$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0536b0c8-c99f-4ba4-814b-20b42419ce99.roa File: 0536b0c8-c99f-4ba4-814b-20b42419ce99.roa (raw, json) Hash identifier: W5H1fss5KfMSPAVC3Kah9eO8xzF0Ob6SLjjgYStkE6k= Subject key identifier: B0:40:3A:54:2B:6E:76:73:69:D8:05:3E:BF:F1:D5:AD:A5:F4:73:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66556940D3314172DE0BDB8BCE9C8779AADA303A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0536b0c8-c99f-4ba4-814b-20b42419ce99.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 147.106.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:55:69:40:d3:31:41:72:de:0b:db:8b:ce:9c:87:79:aa:da:30:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=920597ae36c288b0848ba26e90d2ac22320aa5b4eeb93e52f5b82e6fde2353fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a7:e4:29:cc:67:68:a5:3c:4a:e3:0e:35:9e: 1d:b4:a3:83:24:4c:a4:88:35:54:e8:93:f9:72:71: 38:bc:60:c6:9c:ab:66:ed:04:e3:3f:44:5e:77:c5: ac:b6:f4:3c:4d:62:a4:11:92:14:39:a2:a6:09:a1: 6b:61:0f:26:38:9d:92:3f:a3:96:a8:f6:90:c5:1e: 1b:be:25:57:67:7c:03:59:f9:ae:b3:0d:b4:f3:41: b9:19:e5:8b:7e:7d:06:23:0d:1c:46:65:1a:15:d1: be:61:82:7e:dc:fe:6b:72:8b:3a:a7:aa:bf:c7:5d: 39:26:2b:2b:c3:06:8b:3b:0a:3e:2e:83:46:47:1b: 1a:a7:5f:ec:34:15:79:64:99:a4:ee:0c:81:24:4c: 44:aa:b8:b8:4f:0f:28:de:c6:8e:9e:03:43:25:e7: f3:74:2a:04:a0:7e:9a:5b:88:fe:76:11:3f:3e:91: 36:4f:27:e0:10:27:97:8c:a6:e8:3c:88:2d:bc:0d: d2:3c:a7:a0:54:0c:b5:6f:fa:82:fd:c2:94:1a:db: 51:de:0b:69:94:be:44:9b:eb:5d:ab:c4:59:de:8c: 13:1a:f6:f9:ed:2d:cf:7f:5a:d2:68:e9:82:12:a6: b7:14:3e:73:bd:5d:ec:d9:3a:b7:b1:b9:d7:89:81: 47:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:40:3A:54:2B:6E:76:73:69:D8:05:3E:BF:F1:D5:AD:A5:F4:73:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0536b0c8-c99f-4ba4-814b-20b42419ce99.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.106.0.0/18 Signature Algorithm: sha256WithRSAEncryption 29:70:9b:d1:69:01:92:50:a8:06:cc:9d:9d:67:ab:21:ea:7e: 28:d2:57:8e:83:52:f8:a6:57:df:1a:5f:e6:62:84:51:f3:71: e2:ed:8c:65:e7:12:54:83:ab:bc:e7:e6:5c:a7:8a:8b:ed:a8: d7:41:3c:14:20:8e:c3:62:51:66:61:db:72:e3:6d:47:19:77: 28:25:e0:34:1d:11:26:90:5a:68:25:03:a8:30:53:83:fd:61: 56:3f:27:c2:0b:91:4c:fe:54:81:a4:bb:0a:5f:64:d5:c6:36: 0b:86:46:3b:c3:73:d4:f2:74:71:19:29:2a:47:82:d9:35:e2: a2:68:9d:cc:95:8f:a6:33:24:3a:c6:6b:95:3a:41:12:3e:45: 26:96:27:29:b1:20:ec:a5:3f:0f:de:f5:0a:57:a1:60:ac:fa: ea:57:42:1c:e2:04:d4:42:3e:5c:d6:48:d5:37:3a:9a:75:55: a9:40:0d:a6:67:13:13:8a:44:e8:8c:15:e4:c1:9b:14:28:2f: fc:49:3c:57:f6:7b:f1:38:ac:6d:0e:72:30:cb:9c:3a:33:8f: c0:96:d7:27:80:c8:bb:85:49:42:45:0b:ea:85:27:6d:20:df: f6:71:8d:68:c9:4a:a1:dd:91:4d:75:fa:09:9c:93:44:1b:b5: 9e:d0:59:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZlVpQNMxQXLeC9uLzpyHearaMDowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjA1OTdhZTM2YzI4OGIwODQ4YmEyNmU5MGQyYWMyMjMy MGFhNWI0ZWViOTNlNTJmNWI4MmU2ZmRlMjM1M2ZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1p+QpzGdopTxK4w41nh20o4MkTKSINVTok/lycTi8YMac q2btBOM/RF53xay29DxNYqQRkhQ5oqYJoWthDyY4nZI/o5ao9pDFHhu+JVdnfANZ +a6zDbTzQbkZ5Yt+fQYjDRxGZRoV0b5hgn7c/mtyizqnqr/HXTkmKyvDBos7Cj4u g0ZHGxqnX+w0FXlkmaTuDIEkTESquLhPDyjexo6eA0Ml5/N0KgSgfppbiP52ET8+ kTZPJ+AQJ5eMpug8iC28DdI8p6BUDLVv+oL9wpQa21HeC2mUvkSb612rxFnejBMa 9vntLc9/WtJo6YISprcUPnO9XezZOrexudeJgUcFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsEA6VCtudnNp2AU+v/HVraX0c0MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1MzZiMGM4LWM5OWYtNGJhNC04MTRiLTIwYjQyNDE5Y2U5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaTagAwDQYJKoZIhvcNAQELBQADggEBAClwm9FpAZJQqAbMnZ1nqyHqfijS V46DUvimV98aX+ZihFHzceLtjGXnElSDq7zn5lyniovtqNdBPBQgjsNiUWZh23Lj bUcZdygl4DQdESaQWmglA6gwU4P9YVY/J8ILkUz+VIGkuwpfZNXGNguGRjvDc9Ty dHEZKSpHgtk14qJoncyVj6YzJDrGa5U6QRI+RSaWJymxIOylPw/e9QpXoWCs+upX QhziBNRCPlzWSNU3Opp1ValADaZnExOKROiMFeTBmxQoL/xJPFf2e/E4rG0OcjDL nDozj8CW1yeAyLuFSUJFC+qFJ20g3/ZxjWjJSqHdkU11+gmck0QbtZ7QWWA= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:39 2024 by rpki-client on console-fra.rpki-client.org