$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a9577bdf-707e-4750-8686-935a0db169e2.roa File: a9577bdf-707e-4750-8686-935a0db169e2.roa (raw, json) Hash identifier: TkiLVRxyHCzk3s1TtG3dka0OSJH3qD3c+sfLPJzeL74= Subject key identifier: B9:31:1E:D2:75:9E:7D:24:D7:E3:2D:22:BF:9E:BC:43:A7:F2:B9:2F Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 623C2F08C3C32F9D6CDA7E212D5701316DE89A15 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a9577bdf-707e-4750-8686-935a0db169e2.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:fff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:3c:2f:08:c3:c3:2f:9d:6c:da:7e:21:2d:57:01:31:6d:e8:9a:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=426c557c875959156c05fe6d6fb725000e7f576892703efc4a65b5ea576ebbb1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:4b:27:9e:75:47:87:03:72:43:59:2a:76:6a: 73:dc:f7:5c:0e:95:c3:10:62:a3:8f:28:95:60:35: 27:fa:24:66:6f:2c:2a:b6:4f:23:d3:d2:c9:3d:0f: 2b:85:54:b0:61:0a:fa:77:52:b8:ad:49:cd:96:1a: 64:74:e2:5b:f3:5e:66:6b:cb:ad:32:83:56:3d:56: 6d:d8:e1:f0:22:4c:37:66:4b:d0:cf:37:aa:f8:df: 80:4c:80:97:ca:d6:c5:e3:39:13:21:78:9b:85:cc: 55:d1:c3:21:17:4c:a2:55:14:7d:37:a2:a2:24:36: bd:e8:e5:c0:4d:aa:36:6d:e4:aa:5f:7b:b4:ed:51: fd:c3:b2:d2:de:b7:67:98:57:b1:b5:66:cc:7b:19: 10:b3:e9:87:d2:75:3b:5d:a1:f3:15:61:c5:d6:5e: c1:75:dc:c9:69:5d:fb:76:7c:33:cf:57:60:c2:3e: 51:f3:18:17:86:11:09:c4:e0:cc:c6:da:7c:09:6f: 10:d2:61:00:1c:14:96:f8:75:b3:64:15:1e:cb:06: 9f:64:0b:68:f7:95:24:46:3c:c3:48:e1:23:b0:64: bc:43:e4:36:c5:42:75:8b:5e:a7:ad:64:49:ed:a9: 2f:7c:83:c5:3d:de:24:7e:dd:ed:b3:7c:63:14:09: 1d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:31:1E:D2:75:9E:7D:24:D7:E3:2D:22:BF:9E:BC:43:A7:F2:B9:2F X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a9577bdf-707e-4750-8686-935a0db169e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:fff::/48 Signature Algorithm: sha256WithRSAEncryption 50:ca:9f:5c:32:ec:8e:ac:e5:8c:35:b5:ef:29:37:a6:76:97: 4f:5b:28:82:48:42:a2:6e:9d:57:33:b4:90:4d:5a:2a:6a:62: 89:ff:50:5c:ea:27:97:da:cf:f9:45:0a:2c:da:8d:8e:e1:e0: 37:b1:ac:06:cc:6f:11:d0:b5:97:9d:c9:0d:51:ec:01:05:25: d8:2e:fa:34:3d:71:6f:e6:69:5c:b4:83:b7:98:45:54:8e:a6: 73:c1:f3:db:78:45:77:27:f8:72:f8:d0:6e:6d:6b:7d:f6:64: bc:a8:90:27:44:ee:38:6f:44:c6:28:97:4c:2b:4c:81:32:88: 2a:3f:d4:a6:ee:77:74:34:b9:a6:f0:96:e8:fc:74:ad:2f:07: 73:d2:88:56:10:85:7d:ac:1a:f7:43:5f:18:b4:37:ab:06:52: 2d:4c:88:29:e6:65:75:70:4c:1e:54:bd:8c:70:ae:ac:2b:15: 7d:04:7b:80:44:2f:40:9a:82:81:7a:4b:73:01:2f:6c:ab:a1: ef:ba:7a:d2:5d:4e:77:44:bc:3c:26:c3:17:6b:3c:53:aa:cb: e8:28:ef:a2:23:a6:41:93:d5:7c:97:50:4a:e6:be:58:cf:7e: 6a:61:9f:f5:8a:9f:d8:63:f8:14:ca:0d:25:b9:66:79:ba:8a: 7c:d5:8f:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYjwvCMPDL51s2n4hLVcBMW3omhUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjZjNTU3Yzg3NTk1OTE1NmMwNWZlNmQ2ZmI3MjUwMDBl N2Y1NzY4OTI3MDNlZmM0YTY1YjVlYTU3NmViYmIxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSSyeedUeHA3JDWSp2anPc91wOlcMQYqOPKJVgNSf6JGZv LCq2TyPT0sk9DyuFVLBhCvp3UritSc2WGmR04lvzXmZry60yg1Y9Vm3Y4fAiTDdm S9DPN6r434BMgJfK1sXjORMheJuFzFXRwyEXTKJVFH03oqIkNr3o5cBNqjZt5Kpf e7TtUf3DstLet2eYV7G1Zsx7GRCz6YfSdTtdofMVYcXWXsF13MlpXft2fDPPV2DC PlHzGBeGEQnE4MzG2nwJbxDSYQAcFJb4dbNkFR7LBp9kC2j3lSRGPMNI4SOwZLxD 5DbFQnWLXqetZEntqS98g8U93iR+3e2zfGMUCR3TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuTEe0nWefSTX4y0iv568Q6fyuS8wHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2E5NTc3YmRmLTcwN2UtNDc1MC04Njg2LTkzNWEwZGIxNjllMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAD/8wDQYJKoZIhvcNAQELBQADggEBAFDKn1wy7I6s5Yw1te8pN6Z2 l09bKIJIQqJunVcztJBNWipqYon/UFzqJ5faz/lFCizajY7h4DexrAbMbxHQtZed yQ1R7AEFJdgu+jQ9cW/maVy0g7eYRVSOpnPB89t4RXcn+HL40G5ta332ZLyokCdE 7jhvRMYol0wrTIEyiCo/1Kbud3Q0uabwluj8dK0vB3PSiFYQhX2sGvdDXxi0N6sG Ui1MiCnmZXVwTB5UvYxwrqwrFX0Ee4BEL0CagoF6S3MBL2yroe+6etJdTndEvDwm wxdrPFOqy+go76IjpkGT1XyXUErmvljPfmphn/WKn9hj+BTKDSW5Znm6inzVj7w= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:21 2024 by rpki-client on console-fra.rpki-client.org