$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b629644c-c7c8-45fa-926f-42871932416b.roa File: b629644c-c7c8-45fa-926f-42871932416b.roa (raw, json) Hash identifier: OSt8MoxmVm0meQ8M2drO8EFg4XrFGrj7w8OHI3CaJ8A= Subject key identifier: A7:09:27:3D:58:5B:DF:A8:99:C8:04:BE:1D:53:B5:67:D3:A7:F4:9E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1BBAC1B25B8F3C709ABFD6A7F7437738784F3C49 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b629644c-c7c8-45fa-926f-42871932416b.roa Signing time: Sat 16 Nov 2024 00:00:00 +0000 ROA not before: Sat 16 Nov 2024 00:00:00 +0000 ROA not after: Sat 21 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:553b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:ba:c1:b2:5b:8f:3c:70:9a:bf:d6:a7:f7:43:77:38:78:4f:3c:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 16 00:00:00 2024 GMT Not After : Dec 21 23:59:59 2024 GMT Subject: serialNumber=414bab2e9503833b45feda85c74a09b528f910676468697b42b4c2e6edc4ee88, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:95:d3:a7:84:75:d3:02:7a:52:67:a9:24:d5: 60:a9:77:3b:e9:b4:af:ef:4c:46:be:15:3d:0d:e3: db:cf:96:78:62:f2:84:47:df:2d:73:61:f1:fa:21: a0:db:d3:b6:eb:bb:b6:ab:89:19:b6:c2:1e:30:87: ab:e8:a8:4b:d9:26:7b:7f:6b:46:e0:94:a7:8b:4d: 9b:0c:8c:46:f3:f3:0e:65:dd:90:2d:7a:a3:87:cc: 4a:36:4d:eb:4d:0e:f7:32:cd:83:2f:1f:9f:70:ac: 7c:84:d3:02:60:43:c4:83:65:65:42:8a:ac:0d:1e: dd:0a:bd:26:46:05:7f:09:dc:7f:94:03:59:a2:73: ee:66:01:f9:81:d8:08:63:20:1e:af:1e:c5:8a:ce: 74:ff:e5:1a:71:cb:34:63:fe:37:d9:aa:81:0a:4a: ca:71:8f:be:9e:db:27:92:a3:28:27:d7:2e:56:33: 59:40:bf:2c:4b:08:5b:16:16:22:a0:5f:22:79:98: f8:28:77:12:54:5b:f1:c2:6b:21:c0:75:83:09:29: 5c:00:07:a1:25:b3:09:97:f5:77:b8:e3:8b:24:61: 08:c9:9e:6c:9a:5f:4b:6e:be:8b:52:1e:0b:ae:56: 61:d7:fd:0e:4d:10:ed:ab:7f:dc:2e:bc:ad:91:6e: 6e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:09:27:3D:58:5B:DF:A8:99:C8:04:BE:1D:53:B5:67:D3:A7:F4:9E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b629644c-c7c8-45fa-926f-42871932416b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:553b::/48 Signature Algorithm: sha256WithRSAEncryption 5f:19:42:c7:d8:2e:08:c0:ff:cf:26:22:12:93:a3:ed:bf:ae: 05:b5:40:82:30:b4:1f:a5:ef:82:5a:f0:1c:a7:43:86:a9:8d: 17:54:90:6d:fc:04:46:18:d9:d3:02:bb:09:b9:54:7f:fb:ac: f6:bd:16:9b:5c:df:51:a9:e6:74:ba:c7:4d:cd:80:03:a9:a5: f6:1a:b6:b2:c9:ab:d9:e6:96:51:1c:b4:0c:ef:01:ed:5f:16: d7:e1:90:14:82:5d:1a:eb:d7:ea:bf:99:6b:d7:a2:e2:0e:99: 43:4b:84:99:7f:f8:0f:4a:3f:4e:ca:59:23:b8:a1:6c:19:c2: 90:29:c6:f1:f8:67:ba:fa:34:73:68:c9:cc:51:d7:62:dc:d4: 16:24:ba:64:77:8a:44:c5:0e:26:49:8e:75:0b:92:c2:96:e3: 18:57:d1:16:73:ac:30:b7:fa:06:0c:0c:aa:69:a6:a1:37:dd: 40:e4:d5:22:69:40:e8:98:28:f0:6a:b7:9a:e3:dc:72:b0:0a: b7:69:4c:14:00:44:9c:fc:d5:d0:05:8e:87:bc:e4:27:cd:5a: ff:85:94:aa:56:f0:6e:7c:08:d7:6c:0b:9b:da:86:5e:5f:a5: c1:ee:4a:10:e3:8c:e9:14:af:19:37:05:9b:5a:89:78:67:96: 4b:41:00:6e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG7rBsluPPHCav9an90N3OHhPPEkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE2MDAwMDAwWhcNMjQxMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTRiYWIyZTk1MDM4MzNiNDVmZWRhODVjNzRhMDliNTI4 ZjkxMDY3NjQ2ODY5N2I0MmI0YzJlNmVkYzRlZTg4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUldOnhHXTAnpSZ6kk1WCpdzvptK/vTEa+FT0N49vPlnhi 8oRH3y1zYfH6IaDb07bru7ariRm2wh4wh6voqEvZJnt/a0bglKeLTZsMjEbz8w5l 3ZAteqOHzEo2TetNDvcyzYMvH59wrHyE0wJgQ8SDZWVCiqwNHt0KvSZGBX8J3H+U A1mic+5mAfmB2AhjIB6vHsWKznT/5RpxyzRj/jfZqoEKSspxj76e2yeSoygn1y5W M1lAvyxLCFsWFiKgXyJ5mPgodxJUW/HCayHAdYMJKVwAB6ElswmX9Xe444skYQjJ nmyaX0tuvotSHguuVmHX/Q5NEO2rf9wuvK2Rbm7ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpwknPVhb36iZyAS+HVO1Z9On9J4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I2Mjk2NDRjLWM3YzgtNDVmYS05MjZmLTQyODcxOTMyNDE2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVTswDQYJKoZIhvcNAQELBQADggEBAF8ZQsfYLgjA/88mIhKTo+2/ rgW1QIIwtB+l74Ja8BynQ4apjRdUkG38BEYY2dMCuwm5VH/7rPa9Fptc31Gp5nS6 x03NgAOppfYatrLJq9nmllEctAzvAe1fFtfhkBSCXRrr1+q/mWvXouIOmUNLhJl/ +A9KP07KWSO4oWwZwpApxvH4Z7r6NHNoycxR12Lc1BYkumR3ikTFDiZJjnULksKW 4xhX0RZzrDC3+gYMDKpppqE33UDk1SJpQOiYKPBqt5rj3HKwCrdpTBQARJz81dAF joe85CfNWv+FlKpW8G58CNdsC5vahl5fpcHuShDjjOkUrxk3BZtaiXhnlktBAG4= -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:45 2024 by rpki-client on console-ams.rpki-client.org