$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa File: f8738a51-4689-46b8-a472-d4d0afaca2d7.roa (raw, json) Hash identifier: 2dKf8NuhACT27ipXag6DXhcxokaFKPnsPBQ9aBePAp4= Subject key identifier: 1F:0B:9B:83:F3:D4:11:08:6C:8D:4E:D5:D3:B2:01:71:AA:5B:53:CA Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 669384278E3467DD04E2D8AF195C9821A30C7056 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:93:84:27:8e:34:67:dd:04:e2:d8:af:19:5c:98:21:a3:0c:70:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=cc2a0af12ac4218c66c9d0ca7d0e17b3c26e419e4a7ec17167b8f95f997a931c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8e:0b:76:37:1b:c3:36:07:c4:d5:fe:a0:e1: 1d:31:a0:79:e6:bc:db:b2:d6:67:cd:45:14:6b:b1: 64:42:d1:2c:24:b5:46:ac:ab:bf:94:44:d7:58:0d: 3a:27:72:61:f1:ba:40:60:51:e1:fe:dd:a6:f2:1a: 7b:1b:85:37:a8:8d:14:38:30:2c:eb:2f:65:7f:8d: 24:44:7f:e7:c2:9e:6e:c6:c8:5d:e1:58:f2:01:4e: 83:bd:3a:f8:76:f2:6c:54:ed:d0:28:f9:da:19:7d: e7:8c:c3:58:b3:70:a0:da:33:74:23:1e:02:29:07: d7:36:3f:63:f4:d4:d1:51:90:00:52:4d:ae:a3:26: b5:9c:94:71:5a:08:34:93:94:18:02:45:ee:c0:17: 7f:77:fe:63:46:d2:00:46:9a:f1:e1:4b:2b:44:c0: d8:9b:88:d0:14:61:56:6f:97:e3:13:9e:19:d6:07: c5:91:00:65:ca:e8:2d:e4:41:6a:c5:3c:85:e2:ae: 4c:9f:d2:d6:c6:67:37:97:d3:b2:32:6e:57:7c:7d: 06:b2:41:95:a5:fa:e6:7a:1f:6d:5c:97:c8:61:38: 2b:86:20:88:06:e6:59:98:fd:20:0a:66:6e:43:6b: 40:26:02:dd:b8:ea:b8:ac:45:ce:ec:a0:73:89:28: 6f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:0B:9B:83:F3:D4:11:08:6C:8D:4E:D5:D3:B2:01:71:AA:5B:53:CA X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4::/48 Signature Algorithm: sha256WithRSAEncryption 18:63:fe:50:3a:4c:15:3a:23:6d:07:09:2f:25:b6:7b:d7:45: 23:6f:f2:9b:d1:8d:08:43:41:00:4c:c7:e8:a7:33:1d:81:d5: de:d7:91:36:74:24:a5:99:32:88:51:23:87:74:03:c1:14:c8: 4e:c8:a6:1b:91:99:38:92:b3:26:ce:0c:da:6e:e9:17:03:cc: 5a:95:ab:a0:39:a1:e3:1d:63:83:6d:34:ca:a4:01:19:70:90: 14:bb:44:49:7c:44:9d:64:40:fb:6d:3d:d6:78:c3:6e:65:45: 18:8c:ee:ed:49:55:11:9c:dc:f8:c9:20:fc:76:2c:49:13:83: 7e:fe:9f:6f:70:c5:11:a1:79:d1:28:32:cc:18:c6:17:52:20: fe:dd:25:31:e6:cf:f2:06:6e:7f:4d:1d:da:72:6a:d9:ec:26: 72:63:5a:a7:e5:f8:ff:81:b3:1c:49:fd:a5:72:75:60:16:b7: ad:16:ff:7e:3e:fc:87:02:d4:38:b1:c1:ff:3d:6f:85:ac:59: 53:15:f9:d1:59:66:d9:c2:67:65:b7:c6:26:dd:75:32:7e:39: 85:fc:61:a7:71:23:24:2a:f2:ff:81:af:7f:8e:d5:3b:ac:1a: 3b:4e:32:de:68:4b:01:46:2d:2b:02:07:de:bd:76:04:a6:e7: ea:46:77:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZpOEJ440Z90E4tivGVyYIaMMcFYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzJhMGFmMTJhYzQyMThjNjZjOWQwY2E3ZDBlMTdiM2My NmU0MTllNGE3ZWMxNzE2N2I4Zjk1Zjk5N2E5MzFjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjjgt2NxvDNgfE1f6g4R0xoHnmvNuy1mfNRRRrsWRC0Swk tUasq7+URNdYDToncmHxukBgUeH+3abyGnsbhTeojRQ4MCzrL2V/jSREf+fCnm7G yF3hWPIBToO9Ovh28mxU7dAo+doZfeeMw1izcKDaM3QjHgIpB9c2P2P01NFRkABS Ta6jJrWclHFaCDSTlBgCRe7AF393/mNG0gBGmvHhSytEwNibiNAUYVZvl+MTnhnW B8WRAGXK6C3kQWrFPIXirkyf0tbGZzeX07Iybld8fQayQZWl+uZ6H21cl8hhOCuG IIgG5lmY/SAKZm5Da0AmAt246risRc7soHOJKG8LAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHwubg/PUEQhsjU7V07IBcapbU8owHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y4NzM4YTUxLTQ2ODktNDZiOC1hNDcyLWQ0ZDBhZmFjYTJkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAQwDQYJKoZIhvcNAQELBQADggEBABhj/lA6TBU6I20HCS8ltnvX RSNv8pvRjQhDQQBMx+inMx2B1d7XkTZ0JKWZMohRI4d0A8EUyE7IphuRmTiSsybO DNpu6RcDzFqVq6A5oeMdY4NtNMqkARlwkBS7REl8RJ1kQPttPdZ4w25lRRiM7u1J VRGc3PjJIPx2LEkTg37+n29wxRGhedEoMswYxhdSIP7dJTHmz/IGbn9NHdpyatns JnJjWqfl+P+BsxxJ/aVydWAWt60W/34+/IcC1Dixwf89b4WsWVMV+dFZZtnCZ2W3 xibddTJ+OYX8YadxIyQq8v+Br3+O1TusGjtOMt5oSwFGLSsCB969dgSm5+pGd/E= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:25 2024 by rpki-client on console-fra.rpki-client.org