K2CD2Sni2l0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZDI0YTJlLWY2MWItNDJiNC05NTA5LTllMDZhMTM2ZWIwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQIwDQYJKoZIhvcNAQELBQADggEBABpBPJEVvHKQdQKAyQJZvbes RbJM0tJMHEpPX/gMVScT2OyYZBtLuLjEJf/e1PksMiMw2pzmXbd+An/kPzKSiqp0 94ct7k9QEio1ONBUHqt6FWHu6TS6DFxzgQeNVHREM6eMiWF01ULXC+H9y4VKc4A8 2Q47yfwTsHB+LJlVsifTHCMkW8DIFukTPNpqd/eCYH5TBFNtrx5yGbsOA7oyBD7u wGOcIj9LT0CHx/SN/wxUieruvRIe5w3pLIR8SEC5po+p+106Z2B8mZnjLOlCzj3B 3NbSu77eKxeIxsKZIgUzkmyqa1u4afadsIWPVdiVhXiVm1i2JPZ3Kl37TNWv67g= -----END CERTIFICATE-----Generated at Sat Sep 7 00:39:52 2024 by rpki-client on console-fra.rpki-client.org