$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1156233f-7b5d-420d-b405-b7c48874676b.roa File: 1156233f-7b5d-420d-b405-b7c48874676b.roa (raw, json) Hash identifier: ff87jKfyMAj2M9Is7oh5vtIkmc2IpvYqTzM0JfwYWtk= Subject key identifier: 61:7E:7C:FB:83:E2:B1:63:20:3E:A8:68:93:16:18:08:9D:45:17:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 787AE19001BE1CD034A82D0BD78207F122861AF3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1156233f-7b5d-420d-b405-b7c48874676b.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 207.202.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:7a:e1:90:01:be:1c:d0:34:a8:2d:0b:d7:82:07:f1:22:86:1a:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=82cc83c2f1f7b25d54fb7b0b44a0ab3d9b58de9821edbb91fdcd0e9fb504e2b2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f1:2a:7b:f2:b9:26:b0:1e:f2:90:05:a1:0f: c9:55:02:5e:9c:54:20:5a:24:af:0d:19:6b:f4:dd: dd:cb:25:76:6d:02:6d:9c:3c:0e:be:85:bd:49:4e: 8b:2b:12:e8:9f:e8:33:b7:0f:2d:04:b4:4b:80:52: 59:d8:b3:9a:ea:ce:81:22:05:e1:35:e1:ac:3b:f9: 63:13:70:31:f6:79:f1:be:7a:6a:74:42:25:b9:3c: 9d:3b:bc:25:f0:97:c9:28:fb:5c:bf:b2:72:4d:56: a2:c5:4c:03:7b:1a:9e:78:fe:52:3c:99:f1:66:d0: 91:2c:a7:62:b3:02:2b:be:2d:96:71:8c:a9:4c:2d: 5d:34:37:3c:da:58:0f:d3:58:e3:6e:72:12:2d:0d: 3b:fe:5e:f0:f0:89:08:60:48:d9:eb:1e:3c:51:bb: 2a:62:40:69:bd:2b:d9:3a:e2:da:cd:5f:6f:dc:d6: f2:36:fe:54:91:c5:9f:d3:bd:75:4b:ba:e5:ae:7c: ca:52:ea:e8:e8:75:32:00:0e:67:1e:41:8f:43:ac: 67:43:f4:d8:fc:2c:2f:79:38:e0:3d:4b:d9:76:7e: fb:e5:aa:06:fc:b9:87:d9:fd:bb:c8:74:e0:c3:cb: 64:ec:3a:4b:0d:d9:ec:88:10:fb:63:db:8e:1e:88: d9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:7E:7C:FB:83:E2:B1:63:20:3E:A8:68:93:16:18:08:9D:45:17:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1156233f-7b5d-420d-b405-b7c48874676b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.202.128.0/17 Signature Algorithm: sha256WithRSAEncryption 61:e1:97:3d:af:37:92:dc:bf:88:b3:cb:48:15:18:1f:f7:e4: 08:58:bd:a0:76:06:7d:12:d5:5c:5d:29:2a:72:2d:b5:5c:e2: 4c:b0:cd:d1:f2:96:0b:9d:a1:9a:25:12:3a:51:ad:b6:83:35: ab:e7:cc:70:14:d5:50:35:51:73:cf:f1:48:d9:a0:18:a8:49: 5b:57:4c:3b:6b:81:0e:7d:a2:05:85:24:1d:6e:97:1a:ea:91: 55:2d:c0:b5:79:f9:1d:32:95:6e:d9:4c:4e:98:1f:92:6c:1c: ee:1d:f0:8b:86:e4:59:2d:d9:d3:fa:1a:7a:73:d6:0d:7a:b3: df:93:be:a2:16:fe:4c:be:49:45:ad:fe:f5:1b:4e:a2:ca:e9: 09:a6:b5:c9:03:87:75:18:b6:87:3b:b5:73:76:9d:12:16:53: be:72:c0:36:e9:8d:8f:22:1f:1f:5d:5d:2d:dd:ae:14:89:db: 62:28:b5:f9:6b:6b:b6:9f:19:31:b9:e3:09:c0:2d:9b:0b:cb: 9a:a7:bc:b9:a7:e1:00:f9:67:04:3d:83:9c:cb:50:60:29:cc: 11:80:9d:85:0d:19:48:c5:42:a7:25:38:93:58:56:78:fa:a6: 48:28:13:37:a6:56:71:1c:e3:50:ca:25:4c:22:d9:16:be:94: d1:02:68:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeHrhkAG+HNA0qC0L14IH8SKGGvMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MmNjODNjMmYxZjdiMjVkNTRmYjdiMGI0NGEwYWIzZDli NThkZTk4MjFlZGJiOTFmZGNkMGU5ZmI1MDRlMmIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCr8Sp78rkmsB7ykAWhD8lVAl6cVCBaJK8NGWv03d3LJXZt Am2cPA6+hb1JTosrEuif6DO3Dy0EtEuAUlnYs5rqzoEiBeE14aw7+WMTcDH2efG+ emp0QiW5PJ07vCXwl8ko+1y/snJNVqLFTAN7Gp54/lI8mfFm0JEsp2KzAiu+LZZx jKlMLV00NzzaWA/TWONuchItDTv+XvDwiQhgSNnrHjxRuypiQGm9K9k64trNX2/c 1vI2/lSRxZ/TvXVLuuWufMpS6ujodTIADmceQY9DrGdD9Nj8LC95OOA9S9l2fvvl qgb8uYfZ/bvIdODDy2TsOksN2eyIEPtj244eiNlLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYX58+4PisWMgPqhokxYYCJ1FF0IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExNTYyMzNmLTdiNWQtNDIwZC1iNDA1LWI3YzQ4ODc0Njc2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfPyoAwDQYJKoZIhvcNAQELBQADggEBAGHhlz2vN5Lcv4izy0gVGB/35AhY vaB2Bn0S1VxdKSpyLbVc4kywzdHylgudoZolEjpRrbaDNavnzHAU1VA1UXPP8UjZ oBioSVtXTDtrgQ59ogWFJB1ulxrqkVUtwLV5+R0ylW7ZTE6YH5JsHO4d8IuG5Fkt 2dP6Gnpz1g16s9+TvqIW/ky+SUWt/vUbTqLK6QmmtckDh3UYtoc7tXN2nRIWU75y wDbpjY8iHx9dXS3drhSJ22Iotflra7afGTG54wnALZsLy5qnvLmn4QD5ZwQ9g5zL UGApzBGAnYUNGUjFQqclOJNYVnj6pkgoEzemVnEc41DKJUwi2Ra+lNECaFI= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:42 2024 by rpki-client on console-fra.rpki-client.org