$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0db119d6-1f83-4beb-afa8-2fe09aabc44c.roa File: 0db119d6-1f83-4beb-afa8-2fe09aabc44c.roa (raw, json) Hash identifier: o7AmVqPsskSYN4EM0TvppLD3QoXOcm4YpHNSP/ZSeUw= Subject key identifier: 2B:87:D0:18:A0:CC:5E:F6:27:30:70:FA:2F:78:4A:D2:B4:AB:0C:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CAEC2A1E46C50E8AA99D0E9D1009ECD4FD02624 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0db119d6-1f83-4beb-afa8-2fe09aabc44c.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ae:c2:a1:e4:6c:50:e8:aa:99:d0:e9:d1:00:9e:cd:4f:d0:26:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=89e8af1bc1d859b2e1505cb74be04e49de75df97da1bb9dacd4e1836eade8536, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:dc:90:36:ad:12:04:8a:08:d1:61:26:2f:13: 3a:04:e8:8b:33:d8:f6:b7:68:2b:2f:6f:e8:68:ce: 32:62:ca:11:6d:87:7d:d1:89:79:d4:60:f6:48:b5: 2d:67:d4:d2:fa:a2:e1:39:d5:cb:d1:75:67:9d:40: 9b:cc:21:ea:15:a7:d3:59:5f:36:24:83:6c:27:3d: d9:f2:36:1a:6e:4c:f2:14:ae:08:6d:d5:06:22:ff: 73:f1:60:a2:7e:2a:6c:f1:04:b9:81:a2:3a:30:35: bb:4a:49:61:18:9b:fb:74:20:a4:1a:d3:6d:6e:58: f8:59:76:8e:fc:bb:84:53:26:42:e6:67:35:47:01: 01:2f:41:ab:2d:2e:0e:c5:b9:85:70:95:f3:a4:80: 2c:2a:07:96:94:df:be:36:0d:ac:dc:da:aa:40:3b: aa:59:56:9e:4e:b1:d3:de:3d:4f:b8:db:60:de:d2: b4:8d:fa:40:d7:5f:5d:8e:36:cd:96:bd:82:4e:ec: 77:72:61:59:d2:6b:59:f8:bf:75:53:34:6c:e8:7b: 28:c7:3f:d7:0f:4a:0e:f9:b4:a5:9e:5e:ab:22:ef: d9:0f:67:87:16:3f:43:d7:d3:4b:16:13:cb:fc:f5: 03:1b:bf:60:cb:64:c9:58:91:91:9e:6b:e1:b8:3d: 30:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:87:D0:18:A0:CC:5E:F6:27:30:70:FA:2F:78:4A:D2:B4:AB:0C:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0db119d6-1f83-4beb-afa8-2fe09aabc44c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:8000::/39 Signature Algorithm: sha256WithRSAEncryption 29:5f:9a:c4:79:06:74:d5:a5:86:8b:f8:f2:48:fe:e2:95:5a: 70:fc:e3:47:d8:0d:10:54:3b:dd:68:a4:e1:46:ff:98:44:a4: 79:e1:17:ad:00:1c:1a:dc:b9:97:ce:40:7b:0b:62:4b:24:d0: f0:d3:58:33:69:ea:da:5a:15:09:33:2b:ef:e5:65:34:a0:93: 4e:f9:79:1d:a7:37:97:9c:70:2e:f9:48:9f:cc:62:24:64:35: db:43:22:0b:6f:26:86:ef:69:2a:93:bf:9f:cc:4a:02:37:e5: ad:41:33:5d:3b:a0:f8:77:49:81:a2:3d:67:ee:b0:48:2e:fb: 7d:64:81:87:b6:29:88:c9:1a:67:80:bc:29:ef:13:91:42:98: 2d:ee:4e:2c:db:1f:ab:fe:7f:16:e8:ce:2a:dd:d9:85:2b:30: e2:20:2c:f3:55:08:4a:f3:60:b5:ba:68:70:32:99:d8:78:ad: a3:41:1b:23:e1:c4:9a:23:dc:df:7f:23:c0:ab:66:e3:04:df: 70:44:fa:3d:a5:7b:8f:ff:0b:21:0b:4b:3d:f9:79:69:80:fa: c2:94:cf:f6:74:3b:df:c7:1c:c6:e7:98:35:95:d7:c7:2d:57: c7:4b:b8:3b:2d:9a:d7:39:f1:b7:fe:be:ec:02:54:8c:3f:26: c3:fb:e8:a7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXK7CoeRsUOiqmdDp0QCezU/QJiQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWU4YWYxYmMxZDg1OWIyZTE1MDVjYjc0YmUwNGU0OWRl NzVkZjk3ZGExYmI5ZGFjZDRlMTgzNmVhZGU4NTM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX3JA2rRIEigjRYSYvEzoE6Isz2Pa3aCsvb+hozjJiyhFt h33RiXnUYPZItS1n1NL6ouE51cvRdWedQJvMIeoVp9NZXzYkg2wnPdnyNhpuTPIU rght1QYi/3PxYKJ+KmzxBLmBojowNbtKSWEYm/t0IKQa021uWPhZdo78u4RTJkLm ZzVHAQEvQastLg7FuYVwlfOkgCwqB5aU3742Dazc2qpAO6pZVp5OsdPePU+422De 0rSN+kDXX12ONs2WvYJO7HdyYVnSa1n4v3VTNGzoeyjHP9cPSg75tKWeXqsi79kP Z4cWP0PX00sWE8v89QMbv2DLZMlYkZGea+G4PTDdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUK4fQGKDMXvYnMHD6L3hK0rSrDMIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBkYjExOWQ2LTFmODMtNGJlYi1hZmE4LTJmZTA5YWFiYzQ0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB9pgDANBgkqhkiG9w0BAQsFAAOCAQEAKV+axHkGdNWlhov48kj+4pVa cPzjR9gNEFQ73Wik4Ub/mESkeeEXrQAcGty5l85AewtiSyTQ8NNYM2nq2loVCTMr 7+VlNKCTTvl5Hac3l5xwLvlIn8xiJGQ120MiC28mhu9pKpO/n8xKAjflrUEzXTug +HdJgaI9Z+6wSC77fWSBh7YpiMkaZ4C8Ke8TkUKYLe5OLNsfq/5/FujOKt3ZhSsw 4iAs81UISvNgtbpocDKZ2Hito0EbI+HEmiPc338jwKtm4wTfcET6PaV7j/8LIQtL Pfl5aYD6wpTP9nQ738ccxueYNZXXxy1Xx0u4Oy2a1znxt/6+7AJUjD8mw/vopw== -----END CERTIFICATE-----Generated at Mon Nov 25 02:46:16 2024 by rpki-client on console-ams.rpki-client.org