$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa File: da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa (raw, json) Hash identifier: t6zigwVg3nOZzuzqkpdUgUvw8XzoB7OJ/dYmeFCWnBQ= Subject key identifier: BA:A5:C1:03:DD:D4:04:CC:97:03:B0:ED:3C:39:08:DF:83:33:23:38 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0A5360745CA9354593D3752FF863B200549A0E1C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:53:60:74:5c:a9:35:45:93:d3:75:2f:f8:63:b2:00:54:9a:0e:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=390b591cdf178aee723688b3e2e45672d8b089466f254ef4ef9aadc47dcd1374, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:54:7e:90:50:b5:ae:3c:c3:43:3f:66:eb:02: 34:02:05:aa:a7:91:73:e3:82:dc:44:fb:39:fc:41: 73:78:51:75:0c:b4:f9:43:a2:b5:2f:1f:d7:e1:9e: 9f:f4:1c:69:5e:4e:22:cf:a8:bc:44:8d:bc:33:23: f2:ad:b2:49:d1:9f:cd:84:7d:02:b8:bc:4f:ec:f4: 5d:82:06:3e:fc:3c:a1:e0:1a:d4:eb:cb:1e:e2:f2: 7b:bc:12:04:fb:50:34:c3:81:31:9b:d9:ea:dd:71: 04:10:9e:ed:e2:d3:fa:e9:17:6e:c7:92:5f:e8:ea: 37:29:86:ed:d7:91:67:5e:ea:67:1a:61:72:02:55: 6f:43:b0:e7:69:f0:84:31:05:9b:d0:e0:5a:24:25: 1c:20:fb:02:c3:6f:ca:8f:d4:fc:bf:9e:a6:ee:54: e2:76:a8:c9:20:ef:03:15:4b:48:01:47:2c:3b:48: 47:d1:3e:5c:20:aa:f6:ae:39:cf:00:09:d0:bc:38: 90:4e:3b:95:1e:cc:48:fb:a5:57:5b:50:ea:1e:3f: 5e:f3:b1:65:c0:cb:6b:9f:83:da:cd:aa:c7:35:0e: 6e:ee:61:20:df:78:fc:d1:a6:f5:5b:10:37:a2:54: 62:49:a7:69:75:58:88:8a:2c:b4:bb:f8:6d:07:cb: 92:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A5:C1:03:DD:D4:04:CC:97:03:B0:ED:3C:39:08:DF:83:33:23:38 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 9c:21:f1:5d:69:d0:ae:e1:f1:d9:60:21:3d:2f:40:18:09:8e: a9:be:0b:e0:87:69:1c:c0:ce:34:d7:34:98:4f:da:a3:da:a2: 60:38:5c:f2:f4:23:a3:33:cd:1a:f0:36:9b:fc:72:39:c7:94: 72:78:bf:ee:77:b9:3c:6b:7f:9d:e2:b8:d6:b1:f1:86:14:bc: 6f:26:e6:72:b7:eb:d1:15:42:27:b7:28:36:bb:aa:8e:15:b9: a5:80:6b:f5:c8:82:4d:f9:8a:12:13:b6:0c:53:2a:a9:af:9a: ba:5b:f8:e9:92:c8:89:34:d0:8d:4e:f0:1b:41:df:e6:a5:ee: 06:af:55:54:fd:9e:2f:f5:12:50:cf:9a:05:20:aa:0c:cc:7a: 71:83:c2:67:8a:e6:19:9c:bf:95:2f:8d:18:1c:7e:ec:f8:f3: 20:8d:2e:92:1a:ea:64:a6:52:ca:bf:4d:6b:78:e2:5b:bc:0b: 46:13:1a:5e:04:83:ba:8c:1c:25:86:3c:0f:92:31:06:89:70: cd:58:6f:64:36:f2:24:cb:c4:14:c2:1c:48:34:c0:72:a8:f7: 94:52:a7:f9:7d:6c:6c:fa:42:0a:83:2b:83:99:4d:e1:72:6f: da:4d:27:6a:26:36:76:f4:e4:a2:3f:a0:60:34:fa:35:21:cf: 17:54:28:26 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUClNgdFypNUWT03Uv+GOyAFSaDhwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTBiNTkxY2RmMTc4YWVlNzIzNjg4YjNlMmU0NTY3MmQ4 YjA4OTQ2NmYyNTRlZjRlZjlhYWRjNDdkY2QxMzc0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDVH6QULWuPMNDP2brAjQCBaqnkXPjgtxE+zn8QXN4UXUM tPlDorUvH9fhnp/0HGleTiLPqLxEjbwzI/KtsknRn82EfQK4vE/s9F2CBj78PKHg GtTryx7i8nu8EgT7UDTDgTGb2erdcQQQnu3i0/rpF27Hkl/o6jcphu3XkWde6mca YXICVW9DsOdp8IQxBZvQ4FokJRwg+wLDb8qP1Py/nqbuVOJ2qMkg7wMVS0gBRyw7 SEfRPlwgqvauOc8ACdC8OJBOO5UezEj7pVdbUOoeP17zsWXAy2ufg9rNqsc1Dm7u YSDfePzRpvVbEDeiVGJJp2l1WIiKLLS7+G0Hy5JdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuqXBA93UBMyXA7DtPDkI34MzIzgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMGQwZjFmLWY4MmQtNDdiYi05YWM3LWVlMDlhNTFiM2YyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBAJwh8V1p0K7h8dlgIT0vQBgJ jqm+C+CHaRzAzjTXNJhP2qPaomA4XPL0I6MzzRrwNpv8cjnHlHJ4v+53uTxrf53i uNax8YYUvG8m5nK369EVQie3KDa7qo4VuaWAa/XIgk35ihITtgxTKqmvmrpb+OmS yIk00I1O8BtB3+al7gavVVT9ni/1ElDPmgUgqgzMenGDwmeK5hmcv5UvjRgcfuz4 8yCNLpIa6mSmUsq/TWt44lu8C0YTGl4Eg7qMHCWGPA+SMQaJcM1Yb2Q28iTLxBTC HEg0wHKo95RSp/l9bGz6QgqDK4OZTeFyb9pNJ2omNnb05KI/oGA0+jUhzxdUKCY= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org