$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03a7e219-c649-40ab-8792-192dc47a4b0e.roa File: 03a7e219-c649-40ab-8792-192dc47a4b0e.roa (raw, json) Hash identifier: e9offwQam0CzIqndPgd+MlLGO0XZBR4kLSjZMhb7Uh8= Subject key identifier: 83:38:D4:F9:BC:46:92:7D:DB:C7:87:88:E6:EC:4C:12:DC:25:1B:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1AE880730D4360E7A22EF5152E86057E271A762A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03a7e219-c649-40ab-8792-192dc47a4b0e.roa Signing time: Wed 13 Nov 2024 00:00:00 +0000 ROA not before: Wed 13 Nov 2024 00:00:00 +0000 ROA not after: Wed 18 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff0:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:e8:80:73:0d:43:60:e7:a2:2e:f5:15:2e:86:05:7e:27:1a:76:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 13 00:00:00 2024 GMT Not After : Dec 18 23:59:59 2024 GMT Subject: serialNumber=e6b2721fe5eb485d2ce70792685cce5a61a32b39605821d243ca1c2b89f6b3cb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:50:74:47:0d:0c:2d:84:43:5a:14:65:5f:6a: 30:2b:b8:7d:44:6a:ae:60:2f:d7:c3:b7:94:d7:56: 86:82:4a:4e:69:00:5b:37:8a:11:b7:0e:e5:6c:f5: 11:05:1e:e5:d3:0f:52:ac:69:26:75:2a:70:9a:0d: 56:4c:df:ef:2d:f0:81:c5:6f:6b:36:c6:9f:4d:d7: de:22:e9:95:4d:fd:ff:85:d2:8b:ee:a9:c9:3c:37: 27:74:91:f3:93:cc:9a:93:67:53:f4:09:6c:fd:e1: c5:be:7f:51:23:e5:a8:b4:ad:44:1e:53:8d:10:89: b2:72:86:cd:4e:ff:42:69:61:16:3b:83:8f:08:f2: bb:01:91:81:84:39:06:52:61:7c:07:82:b2:e9:55: c6:c6:84:58:18:a0:3b:30:9c:9e:67:1f:ab:d1:26: 10:6f:7c:7a:55:ea:fd:e9:c9:cc:26:2f:93:f8:b5: 77:a2:34:16:4e:68:97:f1:83:3c:dc:2c:8b:10:b2: a9:b2:37:6e:54:d6:fe:f2:1b:6c:1b:ad:21:f6:2b: 6d:51:6f:73:ee:56:df:93:d4:b0:fc:df:2c:31:26: a7:c2:7e:df:3f:9d:4a:7c:a4:60:e4:57:6d:a9:81: 30:81:79:c0:7f:54:c7:0f:8b:99:03:72:81:3b:d0: 49:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:38:D4:F9:BC:46:92:7D:DB:C7:87:88:E6:EC:4C:12:DC:25:1B:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03a7e219-c649-40ab-8792-192dc47a4b0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0:3400::/40 Signature Algorithm: sha256WithRSAEncryption 84:c6:1d:8b:a1:d5:42:fc:12:d2:f7:14:c0:aa:78:a4:8d:b8: 09:4b:ac:72:d5:97:f4:03:7e:20:6f:98:b6:5f:5a:f6:50:54: 78:b7:59:90:8c:6f:5e:c5:3b:7c:e6:b3:38:8d:14:20:2c:0f: 92:a6:4f:d8:d7:03:ee:33:5a:f1:23:04:c1:a2:41:b6:f5:17: 76:ab:76:81:f1:b8:8f:4f:1a:68:0a:a3:b8:f8:81:ad:ce:d9: 0d:02:42:bb:d5:cf:de:ba:a1:01:5b:09:47:5b:25:94:e0:3c: c7:31:96:6d:8f:5a:4e:08:af:76:db:65:68:48:07:cf:19:4f: 4f:55:f9:83:3c:4f:ff:ab:e9:5e:7b:9e:63:49:85:bb:37:45: 71:86:92:92:74:d4:6e:46:ef:b4:97:80:67:91:72:8a:2f:e8: bc:54:0d:af:5e:6e:3a:17:86:c7:44:b6:8f:f0:d2:d0:20:29: 85:e0:fd:90:5b:5a:8c:85:57:89:b1:98:94:f1:e7:e4:4a:02: ba:49:9e:a1:6a:9a:16:46:e1:9e:3f:42:57:05:6e:6f:f4:d6: 5c:ba:bd:37:e5:3a:6c:c2:64:03:46:19:29:27:f3:31:e5:af: 3e:b0:be:da:a9:14:a2:31:66:a0:1c:75:e4:41:36:67:17:d3: 13:67:42:41 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGuiAcw1DYOeiLvUVLoYFficadiowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTEzMDAwMDAwWhcNMjQxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmIyNzIxZmU1ZWI0ODVkMmNlNzA3OTI2ODVjY2U1YTYx YTMyYjM5NjA1ODIxZDI0M2NhMWMyYjg5ZjZiM2NiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSUHRHDQwthENaFGVfajAruH1Eaq5gL9fDt5TXVoaCSk5p AFs3ihG3DuVs9REFHuXTD1KsaSZ1KnCaDVZM3+8t8IHFb2s2xp9N194i6ZVN/f+F 0ovuqck8Nyd0kfOTzJqTZ1P0CWz94cW+f1Ej5ai0rUQeU40QibJyhs1O/0JpYRY7 g48I8rsBkYGEOQZSYXwHgrLpVcbGhFgYoDswnJ5nH6vRJhBvfHpV6v3pycwmL5P4 tXeiNBZOaJfxgzzcLIsQsqmyN25U1v7yG2wbrSH2K21Rb3PuVt+T1LD83ywxJqfC ft8/nUp8pGDkV22pgTCBecB/VMcPi5kDcoE70EnXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUgzjU+bxGkn3bx4eI5uxMEtwlG7gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzYTdlMjE5LWM2NDktNDBhYi04NzkyLTE5MmRjNDdhNGIwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/wNDANBgkqhkiG9w0BAQsFAAOCAQEAhMYdi6HVQvwS0vcUwKp4pI24 CUusctWX9AN+IG+Ytl9a9lBUeLdZkIxvXsU7fOazOI0UICwPkqZP2NcD7jNa8SME waJBtvUXdqt2gfG4j08aaAqjuPiBrc7ZDQJCu9XP3rqhAVsJR1sllOA8xzGWbY9a TgivdttlaEgHzxlPT1X5gzxP/6vpXnueY0mFuzdFcYaSknTUbkbvtJeAZ5Fyii/o vFQNr15uOheGx0S2j/DS0CApheD9kFtajIVXibGYlPHn5EoCukmeoWqaFkbhnj9C VwVub/TWXLq9N+U6bMJkA0YZKSfzMeWvPrC+2qkUojFmoBx15EE2ZxfTE2dCQQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:38 2024 by rpki-client on console-fra.rpki-client.org