$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb273ecc-4c0a-4a93-8128-c3cdc38ff4b3.roa File: cb273ecc-4c0a-4a93-8128-c3cdc38ff4b3.roa (raw, json) Hash identifier: MdtZjy3nhbtwOBgklAWynL3r9E4fnPUcIa8NimEbwi0= Subject key identifier: 3F:BD:21:96:7F:BD:2A:4F:DF:FC:AB:48:36:E2:E5:C6:23:77:B4:6A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 118C41F1604667E31E065454B25174878C422EFE Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb273ecc-4c0a-4a93-8128-c3cdc38ff4b3.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:731::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:8c:41:f1:60:46:67:e3:1e:06:54:54:b2:51:74:87:8c:42:2e:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=1ede3ead6493fc48220798767acf2796c82d0f650c96c9af8ef594fcdd6aeb74, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9f:ce:d8:9e:bf:21:c7:ad:9e:3f:f5:f4:2c: 78:0e:20:ed:fd:55:5d:3a:30:cb:a2:09:ab:d4:31: 9e:98:f2:d4:72:6b:a4:74:9e:76:f4:5f:5c:7f:b8: 14:19:64:ac:75:ef:ac:63:0c:02:21:0f:f6:ee:ef: 9a:9a:52:27:39:0d:42:41:5b:99:4b:b0:a4:60:e4: 19:33:30:4d:9b:77:b2:5e:58:6a:6b:1c:9d:61:de: 3a:7f:96:72:74:66:ec:85:10:94:a8:62:13:81:b8: cf:82:80:45:fa:4f:df:41:85:53:18:95:95:26:1d: c5:6b:8a:58:9e:f4:89:65:dd:8f:58:bb:95:df:66: 7d:93:49:26:ef:0f:04:42:60:76:3c:f7:1d:94:7f: 6e:45:f8:1d:02:73:7e:de:98:b9:60:48:8c:3a:db: 0f:1c:e9:ad:d9:0c:4a:52:34:59:b1:f3:84:c1:ec: 23:0c:1a:0c:68:11:03:c7:9f:4a:0f:9a:1d:38:05: c0:0a:c6:0b:4d:78:d6:8f:e0:c7:de:da:14:11:c9: fb:bf:42:55:3d:64:6b:2b:75:ef:3e:da:cc:fe:68: b3:74:14:6d:44:aa:de:a6:58:21:cf:ed:87:d0:ea: b1:82:16:37:8c:cc:1c:42:e2:04:6a:e6:93:e0:bd: 01:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BD:21:96:7F:BD:2A:4F:DF:FC:AB:48:36:E2:E5:C6:23:77:B4:6A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb273ecc-4c0a-4a93-8128-c3cdc38ff4b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:731::/48 Signature Algorithm: sha256WithRSAEncryption 9f:89:3f:90:82:9c:fa:d6:24:41:b8:b3:3d:91:e9:c2:dc:6a: 43:48:e2:21:7b:42:d2:d9:30:a6:02:da:f4:f0:83:52:8e:45: 63:41:3f:e6:81:ae:43:2b:ac:4c:97:a5:44:67:ff:67:48:1e: 41:0b:38:5a:91:6a:61:ad:0c:7a:bf:db:62:f2:d7:1c:71:0d: e4:6c:d0:6f:97:e0:b7:81:0b:b4:a7:ba:8b:1a:e7:40:e0:14: cb:85:b4:3d:a2:9a:29:53:55:d9:1a:ca:fc:5f:2a:4a:7d:3a: 7b:da:0a:ae:a2:98:30:f7:32:cd:25:42:b7:54:61:7e:0d:ba: 65:de:00:92:cb:20:6c:11:7c:0e:b4:87:4f:7e:23:7c:cf:cc: 64:d6:04:61:93:ad:ee:13:80:32:a0:4f:b4:26:a1:cb:9f:c4: f8:dd:91:1a:8c:76:b0:ad:93:22:3f:83:83:fe:6a:cd:d6:c7: 9d:9d:a4:2f:4c:18:74:23:e9:d7:88:72:6c:ba:9c:e9:b9:e1: ee:3c:2f:34:cd:54:e6:57:47:33:28:88:6e:a5:98:da:b8:d7: 0e:93:40:46:7c:fc:a3:3c:32:49:83:f1:8e:18:4a:bc:11:e9: 45:46:14:12:78:c9:48:28:b6:27:55:9c:54:45:50:13:72:18: 65:91:e8:f9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEYxB8WBGZ+MeBlRUslF0h4xCLv4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWRlM2VhZDY0OTNmYzQ4MjIwNzk4NzY3YWNmMjc5NmM4 MmQwZjY1MGM5NmM5YWY4ZWY1OTRmY2RkNmFlYjc0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcn87Ynr8hx62eP/X0LHgOIO39VV06MMuiCavUMZ6Y8tRy a6R0nnb0X1x/uBQZZKx176xjDAIhD/bu75qaUic5DUJBW5lLsKRg5BkzME2bd7Je WGprHJ1h3jp/lnJ0ZuyFEJSoYhOBuM+CgEX6T99BhVMYlZUmHcVrilie9Ill3Y9Y u5XfZn2TSSbvDwRCYHY89x2Uf25F+B0Cc37emLlgSIw62w8c6a3ZDEpSNFmx84TB 7CMMGgxoEQPHn0oPmh04BcAKxgtNeNaP4Mfe2hQRyfu/QlU9ZGsrde8+2sz+aLN0 FG1Eqt6mWCHP7YfQ6rGCFjeMzBxC4gRq5pPgvQFHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUP70hln+9Kk/f/KtINuLlxiN3tGowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiMjczZWNjLTRjMGEtNGE5My04MTI4LWMzY2RjMzhmZjRiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBzEwDQYJKoZIhvcNAQELBQADggEBAJ+JP5CCnPrWJEG4sz2R6cLc akNI4iF7QtLZMKYC2vTwg1KORWNBP+aBrkMrrEyXpURn/2dIHkELOFqRamGtDHq/ 22Ly1xxxDeRs0G+X4LeBC7Snuosa50DgFMuFtD2imilTVdkayvxfKkp9OnvaCq6i mDD3Ms0lQrdUYX4NumXeAJLLIGwRfA60h09+I3zPzGTWBGGTre4TgDKgT7Qmocuf xPjdkRqMdrCtkyI/g4P+as3Wx52dpC9MGHQj6deIcmy6nOm54e48LzTNVOZXRzMo iG6lmNq41w6TQEZ8/KM8MkmD8Y4YSrwR6UVGFBJ4yUgotidVnFRFUBNyGGWR6Pk= -----END CERTIFICATE-----Generated at Thu May 2 01:05:46 2024 by rpki-client on console-fra.rpki-client.org