$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa File: f8738a51-4689-46b8-a472-d4d0afaca2d7.roa (raw, json) Hash identifier: iqhSq8M82e6d+xys6a71gL0/FOOunViHEJT42ddOxyM= Subject key identifier: 01:8A:24:14:B3:38:BA:7D:81:8D:F0:6E:D5:B0:FF:BB:A1:B2:3C:35 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5E1837B1D357866D2E8028338455449FBF0E4CC7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa Signing time: Sat 20 Apr 2024 00:00:00 +0000 ROA not before: Sat 20 Apr 2024 00:00:00 +0000 ROA not after: Sat 25 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:18:37:b1:d3:57:86:6d:2e:80:28:33:84:55:44:9f:bf:0e:4c:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 20 00:00:00 2024 GMT Not After : May 25 23:59:59 2024 GMT Subject: serialNumber=fd03052595e81d1d74cc1ed8916edc882f3e279f31476ea7516917c7fdd69bbe, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3c:fe:0c:52:c8:33:6e:b7:9b:ef:fa:eb:b2: 6a:ce:31:0b:d3:ad:8f:a3:a0:07:d4:39:e4:35:7d: ac:c2:01:7c:9c:4a:ba:f3:0c:22:b3:c0:5a:1c:5a: 17:b3:fb:70:84:75:95:ad:67:01:65:e6:da:fa:dc: 90:5e:14:90:c7:a5:bf:b6:24:68:22:33:18:95:e2: 61:a7:b2:32:8e:9a:aa:56:ba:1d:4e:a9:f1:ee:a2: e4:d5:53:5c:15:a9:d2:41:2f:ee:91:24:6e:18:c7: aa:65:cc:86:9b:74:06:38:dc:14:d0:05:dd:d9:3d: 5f:ee:48:89:7a:df:a0:24:20:d6:04:59:95:94:18: 3f:d5:29:97:29:1a:cd:fc:14:b6:cd:1a:8e:b4:a5: 76:f7:b0:8b:ca:ba:14:88:72:a7:d1:3b:ce:8b:b1: be:39:9a:95:67:e2:46:bf:c0:33:ef:ba:f4:32:91: 09:db:6f:0a:9d:cc:e3:8c:5f:bb:8a:26:0f:92:bf: 92:cf:24:78:55:89:f2:d0:1e:47:18:e5:7a:ac:ad: 81:2a:61:27:06:22:ed:68:6f:f9:1f:d2:00:5a:26: 41:1d:e9:4f:9f:83:e2:08:01:8b:27:f2:f8:41:fe: cf:ba:1d:df:da:9b:c8:c5:c4:c4:9e:50:e8:f4:43: 93:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:8A:24:14:B3:38:BA:7D:81:8D:F0:6E:D5:B0:FF:BB:A1:B2:3C:35 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4::/48 Signature Algorithm: sha256WithRSAEncryption 46:7e:15:26:81:2c:40:92:96:a7:98:c1:d2:9d:d3:01:6c:19: 01:40:1e:91:6a:4f:e2:52:7d:85:9e:85:bb:a3:a8:9f:80:a2: 86:89:b7:bf:81:6e:2e:e3:32:6e:a6:08:5d:18:1b:bc:91:70: 36:49:53:e7:39:21:ab:c7:95:d6:3c:fc:00:c0:51:21:3a:49: cf:1a:16:ef:6c:15:41:fa:56:44:65:cd:94:ce:26:0f:47:70: c9:a1:7e:b9:f9:c9:bc:1a:9f:97:77:ef:75:0f:02:57:d5:24: 83:13:d6:e6:62:d8:e1:23:8c:26:ba:d7:01:dd:af:61:e3:32: cb:75:6a:d6:d0:ac:16:13:af:43:5b:7d:50:ec:57:3c:65:58: 03:f1:71:69:af:b0:cc:18:64:05:77:70:ff:dd:c1:99:e3:45: da:b6:ae:d6:2b:c4:63:da:fb:1a:1a:45:6f:f2:32:d5:bc:c2: f2:f4:62:5d:46:1d:01:46:85:28:8b:58:72:a2:c9:49:09:78: 4d:a5:16:91:48:9b:5a:17:61:0c:2d:a5:a0:43:12:c5:67:b0: 1d:4c:f7:86:c1:23:f4:dd:e3:f2:3c:5e:eb:67:ea:8e:91:6d: 10:69:b2:3e:a9:45:a0:14:16:9d:47:2b:05:a2:c9:30:c2:66: 91:8a:b0:2a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXhg3sdNXhm0ugCgzhFVEn78OTMcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIwMDAwMDAwWhcNMjQwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDAzMDUyNTk1ZTgxZDFkNzRjYzFlZDg5MTZlZGM4ODJm M2UyNzlmMzE0NzZlYTc1MTY5MTdjN2ZkZDY5YmJlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkPP4MUsgzbreb7/rrsmrOMQvTrY+joAfUOeQ1fazCAXyc SrrzDCKzwFocWhez+3CEdZWtZwFl5tr63JBeFJDHpb+2JGgiMxiV4mGnsjKOmqpW uh1OqfHuouTVU1wVqdJBL+6RJG4Yx6plzIabdAY43BTQBd3ZPV/uSIl636AkINYE WZWUGD/VKZcpGs38FLbNGo60pXb3sIvKuhSIcqfRO86Lsb45mpVn4ka/wDPvuvQy kQnbbwqdzOOMX7uKJg+Sv5LPJHhVifLQHkcY5XqsrYEqYScGIu1ob/kf0gBaJkEd 6U+fg+IIAYsn8vhB/s+6Hd/am8jFxMSeUOj0Q5M9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAYokFLM4un2BjfBu1bD/u6GyPDUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y4NzM4YTUxLTQ2ODktNDZiOC1hNDcyLWQ0ZDBhZmFjYTJkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAQwDQYJKoZIhvcNAQELBQADggEBAEZ+FSaBLECSlqeYwdKd0wFs GQFAHpFqT+JSfYWehbujqJ+AooaJt7+Bbi7jMm6mCF0YG7yRcDZJU+c5IavHldY8 /ADAUSE6Sc8aFu9sFUH6VkRlzZTOJg9HcMmhfrn5ybwan5d373UPAlfVJIMT1uZi 2OEjjCa61wHdr2HjMst1atbQrBYTr0NbfVDsVzxlWAPxcWmvsMwYZAV3cP/dwZnj Rdq2rtYrxGPa+xoaRW/yMtW8wvL0Yl1GHQFGhSiLWHKiyUkJeE2lFpFIm1oXYQwt paBDEsVnsB1M94bBI/Td4/I8Xutn6o6RbRBpsj6pRaAUFp1HKwWiyTDCZpGKsCo= -----END CERTIFICATE-----Generated at Fri May 3 03:09:14 2024 by rpki-client on console-ams.rpki-client.org