$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0baf80ff-e191-4ac2-b6aa-a2a534082994.roa File: 0baf80ff-e191-4ac2-b6aa-a2a534082994.roa (raw, json) Hash identifier: lz2/GlkT4jaDeRRHD2jswvW9FM/UDvBU3qg0KK8lEJg= Subject key identifier: 0D:BC:A9:AE:6D:23:88:B7:BD:CB:18:81:89:3B:05:5D:27:93:DA:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2624FF17192F61155B17A991278FDF80830190F2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0baf80ff-e191-4ac2-b6aa-a2a534082994.roa Signing time: Wed 06 Nov 2024 00:00:00 +0000 ROA not before: Wed 06 Nov 2024 00:00:00 +0000 ROA not after: Wed 11 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.190.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:24:ff:17:19:2f:61:15:5b:17:a9:91:27:8f:df:80:83:01:90:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 6 00:00:00 2024 GMT Not After : Dec 11 23:59:59 2024 GMT Subject: serialNumber=2c1bf9b9079f6620962e08647682e03f66c56ca140b2a962a66f474117c1f891, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b4:b4:10:e3:34:89:f6:df:13:0a:cf:a4:b7: 49:61:d7:e5:6d:9b:bf:bd:a3:43:c2:38:59:21:d6: 76:df:18:33:88:dd:7c:a3:89:3e:68:33:4c:c4:dd: f8:c0:7f:48:22:98:d5:7f:13:76:88:86:43:8b:19: 3d:18:28:c9:e1:fb:30:87:e9:47:89:67:0a:b0:08: 36:59:9f:80:c7:d2:2d:a3:82:e0:0f:9b:dd:d7:7e: ad:05:3b:70:07:5a:e6:f7:25:cf:c2:dc:7a:d1:44: 0b:54:69:d0:6b:23:c3:5b:1c:8f:1a:15:1e:3b:71: b2:26:be:95:a2:df:6c:aa:39:49:db:f9:9c:46:9b: dd:11:53:c9:21:fb:2d:03:69:0b:1e:68:f8:dc:2f: 35:5c:53:78:16:e2:27:58:81:a6:d3:c7:8e:36:15: 2a:19:e7:73:6a:a4:a2:af:16:ef:b1:a9:5d:d1:93: a0:24:d7:5c:61:19:da:a9:a6:32:eb:17:16:b6:93: 2f:7f:11:34:f4:be:b7:e9:ba:7e:a4:55:31:ba:b3: d3:44:12:88:cb:d5:5f:20:44:95:82:f5:4e:e8:53: 41:0b:ac:b9:78:74:d6:5f:f6:e1:33:c0:1f:2c:3f: 68:1b:63:79:30:00:cc:13:e4:61:05:5f:a1:5b:1f: fb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:BC:A9:AE:6D:23:88:B7:BD:CB:18:81:89:3B:05:5D:27:93:DA:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0baf80ff-e191-4ac2-b6aa-a2a534082994.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.190.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:f9:37:eb:d6:a4:f7:11:3a:a3:d8:fa:6b:d4:37:12:cb:05: de:c0:78:c6:5f:7d:f9:f0:cc:de:98:7b:23:3c:e7:a3:2b:fe: 47:70:d0:dc:27:12:d7:54:7f:38:f7:85:7d:b9:6a:7f:57:38: ea:3b:1c:77:6f:ee:5d:03:17:5a:d1:ad:43:7e:8d:91:b6:5e: 05:9d:ef:e4:f3:08:0d:eb:7e:46:c8:56:90:48:92:5f:32:a8: 60:68:00:09:58:09:95:cd:7b:9e:73:0b:10:a3:26:89:10:27: a8:08:58:05:4c:ca:67:b8:52:c4:d3:ac:f4:7e:89:5a:07:49: ba:b3:ee:eb:2b:a3:b8:85:80:e0:ab:cb:9a:1e:fc:2f:04:65: 4f:8a:11:49:cd:ee:e9:4f:6f:31:f5:96:63:5d:9b:26:3e:a5: e3:65:39:26:5f:0b:e8:40:5d:f9:d0:ed:48:c5:c4:b0:41:5a: 38:43:a2:7d:cc:f1:dd:63:e4:97:ed:3f:f7:ad:80:ab:35:9f: e2:a0:9e:39:a1:33:76:f4:eb:03:2b:68:cc:20:f0:fe:07:b4: 1d:bb:7c:c4:1c:43:a9:42:19:d6:b4:48:57:b1:2c:23:4f:37: ac:64:9b:57:5b:77:d5:74:f0:0b:41:c9:e8:ea:0a:6a:e3:15: 8e:ee:a9:b5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJiT/FxkvYRVbF6mRJ4/fgIMBkPIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA2MDAwMDAwWhcNMjQxMjExMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzFiZjliOTA3OWY2NjIwOTYyZTA4NjQ3NjgyZTAzZjY2 YzU2Y2ExNDBiMmE5NjJhNjZmNDc0MTE3YzFmODkxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6tLQQ4zSJ9t8TCs+kt0lh1+Vtm7+9o0PCOFkh1nbfGDOI 3XyjiT5oM0zE3fjAf0gimNV/E3aIhkOLGT0YKMnh+zCH6UeJZwqwCDZZn4DH0i2j guAPm93Xfq0FO3AHWub3Jc/C3HrRRAtUadBrI8NbHI8aFR47cbImvpWi32yqOUnb +ZxGm90RU8kh+y0DaQseaPjcLzVcU3gW4idYgabTx442FSoZ53NqpKKvFu+xqV3R k6Ak11xhGdqppjLrFxa2ky9/ETT0vrfpun6kVTG6s9NEEojL1V8gRJWC9U7oU0EL rLl4dNZf9uEzwB8sP2gbY3kwAMwT5GEFX6FbH/uBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDbyprm0jiLe9yxiBiTsFXSeT2iUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBiYWY4MGZmLWUxOTEtNGFjMi1iNmFhLWEyYTUzNDA4Mjk5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvjANBgkqhkiG9w0BAQsFAAOCAQEAKfk369ak9xE6o9j6a9Q3EssF3sB4 xl99+fDM3ph7Izznoyv+R3DQ3CcS11R/OPeFfblqf1c46jscd2/uXQMXWtGtQ36N kbZeBZ3v5PMIDet+RshWkEiSXzKoYGgACVgJlc17nnMLEKMmiRAnqAhYBUzKZ7hS xNOs9H6JWgdJurPu6yujuIWA4KvLmh78LwRlT4oRSc3u6U9vMfWWY12bJj6l42U5 Jl8L6EBd+dDtSMXEsEFaOEOifczx3WPkl+0/962AqzWf4qCeOaEzdvTrAytozCDw /ge0Hbt8xBxDqUIZ1rRIV7EsI083rGSbV1t31XTwC0HJ6OoKauMVju6ptQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:40 2024 by rpki-client on console-fra.rpki-client.org