$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f9728e7-a392-40d1-9073-170d26138a2b.roa File: 0f9728e7-a392-40d1-9073-170d26138a2b.roa (raw, json) Hash identifier: 5t3cE/vwcFrR6DGBrDm7iiZMLjp11EuFo4iVwAFx7bE= Subject key identifier: BD:53:9C:5F:CC:4B:40:C1:6E:C3:9C:C1:7E:32:98:CD:23:D8:7B:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11B60D3E9A7A77852C973BBDDCF8AD565CD18E56 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f9728e7-a392-40d1-9073-170d26138a2b.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 31.2.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:b6:0d:3e:9a:7a:77:85:2c:97:3b:bd:dc:f8:ad:56:5c:d1:8e:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=e976af57f251067159c2cf1475fe706ac6a063f10be207399a2c655411af3f4e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8a:5a:56:3e:97:d4:d1:73:c3:13:d4:59:07: 07:10:74:c8:5e:c8:05:70:10:94:8e:b0:6f:56:30: 13:7a:3b:8b:76:2d:57:bd:48:bc:73:07:ef:eb:be: 08:6f:7f:2a:02:4e:24:d4:c3:7c:1f:98:7e:2a:f0: e2:f4:b2:6d:6d:3e:82:16:e5:5c:86:ce:aa:17:79: ca:cb:41:fe:2f:e1:5a:81:85:eb:ed:b3:6e:df:d7: 84:36:51:b1:f1:63:7c:53:6c:27:ff:80:31:6f:0f: 26:04:65:9e:94:5b:69:3e:f8:b8:a7:b9:d1:2b:9b: 82:d7:eb:fc:40:ab:58:73:61:03:fb:53:36:51:ee: 7b:ed:44:17:1d:43:9d:93:23:dc:19:6b:50:a7:82: 27:d5:51:fb:e4:da:70:6f:49:c8:d8:80:33:11:b1: bc:ae:56:54:15:58:4c:4b:f4:85:6a:07:94:fb:cb: f1:d0:2d:04:c0:59:23:6a:29:2d:88:e9:56:c8:18: 8e:d0:a6:70:46:b1:7d:13:fb:7f:d7:dc:0a:3f:c9: 2e:77:b9:25:17:b9:90:03:c7:76:42:e3:7c:49:c0: b2:72:15:14:81:26:e0:d1:7d:7c:f9:23:3c:76:5a: 0e:e1:d8:8e:47:f7:4a:7e:e7:ea:81:17:a7:33:d1: f4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:53:9C:5F:CC:4B:40:C1:6E:C3:9C:C1:7E:32:98:CD:23:D8:7B:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f9728e7-a392-40d1-9073-170d26138a2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.2.0.0/17 Signature Algorithm: sha256WithRSAEncryption 8f:fa:21:99:e7:8b:60:3f:90:3e:f2:f9:86:d5:9b:90:a2:31: 2d:b1:8a:d2:fc:21:8a:52:7f:77:0a:fa:f2:93:f7:1c:c9:80: 52:0a:08:0f:7d:90:25:16:13:30:b6:86:8e:90:63:35:90:44: 37:b5:b3:44:68:41:51:e5:51:78:0a:e4:3b:11:7f:9f:20:ec: fd:38:41:5a:16:74:81:5b:8d:86:dd:bf:ac:97:60:5c:c8:fc: 4a:51:10:9d:fc:76:6c:d5:dd:4c:90:b0:37:3d:f5:29:11:2c: 35:fc:55:4f:cc:d9:db:dd:0e:7e:1c:b8:eb:ec:e4:e7:29:4f: 76:30:98:12:9e:eb:ea:20:9c:14:de:6c:96:83:ab:2d:9b:bf: 46:a8:8a:f6:b8:b6:b3:a2:8c:de:01:d2:03:7e:85:12:be:ec: 17:1a:8b:51:cd:84:30:ff:c1:5d:aa:ea:34:bf:8f:c6:e9:14: e3:d0:9f:dc:cf:eb:d3:82:6a:b8:1b:b9:d4:e5:43:08:f4:27: 40:16:01:4a:2e:44:62:63:a1:26:ef:79:9c:50:1e:25:00:69: 66:ef:a0:b1:4e:41:e9:64:11:ec:8b:bf:9f:fd:a7:64:cc:fc: d4:93:e0:11:30:c6:9e:2b:72:5c:62:75:74:99:16:59:9e:ce: aa:19:25:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEbYNPpp6d4Uslzu93PitVlzRjlYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE4MDAwMDAwWhcNMjQxMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTc2YWY1N2YyNTEwNjcxNTljMmNmMTQ3NWZlNzA2YWM2 YTA2M2YxMGJlMjA3Mzk5YTJjNjU1NDExYWYzZjRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdilpWPpfU0XPDE9RZBwcQdMheyAVwEJSOsG9WMBN6O4t2 LVe9SLxzB+/rvghvfyoCTiTUw3wfmH4q8OL0sm1tPoIW5VyGzqoXecrLQf4v4VqB hevts27f14Q2UbHxY3xTbCf/gDFvDyYEZZ6UW2k++LinudErm4LX6/xAq1hzYQP7 UzZR7nvtRBcdQ52TI9wZa1CngifVUfvk2nBvScjYgDMRsbyuVlQVWExL9IVqB5T7 y/HQLQTAWSNqKS2I6VbIGI7QpnBGsX0T+3/X3Ao/yS53uSUXuZADx3ZC43xJwLJy FRSBJuDRfXz5Izx2Wg7h2I5H90p+5+qBF6cz0fT9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvVOcX8xLQMFuw5zBfjKYzSPYewswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmOTcyOGU3LWEzOTItNDBkMS05MDczLTE3MGQyNjEzOGEyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcfAgAwDQYJKoZIhvcNAQELBQADggEBAI/6IZnni2A/kD7y+YbVm5CiMS2x itL8IYpSf3cK+vKT9xzJgFIKCA99kCUWEzC2ho6QYzWQRDe1s0RoQVHlUXgK5DsR f58g7P04QVoWdIFbjYbdv6yXYFzI/EpREJ38dmzV3UyQsDc99SkRLDX8VU/M2dvd Dn4cuOvs5OcpT3YwmBKe6+ognBTebJaDqy2bv0aoiva4trOijN4B0gN+hRK+7Bca i1HNhDD/wV2q6jS/j8bpFOPQn9zP69OCargbudTlQwj0J0AWAUouRGJjoSbveZxQ HiUAaWbvoLFOQelkEeyLv5/9p2TM/NST4BEwxp4rclxidXSZFlmezqoZJRE= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:42 2024 by rpki-client on console-fra.rpki-client.org