$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c5e869f4-a046-4227-a965-632f217c044e.roa File: c5e869f4-a046-4227-a965-632f217c044e.roa (raw, json) Hash identifier: wd2BTe+g5XyrEJ0gjI61LSTEciPxlPe+k/5RdsI2e7Y= Subject key identifier: 92:2B:17:69:4F:5E:2E:F4:9F:2E:C5:BB:5A:E8:A8:02:7A:B7:1C:4A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6E5BD8BDC500E5BB0F4DDEDF69C592E691DD3507 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c5e869f4-a046-4227-a965-632f217c044e.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f00c:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:5b:d8:bd:c5:00:e5:bb:0f:4d:de:df:69:c5:92:e6:91:dd:35:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=77941661d3baa887cf754f0c9e95346231b2d03e58b6ef60b025b7214073774a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:99:8d:b5:29:da:53:97:18:5c:86:84:92:f4: cc:ea:96:ca:e0:0b:b5:d2:f7:a6:09:09:aa:60:77: 56:ff:6c:f5:9d:6e:3a:23:4d:f2:55:9a:14:f0:d3: b6:30:10:43:ea:c6:b9:15:6a:05:70:20:a2:d7:08: df:83:2e:f8:43:82:c2:b8:f4:4d:39:24:d2:7d:60: 63:03:51:7c:9c:68:df:8e:86:64:84:24:65:27:8f: 43:1b:26:73:78:ce:23:7d:f1:70:b6:75:6f:f1:97: 32:4b:f3:9b:f7:1a:74:47:a9:68:67:f4:86:00:e1: 71:50:e5:03:25:c2:45:2d:cf:61:89:79:04:f9:01: c3:8b:9d:10:5c:24:1e:f8:d2:c0:df:a3:38:cf:f4: 71:f1:a6:55:27:4c:1c:46:c7:1c:68:33:f6:58:fe: 65:2b:1b:6f:00:1a:7a:1d:cc:12:d3:f4:53:a8:6a: 95:1b:53:1a:e6:79:d6:2f:c9:a7:e8:f5:88:a4:18: 8b:d2:24:fb:28:38:95:ec:a8:28:22:16:da:b1:eb: 1b:de:99:84:0e:80:18:af:f7:a8:77:3a:5b:3f:56: 59:e2:d2:92:f3:38:20:ff:3c:d3:8a:42:20:ab:2e: d1:5a:fb:68:5e:6d:50:46:7e:7c:e9:87:af:21:d3: 06:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:2B:17:69:4F:5E:2E:F4:9F:2E:C5:BB:5A:E8:A8:02:7A:B7:1C:4A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c5e869f4-a046-4227-a965-632f217c044e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f00c:8000::/39 Signature Algorithm: sha256WithRSAEncryption 0d:f5:1e:09:d5:4c:ae:17:61:9e:b5:c1:8b:a4:f2:06:69:ac: 71:1e:69:a6:d5:0a:48:50:65:b8:23:96:d3:38:3e:a1:6d:b2: 66:c5:b1:41:5a:86:40:da:7f:92:31:ef:3d:56:8e:df:13:ea: 73:83:38:d7:7e:ca:60:2d:2e:ce:0a:9c:47:e8:c0:82:55:2a: 52:a3:62:7e:b6:f6:76:ab:21:7e:a3:64:20:a1:9f:01:c3:e8: be:0f:3c:d0:07:be:3d:f4:a6:72:d7:b1:f0:3c:67:c7:2f:df: 17:6e:49:c9:4d:b4:0b:3f:fa:70:a1:c3:18:a0:8d:3d:9e:b9: 94:1d:c0:b2:39:e4:8e:ab:66:77:12:e7:11:c4:84:59:ca:9a: af:7d:1b:39:2d:4c:80:28:9e:5d:93:8b:61:f2:77:9d:5a:9c: 5d:f0:c8:00:8e:56:e7:fb:1d:26:e5:9a:d4:eb:41:54:95:95: ba:d3:7f:82:e7:e7:4e:f5:6e:6b:77:e3:98:8d:cc:ea:b5:bd: 22:bc:6f:27:34:30:0e:d3:be:6f:f2:81:da:e5:ab:b1:90:c9: c9:22:dc:76:36:ef:c4:cb:c3:20:99:cb:ac:ad:8a:cd:08:89: 90:73:84:dd:1e:35:07:85:e8:48:de:79:e1:bf:aa:02:e0:ec: 5d:99:c9:53 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUblvYvcUA5bsPTd7facWS5pHdNQcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Nzk0MTY2MWQzYmFhODg3Y2Y3NTRmMGM5ZTk1MzQ2MjMx YjJkMDNlNThiNmVmNjBiMDI1YjcyMTQwNzM3NzRhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQmY21KdpTlxhchoSS9MzqlsrgC7XS96YJCapgd1b/bPWd bjojTfJVmhTw07YwEEPqxrkVagVwIKLXCN+DLvhDgsK49E05JNJ9YGMDUXycaN+O hmSEJGUnj0MbJnN4ziN98XC2dW/xlzJL85v3GnRHqWhn9IYA4XFQ5QMlwkUtz2GJ eQT5AcOLnRBcJB740sDfozjP9HHxplUnTBxGxxxoM/ZY/mUrG28AGnodzBLT9FOo apUbUxrmedYvyafo9YikGIvSJPsoOJXsqCgiFtqx6xvemYQOgBiv96h3Ols/Vlni 0pLzOCD/PNOKQiCrLtFa+2hebVBGfnzph68h0waHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkisXaU9eLvSfLsW7WuioAnq3HEowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M1ZTg2OWY0LWEwNDYtNDIyNy1hOTY1LTYzMmYyMTdjMDQ0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAMgDANBgkqhkiG9w0BAQsFAAOCAQEADfUeCdVMrhdhnrXBi6TyBmms cR5pptUKSFBluCOW0zg+oW2yZsWxQVqGQNp/kjHvPVaO3xPqc4M4137KYC0uzgqc R+jAglUqUqNifrb2dqshfqNkIKGfAcPovg880Ae+PfSmctex8Dxnxy/fF25JyU20 Cz/6cKHDGKCNPZ65lB3AsjnkjqtmdxLnEcSEWcqar30bOS1MgCieXZOLYfJ3nVqc XfDIAI5W5/sdJuWa1OtBVJWVutN/gufnTvVua3fjmI3M6rW9IrxvJzQwDtO+b/KB 2uWrsZDJySLcdjbvxMvDIJnLrK2KzQiJkHOE3R41B4XoSN554b+qAuDsXZnJUw== -----END CERTIFICATE-----Generated at Wed Apr 24 18:34:43 2024 by rpki-client on console-ams.rpki-client.org