$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fd7d999-5a79-41af-b232-35b042093d5f.roa File: 0fd7d999-5a79-41af-b232-35b042093d5f.roa (raw, json) Hash identifier: ve/Ply+sss3pP2xtn3V/aMcJ5j/1W6ZgjcHVcd1ju5E= Subject key identifier: BF:D0:79:70:35:97:FE:51:64:B3:64:C0:9B:52:24:55:7A:45:6E:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 702935CEF4DB03661F6F43A2F43D2A0E7D4B2D23 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fd7d999-5a79-41af-b232-35b042093d5f.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:29:35:ce:f4:db:03:66:1f:6f:43:a2:f4:3d:2a:0e:7d:4b:2d:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=9f91d1c29bb5eb16c11f7ad1cdde4b2b4ba22b27b63ec5ae3c491de3dc3a9162, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e3:3d:b9:ed:b7:52:c3:47:d2:48:7d:3c:09: 0d:22:96:8d:59:0a:5a:7f:14:ff:08:86:55:64:49: 54:90:48:22:69:51:fe:bd:2a:e4:9c:d3:fd:2f:39: 0a:95:69:ed:e3:63:13:72:3c:8a:b9:c6:e4:73:d1: cb:b5:8c:b3:bf:35:d3:0d:be:68:06:a2:42:3b:d8: 4e:34:4c:01:d0:1c:83:b0:02:75:0c:cb:9b:54:e8: 9e:23:8b:b3:68:05:95:a3:28:47:f1:86:ac:d9:0a: f5:08:95:56:b0:cc:d8:d1:77:01:20:95:d8:21:99: 15:4a:b6:68:63:5a:9c:43:d1:59:90:8c:1c:51:19: 3d:99:53:dd:a7:94:af:2c:a7:a8:b2:42:26:cb:93: c5:9a:36:fc:ca:a3:2e:4c:84:45:ad:14:13:df:52: 62:0f:2a:f1:52:3c:f5:b7:59:25:31:f1:f1:ad:e7: 53:f6:70:9d:a6:ac:70:f6:73:64:23:2a:74:80:31: 83:31:9d:fd:b8:6f:d8:48:cd:b2:75:97:4d:a1:65: c0:a8:2e:bb:cf:5d:76:4b:4f:55:e9:ab:c2:1f:7f: 52:3e:01:ba:3d:70:ab:4d:93:ae:28:f7:1f:98:fd: fc:c9:7d:21:a0:02:5f:e5:c1:41:9c:8a:7b:fc:06: d5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D0:79:70:35:97:FE:51:64:B3:64:C0:9B:52:24:55:7A:45:6E:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fd7d999-5a79-41af-b232-35b042093d5f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.161.0/24 Signature Algorithm: sha256WithRSAEncryption af:7f:a6:88:d1:4f:cc:ab:a1:25:74:a1:92:c9:8c:de:ca:41: 50:30:90:ef:21:4d:3b:06:14:70:71:d3:37:7e:9f:d0:24:0f: 64:52:48:15:67:47:66:ef:92:96:75:8a:de:28:01:1a:7c:d5: f7:45:c9:8e:62:ef:5f:0e:ab:f6:92:56:2a:2c:2e:18:d5:7c: 1d:c0:67:b3:62:00:62:bc:70:66:b0:56:31:20:dc:70:82:7e: c6:f4:96:55:ea:a1:2c:58:2b:20:b6:7b:99:05:c9:3c:ec:32: 19:81:85:c5:2b:b8:83:7e:aa:da:f0:bb:b5:0c:16:9e:1a:a4: c0:ed:c0:19:e1:25:75:ac:c8:52:a4:83:41:73:73:b5:e3:40: ec:18:3b:85:9e:fe:1e:9a:11:65:28:36:ec:07:15:c2:1d:d3: 04:be:21:dc:b8:e4:01:df:d3:05:bb:4b:2b:11:98:44:cf:75: 0f:ab:25:af:f8:53:e5:b0:08:53:03:ac:dc:e6:22:b1:c7:d3: 31:b9:12:d6:0d:c4:f3:c1:7c:50:29:44:fe:c5:0e:c3:90:ff: 16:1c:10:f0:31:a3:1f:67:7d:ed:f3:0a:37:1b:06:e8:5b:55: b0:d6:c3:8e:0d:5f:17:e7:11:cc:fc:6a:ee:88:b5:71:da:0e: d5:06:bf:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcCk1zvTbA2Yfb0Oi9D0qDn1LLSMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjkxZDFjMjliYjVlYjE2YzExZjdhZDFjZGRlNGIyYjRi YTIyYjI3YjYzZWM1YWUzYzQ5MWRlM2RjM2E5MTYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC34z257bdSw0fSSH08CQ0ilo1ZClp/FP8IhlVkSVSQSCJp Uf69KuSc0/0vOQqVae3jYxNyPIq5xuRz0cu1jLO/NdMNvmgGokI72E40TAHQHIOw AnUMy5tU6J4ji7NoBZWjKEfxhqzZCvUIlVawzNjRdwEgldghmRVKtmhjWpxD0VmQ jBxRGT2ZU92nlK8sp6iyQibLk8WaNvzKoy5MhEWtFBPfUmIPKvFSPPW3WSUx8fGt 51P2cJ2mrHD2c2QjKnSAMYMxnf24b9hIzbJ1l02hZcCoLrvPXXZLT1Xpq8Iff1I+ Abo9cKtNk64o9x+Y/fzJfSGgAl/lwUGcinv8BtWxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUv9B5cDWX/lFks2TAm1IkVXpFbqIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmZDdkOTk5LTVhNzktNDFhZi1iMjMyLTM1YjA0MjA5M2Q1Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36EwDQYJKoZIhvcNAQELBQADggEBAK9/pojRT8yroSV0oZLJjN7KQVAw kO8hTTsGFHBx0zd+n9AkD2RSSBVnR2bvkpZ1it4oARp81fdFyY5i718Oq/aSVios LhjVfB3AZ7NiAGK8cGawVjEg3HCCfsb0llXqoSxYKyC2e5kFyTzsMhmBhcUruIN+ qtrwu7UMFp4apMDtwBnhJXWsyFKkg0Fzc7XjQOwYO4We/h6aEWUoNuwHFcId0wS+ Idy45AHf0wW7SysRmETPdQ+rJa/4U+WwCFMDrNzmIrHH0zG5EtYNxPPBfFApRP7F DsOQ/xYcEPAxox9nfe3zCjcbBuhbVbDWw44NXxfnEcz8au6ItXHaDtUGvwE= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:42 2024 by rpki-client on console-fra.rpki-client.org