$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb318461-987d-4c0e-bf7e-c0523f561e38.roa File: cb318461-987d-4c0e-bf7e-c0523f561e38.roa (raw, json) Hash identifier: fX3lNV+N4kDsldg2efh21IGIYSeTYKSxwryAakwEqtM= Subject key identifier: 52:15:71:70:1E:6B:43:EF:D4:D7:38:F0:1C:17:BA:1B:A6:4F:DD:29 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 274FDF72E096627EB523605A2AB5D3B1CAB64BB2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb318461-987d-4c0e-bf7e-c0523f561e38.roa Signing time: Mon 29 Apr 2024 00:00:00 +0000 ROA not before: Mon 29 Apr 2024 00:00:00 +0000 ROA not after: Mon 03 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:83::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:4f:df:72:e0:96:62:7e:b5:23:60:5a:2a:b5:d3:b1:ca:b6:4b:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 29 00:00:00 2024 GMT Not After : Jun 3 23:59:59 2024 GMT Subject: serialNumber=ad2e38717af370c40ab267a9276260213f8483b9143ff615456f2fa15e49a426, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:66:31:cd:c8:07:97:cf:85:56:59:da:87:05: bb:10:4e:d1:35:bc:df:68:97:62:8d:10:24:df:54: cf:6d:8c:d5:dc:de:87:e7:9b:38:ac:6a:3e:b0:af: c5:8d:e8:c3:93:c9:90:f3:2b:56:51:c7:88:cd:ca: 7c:01:ae:30:ce:f8:f6:5b:38:72:90:d8:03:44:b6: d7:54:6b:b1:c3:50:0c:5d:44:e7:bc:4a:d3:0d:96: ba:48:c5:a9:63:f8:48:3c:55:1a:d2:31:f2:d3:70: 64:4e:61:8e:25:a5:8e:38:56:86:8b:0e:fd:1b:96: 38:f3:63:f2:13:f4:7b:cc:b8:8d:6e:40:56:18:2b: f6:d2:3c:af:3c:87:74:54:20:5b:ca:8c:28:1b:6f: 4f:a5:e2:e0:6a:98:cf:75:0b:80:5a:75:b8:ce:3c: 20:2d:3b:c0:72:00:fa:7b:50:b9:d1:99:ae:26:ca: 0f:90:2d:7d:12:c9:0e:4f:27:8f:4e:d5:07:d8:2d: 9a:51:7e:f5:a0:41:5e:3a:1e:f5:ec:28:0a:3c:78: 69:8e:c6:eb:a5:95:2c:a3:7e:74:bd:57:82:03:bf: cc:9f:c9:26:b8:35:41:ec:c9:56:1f:b2:a3:bd:4a: 7a:08:57:ed:81:ef:03:b3:5d:a0:ad:1a:f0:31:4c: e6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:15:71:70:1E:6B:43:EF:D4:D7:38:F0:1C:17:BA:1B:A6:4F:DD:29 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb318461-987d-4c0e-bf7e-c0523f561e38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:83::/48 Signature Algorithm: sha256WithRSAEncryption 4a:9a:0e:03:0e:96:5f:95:5b:e7:79:c0:db:a1:dd:d5:e0:2e: 10:00:4a:2e:7e:e1:93:6d:bd:ca:28:fe:6d:38:6e:0e:75:94: ea:a6:48:3c:f0:bc:b0:fe:a1:cf:9f:32:d9:e9:e9:92:ec:b2: c6:2f:78:ec:ec:75:33:2d:14:6a:bd:59:03:ce:09:33:3e:ac: 1b:08:84:08:e6:3b:8e:f5:e6:58:f4:02:47:7c:57:50:a0:26: ce:3f:aa:d9:27:29:93:c5:31:e0:ae:d4:01:dc:63:28:86:30: f2:c1:6f:5d:01:80:6e:df:5d:35:32:69:f3:22:ca:2f:f5:15: 28:52:45:b1:97:e1:43:b1:46:76:91:c7:dc:a2:93:94:fb:5a: f7:52:94:d9:3b:64:58:05:ea:77:f1:5e:7e:95:29:f6:58:26: 4b:d0:02:cb:81:15:27:c6:ab:d3:7f:7c:1c:55:d3:1c:b3:78: 5c:a9:88:49:7d:b8:15:6f:0a:87:bf:25:86:10:20:02:0d:70: 95:2e:2e:9e:ef:1f:e5:d1:42:15:20:b4:fb:70:09:c0:0d:d8: 18:d9:31:f3:f2:3a:59:f5:e2:cc:16:87:9a:93:59:cf:1f:70: 91:90:fa:e2:60:a8:ea:73:7f:78:78:b0:7a:7f:71:bb:26:a1: 58:c2:73:e3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ0/fcuCWYn61I2BaKrXTscq2S7IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDI5MDAwMDAwWhcNMjQwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDJlMzg3MTdhZjM3MGM0MGFiMjY3YTkyNzYyNjAyMTNm ODQ4M2I5MTQzZmY2MTU0NTZmMmZhMTVlNDlhNDI2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzZjHNyAeXz4VWWdqHBbsQTtE1vN9ol2KNECTfVM9tjNXc 3ofnmzisaj6wr8WN6MOTyZDzK1ZRx4jNynwBrjDO+PZbOHKQ2ANEttdUa7HDUAxd ROe8StMNlrpIxalj+Eg8VRrSMfLTcGROYY4lpY44VoaLDv0bljjzY/IT9HvMuI1u QFYYK/bSPK88h3RUIFvKjCgbb0+l4uBqmM91C4BadbjOPCAtO8ByAPp7ULnRma4m yg+QLX0SyQ5PJ49O1QfYLZpRfvWgQV46HvXsKAo8eGmOxuullSyjfnS9V4IDv8yf ySa4NUHsyVYfsqO9SnoIV+2B7wOzXaCtGvAxTOZDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUhVxcB5rQ+/U1zjwHBe6G6ZP3SkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiMzE4NDYxLTk4N2QtNGMwZS1iZjdlLWMwNTIzZjU2MWUzOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIMwDQYJKoZIhvcNAQELBQADggEBAEqaDgMOll+VW+d5wNuh3dXg LhAASi5+4ZNtvcoo/m04bg51lOqmSDzwvLD+oc+fMtnp6ZLsssYveOzsdTMtFGq9 WQPOCTM+rBsIhAjmO4715lj0Akd8V1CgJs4/qtknKZPFMeCu1AHcYyiGMPLBb10B gG7fXTUyafMiyi/1FShSRbGX4UOxRnaRx9yik5T7WvdSlNk7ZFgF6nfxXn6VKfZY JkvQAsuBFSfGq9N/fBxV0xyzeFypiEl9uBVvCoe/JYYQIAINcJUuLp7vH+XRQhUg tPtwCcAN2BjZMfPyOln14swWh5qTWc8fcJGQ+uJgqOpzf3h4sHp/cbsmoVjCc+M= -----END CERTIFICATE-----Generated at Thu May 2 00:52:16 2024 by rpki-client on console-ams.rpki-client.org