$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd978e93-78e3-4819-98ef-c0d56f21b920.roa File: cd978e93-78e3-4819-98ef-c0d56f21b920.roa (raw, json) Hash identifier: 1+6X4V8bsdCXqaUi0GjCOpXrHR/Hh14fhwK07Hy2jSw= Subject key identifier: 24:4C:DB:CD:3A:BF:F7:D1:8F:07:37:E2:95:4A:26:D9:DC:BA:0F:CB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2111336F64695ABC449570B0E18AD766B97DA3F2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd978e93-78e3-4819-98ef-c0d56f21b920.roa Signing time: Sat 16 Nov 2024 00:00:00 +0000 ROA not before: Sat 16 Nov 2024 00:00:00 +0000 ROA not after: Sat 21 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:553f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:11:33:6f:64:69:5a:bc:44:95:70:b0:e1:8a:d7:66:b9:7d:a3:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 16 00:00:00 2024 GMT Not After : Dec 21 23:59:59 2024 GMT Subject: serialNumber=2aa6d1de314e350b82d57a888f2581119b00925c7335b629406c676757d98956, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0d:88:9d:eb:dd:ff:dd:e9:12:51:b2:86:15: 76:83:7d:e0:7d:dc:2d:d6:7f:c0:c8:75:8a:5f:b7: e9:45:a8:f0:12:36:f2:a1:01:9b:8b:50:ef:b1:dd: f3:3b:b4:c4:8b:a8:b9:c1:a6:cc:c8:5a:0a:34:1a: d0:f0:63:98:c9:a4:11:61:42:4c:ac:b9:0d:7e:36: af:c1:db:09:54:38:5f:08:71:2b:58:77:ce:48:72: 1f:a8:cf:7a:dd:d6:b4:d6:b5:16:40:b7:4d:25:36: bd:52:09:ea:5f:e0:b2:57:78:ef:bd:ff:aa:6d:ae: 04:74:c5:3c:02:97:ab:f1:59:cf:70:1a:5b:a0:73: 73:5f:72:fa:ac:7c:76:4e:45:ba:42:d2:7f:34:a3: ec:32:b8:12:47:42:1b:c3:3d:bf:97:56:93:37:b2: ad:26:ba:e7:11:e0:8f:67:f6:17:fe:cb:76:f6:33: 20:a0:87:b1:2d:53:20:25:f7:eb:aa:a6:da:a8:b4: 57:22:03:b5:be:e3:48:a3:80:05:b0:14:fe:5d:4e: f5:96:40:97:85:2f:19:44:fb:7e:54:5d:92:ba:60: 72:ee:fd:36:ec:86:87:a9:40:64:b1:bd:e2:f2:f3: 90:c4:a7:89:f9:57:d8:4e:21:69:b3:1d:2e:a6:2f: d0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:4C:DB:CD:3A:BF:F7:D1:8F:07:37:E2:95:4A:26:D9:DC:BA:0F:CB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd978e93-78e3-4819-98ef-c0d56f21b920.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:553f::/48 Signature Algorithm: sha256WithRSAEncryption 82:60:23:95:23:a1:8c:4c:db:8c:b4:8e:bb:b3:75:b6:1b:27: 8b:e1:8e:e7:10:43:67:6c:82:aa:62:4c:0a:0c:e6:a2:16:62: 3a:b6:ee:52:45:eb:44:7f:49:78:bb:95:8d:6c:f5:32:c2:87: c7:63:c8:68:62:ae:89:9e:43:02:3f:86:7d:5f:2d:46:ea:a5: c5:c2:2a:f3:e9:78:4c:a4:88:0a:ee:d9:3d:23:29:a5:97:a5: 4e:2d:47:79:2d:de:50:f3:8d:94:d1:8d:f6:c1:83:38:85:0f: aa:ca:b4:f6:a7:25:dd:c7:ec:3c:a5:5e:f9:23:60:af:67:1e: 19:da:84:79:cc:59:58:13:6a:c7:ac:1f:c3:0b:54:e0:75:a7: 18:3c:1d:8e:b0:e2:00:d6:77:21:ec:97:b4:5a:14:97:c1:df: 98:57:46:f9:20:30:ec:b9:f9:48:cc:ba:0f:09:b1:e8:cf:67: 78:1a:21:47:35:91:5a:84:fe:30:82:45:03:8d:c2:19:13:f9: 70:53:b3:f0:39:db:1b:4d:14:47:a8:f1:0e:1d:ce:b5:bc:01: 3b:b4:c5:a7:d9:54:6c:12:19:bd:47:d3:b2:91:b9:b0:81:df: 59:d6:da:49:e9:cd:25:38:73:e9:ec:f0:93:50:b8:93:b0:27: 66:ee:7b:a2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIREzb2RpWrxElXCw4YrXZrl9o/IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE2MDAwMDAwWhcNMjQxMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWE2ZDFkZTMxNGUzNTBiODJkNTdhODg4ZjI1ODExMTli MDA5MjVjNzMzNWI2Mjk0MDZjNjc2NzU3ZDk4OTU2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrDYid693/3ekSUbKGFXaDfeB93C3Wf8DIdYpft+lFqPAS NvKhAZuLUO+x3fM7tMSLqLnBpszIWgo0GtDwY5jJpBFhQkysuQ1+Nq/B2wlUOF8I cStYd85Ich+oz3rd1rTWtRZAt00lNr1SCepf4LJXeO+9/6ptrgR0xTwCl6vxWc9w Glugc3NfcvqsfHZORbpC0n80o+wyuBJHQhvDPb+XVpM3sq0muucR4I9n9hf+y3b2 MyCgh7EtUyAl9+uqptqotFciA7W+40ijgAWwFP5dTvWWQJeFLxlE+35UXZK6YHLu /TbshoepQGSxveLy85DEp4n5V9hOIWmzHS6mL9CbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJEzbzTq/99GPBzfilUom2dy6D8swHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NkOTc4ZTkzLTc4ZTMtNDgxOS05OGVmLWMwZDU2ZjIxYjkyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVT8wDQYJKoZIhvcNAQELBQADggEBAIJgI5UjoYxM24y0jruzdbYb J4vhjucQQ2dsgqpiTAoM5qIWYjq27lJF60R/SXi7lY1s9TLCh8djyGhiromeQwI/ hn1fLUbqpcXCKvPpeEykiAru2T0jKaWXpU4tR3kt3lDzjZTRjfbBgziFD6rKtPan Jd3H7DylXvkjYK9nHhnahHnMWVgTasesH8MLVOB1pxg8HY6w4gDWdyHsl7RaFJfB 35hXRvkgMOy5+UjMug8JsejPZ3gaIUc1kVqE/jCCRQONwhkT+XBTs/A52xtNFEeo 8Q4dzrW8ATu0xafZVGwSGb1H07KRubCB31nW2knpzSU4c+ns8JNQuJOwJ2bue6I= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org