$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa File: b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa (raw, json) Hash identifier: aeEiAJEoqbIAREvNFymGrjfEszPch4JN5zTCkJrNVTE= Subject key identifier: 9E:8D:38:24:C6:FB:8F:0F:D6:A4:07:04:B1:C5:0A:DF:C7:8D:49:60 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 41A692C553B9AACA345386D3057CF882F9FE1E61 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f1:8801::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:a6:92:c5:53:b9:aa:ca:34:53:86:d3:05:7c:f8:82:f9:fe:1e:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=070bafb30b7520c52364da74c0b07ea811226ce2c5fb19ece5769099e4d3e96c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2f:c3:7a:3b:86:8a:ff:a8:af:93:33:4e:ee: 92:95:b9:54:d8:39:2e:6f:7b:85:f6:8f:5e:66:83: ee:a0:c8:de:c1:06:9d:fb:4b:49:44:48:b0:5f:27: be:e5:ae:b4:fc:34:53:c2:a9:35:c7:f5:98:1c:87: ed:c9:9f:43:88:3e:15:e4:4b:b8:c6:08:c8:6e:40: 50:a8:fe:9d:2c:88:7d:bd:62:c3:9f:c0:17:ab:22: 17:6e:40:1b:3e:a3:0d:4c:44:e9:1c:a3:5f:13:e1: 04:3c:ab:f5:68:62:fb:01:82:d6:c6:68:4b:59:d1: 1c:56:33:52:6c:8f:e5:d5:91:12:62:11:27:b5:2d: 35:6f:18:c2:c4:12:b1:53:03:5b:b8:62:fe:c2:70: 17:98:97:c1:38:94:44:00:21:63:14:00:87:bc:a1: ea:74:35:5b:4f:98:59:fb:ad:03:ff:5e:4e:82:1e: 39:62:3e:c1:68:da:0f:f1:79:44:04:c8:9c:a0:f4: de:73:fc:c3:90:93:d1:21:65:51:08:0a:e7:8a:db: e3:81:ff:63:b6:30:2c:9b:a4:e4:2e:0f:08:23:a7: a1:ec:3b:b3:e4:20:dc:3d:ec:f6:f1:62:b6:74:3c: 7a:ec:00:5d:f1:72:55:51:07:dd:eb:4d:06:4a:bb: d0:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:8D:38:24:C6:FB:8F:0F:D6:A4:07:04:B1:C5:0A:DF:C7:8D:49:60 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b4163a38-a8e2-48d9-855f-dd53ae7f6dcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8801::/48 Signature Algorithm: sha256WithRSAEncryption 82:bb:75:da:3c:78:59:a7:28:8a:a5:f2:8b:a0:fb:74:a9:ee: 54:e6:b5:be:e0:92:41:28:ba:9a:76:18:f9:64:38:02:4d:06: cb:74:4e:d8:ba:5e:6b:17:60:8e:8a:f0:35:7a:64:af:d7:56: f0:50:ab:04:fa:2c:a5:a5:b3:40:c4:0c:cb:94:22:ec:3f:3f: 4a:c3:be:8e:b6:d0:71:cb:71:57:88:d1:68:75:09:44:d3:f0: c1:a3:5a:ce:dc:e5:3f:04:80:4a:66:75:5a:34:4a:47:5c:38: 93:28:52:0c:1b:09:7c:0f:2c:e1:1c:f8:67:ca:c3:04:c2:b8: 08:b6:a5:0c:b2:17:41:f3:72:7a:4d:74:d2:28:aa:5b:76:88: ec:2f:67:54:32:db:4b:06:84:29:7c:79:3c:3d:28:42:c3:25: 9e:16:fa:e9:ec:34:e9:dc:d3:b5:4c:a9:08:eb:ec:cd:cd:bc: d2:62:f1:b6:82:3f:60:4d:39:e1:39:7c:5f:0f:1c:d1:28:34: ff:f3:74:63:c5:9d:73:52:c7:bc:17:d1:b8:cb:78:ff:a0:7e: e5:d8:a4:9c:c8:13:ab:7b:41:34:2a:83:cb:74:84:37:a8:4b: 2b:ac:68:26:bc:f4:2f:8a:ee:51:92:7b:0f:c6:06:cf:f4:6d: 3b:6f:13:00 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQaaSxVO5qso0U4bTBXz4gvn+HmEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzBiYWZiMzBiNzUyMGM1MjM2NGRhNzRjMGIwN2VhODEx MjI2Y2UyYzVmYjE5ZWNlNTc2OTA5OWU0ZDNlOTZjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHL8N6O4aK/6ivkzNO7pKVuVTYOS5ve4X2j15mg+6gyN7B Bp37S0lESLBfJ77lrrT8NFPCqTXH9Zgch+3Jn0OIPhXkS7jGCMhuQFCo/p0siH29 YsOfwBerIhduQBs+ow1MROkco18T4QQ8q/VoYvsBgtbGaEtZ0RxWM1Jsj+XVkRJi ESe1LTVvGMLEErFTA1u4Yv7CcBeYl8E4lEQAIWMUAIe8oep0NVtPmFn7rQP/Xk6C HjliPsFo2g/xeUQEyJyg9N5z/MOQk9EhZVEICueK2+OB/2O2MCybpOQuDwgjp6Hs O7PkINw97PbxYrZ0PHrsAF3xclVRB93rTQZKu9CnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUno04JMb7jw/WpAcEscUK38eNSWAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I0MTYzYTM4LWE4ZTItNDhkOS04NTVmLWRkNTNhZTdmNmRjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiAEwDQYJKoZIhvcNAQELBQADggEBAIK7ddo8eFmnKIql8oug+3Sp 7lTmtb7gkkEoupp2GPlkOAJNBst0Tti6XmsXYI6K8DV6ZK/XVvBQqwT6LKWls0DE DMuUIuw/P0rDvo620HHLcVeI0Wh1CUTT8MGjWs7c5T8EgEpmdVo0SkdcOJMoUgwb CXwPLOEc+GfKwwTCuAi2pQyyF0HzcnpNdNIoqlt2iOwvZ1Qy20sGhCl8eTw9KELD JZ4W+unsNOnc07VMqQjr7M3NvNJi8baCP2BNOeE5fF8PHNEoNP/zdGPFnXNSx7wX 0bjLeP+gfuXYpJzIE6t7QTQqg8t0hDeoSyusaCa89C+K7lGSew/GBs/0bTtvEwA= -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:47 2024 by rpki-client on console-fra.rpki-client.org