$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbcc547e-b103-4291-99b0-fb6ecff6531d.roa File: cbcc547e-b103-4291-99b0-fb6ecff6531d.roa (raw, json) Hash identifier: xDA9kIK7o333yP5TnNBt24A74+2bpsXT6DrbwfYBSpo= Subject key identifier: 9A:62:30:53:2F:E4:61:2C:7D:99:D5:E2:A8:3B:CD:5E:5A:25:86:05 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3FC14013F647B269587F76A4DBFA0D9573CB3676 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbcc547e-b103-4291-99b0-fb6ecff6531d.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5526::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:c1:40:13:f6:47:b2:69:58:7f:76:a4:db:fa:0d:95:73:cb:36:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=c8afb7443cdd92b6f5ce880089d33cf8011920dad6dbb91e82a2dc5e7f5a860e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e0:e8:df:63:bb:4a:e8:f3:1a:7c:fc:98:53: 30:78:2c:3e:55:82:6f:54:44:22:50:34:af:5b:12: 92:9e:94:8f:8d:67:df:f4:78:9d:3e:5d:70:2c:91: 79:de:d9:55:47:15:af:88:8b:a8:36:83:73:f3:65: 4f:bf:a3:15:fa:ec:cc:69:76:4a:2a:64:3e:1e:47: 59:b3:d8:87:69:b6:13:68:88:20:4b:82:a6:23:69: 55:43:f4:49:08:04:e2:0a:3c:8b:db:ae:08:e3:26: 93:b3:d0:5a:60:f9:d1:38:3b:f4:1e:c7:c8:d7:68: 99:39:97:8b:04:2a:28:79:79:16:45:19:1f:32:fe: fc:0b:b1:4f:c8:82:e6:95:72:71:6e:3e:85:e4:0f: 59:25:f1:35:8c:46:6d:6b:8e:bf:b6:2c:6f:34:c0: f9:62:95:70:ec:9c:8b:d5:78:9a:ff:62:00:58:96: d5:71:8e:9c:01:e4:44:81:74:f9:48:b1:65:8e:2c: 25:a1:8e:b4:0b:a2:05:ef:1b:07:b6:9a:73:74:61: f8:ee:4b:77:2d:e0:c6:8f:ef:16:cd:81:f3:66:43: 2c:dd:de:81:79:1f:9c:79:8d:bb:d2:be:ad:6e:65: 7c:c2:f5:56:53:4f:51:6e:f5:03:b6:a9:05:52:1d: fb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:62:30:53:2F:E4:61:2C:7D:99:D5:E2:A8:3B:CD:5E:5A:25:86:05 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbcc547e-b103-4291-99b0-fb6ecff6531d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5526::/48 Signature Algorithm: sha256WithRSAEncryption 1a:be:78:ed:b0:fe:e0:1e:d9:b9:c0:64:2a:fd:6c:d4:0a:33: d5:77:9c:23:4a:0f:ed:42:76:f7:73:62:b9:ea:eb:bc:db:27: eb:07:f7:c5:6e:3f:3e:ca:66:99:3b:bf:d8:e8:b5:16:03:3d: c9:01:ee:03:c1:b4:f2:05:a7:82:92:69:45:f4:c4:d3:ce:db: d7:dc:e1:63:02:f6:5f:7c:a4:b9:1e:22:93:3b:d5:29:b7:3e: 67:d7:46:11:f2:ab:01:49:dc:0e:80:e7:7c:b3:cc:9c:b3:04: d3:aa:b6:ec:c7:cf:8b:19:bd:72:ee:3a:99:a5:03:aa:c3:85: 3b:7f:92:7a:10:1c:bb:07:6d:df:1f:b9:88:ed:47:fa:3a:0a: 62:14:8e:d7:aa:a0:11:d5:d9:b6:bd:f6:eb:b7:d5:41:e6:fe: f7:31:d0:5e:85:ae:ce:4d:bd:43:ae:b8:43:ea:02:16:4c:b5: 01:a6:7d:ed:de:51:05:d3:09:0e:eb:8d:06:fd:56:fc:64:4d: c7:d2:b0:30:3a:27:2a:2f:ca:26:d4:c7:57:39:94:18:cd:18: 5d:4e:98:8a:ff:79:53:1a:b8:4d:ad:7d:c3:2f:37:c7:02:3e: 11:ef:e8:77:7b:27:96:33:88:71:94:cd:a8:fd:17:eb:81:d0: 52:58:90:8a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP8FAE/ZHsmlYf3ak2/oNlXPLNnYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOGFmYjc0NDNjZGQ5MmI2ZjVjZTg4MDA4OWQzM2NmODAx MTkyMGRhZDZkYmI5MWU4MmEyZGM1ZTdmNWE4NjBlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDp4OjfY7tK6PMafPyYUzB4LD5Vgm9URCJQNK9bEpKelI+N Z9/0eJ0+XXAskXne2VVHFa+Ii6g2g3PzZU+/oxX67MxpdkoqZD4eR1mz2IdpthNo iCBLgqYjaVVD9EkIBOIKPIvbrgjjJpOz0Fpg+dE4O/Qex8jXaJk5l4sEKih5eRZF GR8y/vwLsU/IguaVcnFuPoXkD1kl8TWMRm1rjr+2LG80wPlilXDsnIvVeJr/YgBY ltVxjpwB5ESBdPlIsWWOLCWhjrQLogXvGwe2mnN0YfjuS3ct4MaP7xbNgfNmQyzd 3oF5H5x5jbvSvq1uZXzC9VZTT1Fu9QO2qQVSHfs9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmmIwUy/kYSx9mdXiqDvNXlolhgUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiY2M1NDdlLWIxMDMtNDI5MS05OWIwLWZiNmVjZmY2NTMxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVSYwDQYJKoZIhvcNAQELBQADggEBABq+eO2w/uAe2bnAZCr9bNQK M9V3nCNKD+1CdvdzYrnq67zbJ+sH98VuPz7KZpk7v9jotRYDPckB7gPBtPIFp4KS aUX0xNPO29fc4WMC9l98pLkeIpM71Sm3PmfXRhHyqwFJ3A6A53yzzJyzBNOqtuzH z4sZvXLuOpmlA6rDhTt/knoQHLsHbd8fuYjtR/o6CmIUjteqoBHV2ba99uu31UHm /vcx0F6Frs5NvUOuuEPqAhZMtQGmfe3eUQXTCQ7rjQb9VvxkTcfSsDA6JyovyibU x1c5lBjNGF1OmIr/eVMauE2tfcMvN8cCPhHv6Hd7J5YziHGUzaj9F+uB0FJYkIo= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org