$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/eac45c3f-5113-4e7b-9fe9-d61320788526.roa File: eac45c3f-5113-4e7b-9fe9-d61320788526.roa (raw, json) Hash identifier: iiMV6scCKd7YsXwfCqZJc4dX1jDIFLHujZgEk6B30J0= Subject key identifier: 09:52:50:75:B0:04:C7:B7:81:58:0E:19:BE:55:8A:18:F9:6C:9A:7A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3CA2B2E850DEFE0F51929ED66C2F9961E5019550 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/eac45c3f-5113-4e7b-9fe9-d61320788526.roa Signing time: Thu 05 Dec 2024 00:00:00 +0000 ROA not before: Thu 05 Dec 2024 00:00:00 +0000 ROA not after: Thu 09 Jan 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:ce80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 28 Dec 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:a2:b2:e8:50:de:fe:0f:51:92:9e:d6:6c:2f:99:61:e5:01:95:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 5 00:00:00 2024 GMT Not After : Jan 9 23:59:59 2025 GMT Subject: serialNumber=7a84826e818df8cb2aa39dc689a77746807fa61b33075ece1e7c29401d6e647c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e7:a3:22:76:fb:01:b8:58:1b:cd:fa:1f:7e: 6e:1a:c2:87:74:9e:ca:40:ed:c8:61:4c:fb:a3:61: f2:08:a7:6e:1e:22:e3:8d:8d:70:f7:03:4c:04:50: 03:ac:2a:57:5f:1a:18:af:23:e1:c3:2c:c1:50:00: 7d:2e:b7:46:6c:7c:26:50:db:15:89:73:a5:70:f0: a0:be:a7:99:d7:d9:2a:99:dd:8e:52:c5:5a:c6:03: c0:7b:fd:21:86:16:5d:96:26:86:45:2d:58:62:da: 6c:02:ce:f6:10:3c:39:f9:3f:23:e1:06:6b:da:aa: 5d:e9:ca:52:eb:c5:29:9c:d4:cc:17:3c:e1:91:6a: 00:3f:6a:89:a3:cf:eb:e9:5c:89:a1:52:94:aa:65: a9:c2:a6:c6:7d:b0:09:1e:46:8d:82:10:23:7a:0e: e6:3e:28:f8:33:9b:5e:b2:61:e4:91:2f:37:df:f3: f6:4f:38:71:2a:62:a2:de:7f:8a:7d:dd:87:44:31: 6c:87:01:e2:61:41:7a:9a:10:5e:22:a2:99:d9:34: d6:65:9b:70:c0:4d:f2:d2:eb:20:d4:bd:29:92:e4: ea:9b:b9:24:ae:37:fb:61:e6:e5:2f:75:b0:f9:00: 51:28:9e:20:17:2d:0c:95:94:d9:67:e7:95:e1:02: 73:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:52:50:75:B0:04:C7:B7:81:58:0E:19:BE:55:8A:18:F9:6C:9A:7A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/eac45c3f-5113-4e7b-9fe9-d61320788526.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:ce80::/48 Signature Algorithm: sha256WithRSAEncryption 24:09:94:a3:96:c9:c4:5d:d8:28:8f:9e:49:12:05:0d:2b:48: 19:32:c5:d1:11:83:e3:1b:b5:ab:14:68:c3:54:b2:fc:f8:14: c4:8a:c7:6a:6f:60:f6:16:bc:f4:69:66:0c:ba:d4:86:a0:19: c7:4a:82:45:4d:5f:b0:a1:e7:ad:1e:a6:67:e4:d3:e2:9b:6a: 8c:ad:af:5b:a5:f6:4f:b3:d2:65:14:56:e7:8f:3d:13:09:41: 70:32:97:a9:2a:60:0e:4b:5c:05:09:67:21:89:c1:ff:bc:84: 9d:3a:b4:b3:9d:55:8f:5e:95:92:a4:ad:32:9e:41:22:4d:6a: cb:d3:f7:33:29:f6:cc:a4:97:b4:d8:f7:1f:a2:98:87:ff:b0: 74:6c:8d:78:ef:61:9d:e2:7a:4f:4d:45:f0:88:c8:69:ff:a0: e8:89:55:a1:12:b9:2e:ba:98:e9:63:e1:c2:f0:38:f2:f0:28: cc:6f:21:23:d2:1a:14:e4:e3:6a:06:b2:09:ab:00:1d:b6:f5: 9b:42:05:43:6a:80:04:4c:9a:5c:d3:04:63:5f:a0:47:8c:1f: 01:73:8c:88:46:fe:a2:b9:20:70:aa:98:c8:53:cd:2f:78:50: 39:eb:55:1d:13:82:25:8f:bc:38:ba:3f:be:d0:e7:e4:f5:bd: dc:0e:08:ef -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPKKy6FDe/g9Rkp7WbC+ZYeUBlVAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMjA1MDAwMDAwWhcNMjUwMTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTg0ODI2ZTgxOGRmOGNiMmFhMzlkYzY4OWE3Nzc0Njgw N2ZhNjFiMzMwNzVlY2UxZTdjMjk0MDFkNmU2NDdjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk56MidvsBuFgbzfoffm4awod0nspA7chhTPujYfIIp24e IuONjXD3A0wEUAOsKldfGhivI+HDLMFQAH0ut0ZsfCZQ2xWJc6Vw8KC+p5nX2SqZ 3Y5SxVrGA8B7/SGGFl2WJoZFLVhi2mwCzvYQPDn5PyPhBmvaql3pylLrxSmc1MwX POGRagA/aomjz+vpXImhUpSqZanCpsZ9sAkeRo2CECN6DuY+KPgzm16yYeSRLzff 8/ZPOHEqYqLef4p93YdEMWyHAeJhQXqaEF4iopnZNNZlm3DATfLS6yDUvSmS5Oqb uSSuN/th5uUvdbD5AFEoniAXLQyVlNln55XhAnNVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCVJQdbAEx7eBWA4ZvlWKGPlsmnowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VhYzQ1YzNmLTUxMTMtNGU3Yi05ZmU5LWQ2MTMyMDc4ODUyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDzzoAwDQYJKoZIhvcNAQELBQADggEBACQJlKOWycRd2CiPnkkSBQ0r SBkyxdERg+MbtasUaMNUsvz4FMSKx2pvYPYWvPRpZgy61IagGcdKgkVNX7Ch560e pmfk0+Kbaoytr1ul9k+z0mUUVuePPRMJQXAyl6kqYA5LXAUJZyGJwf+8hJ06tLOd VY9elZKkrTKeQSJNasvT9zMp9sykl7TY9x+imIf/sHRsjXjvYZ3iek9NRfCIyGn/ oOiJVaESuS66mOlj4cLwOPLwKMxvISPSGhTk42oGsgmrAB229ZtCBUNqgARMmlzT BGNfoEeMHwFzjIhG/qK5IHCqmMhTzS94UDnrVR0TgiWPvDi6P77Q5+T1vdwOCO8= -----END CERTIFICATE-----Generated at Thu Dec 26 19:31:16 2024 by rpki-client on console-ams.rpki-client.org