$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da7fb102-d31f-4cd8-82a0-7e8d3622a161.roa File: da7fb102-d31f-4cd8-82a0-7e8d3622a161.roa (raw, json) Hash identifier: u3+dhiiz0Z/WRki0QeoiBwY08xxB8OEaiChlEwDh3uo= Subject key identifier: 43:8B:F5:0A:03:15:B5:6A:1A:28:CF:D1:AE:A0:24:48:EC:45:27:C5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 75712AFF1F7AF67AEFBFC57E8006AFA01A373156 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da7fb102-d31f-4cd8-82a0-7e8d3622a161.roa Signing time: Mon 29 Apr 2024 00:00:00 +0000 ROA not before: Mon 29 Apr 2024 00:00:00 +0000 ROA not after: Mon 03 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:30f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:71:2a:ff:1f:7a:f6:7a:ef:bf:c5:7e:80:06:af:a0:1a:37:31:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 29 00:00:00 2024 GMT Not After : Jun 3 23:59:59 2024 GMT Subject: serialNumber=2e5445195ad730e358ad89157017cf478b6359237aa91c733e47b66e329c06b4, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:15:8e:5c:04:5b:9a:59:57:b5:c1:47:1a:15: 07:d6:c4:37:a6:45:bf:aa:11:f5:8e:af:87:98:26: 9d:e4:05:3a:c8:f2:19:44:b7:2a:e2:7d:47:40:07: 8d:66:a1:fd:2e:9d:c3:dd:72:79:ac:f6:11:2e:a4: 7c:93:34:9c:74:ae:b7:84:24:09:5f:db:af:eb:93: be:b3:50:cd:d1:d3:eb:2b:2b:c5:c8:fb:3f:fb:91: 28:08:f3:3a:66:23:76:44:b5:db:fb:31:ec:dc:f7: 44:78:f1:3e:5d:c2:5f:48:77:bc:0f:cd:8f:d7:f0: 33:a7:92:d6:86:39:34:9e:5e:64:d4:59:87:d7:87: 72:ec:2d:48:8f:7e:4e:62:d9:18:23:c3:f2:d1:37: cf:ba:d8:22:d0:ff:84:89:ca:d2:53:78:6e:08:ca: 74:2a:75:87:f2:3c:e1:1e:e7:ce:ff:11:8d:84:22: f5:cf:2a:5c:06:3c:20:c8:12:97:e8:7d:54:2e:57: 58:6b:4f:bb:99:86:46:eb:9e:ed:a1:79:b1:86:7a: 09:e4:56:49:40:ad:29:d2:e5:a2:dd:5c:46:50:52: ca:2c:7e:5d:fb:a7:c2:0a:d2:91:8c:e8:d1:8d:11: 55:50:73:21:d0:ed:b1:3b:b3:02:a6:0e:9b:62:b4: 5a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:8B:F5:0A:03:15:B5:6A:1A:28:CF:D1:AE:A0:24:48:EC:45:27:C5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da7fb102-d31f-4cd8-82a0-7e8d3622a161.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:30f::/48 Signature Algorithm: sha256WithRSAEncryption 41:e6:ef:01:18:d0:d2:55:88:31:49:6b:02:a8:df:d1:4e:42: 1f:6e:5c:15:7f:47:c9:42:e7:3d:89:53:78:d5:4c:3f:76:f1: 55:0f:ea:89:5d:99:c4:57:25:7d:e6:1d:bd:06:a0:60:be:31: 37:59:5a:68:40:e7:11:23:49:62:f1:e1:c4:8f:e8:59:af:f5: 57:1d:42:a4:3f:a9:8d:84:21:43:ec:0f:09:e5:93:49:a1:43: 34:ca:7a:70:dc:e5:a0:f6:c1:89:dd:76:81:ec:c0:f7:b3:20: 01:a7:a9:3f:fb:65:4c:e0:e0:25:9c:da:ee:aa:a4:59:2e:58: 3b:89:e9:62:4a:e3:fd:bc:ac:a5:61:c8:1c:d7:0d:4f:84:2c: 81:60:cd:22:14:0d:39:ab:1e:6e:2c:69:f7:23:ba:e9:ca:74: b4:a6:3e:0f:02:74:bf:98:a6:4c:c7:cd:e8:c0:08:da:b8:f9: a3:e3:48:a9:34:95:fd:7b:22:36:f9:c0:a8:18:2d:f2:5b:d3: dc:85:1b:05:08:f5:e5:df:08:1b:61:91:87:94:33:03:40:02: 02:85:4e:40:d8:06:96:31:dc:f0:e9:16:e9:56:d6:d8:0f:c2: 5d:67:69:4f:0d:1d:16:f4:78:88:cf:b9:d9:9f:17:3e:42:e0: 17:2d:6a:72 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdXEq/x969nrvv8V+gAavoBo3MVYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDI5MDAwMDAwWhcNMjQwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTU0NDUxOTVhZDczMGUzNThhZDg5MTU3MDE3Y2Y0Nzhi NjM1OTIzN2FhOTFjNzMzZTQ3YjY2ZTMyOWMwNmI0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChFY5cBFuaWVe1wUcaFQfWxDemRb+qEfWOr4eYJp3kBTrI 8hlEtyrifUdAB41mof0uncPdcnms9hEupHyTNJx0rreEJAlf26/rk76zUM3R0+sr K8XI+z/7kSgI8zpmI3ZEtdv7Mezc90R48T5dwl9Id7wPzY/X8DOnktaGOTSeXmTU WYfXh3LsLUiPfk5i2Rgjw/LRN8+62CLQ/4SJytJTeG4IynQqdYfyPOEe587/EY2E IvXPKlwGPCDIEpfofVQuV1hrT7uZhkbrnu2hebGGegnkVklArSnS5aLdXEZQUsos fl37p8IK0pGM6NGNEVVQcyHQ7bE7swKmDptitFpPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQ4v1CgMVtWoaKM/RrqAkSOxFJ8UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhN2ZiMTAyLWQzMWYtNGNkOC04MmEwLTdlOGQzNjIyYTE2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAw8wDQYJKoZIhvcNAQELBQADggEBAEHm7wEY0NJViDFJawKo39FO Qh9uXBV/R8lC5z2JU3jVTD928VUP6oldmcRXJX3mHb0GoGC+MTdZWmhA5xEjSWLx 4cSP6Fmv9VcdQqQ/qY2EIUPsDwnlk0mhQzTKenDc5aD2wYnddoHswPezIAGnqT/7 ZUzg4CWc2u6qpFkuWDuJ6WJK4/28rKVhyBzXDU+ELIFgzSIUDTmrHm4safcjuunK dLSmPg8CdL+YpkzHzejACNq4+aPjSKk0lf17Ijb5wKgYLfJb09yFGwUI9eXfCBth kYeUMwNAAgKFTkDYBpYx3PDpFulW1tgPwl1naU8NHRb0eIjPudmfFz5C4BctanI= -----END CERTIFICATE-----Generated at Thu May 2 01:05:46 2024 by rpki-client on console-fra.rpki-client.org