$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f499f749-0d13-4083-b2c0-51f25ea62ac7.roa File: f499f749-0d13-4083-b2c0-51f25ea62ac7.roa (raw, json) Hash identifier: eXeUeRKCl32e/We8xXK0eUfx7gev21char5itmQ8F88= Subject key identifier: 5F:0C:58:93:27:18:14:BC:B8:BF:0E:09:FD:01:D2:DD:B9:A4:79:B5 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3B3ADB9E64B5D267C2DBDE8F0FE0713F7D515F6C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f499f749-0d13-4083-b2c0-51f25ea62ac7.roa Signing time: Tue 29 Oct 2024 00:00:00 +0000 ROA not before: Tue 29 Oct 2024 00:00:00 +0000 ROA not after: Tue 03 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2606:8140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:3a:db:9e:64:b5:d2:67:c2:db:de:8f:0f:e0:71:3f:7d:51:5f:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 29 00:00:00 2024 GMT Not After : Dec 3 23:59:59 2024 GMT Subject: serialNumber=1e5c42db7e3c5ec78693a7676e7d62d26f097745608c56354c24db9437e2cabe, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b3:07:be:33:36:d0:05:bb:0d:4e:b2:fc:13: fa:74:b1:23:d0:20:71:6f:65:94:39:5a:bd:a9:0d: 7e:0d:bf:ef:72:08:c5:e1:48:8e:28:70:ed:79:cb: 7f:41:86:79:61:e4:f8:7e:fb:f0:bf:5a:0d:d6:04: a7:eb:ae:11:08:dc:33:af:f0:63:33:9d:35:3b:02: 3e:cd:4f:20:7b:5e:ce:27:27:ec:fe:93:5b:cd:6c: 38:2c:2c:5a:19:c0:db:e4:b8:c9:57:f2:2e:d3:a2: 38:45:bf:8a:fe:e0:4b:f7:f4:50:04:12:f5:85:d9: be:51:29:b1:27:e2:17:59:42:94:e5:47:36:9a:34: ff:7a:20:e2:2a:40:58:5f:52:bc:ef:d6:51:c5:b0: 07:3e:d8:cd:21:43:d0:c5:a5:9e:3e:53:fe:e6:82: 54:93:ac:77:5e:33:fa:c8:37:6b:32:9f:cd:72:04: 40:90:f0:ad:ef:6a:ec:34:f2:fa:0a:3b:47:9b:d3: ec:89:a4:e7:1d:e2:bf:f1:a3:64:cd:c5:38:97:59: 6f:71:97:25:ed:f6:b3:17:32:24:18:f5:b0:41:d3: 72:b9:ca:55:84:b3:b6:b1:f8:a7:54:05:f2:b8:18: 00:05:ae:fa:e2:db:29:ae:19:25:ef:f6:6c:7d:6d: be:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:0C:58:93:27:18:14:BC:B8:BF:0E:09:FD:01:D2:DD:B9:A4:79:B5 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f499f749-0d13-4083-b2c0-51f25ea62ac7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140::/32 Signature Algorithm: sha256WithRSAEncryption 82:27:48:ba:d2:ad:58:8e:91:e2:21:ad:4b:a7:1f:d7:a4:84: 8d:74:b2:e7:06:ff:d5:80:01:f7:14:51:99:a7:b1:e0:f1:b2: f6:4e:d1:2d:2a:22:29:74:62:d8:8e:00:6e:6c:96:bf:91:71: bf:a1:42:a9:8a:13:d3:2e:bc:7e:89:f9:45:35:75:c0:89:d6: 4f:72:41:70:34:fe:95:11:cf:1a:de:20:6e:1a:e3:4a:c1:8e: 0a:1c:ec:d9:fc:f5:df:23:26:3a:91:47:5a:68:fb:4a:c5:cc: 36:ea:61:e5:6a:30:14:7d:df:13:33:e7:99:c0:e1:59:67:a2: 14:10:c2:42:97:2a:12:12:54:da:73:fc:57:f1:67:2a:00:cb: 0b:2c:d1:bf:28:29:f5:8c:a6:35:ae:41:c0:fb:08:0f:b9:b4: 7b:51:9d:44:97:4e:22:f9:b2:ba:18:b8:f3:91:31:4e:63:59: 7c:bd:fa:35:90:95:43:e3:7f:c7:71:51:02:67:1e:0b:d1:e3: 7b:c2:9d:e3:ee:af:a9:2b:74:8c:c6:87:29:47:c7:5d:0a:0f: 64:7d:9d:d5:8c:d4:af:fe:52:94:3b:14:6b:0d:3f:e4:b2:f3: 4f:24:5b:b3:c3:1a:65:f4:8a:12:8d:e5:c4:2c:7e:38:bc:cf: 89:2b:41:87 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUOzrbnmS10mfC296PD+BxP31RX2wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQxMDI5MDAwMDAwWhcNMjQxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTVjNDJkYjdlM2M1ZWM3ODY5M2E3Njc2ZTdkNjJkMjZm MDk3NzQ1NjA4YzU2MzU0YzI0ZGI5NDM3ZTJjYWJlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+swe+MzbQBbsNTrL8E/p0sSPQIHFvZZQ5Wr2pDX4Nv+9y CMXhSI4ocO15y39Bhnlh5Ph++/C/Wg3WBKfrrhEI3DOv8GMznTU7Aj7NTyB7Xs4n J+z+k1vNbDgsLFoZwNvkuMlX8i7TojhFv4r+4Ev39FAEEvWF2b5RKbEn4hdZQpTl RzaaNP96IOIqQFhfUrzv1lHFsAc+2M0hQ9DFpZ4+U/7mglSTrHdeM/rIN2syn81y BECQ8K3vauw08voKO0eb0+yJpOcd4r/xo2TNxTiXWW9xlyXt9rMXMiQY9bBB03K5 ylWEs7ax+KdUBfK4GAAFrvri2ymuGSXv9mx9bb7PAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUXwxYkycYFLy4vw4J/QHS3bmkebUwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Y0OTlmNzQ5LTBkMTMtNDA4My1iMmMwLTUxZjI1ZWE2MmFjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBoFAMA0GCSqGSIb3DQEBCwUAA4IBAQCCJ0i60q1YjpHiIa1Lpx/XpISN dLLnBv/VgAH3FFGZp7Hg8bL2TtEtKiIpdGLYjgBubJa/kXG/oUKpihPTLrx+iflF NXXAidZPckFwNP6VEc8a3iBuGuNKwY4KHOzZ/PXfIyY6kUdaaPtKxcw26mHlajAU fd8TM+eZwOFZZ6IUEMJClyoSElTac/xX8WcqAMsLLNG/KCn1jKY1rkHA+wgPubR7 UZ1El04i+bK6GLjzkTFOY1l8vfo1kJVD43/HcVECZx4L0eN7wp3j7q+pK3SMxocp R8ddCg9kfZ3VjNSv/lKUOxRrDT/ksvNPJFuzwxpl9IoSjeXELH44vM+JK0GH -----END CERTIFICATE-----Generated at Thu Nov 21 19:12:38 2024 by rpki-client on console-fra.rpki-client.org