$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289d084-7f33-4bbc-baa0-e777f631c75e.roa File: 0289d084-7f33-4bbc-baa0-e777f631c75e.roa (raw, json) Hash identifier: N/K9zsUpu79/YHRIg5EiUHcxCScr+zZeIqAuGIMWYhQ= Subject key identifier: AE:78:BE:FA:93:D6:99:A0:43:E7:D9:A2:86:CF:F0:D1:31:B1:DC:20 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A2C81A561C74AC793DAB4ED15CB7C58EAB78E26 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289d084-7f33-4bbc-baa0-e777f631c75e.roa Signing time: Tue 10 Dec 2024 00:00:00 +0000 ROA not before: Tue 10 Dec 2024 00:00:00 +0000 ROA not after: Tue 14 Jan 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.9.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Dec 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2c:81:a5:61:c7:4a:c7:93:da:b4:ed:15:cb:7c:58:ea:b7:8e:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 10 00:00:00 2024 GMT Not After : Jan 14 23:59:59 2025 GMT Subject: serialNumber=95a460b12626080185de41b672f660b227317d25cf380ff97b40062ed487dd5e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:6b:fd:19:a7:ca:73:c5:0b:0b:41:87:c9:a1: 10:84:20:6b:08:1a:80:72:d2:14:8c:58:b9:91:51: 1c:8b:e4:41:f6:03:d4:90:87:13:88:d4:67:3a:4a: 53:ee:e6:4a:94:8e:cb:53:67:b6:04:98:f3:6b:13: 41:48:5b:31:26:e4:1b:fc:47:a9:4c:bc:98:fc:0a: bb:ae:6c:22:7f:15:0f:fb:0e:4a:39:14:cd:43:ac: bf:16:98:c8:bd:e4:06:77:cf:aa:40:bb:fb:91:38: 2a:63:e9:1f:de:e9:55:23:f3:d1:8d:2c:f8:25:a1: ed:f2:2e:7a:fe:47:74:e6:4e:fc:bc:4c:a7:f2:f4: 2a:b8:cc:39:86:00:cd:20:ab:e6:2d:9d:3b:e3:39: 28:d3:a1:39:59:38:07:fe:e0:5d:91:d9:53:fa:26: b2:37:a4:57:b4:70:4b:6f:90:0d:98:cb:67:9c:98: 32:84:7d:14:be:3a:bb:24:c5:23:f9:c8:c1:99:f3: 11:76:ab:94:ba:3a:df:78:98:8c:c2:6c:b5:ff:a3: be:4e:35:d8:51:32:04:ad:4d:46:f9:89:ac:b1:cf: fe:ab:55:1e:be:79:da:f7:18:8e:e2:50:ba:a9:5f: f8:0b:25:11:ed:65:f1:13:42:0e:a4:02:eb:86:c2: 7c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:78:BE:FA:93:D6:99:A0:43:E7:D9:A2:86:CF:F0:D1:31:B1:DC:20 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289d084-7f33-4bbc-baa0-e777f631c75e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.9.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8c:2a:62:eb:76:1c:26:89:50:94:6c:a3:9e:8b:21:1c:f5:73: 67:76:6e:41:4a:e9:e2:dd:ea:19:42:03:6d:42:43:b0:4c:26: 6c:47:dd:7e:4e:b9:19:4c:2d:67:fa:5a:ec:ff:1a:c4:a7:65: 3f:c1:e3:4c:58:ba:43:0f:94:cc:4c:24:69:6a:08:e0:f9:e4: fb:d1:af:8e:38:63:c0:07:2b:aa:ed:6f:06:8e:2a:4a:92:b1: 12:40:13:5e:39:58:54:65:a4:96:9c:ce:a5:1b:0a:5c:8c:99: 6b:cc:a9:4c:56:80:b8:10:2e:22:fb:8f:92:62:4a:07:13:76: 21:15:34:6d:74:4a:b5:89:af:d8:cf:1a:2e:22:7f:66:e6:2b: cd:06:a7:f3:34:15:61:7d:60:8a:58:10:2d:40:33:8e:0b:3c: 17:eb:78:99:64:ac:86:6e:e8:a4:65:35:a6:ec:8d:87:73:9e: f9:e0:2c:02:49:c5:3c:ab:c9:08:f3:1b:22:18:53:5d:15:2a: 61:c1:a2:55:88:34:dc:b0:fe:ff:d9:0a:2c:90:af:85:df:c1: 3e:bd:b8:be:6a:35:50:62:75:5f:c6:5a:fc:d2:81:44:fb:47: ac:1e:f3:57:f4:e5:92:f4:66:9a:fa:de:4b:b2:38:60:db:ee: fe:9a:f8:f8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOiyBpWHHSseT2rTtFct8WOq3jiYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMjEwMDAwMDAwWhcNMjUwMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWE0NjBiMTI2MjYwODAxODVkZTQxYjY3MmY2NjBiMjI3 MzE3ZDI1Y2YzODBmZjk3YjQwMDYyZWQ0ODdkZDVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSa/0Zp8pzxQsLQYfJoRCEIGsIGoBy0hSMWLmRURyL5EH2 A9SQhxOI1Gc6SlPu5kqUjstTZ7YEmPNrE0FIWzEm5Bv8R6lMvJj8CruubCJ/FQ/7 Dko5FM1DrL8WmMi95AZ3z6pAu/uROCpj6R/e6VUj89GNLPgloe3yLnr+R3TmTvy8 TKfy9Cq4zDmGAM0gq+YtnTvjOSjToTlZOAf+4F2R2VP6JrI3pFe0cEtvkA2Yy2ec mDKEfRS+OrskxSP5yMGZ8xF2q5S6Ot94mIzCbLX/o75ONdhRMgStTUb5iayxz/6r VR6+edr3GI7iULqpX/gLJRHtZfETQg6kAuuGwnxrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrni++pPWmaBD59mihs/w0TGx3CAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyODlkMDg0LTdmMzMtNGJiYy1iYWEwLWU3NzdmNjMxYzc1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4CTANBgkqhkiG9w0BAQsFAAOCAQEAjCpi63YcJolQlGyjnoshHPVzZ3Zu QUrp4t3qGUIDbUJDsEwmbEfdfk65GUwtZ/pa7P8axKdlP8HjTFi6Qw+UzEwkaWoI 4Pnk+9GvjjhjwAcrqu1vBo4qSpKxEkATXjlYVGWklpzOpRsKXIyZa8ypTFaAuBAu IvuPkmJKBxN2IRU0bXRKtYmv2M8aLiJ/ZuYrzQan8zQVYX1gilgQLUAzjgs8F+t4 mWSshm7opGU1puyNh3Oe+eAsAknFPKvJCPMbIhhTXRUqYcGiVYg03LD+/9kKLJCv hd/BPr24vmo1UGJ1X8Za/NKBRPtHrB7zV/TlkvRmmvreS7I4YNvu/pr4+A== -----END CERTIFICATE-----Generated at Thu Dec 26 01:49:00 2024 by rpki-client on console-ams.rpki-client.org