$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa File: ee2c3586-4c23-4045-b98b-d28000a3bd55.roa (raw, json) Hash identifier: MwoOKGuBmrCVJyxy4yyFmDT/qef0kUBV6FKoPhM93dI= Subject key identifier: 31:C6:C4:75:79:88:7B:D0:08:B5:1B:CA:E0:5A:94:56:E9:9D:6D:56 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 38CB995219B76C85E71EDD2260C4C44367FC20F2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa Signing time: Mon 14 Oct 2024 00:00:00 +0000 ROA not before: Mon 14 Oct 2024 00:00:00 +0000 ROA not after: Mon 18 Nov 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Oct 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:cb:99:52:19:b7:6c:85:e7:1e:dd:22:60:c4:c4:43:67:fc:20:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 14 00:00:00 2024 GMT Not After : Nov 18 23:59:59 2024 GMT Subject: serialNumber=64a16efcfecdbd2b6c6d2fbb71d1b201127661faed7943c74e1280135a0c51bc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5f:bc:d9:6f:cb:a2:0c:18:b2:51:c5:8c:6e: 90:3e:36:58:8f:41:ab:8b:57:50:84:eb:c8:96:9f: af:98:4c:fd:21:a7:e3:e1:a5:df:33:ea:fd:84:c1: a7:49:77:cb:41:34:95:70:10:d5:a2:22:01:1b:88: c3:b7:a8:92:f1:04:02:fa:6a:37:9b:29:b9:a3:62: 73:c3:5d:ce:c5:ad:bf:19:a0:77:59:c6:25:e6:0e: 02:58:60:bc:81:6a:97:7e:30:ac:f5:cb:6f:18:39: 3e:41:a5:38:a3:64:5f:8e:34:5c:08:73:fd:d9:41: 4f:da:4a:bf:9b:45:7b:bb:07:3b:2a:ad:5a:d4:3f: 23:9b:8a:13:4c:13:ae:60:a2:7b:33:c8:ac:c0:48: 2f:ec:ac:66:5a:ec:af:16:10:50:9d:4e:8c:77:08: d8:12:47:c7:c1:75:db:8f:98:b1:d4:24:f2:eb:76: 0f:27:06:ba:94:48:41:62:60:ca:03:8f:e8:e7:0e: 84:fd:50:21:87:35:b3:12:70:6f:79:13:07:6a:d0: 88:63:fe:d6:8d:0d:ca:60:f2:f2:4f:71:81:d6:6b: 7e:7d:b9:b7:30:69:7a:0b:0d:f8:60:48:93:a9:97: 21:2d:13:0a:fa:80:b3:d6:52:29:87:dd:b9:40:c8: c7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C6:C4:75:79:88:7B:D0:08:B5:1B:CA:E0:5A:94:56:E9:9D:6D:56 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ee2c3586-4c23-4045-b98b-d28000a3bd55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 8e:7a:43:f3:e1:a3:dd:ee:0c:32:d4:06:73:58:ee:a8:27:d8: 7a:88:ba:4e:2d:95:a6:9e:78:74:0f:f8:0c:85:dd:48:d0:e4: 80:3f:16:22:79:a1:0c:c0:2d:a5:d1:79:2b:66:e9:bd:96:55: 82:b0:dc:b1:8c:34:0e:c6:b0:a4:7e:e8:e6:95:82:8f:6b:3f: c2:70:1d:9e:9c:d6:dc:20:52:8b:e5:cb:82:d6:5f:12:bb:53: 02:9f:44:45:bd:3c:2e:fa:30:05:95:60:fd:d4:e8:09:62:b2: f7:2b:74:b8:24:c7:4b:25:58:4c:8c:bd:12:65:9f:10:99:71: e4:6a:e1:6f:cd:ac:6c:f1:d0:84:98:7b:99:2e:05:ce:d3:f0: df:a1:11:e0:dd:d2:dc:7c:e3:f2:c5:ff:b0:d3:5d:d7:92:fd: fd:e4:17:8d:73:95:4f:cb:49:a2:2a:09:ec:0d:af:31:89:82: 19:01:00:ef:3e:d9:25:53:23:0d:bd:ab:0c:21:a9:23:f4:46: e4:a6:d4:4f:2c:82:b4:bb:b3:08:da:47:7f:e8:20:d8:42:2d: 10:72:4e:5b:c6:6d:6d:48:2d:fa:b5:9e:99:16:d5:d3:fa:ed: 6c:9d:3d:64:ff:fc:6f:06:c6:79:bc:94:a7:89:aa:8d:ac:eb: 57:50:82:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOMuZUhm3bIXnHt0iYMTEQ2f8IPIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMDE0MDAwMDAwWhcNMjQxMTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGExNmVmY2ZlY2RiZDJiNmM2ZDJmYmI3MWQxYjIwMTEy NzY2MWZhZWQ3OTQzYzc0ZTEyODAxMzVhMGM1MWJjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3X7zZb8uiDBiyUcWMbpA+NliPQauLV1CE68iWn6+YTP0h p+Phpd8z6v2EwadJd8tBNJVwENWiIgEbiMO3qJLxBAL6ajebKbmjYnPDXc7Frb8Z oHdZxiXmDgJYYLyBapd+MKz1y28YOT5BpTijZF+ONFwIc/3ZQU/aSr+bRXu7Bzsq rVrUPyObihNME65gonszyKzASC/srGZa7K8WEFCdTox3CNgSR8fBdduPmLHUJPLr dg8nBrqUSEFiYMoDj+jnDoT9UCGHNbMScG95Ewdq0Ihj/taNDcpg8vJPcYHWa359 ubcwaXoLDfhgSJOplyEtEwr6gLPWUimH3blAyMclAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMcbEdXmIe9AItRvK4FqUVumdbVYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2VlMmMzNTg2LTRjMjMtNDA0NS1iOThiLWQyODAwMGEzYmQ1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBAI56Q/Pho93uDDLUBnNY7qgn 2HqIuk4tlaaeeHQP+AyF3UjQ5IA/FiJ5oQzALaXReStm6b2WVYKw3LGMNA7GsKR+ 6OaVgo9rP8JwHZ6c1twgUovly4LWXxK7UwKfREW9PC76MAWVYP3U6AlisvcrdLgk x0slWEyMvRJlnxCZceRq4W/NrGzx0ISYe5kuBc7T8N+hEeDd0tx84/LF/7DTXdeS /f3kF41zlU/LSaIqCewNrzGJghkBAO8+2SVTIw29qwwhqSP0RuSm1E8sgrS7swja R3/oINhCLRByTlvGbW1ILfq1npkW1dP67WydPWT//G8Gxnm8lKeJqo2s61dQgrw= -----END CERTIFICATE-----Generated at Tue Oct 22 17:17:30 2024 by rpki-client on console-fra.rpki-client.org