$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c5e869f4-a046-4227-a965-632f217c044e.roa File: c5e869f4-a046-4227-a965-632f217c044e.roa (raw, json) Hash identifier: C/yZO7DVWmSh3dyRmU/rv7j2VJqxsw8UjPPQnzPXIXE= Subject key identifier: AE:4F:1B:66:90:D7:C5:DA:AA:A5:AC:87:49:F8:0B:72:53:6F:D6:40 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 774E5C57201EEF6B97F4FBF5D508A0E386EF957D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c5e869f4-a046-4227-a965-632f217c044e.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f00c:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:4e:5c:57:20:1e:ef:6b:97:f4:fb:f5:d5:08:a0:e3:86:ef:95:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=fe215431705d16eac76dba4a94fd3ff8c671bfd87c5f9435217f7b2f943e4516, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a5:a8:db:14:88:ee:e6:cf:7b:9f:f0:98:3e: c0:41:a2:a7:fd:90:fa:1f:a1:82:7f:41:0a:e3:bc: b6:d5:fb:dd:26:05:4f:99:31:f6:b2:69:fd:f9:74: 56:c2:42:44:60:2c:dd:bd:e4:8a:ee:1e:87:7a:2b: 1b:23:12:16:4b:3f:40:1d:c4:6e:fc:99:fc:e7:dd: 60:b3:ef:ef:a3:98:20:9b:80:0d:52:79:52:e9:58: ea:56:e8:0d:1d:83:3a:da:fb:75:1e:05:6e:25:a9: c3:a0:6d:89:3b:76:d6:1f:87:e7:9f:8a:b0:93:bd: bc:64:da:3d:4d:e6:98:dc:e1:f6:e0:d2:b8:1e:dc: 75:5d:71:2e:63:4f:aa:d5:3f:52:dd:5c:47:60:8e: ea:e4:0a:b6:59:88:6d:c0:da:a4:2d:7f:68:a6:e2: db:86:70:f7:48:ef:00:53:67:89:91:b5:e5:34:0a: 23:5c:96:bf:59:62:f3:0d:6a:d1:8c:14:0d:e4:4f: bf:2f:ee:f9:03:b8:e6:3d:da:ad:a3:c3:c5:5d:72: 4a:cc:f4:16:30:e5:49:e7:5a:f7:0c:d5:72:32:73: 19:5d:d5:0d:dc:72:78:a2:aa:50:36:1c:dc:d4:a3: a9:af:6a:30:e4:46:5e:8e:e8:cd:f1:c3:c0:91:18: ea:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:4F:1B:66:90:D7:C5:DA:AA:A5:AC:87:49:F8:0B:72:53:6F:D6:40 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c5e869f4-a046-4227-a965-632f217c044e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f00c:8000::/39 Signature Algorithm: sha256WithRSAEncryption 09:ab:e6:21:4a:39:bf:4b:2c:be:68:ae:c0:4e:cd:dd:83:84: bb:5c:88:4f:7c:c4:56:48:8f:56:fb:68:9f:b5:6e:70:f9:f7: 79:49:d8:a2:95:cd:d2:2a:83:8a:b7:dc:54:1d:4e:15:06:97: 05:ae:e8:3b:3a:33:ee:67:d1:f2:af:e1:66:3e:d3:74:2d:f6: 55:bf:4e:c5:83:89:6c:bc:d9:83:1c:7c:79:b4:cf:93:90:d0: e8:b7:5d:cf:2a:b9:1b:6b:81:96:fa:1e:b3:62:71:fa:f5:df: 29:2d:bc:87:14:8e:34:ad:d6:e7:44:75:81:87:54:48:da:3e: e8:f8:32:35:69:3c:c9:90:c7:0a:62:3b:34:a4:fd:01:e0:66: 5e:ae:96:91:c7:c0:77:6d:df:4a:bd:78:58:7f:44:46:2c:8d: 0c:65:6a:9f:5e:66:6e:70:30:7b:ad:34:14:9a:39:d8:54:d0: 0d:47:4e:62:a1:37:ed:dc:09:a0:e0:5a:d5:b2:07:eb:bc:6c: 43:d5:55:24:04:e2:b1:e1:10:7f:17:3c:e0:cb:c9:9f:19:b1: 04:a0:98:47:07:9e:2b:9d:93:dc:33:13:29:b9:f1:10:44:f9: c6:04:1e:8b:82:cb:75:e7:ab:66:54:73:0d:f4:6c:bf:2b:62: 18:1a:e3:33 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUd05cVyAe72uX9Pv11Qig44bvlX0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTIxNTQzMTcwNWQxNmVhYzc2ZGJhNGE5NGZkM2ZmOGM2 NzFiZmQ4N2M1Zjk0MzUyMTdmN2IyZjk0M2U0NTE2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbpajbFIju5s97n/CYPsBBoqf9kPofoYJ/QQrjvLbV+90m BU+ZMfayaf35dFbCQkRgLN295IruHod6KxsjEhZLP0AdxG78mfzn3WCz7++jmCCb gA1SeVLpWOpW6A0dgzra+3UeBW4lqcOgbYk7dtYfh+efirCTvbxk2j1N5pjc4fbg 0rge3HVdcS5jT6rVP1LdXEdgjurkCrZZiG3A2qQtf2im4tuGcPdI7wBTZ4mRteU0 CiNclr9ZYvMNatGMFA3kT78v7vkDuOY92q2jw8VdckrM9BYw5UnnWvcM1XIycxld 1Q3ccniiqlA2HNzUo6mvajDkRl6O6M3xw8CRGOqbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrk8bZpDXxdqqpayHSfgLclNv1kAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M1ZTg2OWY0LWEwNDYtNDIyNy1hOTY1LTYzMmYyMTdjMDQ0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAMgDANBgkqhkiG9w0BAQsFAAOCAQEACavmIUo5v0ssvmiuwE7N3YOE u1yIT3zEVkiPVvton7VucPn3eUnYopXN0iqDirfcVB1OFQaXBa7oOzoz7mfR8q/h Zj7TdC32Vb9OxYOJbLzZgxx8ebTPk5DQ6Lddzyq5G2uBlvoes2Jx+vXfKS28hxSO NK3W50R1gYdUSNo+6PgyNWk8yZDHCmI7NKT9AeBmXq6WkcfAd23fSr14WH9ERiyN DGVqn15mbnAwe600FJo52FTQDUdOYqE37dwJoOBa1bIH67xsQ9VVJATiseEQfxc8 4MvJnxmxBKCYRweeK52T3DMTKbnxEET5xgQei4LLdeerZlRzDfRsvytiGBrjMw== -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:45 2024 by rpki-client on console-ams.rpki-client.org