$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa File: ec42dc47-0cc9-474a-9470-19700f756d36.roa (raw, json) Hash identifier: Pp31bww0YqRxXyTQddYzgzKGHSycwz3oESh6QCepcug= Subject key identifier: FD:42:B2:57:D8:11:A6:CA:1C:5C:5A:2B:8C:12:88:5B:9C:CC:40:40 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 67556B8BA34B0945B9AAB9BC8CDC459F7E33DDFF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:55:6b:8b:a3:4b:09:45:b9:aa:b9:bc:8c:dc:45:9f:7e:33:dd:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=a14908151bd68197058b0f99800a9f077ceb69de17d9e53bb764a057363bb56c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:25:42:dd:86:eb:a4:97:da:9f:f7:8c:c6:7c: 33:07:12:da:03:4b:ba:3e:35:c3:33:f3:cb:3d:b2: 5c:df:9e:e3:64:89:84:5e:24:26:8f:81:d6:4f:54: 50:46:2f:db:de:3c:63:04:aa:6f:f0:33:dc:b2:cd: c9:57:11:03:12:69:2d:29:8b:bd:d4:11:a6:54:21: bc:76:8d:12:33:4e:de:e3:e4:93:86:03:15:16:a0: 02:41:91:a4:8d:b3:a4:df:8d:5a:8d:17:43:c7:5b: 1a:6f:1b:7f:9d:e5:eb:8e:7d:2f:aa:11:c0:67:6f: ad:b1:4b:2d:a3:b2:a5:2f:f8:88:07:ed:95:dd:83: 2c:b8:92:93:71:29:db:cc:6f:83:93:3e:06:7f:0f: 91:d5:39:bc:8c:af:fe:d1:b6:fc:fa:2f:cd:9d:d0: e7:bf:eb:78:2c:2c:41:ea:63:bc:95:02:c7:3a:a1: ff:e0:8c:d5:53:f7:b5:1b:8d:4f:f6:f7:92:0d:67: c7:14:84:d8:59:cf:45:5d:cf:ab:28:67:54:ee:98: 80:db:10:56:27:ea:53:4a:d2:72:28:ea:17:ff:5f: c6:27:00:85:8e:83:25:aa:8b:a3:9c:a3:20:5d:4a: 94:8f:46:1e:d9:80:58:3d:58:ad:dd:a5:34:77:df: 06:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:42:B2:57:D8:11:A6:CA:1C:5C:5A:2B:8C:12:88:5B:9C:CC:40:40 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ec42dc47-0cc9-474a-9470-19700f756d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 30:46:ec:c7:73:0d:b5:b8:18:bd:f1:b6:20:50:58:97:d4:b6: 86:a8:c6:a5:46:d2:1c:fa:e4:9f:6b:00:da:c3:1a:08:29:9b: 86:4f:da:4b:7f:b2:a3:63:9d:d7:b3:68:01:12:64:4b:af:ad: c4:08:91:6c:c4:05:cf:88:88:54:e4:0f:24:99:8b:4b:6b:b7: 0a:6c:79:b4:ac:8f:4d:9c:68:6e:0b:57:a8:05:09:fa:ec:33: a0:32:46:89:c3:6c:8a:47:14:bf:d4:ae:bd:30:ff:9a:ca:e7: a9:b8:33:14:53:14:38:e3:10:f8:4f:70:1a:65:a7:4f:4a:58: 52:3e:b9:5c:2a:e5:84:89:4e:45:40:a9:02:0a:c7:58:cf:5d: 50:48:1c:87:c6:5a:4d:90:29:14:70:33:d0:31:5b:bd:c9:04: 31:5e:b0:a8:59:24:9a:35:c1:5b:a5:f0:6b:c8:6b:02:96:ce: 24:69:d6:a7:32:4b:54:16:08:fc:2c:d0:7f:8e:c9:af:85:5e: 1a:c6:5f:d3:34:04:fd:b2:ab:6f:84:97:a1:09:4a:c3:0b:b0: 8d:3a:ed:0a:15:9d:91:ec:77:31:53:80:9c:0e:6e:7d:60:14: 43:a8:70:bb:15:ce:d5:75:2b:31:b2:89:04:69:ca:21:f8:52: 1f:ed:84:f5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZ1Vri6NLCUW5qrm8jNxFn34z3f8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTQ5MDgxNTFiZDY4MTk3MDU4YjBmOTk4MDBhOWYwNzdj ZWI2OWRlMTdkOWU1M2JiNzY0YTA1NzM2M2JiNTZjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZJULdhuukl9qf94zGfDMHEtoDS7o+NcMz88s9slzfnuNk iYReJCaPgdZPVFBGL9vePGMEqm/wM9yyzclXEQMSaS0pi73UEaZUIbx2jRIzTt7j 5JOGAxUWoAJBkaSNs6TfjVqNF0PHWxpvG3+d5euOfS+qEcBnb62xSy2jsqUv+IgH 7ZXdgyy4kpNxKdvMb4OTPgZ/D5HVObyMr/7Rtvz6L82d0Oe/63gsLEHqY7yVAsc6 of/gjNVT97UbjU/295INZ8cUhNhZz0Vdz6soZ1TumIDbEFYn6lNK0nIo6hf/X8Yn AIWOgyWqi6OcoyBdSpSPRh7ZgFg9WK3dpTR33wbRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/UKyV9gRpsocXForjBKIW5zMQEAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VjNDJkYzQ3LTBjYzktNDc0YS05NDcwLTE5NzAwZjc1NmQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBADBG7MdzDbW4GL3xtiBQWJfU toaoxqVG0hz65J9rANrDGggpm4ZP2kt/sqNjndezaAESZEuvrcQIkWzEBc+IiFTk DySZi0trtwpsebSsj02caG4LV6gFCfrsM6AyRonDbIpHFL/Urr0w/5rK56m4MxRT FDjjEPhPcBplp09KWFI+uVwq5YSJTkVAqQIKx1jPXVBIHIfGWk2QKRRwM9AxW73J BDFesKhZJJo1wVul8GvIawKWziRp1qcyS1QWCPws0H+Oya+FXhrGX9M0BP2yq2+E l6EJSsMLsI067QoVnZHsdzFTgJwObn1gFEOocLsVztV1KzGyiQRpyiH4Uh/thPU= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:23 2024 by rpki-client on console-ams.rpki-client.org