$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb273ecc-4c0a-4a93-8128-c3cdc38ff4b3.roa File: cb273ecc-4c0a-4a93-8128-c3cdc38ff4b3.roa (raw, json) Hash identifier: xxFWcbykl7/13Vxoht1+W881KBGtGxM4+BTAp+OD664= Subject key identifier: AB:6E:22:5F:71:E9:13:FE:DB:BB:60:E0:41:8F:94:F3:04:48:D7:C6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 18ED6441B581B883AFBF9BDC54BBE44D1CDF53D3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb273ecc-4c0a-4a93-8128-c3cdc38ff4b3.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:731::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:ed:64:41:b5:81:b8:83:af:bf:9b:dc:54:bb:e4:4d:1c:df:53:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=c3598dcd70dea453071344faebed03738064bf96b2cbd724eaabf24cd2f2da6e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1a:02:9e:9d:a7:27:b9:9d:f0:af:60:9b:e3: 10:3b:85:af:68:cc:27:1e:5e:55:87:00:a8:d2:65: 83:97:d9:71:96:7a:29:bf:da:88:a0:50:ad:7b:3b: cf:25:8c:f0:1c:73:06:ff:b8:98:4e:99:94:20:4e: f6:a6:6d:34:95:7a:ff:c7:fb:4b:3d:8b:6f:13:75: 1f:79:71:d0:ef:42:d5:85:60:84:4a:92:06:c4:4f: 94:54:21:fd:9b:66:ab:2f:54:82:a2:2b:f6:d3:d8: a4:20:0a:f0:de:18:64:48:00:dd:a9:31:4b:08:3e: 30:65:da:59:cc:52:c3:22:a1:de:c9:8f:22:f3:79: 5a:1b:13:13:25:14:44:d9:fd:af:00:01:33:3d:89: 4f:cc:bd:c6:fe:1d:f0:26:db:83:1c:f5:cb:99:67: b7:d9:33:87:a5:79:97:e4:a1:3e:61:ca:7b:01:d7: e5:8e:e9:70:01:25:ac:3a:99:4f:19:1e:ec:de:33: d5:e3:45:20:02:bd:0c:64:c6:33:43:25:b1:83:9b: 74:7c:81:0e:17:cd:7f:d9:61:70:98:14:84:50:f8: d9:c2:1d:c6:c8:d6:d2:40:c6:30:92:a8:96:66:ee: 81:2c:94:74:c4:74:23:38:88:a1:78:5f:35:e8:cb: e8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6E:22:5F:71:E9:13:FE:DB:BB:60:E0:41:8F:94:F3:04:48:D7:C6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb273ecc-4c0a-4a93-8128-c3cdc38ff4b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:731::/48 Signature Algorithm: sha256WithRSAEncryption 22:2e:6a:58:20:e5:f3:4a:b9:f7:df:ec:75:fc:76:0c:a6:aa: 9c:52:2c:f7:3e:c1:6e:7c:e4:e8:f6:6f:2d:ff:32:d5:0d:af: 7b:a9:fa:6b:f1:51:67:f6:a7:80:eb:eb:d6:65:43:20:a5:40: 7f:02:4e:0d:90:8b:a0:d8:17:6b:16:19:e5:d7:c5:ce:8b:11: 06:a6:e1:00:d5:68:43:d6:3f:0a:83:c2:f0:6c:02:82:17:6d: 01:02:9e:1a:25:63:36:f7:2c:77:e5:6f:20:be:a0:3d:11:49: 6d:7c:c5:9e:22:39:30:d3:dd:c1:84:b8:9f:ca:0e:ed:1b:46: ab:0e:10:12:7d:05:69:64:c1:43:5a:f6:48:f4:02:98:c1:06: 37:50:2a:53:08:c2:9e:fa:b1:08:94:ae:dc:03:dd:f6:06:57: 89:a1:06:0d:89:6a:13:49:ba:f9:7e:4e:68:c3:a7:38:06:0b: b2:ac:35:c1:f9:22:82:ba:09:f4:7f:82:f5:6f:0a:86:b6:88: ce:82:bd:09:b6:25:de:6d:2c:f7:87:f5:02:d8:ec:96:66:94: 6d:e5:ce:90:6b:2d:63:ad:8d:69:2f:ac:d2:75:ae:c8:23:d2: 3a:c4:cb:8c:ff:92:74:da:d2:eb:10:21:b2:c4:09:71:3d:d9: 16:74:da:30 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGO1kQbWBuIOvv5vcVLvkTRzfU9MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzU5OGRjZDcwZGVhNDUzMDcxMzQ0ZmFlYmVkMDM3Mzgw NjRiZjk2YjJjYmQ3MjRlYWFiZjI0Y2QyZjJkYTZlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5GgKenacnuZ3wr2Cb4xA7ha9ozCceXlWHAKjSZYOX2XGW eim/2oigUK17O88ljPAccwb/uJhOmZQgTvambTSVev/H+0s9i28TdR95cdDvQtWF YIRKkgbET5RUIf2bZqsvVIKiK/bT2KQgCvDeGGRIAN2pMUsIPjBl2lnMUsMiod7J jyLzeVobExMlFETZ/a8AATM9iU/Mvcb+HfAm24Mc9cuZZ7fZM4eleZfkoT5hynsB 1+WO6XABJaw6mU8ZHuzeM9XjRSACvQxkxjNDJbGDm3R8gQ4XzX/ZYXCYFIRQ+NnC HcbI1tJAxjCSqJZm7oEslHTEdCM4iKF4XzXoy+hlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUq24iX3HpE/7bu2DgQY+U8wRI18YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiMjczZWNjLTRjMGEtNGE5My04MTI4LWMzY2RjMzhmZjRiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBzEwDQYJKoZIhvcNAQELBQADggEBACIualgg5fNKufff7HX8dgym qpxSLPc+wW585Oj2by3/MtUNr3up+mvxUWf2p4Dr69ZlQyClQH8CTg2Qi6DYF2sW GeXXxc6LEQam4QDVaEPWPwqDwvBsAoIXbQECnholYzb3LHflbyC+oD0RSW18xZ4i OTDT3cGEuJ/KDu0bRqsOEBJ9BWlkwUNa9kj0ApjBBjdQKlMIwp76sQiUrtwD3fYG V4mhBg2JahNJuvl+TmjDpzgGC7KsNcH5IoK6CfR/gvVvCoa2iM6CvQm2Jd5tLPeH 9QLY7JZmlG3lzpBrLWOtjWkvrNJ1rsgj0jrEy4z/knTa0usQIbLECXE92RZ02jA= -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:45 2024 by rpki-client on console-ams.rpki-client.org