$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d8ee725b-c50e-4bc5-97e5-faca8c27f30e.roa File: d8ee725b-c50e-4bc5-97e5-faca8c27f30e.roa (raw, json) Hash identifier: UVmPbdqLZhzhNifFoAitc+PDFMaXoBjot3RCD12SBW8= Subject key identifier: E9:00:E7:50:EA:6A:A9:6F:06:47:E7:DB:84:89:97:24:19:6C:01:BA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 776EB136C3326402D0C3BF931D1EC7CC27150D25 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d8ee725b-c50e-4bc5-97e5-faca8c27f30e.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f004::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:6e:b1:36:c3:32:64:02:d0:c3:bf:93:1d:1e:c7:cc:27:15:0d:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=9326eee5936e6bc0c373992f090aa6d4e4434d85a4cdc27e4dcb9449b44dc7e1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:93:29:fd:95:70:6b:e1:cb:fe:b0:91:bf:7e: ae:c3:4d:9d:2c:24:4b:9f:35:88:92:ce:83:f0:43: e0:a3:73:49:1b:57:6e:ba:ef:8d:e5:14:8c:5c:18: 1b:8a:71:af:3b:f9:3b:00:fe:b5:24:dd:4c:e5:cf: cd:31:16:77:8a:c8:6b:6a:5b:08:f5:53:d2:1f:c7: 27:b0:26:2d:f0:70:33:f6:61:89:67:43:40:f8:71: 65:f4:19:84:55:c6:62:da:ca:43:06:8a:8a:54:f2: ad:b9:59:f8:0d:18:ec:76:a5:17:2f:b5:de:98:4a: 6a:96:f2:e1:e4:b7:bd:a8:bc:f8:b0:a3:a6:e1:3f: dd:52:d4:30:df:21:d2:a9:02:79:48:65:6d:ad:5a: c6:f0:a2:7f:79:d7:58:a0:55:6f:a4:59:8e:61:ca: 05:70:5c:66:c4:ed:0d:bd:d6:6e:6d:d4:0e:4d:be: ab:5a:78:6b:ed:4c:e1:13:7a:a4:c2:34:35:d4:dc: 23:0d:0d:60:d0:61:1d:82:ee:d3:41:d4:dd:3a:74: 60:aa:34:d7:2d:7c:85:8b:01:33:b2:7f:b6:e7:a1: d7:0a:0e:46:e7:b3:11:f2:43:f1:ee:4b:ab:2d:59: 41:a1:51:f7:e6:90:a3:02:7c:e7:82:8e:b4:08:fa: c4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:00:E7:50:EA:6A:A9:6F:06:47:E7:DB:84:89:97:24:19:6C:01:BA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d8ee725b-c50e-4bc5-97e5-faca8c27f30e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f004::/40 Signature Algorithm: sha256WithRSAEncryption 51:95:50:9e:ea:0b:c5:99:ef:ec:7a:80:4d:cf:ba:fd:48:be: 36:9b:f1:55:5f:4c:dd:e9:8d:86:25:fa:d7:fd:e3:f8:87:97: 49:13:9b:6f:a9:a7:c8:5b:30:3d:90:7c:c1:73:54:63:01:a0: a1:42:f7:c7:d5:54:27:0e:b1:33:5a:cd:94:6a:03:33:9f:73: e6:b9:c9:29:12:a8:e5:1e:92:5c:c0:2c:1b:2a:b7:91:e0:b8: f5:b5:43:52:1b:fe:b7:4e:5a:ef:60:52:d5:df:7c:7e:d0:4a: 52:69:1f:4a:a2:e2:6a:8a:bf:78:50:31:59:49:6e:d4:a2:8c: 02:3d:6b:80:0a:02:e7:b9:b5:e7:87:c9:26:b5:f8:11:2c:e1: 68:55:f8:ec:bb:20:13:d0:b3:53:d2:df:30:a8:04:ca:c6:da: 4b:a6:0a:48:6d:ae:3b:33:10:d2:66:2e:7d:f5:07:ea:99:78: 54:0c:93:84:31:d7:6c:1a:db:39:5f:f7:5d:e7:7f:7b:1e:11: 85:30:9c:66:93:1e:eb:1c:e2:5e:0d:1e:c8:4c:a0:44:05:e4: 0d:61:d9:4e:c6:de:48:43:5e:d0:99:82:96:64:a7:47:48:fc: 14:07:9a:5a:f0:64:98:26:7c:2a:71:c3:21:9a:96:ef:73:e4: 51:c6:3d:a5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUd26xNsMyZALQw7+THR7HzCcVDSUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzI2ZWVlNTkzNmU2YmMwYzM3Mzk5MmYwOTBhYTZkNGU0 NDM0ZDg1YTRjZGMyN2U0ZGNiOTQ0OWI0NGRjN2UxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCskyn9lXBr4cv+sJG/fq7DTZ0sJEufNYiSzoPwQ+Cjc0kb V266743lFIxcGBuKca87+TsA/rUk3Uzlz80xFneKyGtqWwj1U9IfxyewJi3wcDP2 YYlnQ0D4cWX0GYRVxmLaykMGiopU8q25WfgNGOx2pRcvtd6YSmqW8uHkt72ovPiw o6bhP91S1DDfIdKpAnlIZW2tWsbwon9511igVW+kWY5hygVwXGbE7Q291m5t1A5N vqtaeGvtTOETeqTCNDXU3CMNDWDQYR2C7tNB1N06dGCqNNctfIWLATOyf7bnodcK DkbnsxHyQ/HuS6stWUGhUffmkKMCfOeCjrQI+sQNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6QDnUOpqqW8GR+fbhImXJBlsAbowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Q4ZWU3MjViLWM1MGUtNGJjNS05N2U1LWZhY2E4YzI3ZjMwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPAEADANBgkqhkiG9w0BAQsFAAOCAQEAUZVQnuoLxZnv7HqATc+6/Ui+ NpvxVV9M3emNhiX61/3j+IeXSRObb6mnyFswPZB8wXNUYwGgoUL3x9VUJw6xM1rN lGoDM59z5rnJKRKo5R6SXMAsGyq3keC49bVDUhv+t05a72BS1d98ftBKUmkfSqLi aoq/eFAxWUlu1KKMAj1rgAoC57m154fJJrX4ESzhaFX47LsgE9CzU9LfMKgEysba S6YKSG2uOzMQ0mYuffUH6pl4VAyThDHXbBrbOV/3Xed/ex4RhTCcZpMe6xziXg0e yEygRAXkDWHZTsbeSENe0JmClmSnR0j8FAeaWvBkmCZ8KnHDIZqW73PkUcY9pQ== -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org