$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb318461-987d-4c0e-bf7e-c0523f561e38.roa File: cb318461-987d-4c0e-bf7e-c0523f561e38.roa (raw, json) Hash identifier: bmD8G8qBh6jx8cKACBa2/Sjv0T77Gbc1yIiryMbvWhM= Subject key identifier: 53:37:C1:82:A0:ED:51:C4:85:92:D3:FB:2D:6B:0B:7F:DF:16:28:38 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6DDF9C799289990E58B4976F0EF3C6F2C6888AF8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb318461-987d-4c0e-bf7e-c0523f561e38.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:83::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:df:9c:79:92:89:99:0e:58:b4:97:6f:0e:f3:c6:f2:c6:88:8a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=767a8d02bca0d0d0fb842c434dd5d6b5b295860dd4052f3431b27a2c01ed9191, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1c:51:83:50:53:50:85:ad:eb:b0:81:c4:76: c1:db:48:1d:3f:5d:ce:f0:0d:12:24:40:03:df:2a: 02:c2:6a:2b:30:2b:6c:5b:e0:9d:b0:0a:16:fc:9c: 6a:f4:2e:b0:5c:2b:49:c8:de:07:ea:12:0e:12:d5: 1b:d1:47:6e:8d:0b:a4:9c:f7:2d:e9:2e:59:06:cf: a2:03:2a:bd:6e:0a:16:36:ae:99:20:6c:3a:91:7a: 99:ea:13:3f:96:27:e0:90:6f:b1:9a:3f:49:fa:df: 56:01:11:95:21:d6:cf:fe:f3:56:d0:da:3b:65:53: a0:66:76:85:89:04:09:86:d8:93:0a:6b:7b:48:8e: a8:da:b6:5d:b4:ed:a4:4b:b0:ef:68:b6:48:13:4e: 5a:22:4b:69:22:bb:61:ba:c0:61:15:d8:38:86:76: cd:60:8b:21:41:e2:d3:3e:0a:31:e5:67:7f:86:1f: 73:45:be:8e:59:f8:1e:b1:20:0b:60:5b:fe:31:84: 94:8c:cd:d9:5f:3f:e1:4e:6a:9a:cf:6b:e4:fa:3b: d5:a0:63:44:b9:62:14:1f:8f:5a:8e:73:c9:4b:e5: 2e:81:87:6d:1b:72:c4:22:c5:de:b4:63:6c:be:f4: 08:da:0a:32:d7:77:42:a5:29:70:c8:f8:18:23:89: e1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:37:C1:82:A0:ED:51:C4:85:92:D3:FB:2D:6B:0B:7F:DF:16:28:38 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb318461-987d-4c0e-bf7e-c0523f561e38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:83::/48 Signature Algorithm: sha256WithRSAEncryption 58:08:40:10:cc:62:56:ef:0f:7e:df:0c:97:16:90:56:f5:0b: 9e:0b:18:85:8a:c1:56:d3:07:f0:ce:c7:3f:95:72:42:25:5a: ca:c8:7d:4a:e5:76:a6:dd:de:6f:77:2d:1d:15:96:48:c9:5f: 84:48:7d:d7:0e:0b:b8:f2:d2:67:de:7b:d4:78:cc:17:fb:b9: 29:32:52:ae:7e:fa:b6:ce:d5:cc:c9:20:1e:a3:39:24:f1:a5: 88:af:4c:cb:4e:0a:14:27:38:84:63:c3:90:85:c5:74:ac:45: 0d:82:a0:95:58:15:3e:86:8d:53:5a:54:d5:44:40:a6:60:6e: 46:25:b1:26:cb:ac:a3:a1:1a:ee:55:a1:2b:6d:3c:e2:6f:28: dd:2a:ba:ef:7b:cc:d9:6f:de:22:36:79:a4:42:38:d4:37:4f: 01:7a:31:75:e9:fe:1a:92:b8:ff:4f:05:be:f2:7e:5a:2f:bd: 1d:7a:27:ed:fe:d1:3b:24:64:70:5f:93:50:5f:7a:e5:9e:1c: e4:1a:95:5d:09:11:c1:c9:d5:7a:8c:ad:4a:87:6e:8f:04:28: 59:69:2f:ff:83:06:8d:d0:45:39:a3:a5:ac:c2:9a:d7:67:c0: 38:46:ab:93:1f:da:9d:07:86:12:df:ab:52:1f:11:11:2a:fe: d4:d8:97:56 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbd+ceZKJmQ5YtJdvDvPG8saIivgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE4MDAwMDAwWhcNMjQxMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjdhOGQwMmJjYTBkMGQwZmI4NDJjNDM0ZGQ1ZDZiNWIy OTU4NjBkZDQwNTJmMzQzMWIyN2EyYzAxZWQ5MTkxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkHFGDUFNQha3rsIHEdsHbSB0/Xc7wDRIkQAPfKgLCaisw K2xb4J2wChb8nGr0LrBcK0nI3gfqEg4S1RvRR26NC6Sc9y3pLlkGz6IDKr1uChY2 rpkgbDqRepnqEz+WJ+CQb7GaP0n631YBEZUh1s/+81bQ2jtlU6BmdoWJBAmG2JMK a3tIjqjatl207aRLsO9otkgTTloiS2kiu2G6wGEV2DiGds1giyFB4tM+CjHlZ3+G H3NFvo5Z+B6xIAtgW/4xhJSMzdlfP+FOaprPa+T6O9WgY0S5YhQfj1qOc8lL5S6B h20bcsQixd60Y2y+9AjaCjLXd0KlKXDI+BgjieEBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUzfBgqDtUcSFktP7LWsLf98WKDgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiMzE4NDYxLTk4N2QtNGMwZS1iZjdlLWMwNTIzZjU2MWUzOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIMwDQYJKoZIhvcNAQELBQADggEBAFgIQBDMYlbvD37fDJcWkFb1 C54LGIWKwVbTB/DOxz+VckIlWsrIfUrldqbd3m93LR0VlkjJX4RIfdcOC7jy0mfe e9R4zBf7uSkyUq5++rbO1czJIB6jOSTxpYivTMtOChQnOIRjw5CFxXSsRQ2CoJVY FT6GjVNaVNVEQKZgbkYlsSbLrKOhGu5VoSttPOJvKN0quu97zNlv3iI2eaRCONQ3 TwF6MXXp/hqSuP9PBb7yflovvR16J+3+0TskZHBfk1BfeuWeHOQalV0JEcHJ1XqM rUqHbo8EKFlpL/+DBo3QRTmjpazCmtdnwDhGq5Mf2p0HhhLfq1IfEREq/tTYl1Y= -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:45 2024 by rpki-client on console-ams.rpki-client.org