$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c8560206-4c68-46a6-834e-4971768d50f8.roa File: c8560206-4c68-46a6-834e-4971768d50f8.roa (raw, json) Hash identifier: RnqJZx/5f/CIVg0c68sacBoDdEByF8l81+xsMCckHSs= Subject key identifier: 3B:99:DB:EE:7D:24:AD:F1:39:23:77:F5:2E:DB:D9:F0:0C:FF:D5:90 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 79E83855E9CDA9E7BE963A431A6A91CAE5910868 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c8560206-4c68-46a6-834e-4971768d50f8.roa Signing time: Wed 06 Nov 2024 00:00:00 +0000 ROA not before: Wed 06 Nov 2024 00:00:00 +0000 ROA not after: Wed 11 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:e8:38:55:e9:cd:a9:e7:be:96:3a:43:1a:6a:91:ca:e5:91:08:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 6 00:00:00 2024 GMT Not After : Dec 11 23:59:59 2024 GMT Subject: serialNumber=9340a8a726063a39add6eb4a40833b8e377d642e4d9e5d6f3e9aef2002b8f787, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e5:47:1e:1a:b2:02:b6:f9:7e:d1:41:fd:25: c7:f2:03:7a:1b:a6:7e:3a:a6:8b:44:59:28:06:be: cc:47:9b:1e:f1:a1:9c:8a:4f:24:d9:9b:14:83:34: ea:f4:9a:0b:c8:3f:8d:b1:33:0f:d5:85:de:98:ca: 6e:b7:90:89:d5:e6:39:f8:7e:7b:1b:72:60:a5:89: 81:b7:a5:08:5b:ad:de:cb:21:2e:9b:bb:50:1e:77: 44:56:cc:1b:bc:11:5b:6a:34:04:4b:c3:98:b6:34: 39:3c:af:d8:4f:29:0c:00:d3:8e:55:44:1f:f4:9d: 6c:eb:3e:7d:d8:fc:4c:80:41:89:a8:ec:67:87:a2: ad:60:86:21:33:5b:37:21:71:6b:50:01:d0:24:eb: d5:ff:6c:c6:47:4a:e6:eb:19:3a:26:8e:ce:e1:73: a7:e6:17:3c:37:df:56:7c:2d:20:62:8f:50:29:51: 98:52:91:33:e1:32:1e:11:9f:67:cd:34:df:9d:34: e0:80:c4:83:5e:99:df:aa:90:5f:0f:58:a9:3e:f8: 06:93:0e:d0:fd:9f:4b:58:d7:b0:18:b3:dc:5e:99: 5a:43:d5:94:10:fb:41:57:17:cb:97:d3:2b:63:da: 2c:a2:e9:c1:92:ea:58:7b:c5:35:48:0c:84:60:93: 1f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:99:DB:EE:7D:24:AD:F1:39:23:77:F5:2E:DB:D9:F0:0C:FF:D5:90 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c8560206-4c68-46a6-834e-4971768d50f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 44:d0:ee:4b:04:bd:75:a9:32:55:a2:4f:10:c6:d0:68:bd:a4: 48:f1:62:46:f4:a6:76:34:cc:64:7e:ae:08:cc:73:fa:e3:b2: 6f:6d:c5:21:48:79:69:42:ae:7d:57:2f:ed:fb:17:a7:f4:35: 79:51:f6:84:ff:c8:69:9f:23:2b:b0:e7:73:33:d2:c4:fc:c1: fb:db:d2:71:31:85:32:e2:7d:f1:cb:7f:d2:57:84:29:ee:1f: b9:5b:bf:ae:62:d9:66:a7:8d:22:1f:d4:14:cd:a5:d2:f6:08: 9f:52:5f:ad:a2:75:0b:90:a9:d8:05:ea:92:70:9a:e5:47:29: ec:f6:86:3b:f4:b3:14:35:f9:4c:26:55:c3:30:56:79:7a:fa: a0:5f:d0:a7:ac:5c:8c:6c:5e:49:12:2c:27:e2:da:fb:3b:fc: bc:af:f7:6e:9a:5d:72:64:ba:37:c1:5a:f2:41:af:e1:5b:36: c5:a0:60:26:0b:39:5e:d8:4b:39:d9:b1:ee:f8:22:40:f2:51: ed:64:35:da:09:64:55:fd:96:4f:72:dd:a7:9d:11:07:7f:27: 05:d1:1c:05:e1:c6:9b:12:86:cd:6a:19:eb:a7:6d:fd:2c:aa: 24:f9:28:76:a8:04:58:04:7e:d9:ab:97:2c:1b:92:c0:29:af: 9c:d2:07:9c -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUeeg4VenNqee+ljpDGmqRyuWRCGgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQxMTA2MDAwMDAwWhcNMjQxMjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzQwYThhNzI2MDYzYTM5YWRkNmViNGE0MDgzM2I4ZTM3 N2Q2NDJlNGQ5ZTVkNmYzZTlhZWYyMDAyYjhmNzg3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC55UceGrICtvl+0UH9JcfyA3obpn46potEWSgGvsxHmx7x oZyKTyTZmxSDNOr0mgvIP42xMw/Vhd6Yym63kInV5jn4fnsbcmCliYG3pQhbrd7L IS6bu1Aed0RWzBu8EVtqNARLw5i2NDk8r9hPKQwA045VRB/0nWzrPn3Y/EyAQYmo 7GeHoq1ghiEzWzchcWtQAdAk69X/bMZHSubrGTomjs7hc6fmFzw331Z8LSBij1Ap UZhSkTPhMh4Rn2fNNN+dNOCAxINemd+qkF8PWKk++AaTDtD9n0tY17AYs9xemVpD 1ZQQ+0FXF8uX0ytj2iyi6cGS6lh7xTVIDIRgkx+VAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUO5nb7n0krfE5I3f1LtvZ8Az/1ZAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2M4NTYwMjA2LTRjNjgtNDZhNi04MzRlLTQ5NzE3NjhkNTBmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQBE0O5LBL11qTJVok8QxtBovaRI 8WJG9KZ2NMxkfq4IzHP647JvbcUhSHlpQq59Vy/t+xen9DV5UfaE/8hpnyMrsOdz M9LE/MH729JxMYUy4n3xy3/SV4Qp7h+5W7+uYtlmp40iH9QUzaXS9gifUl+tonUL kKnYBeqScJrlRyns9oY79LMUNflMJlXDMFZ5evqgX9CnrFyMbF5JEiwn4tr7O/y8 r/duml1yZLo3wVryQa/hWzbFoGAmCzle2Es52bHu+CJA8lHtZDXaCWRV/ZZPct2n nREHfycF0RwF4cabEobNahnrp239LKok+Sh2qARYBH7Zq5csG5LAKa+c0gec -----END CERTIFICATE-----Generated at Sun Nov 24 20:09:42 2024 by rpki-client on console-ams.rpki-client.org