$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa File: af93e150-9469-47eb-8185-3ff03d87db06.roa (raw, json) Hash identifier: +P7dh4OdyjxVKoMkYxmyX0UDhrKzfxevglN3fazl99w= Subject key identifier: D5:4A:1B:07:38:14:D3:71:B8:AD:B9:DF:A2:BA:6E:D3:58:3E:7D:43 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6A9FAED46CB7B6DAC5B46878E0FF34A79164058D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:9f:ae:d4:6c:b7:b6:da:c5:b4:68:78:e0:ff:34:a7:91:64:05:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=974a8d4d15d7412f05adf686cd59358b1fd0b58a47316df02f2627b64bd61768, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d3:0a:f9:ec:fc:00:1f:49:49:bd:45:c8:ad: 17:a2:66:1b:8b:68:0b:0c:80:3c:24:90:cb:28:46: 6c:c1:41:4b:73:cf:b1:c9:c2:c7:94:57:2f:f4:3e: f4:b2:eb:42:14:2a:41:29:d4:92:97:77:6b:de:d4: d9:1a:c9:e1:23:9b:54:72:bf:ad:0a:b6:d5:a6:d3: fc:49:55:8e:15:d3:33:fa:9a:19:c9:e4:2e:26:91: 91:38:6a:65:2e:4e:5e:f4:5b:b8:05:d2:6e:54:d6: 76:d8:e8:20:4a:9c:5d:d1:df:b3:f1:f6:16:bf:e0: 79:f1:98:a0:13:15:e5:0a:6f:14:bc:22:53:ed:ac: 8c:61:6a:eb:e6:e5:d7:93:05:86:a4:35:e0:4e:3e: 8a:40:63:b6:34:9a:8c:a8:60:ac:8c:f3:66:63:20: df:45:6c:b5:77:2c:f8:1a:0d:89:04:93:2f:aa:3a: 68:41:fa:5c:e7:1d:c2:39:d9:3f:e6:7a:9d:6d:31: 8d:e6:3d:06:e9:ff:b6:fb:29:bd:1e:d6:59:c1:a1: 72:22:9b:f6:39:b9:a2:e8:80:93:82:14:38:29:5e: 83:95:3b:97:f2:e3:d4:b9:2d:b9:50:41:f6:3c:b8: 43:ef:f4:5d:5c:dd:b0:ef:33:f2:ca:c8:b8:6c:38: 03:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:4A:1B:07:38:14:D3:71:B8:AD:B9:DF:A2:BA:6E:D3:58:3E:7D:43 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 34:3d:50:b2:68:b9:c8:cf:c8:7c:42:35:56:38:04:67:ac:e3: bb:e7:f8:08:a8:c3:7e:64:96:70:90:1a:04:82:7a:aa:0c:af: 94:1a:0f:47:14:72:dc:92:b2:cf:55:29:b0:8d:9a:64:76:96: 01:86:14:12:65:df:d3:b8:aa:4e:a3:21:ef:aa:0c:e0:f6:65: 09:97:69:9f:53:74:b8:5e:d4:d0:7a:5b:17:0f:f4:c7:55:6c: 94:25:5c:3f:e9:d8:1e:aa:ac:50:2c:45:83:29:64:90:2e:67: ba:f2:0d:10:1e:3a:cc:26:0e:b1:63:bd:73:33:33:be:eb:fb: f8:ee:b6:6c:f5:34:06:a6:87:29:ba:9c:7c:84:34:c5:0e:a9: ad:71:77:1a:54:00:1b:e2:d1:a9:7f:e0:41:cb:30:79:4d:8c: 06:7a:53:2c:cf:16:4d:08:8e:85:ce:c1:48:2e:85:66:00:b7: dc:78:70:f8:72:55:17:19:b2:6e:2e:2e:4c:a8:09:8c:30:a1: a2:f1:0b:ba:43:f2:dc:65:e5:44:d0:13:a8:23:40:e4:ae:f8: 6a:30:ae:3a:3d:fe:4a:d4:70:ed:40:0f:78:d9:b5:e3:e3:1f: 76:a4:49:23:61:70:d0:70:58:d6:e6:dd:bb:d0:c5:aa:28:dd: 98:05:4c:f9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUap+u1Gy3ttrFtGh44P80p5FkBY0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzRhOGQ0ZDE1ZDc0MTJmMDVhZGY2ODZjZDU5MzU4YjFm ZDBiNThhNDczMTZkZjAyZjI2MjdiNjRiZDYxNzY4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC40wr57PwAH0lJvUXIrReiZhuLaAsMgDwkkMsoRmzBQUtz z7HJwseUVy/0PvSy60IUKkEp1JKXd2ve1NkayeEjm1Ryv60KttWm0/xJVY4V0zP6 mhnJ5C4mkZE4amUuTl70W7gF0m5U1nbY6CBKnF3R37Px9ha/4HnxmKATFeUKbxS8 IlPtrIxhauvm5deTBYakNeBOPopAY7Y0moyoYKyM82ZjIN9FbLV3LPgaDYkEky+q OmhB+lznHcI52T/mep1tMY3mPQbp/7b7Kb0e1lnBoXIim/Y5uaLogJOCFDgpXoOV O5fy49S5LblQQfY8uEPv9F1c3bDvM/LKyLhsOANfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1UobBzgU03G4rbnforpu01g+fUMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FmOTNlMTUwLTk0NjktNDdlYi04MTg1LTNmZjAzZDg3ZGIwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBADQ9ULJoucjPyHxCNVY4BGes 47vn+Aiow35klnCQGgSCeqoMr5QaD0cUctySss9VKbCNmmR2lgGGFBJl39O4qk6j Ie+qDOD2ZQmXaZ9TdLhe1NB6WxcP9MdVbJQlXD/p2B6qrFAsRYMpZJAuZ7ryDRAe OswmDrFjvXMzM77r+/jutmz1NAamhym6nHyENMUOqa1xdxpUABvi0al/4EHLMHlN jAZ6UyzPFk0IjoXOwUguhWYAt9x4cPhyVRcZsm4uLkyoCYwwoaLxC7pD8txl5UTQ E6gjQOSu+Gowrjo9/krUcO1AD3jZtePjH3akSSNhcNBwWNbm3bvQxaoo3ZgFTPk= -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:45 2024 by rpki-client on console-ams.rpki-client.org