$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa File: af93e150-9469-47eb-8185-3ff03d87db06.roa (raw, json) Hash identifier: Nvz7DuaeLzX+8Dp1RTWovODFG/BMtNvDONlKK40mdi0= Subject key identifier: 1E:FD:1D:75:20:67:BC:F0:A8:F5:53:1D:8A:09:22:0F:71:15:C1:4C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 61D9B6420FF688A27D56CDCF3E61ED97628E1AF8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa Signing time: Wed 08 May 2024 00:00:00 +0000 ROA not before: Wed 08 May 2024 00:00:00 +0000 ROA not after: Wed 12 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 02 Jun 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:d9:b6:42:0f:f6:88:a2:7d:56:cd:cf:3e:61:ed:97:62:8e:1a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: May 8 00:00:00 2024 GMT Not After : Jun 12 23:59:59 2024 GMT Subject: serialNumber=6e316b6fa62b5ed07f6e6b27bcd9e31b9df823534635e84011e879bc84da13d4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:95:aa:72:3d:36:c7:3b:24:bd:70:16:93:22: 84:8d:1b:7a:a4:c7:50:48:57:f2:e6:88:7a:05:c7: bc:52:04:96:d4:e8:7f:b8:97:33:60:db:1e:87:ff: ea:95:98:0d:c6:6f:26:04:60:ec:f3:23:23:35:1d: 01:02:40:09:db:1e:22:0c:1f:e3:34:de:47:e1:a4: d0:2b:4c:ff:ef:e9:69:5b:13:92:1c:2a:4e:1e:a9: ad:f3:83:f2:0d:fe:73:01:b2:db:3c:3c:bf:4e:bc: 3b:60:84:15:11:d5:73:ad:01:7c:a9:10:cd:12:77: c2:54:22:d9:af:c2:c5:c8:1b:78:e5:eb:1e:af:0f: 5d:f8:8f:db:14:e9:18:40:6b:f1:ab:f2:be:43:87: 93:53:de:fa:77:e5:ce:38:f9:c2:8b:6c:6c:13:b8: 2c:05:a7:a9:33:fb:8a:97:81:07:51:1d:6b:81:1e: 8f:ae:33:8a:47:80:e7:c1:ae:5d:79:44:11:77:63: 59:f3:e4:46:1d:23:2e:fa:cd:03:df:a8:ab:a9:5b: 52:2b:a5:de:8c:7e:6f:2b:19:86:a5:1d:b8:4b:9d: 72:54:5d:4f:e4:75:4d:57:7a:4c:00:29:fa:24:b7: 1d:46:30:98:80:03:b1:4d:97:aa:8d:cb:1b:21:dd: e8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FD:1D:75:20:67:BC:F0:A8:F5:53:1D:8A:09:22:0F:71:15:C1:4C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 37:b8:05:18:85:3b:c4:ac:0d:90:ce:04:18:f7:35:9e:00:f3: 50:9e:d0:1d:95:b1:bd:6c:6e:9c:14:02:dd:ad:00:c6:57:9c: ca:82:73:2a:f2:66:65:02:93:f7:fc:a7:78:f5:42:7c:30:98: 52:98:a1:f3:59:5a:de:c2:55:22:42:ff:95:b7:dd:22:67:20: 16:83:bf:b9:f6:ae:68:d9:ea:cf:cf:a2:68:bb:6d:be:59:44: 50:82:10:ae:bb:ac:aa:ce:60:4a:71:e2:db:83:bf:10:3e:07: fe:ea:e8:31:7b:27:0b:78:b8:cc:a8:e5:c6:5e:05:39:9d:62: 34:06:51:6d:96:a3:8b:2d:fc:95:36:4d:e6:fc:19:a5:1c:83: 52:3c:78:7e:8c:8d:63:74:20:dc:9c:88:27:79:98:07:96:1f: 16:a4:68:fe:30:26:64:5c:d2:ff:57:0e:a5:6a:22:eb:3c:d0: a4:94:fa:cb:74:02:2b:38:45:88:d6:59:74:9c:f1:a7:94:5a: 5e:60:fa:54:c9:f8:48:ca:f8:25:e8:60:20:6c:24:aa:24:9c: 86:84:b5:2c:de:fd:0b:07:ff:6c:ed:97:c5:7b:bd:76:89:74: d5:1b:53:a1:f3:6e:4b:d7:fc:6a:81:b4:86:66:d3:f4:a1:1b: 9d:c7:95:ee -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYdm2Qg/2iKJ9Vs3PPmHtl2KOGvgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNTA4MDAwMDAwWhcNMjQwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTMxNmI2ZmE2MmI1ZWQwN2Y2ZTZiMjdiY2Q5ZTMxYjlk ZjgyMzUzNDYzNWU4NDAxMWU4NzliYzg0ZGExM2Q0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCilapyPTbHOyS9cBaTIoSNG3qkx1BIV/LmiHoFx7xSBJbU 6H+4lzNg2x6H/+qVmA3GbyYEYOzzIyM1HQECQAnbHiIMH+M03kfhpNArTP/v6Wlb E5IcKk4eqa3zg/IN/nMBsts8PL9OvDtghBUR1XOtAXypEM0Sd8JUItmvwsXIG3jl 6x6vD134j9sU6RhAa/Gr8r5Dh5NT3vp35c44+cKLbGwTuCwFp6kz+4qXgQdRHWuB Ho+uM4pHgOfBrl15RBF3Y1nz5EYdIy76zQPfqKupW1Irpd6Mfm8rGYalHbhLnXJU XU/kdU1XekwAKfoktx1GMJiAA7FNl6qNyxsh3eg9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHv0ddSBnvPCo9VMdigkiD3EVwUwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FmOTNlMTUwLTk0NjktNDdlYi04MTg1LTNmZjAzZDg3ZGIwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBADe4BRiFO8SsDZDOBBj3NZ4A 81Ce0B2Vsb1sbpwUAt2tAMZXnMqCcyryZmUCk/f8p3j1QnwwmFKYofNZWt7CVSJC /5W33SJnIBaDv7n2rmjZ6s/Pomi7bb5ZRFCCEK67rKrOYEpx4tuDvxA+B/7q6DF7 Jwt4uMyo5cZeBTmdYjQGUW2Wo4st/JU2Teb8GaUcg1I8eH6MjWN0INyciCd5mAeW HxakaP4wJmRc0v9XDqVqIus80KSU+st0Ais4RYjWWXSc8aeUWl5g+lTJ+EjK+CXo YCBsJKoknIaEtSze/QsH/2ztl8V7vXaJdNUbU6HzbkvX/GqBtIZm0/ShG53Hle4= -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:04 2024 by rpki-client on console-fra.rpki-client.org