$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa File: cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa (raw, json) Hash identifier: 4vJe6QL+0rBt1qbHQI72Y+Pzcr0QUA3y1t6oonjmojg= Subject key identifier: 28:0F:CA:16:3B:B7:7E:AD:E7:5F:1B:64:32:C2:B9:2F:D3:08:28:87 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 12C8290D584462CE86BE6D14622CAA383B708D96 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5518::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:c8:29:0d:58:44:62:ce:86:be:6d:14:62:2c:aa:38:3b:70:8d:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=60f8f07412fb7a624d8abe4e2d1d06a69b9dd2418895098dda26869ab5ee634d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:85:8e:ca:c7:54:3d:c2:2e:1b:08:e1:8a:4f: be:5d:14:b7:4d:78:07:4e:02:f3:04:da:ff:85:a1: 42:e2:0f:b1:7f:69:19:69:5f:49:9c:1f:42:c3:93: 59:2b:e7:ce:ee:f7:6d:a0:f8:33:a4:f5:b2:5e:2a: b6:4e:4c:af:8f:89:14:6f:15:a3:cb:87:52:9d:28: 61:1e:5c:e5:83:75:cb:a4:9d:98:fa:33:ce:0d:49: e5:09:a4:ff:23:a0:e9:d5:d5:81:d5:df:cc:43:af: 1a:b8:93:06:58:e5:a4:4d:80:65:3c:cc:13:5c:32: 69:63:be:8f:bc:b2:cf:0b:a0:1a:e9:96:69:a6:0e: e1:a5:f6:cc:05:f0:a9:ac:c2:71:b0:b3:66:ea:44: 6e:cf:43:c1:cb:3f:12:7f:6e:b0:1c:06:77:55:61: 03:bb:86:01:1a:8d:37:ce:c2:f8:b9:bf:4a:2d:79: 05:66:b3:ce:c1:56:62:56:07:f1:b8:d1:c2:a1:68: d9:bc:3e:51:72:82:cd:7b:f2:05:95:06:c9:7b:65: 34:01:9f:99:ea:e6:e9:4b:74:aa:63:42:47:31:85: 5a:35:e1:27:cc:6a:fc:a0:ec:ff:fb:95:b1:d6:ef: 80:d2:93:85:95:4b:d9:99:11:ce:d8:74:f5:9e:42: a8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:0F:CA:16:3B:B7:7E:AD:E7:5F:1B:64:32:C2:B9:2F:D3:08:28:87 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5518::/48 Signature Algorithm: sha256WithRSAEncryption 1a:27:a0:9d:38:2a:2e:46:f3:be:aa:0a:3c:2d:da:7d:dc:d4: bd:42:8e:64:fb:4e:e5:fb:6e:a9:37:53:3a:a2:44:89:4c:89: 13:f3:9d:e7:e0:77:0c:1b:a2:7a:a3:a0:68:39:d8:67:c2:10: 0c:cc:65:e1:ef:05:f4:1f:17:83:69:40:ad:43:d0:e0:94:3f: 50:da:e0:61:6d:ba:ff:5c:c8:55:a2:66:db:d6:4a:b7:99:da: c6:fe:bd:fa:70:ae:c3:64:7d:23:c4:07:37:84:89:7a:f1:26: c5:b7:27:e4:9b:ca:17:bd:d0:60:fc:b2:17:76:fc:f7:7d:0f: 5a:b3:93:12:6d:ec:0e:9a:d6:68:ab:d9:a8:dd:b7:3a:d3:12: 2d:2c:a5:ac:93:b4:2b:ae:2a:f0:59:1d:53:b7:9d:81:04:38: 5b:27:54:09:a3:08:d4:e7:a0:09:9b:b3:73:b9:db:64:62:ef: d2:dd:80:2c:ef:a7:df:44:da:12:8b:75:2a:2e:c7:03:53:4b: 94:42:63:d7:c4:33:e1:fc:ee:22:9c:ab:97:05:91:18:d8:08: 0f:e9:7a:f5:b7:ae:23:07:40:b4:82:1d:69:2a:50:ba:a2:6f: ff:31:56:ae:85:86:6b:a4:af:5a:39:50:a5:5f:25:c8:91:4b: af:dd:a1:61 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEsgpDVhEYs6Gvm0UYiyqODtwjZYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MGY4ZjA3NDEyZmI3YTYyNGQ4YWJlNGUyZDFkMDZhNjli OWRkMjQxODg5NTA5OGRkYTI2ODY5YWI1ZWU2MzRkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6hY7Kx1Q9wi4bCOGKT75dFLdNeAdOAvME2v+FoULiD7F/ aRlpX0mcH0LDk1kr587u922g+DOk9bJeKrZOTK+PiRRvFaPLh1KdKGEeXOWDdcuk nZj6M84NSeUJpP8joOnV1YHV38xDrxq4kwZY5aRNgGU8zBNcMmljvo+8ss8LoBrp lmmmDuGl9swF8KmswnGws2bqRG7PQ8HLPxJ/brAcBndVYQO7hgEajTfOwvi5v0ot eQVms87BVmJWB/G40cKhaNm8PlFygs178gWVBsl7ZTQBn5nq5ulLdKpjQkcxhVo1 4SfMavyg7P/7lbHW74DSk4WVS9mZEc7YdPWeQqhlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKA/KFju3fq3nXxtkMsK5L9MIKIcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiZjQzZDk5LTRkMDEtNGQyNC1hZGE5LTZlMzQzNjhkMWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRgwDQYJKoZIhvcNAQELBQADggEBABonoJ04Ki5G876qCjwt2n3c 1L1CjmT7TuX7bqk3UzqiRIlMiRPznefgdwwbonqjoGg52GfCEAzMZeHvBfQfF4Np QK1D0OCUP1Da4GFtuv9cyFWiZtvWSreZ2sb+vfpwrsNkfSPEBzeEiXrxJsW3J+Sb yhe90GD8shd2/Pd9D1qzkxJt7A6a1mir2ajdtzrTEi0spayTtCuuKvBZHVO3nYEE OFsnVAmjCNTnoAmbs3O522Ri79LdgCzvp99E2hKLdSouxwNTS5RCY9fEM+H87iKc q5cFkRjYCA/pevW3riMHQLSCHWkqULqib/8xVq6Fhmukr1o5UKVfJciRS6/doWE= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org