$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1165be7b-1545-4b66-8938-2321c07d5a67.roa File: 1165be7b-1545-4b66-8938-2321c07d5a67.roa (raw, json) Hash identifier: yvhLsQtyevivvG+4DuWGRzJHXp4jhaOzT8afYJ9nyso= Subject key identifier: 3C:8A:7D:50:E9:BE:2C:11:78:02:4A:42:E3:3D:09:22:B4:01:13:38 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A72C1FA62A127FAA5C33D7C8C012F410AEB7DD4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1165be7b-1545-4b66-8938-2321c07d5a67.roa Signing time: Tue 10 Dec 2024 00:00:00 +0000 ROA not before: Tue 10 Dec 2024 00:00:00 +0000 ROA not after: Tue 14 Jan 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.247.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Dec 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:72:c1:fa:62:a1:27:fa:a5:c3:3d:7c:8c:01:2f:41:0a:eb:7d:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 10 00:00:00 2024 GMT Not After : Jan 14 23:59:59 2025 GMT Subject: serialNumber=88a61f3d45202eacd902cf0e2c4af4cf4b214e2f8b6373d8464802d07014fdc1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9c:17:62:8d:21:29:7f:e6:c7:3e:14:c6:63: 88:6a:be:25:4c:bd:f5:78:4c:8f:bf:57:2a:33:f6: 37:7a:bf:44:49:f6:3e:e6:d0:87:57:fb:4d:97:47: dc:1f:54:3e:b8:b7:15:7a:4d:68:cf:35:bd:3c:0d: 0e:a7:af:ea:17:c8:18:93:0c:0a:74:56:1f:3b:7e: 68:3e:f5:a9:8b:50:41:b0:3e:b0:9e:33:50:e1:e0: 80:64:e5:04:0d:14:cf:58:7a:67:2d:04:86:4e:00: 72:53:01:f3:1c:8f:3f:01:ce:40:b1:4f:a5:bd:de: a7:08:5c:e9:a7:64:ab:fa:db:08:3e:7a:bf:0e:93: 44:05:60:f7:d5:b9:86:fa:97:4d:d1:cd:6b:d7:1c: 5a:77:80:c1:00:94:03:5d:c2:8b:50:20:63:6e:d5: d4:b8:20:ba:34:a9:e6:11:73:50:0b:19:1e:df:be: 61:10:ba:04:8d:50:30:86:34:93:83:3a:d3:19:65: ff:24:5a:64:60:d1:f8:3d:f8:ae:4b:fb:0d:09:03: bd:21:a1:76:a2:b2:b3:ea:90:f0:3a:ba:61:b0:36: 5d:47:fa:2f:d4:39:f7:64:9f:c2:33:28:61:b9:a3: 85:8d:c9:51:9b:27:42:9c:23:16:11:af:38:4b:2f: 5c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:8A:7D:50:E9:BE:2C:11:78:02:4A:42:E3:3D:09:22:B4:01:13:38 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1165be7b-1545-4b66-8938-2321c07d5a67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.247.0.0/16 Signature Algorithm: sha256WithRSAEncryption 52:3f:28:1c:f3:ab:e3:5f:00:8f:15:99:02:3d:41:ba:6a:cf: 7d:41:59:99:f6:1f:0a:15:05:98:52:55:5f:16:98:9b:12:c9: 2e:e5:ce:92:e1:d4:70:d6:df:49:ba:d1:83:61:69:c7:92:e3: 23:98:0f:11:92:3a:8f:9a:2c:47:39:a7:e1:7c:29:19:7d:ab: 9e:ac:4c:a0:1c:27:86:8a:a5:2b:a1:28:ad:59:a9:dc:e7:98: c5:54:01:61:a8:bc:39:d6:33:40:46:1d:01:ae:e7:45:fc:bf: db:a7:c0:61:7a:3f:af:60:e6:56:03:d1:59:5f:84:f4:f3:06: 44:8d:be:c3:05:c0:ad:3b:6d:6b:0a:72:cd:47:64:b6:60:8a: e3:e3:3b:f7:19:70:93:fe:b1:6f:12:16:ec:8d:55:c0:25:6b: d8:e0:30:ae:cc:f7:46:e5:d7:8f:c5:0d:a9:d9:0d:f4:87:5a: 6e:4d:4c:17:f8:c4:8b:8e:fe:ba:bd:8d:76:af:04:a5:19:e0: d7:bb:87:9a:d3:1a:04:19:6c:d1:08:c4:b5:11:8b:f8:d1:d3: 40:f5:3b:5f:3c:60:07:d5:e5:4e:ab:ae:c7:1b:cd:0a:c4:be: e8:68:5a:4d:94:06:bc:b2:1e:39:33:c9:1f:c4:fa:ed:fb:09: 9b:e6:53:9f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKnLB+mKhJ/qlwz18jAEvQQrrfdQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMjEwMDAwMDAwWhcNMjUwMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OGE2MWYzZDQ1MjAyZWFjZDkwMmNmMGUyYzRhZjRjZjRi MjE0ZTJmOGI2MzczZDg0NjQ4MDJkMDcwMTRmZGMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKnBdijSEpf+bHPhTGY4hqviVMvfV4TI+/Vyoz9jd6v0RJ 9j7m0IdX+02XR9wfVD64txV6TWjPNb08DQ6nr+oXyBiTDAp0Vh87fmg+9amLUEGw PrCeM1Dh4IBk5QQNFM9YemctBIZOAHJTAfMcjz8BzkCxT6W93qcIXOmnZKv62wg+ er8Ok0QFYPfVuYb6l03RzWvXHFp3gMEAlANdwotQIGNu1dS4ILo0qeYRc1ALGR7f vmEQugSNUDCGNJODOtMZZf8kWmRg0fg9+K5L+w0JA70hoXaisrPqkPA6umGwNl1H +i/UOfdkn8IzKGG5o4WNyVGbJ0KcIxYRrzhLL1x9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPIp9UOm+LBF4AkpC4z0JIrQBEzgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExNjViZTdiLTE1NDUtNGI2Ni04OTM4LTIzMjFjMDdkNWE2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA49zANBgkqhkiG9w0BAQsFAAOCAQEAUj8oHPOr418AjxWZAj1BumrPfUFZ mfYfChUFmFJVXxaYmxLJLuXOkuHUcNbfSbrRg2Fpx5LjI5gPEZI6j5osRzmn4Xwp GX2rnqxMoBwnhoqlK6EorVmp3OeYxVQBYai8OdYzQEYdAa7nRfy/26fAYXo/r2Dm VgPRWV+E9PMGRI2+wwXArTttawpyzUdktmCK4+M79xlwk/6xbxIW7I1VwCVr2OAw rsz3RuXXj8UNqdkN9Idabk1MF/jEi47+ur2Ndq8EpRng17uHmtMaBBls0QjEtRGL +NHTQPU7XzxgB9XlTquuxxvNCsS+6GhaTZQGvLIeOTPJH8T67fsJm+ZTnw== -----END CERTIFICATE-----Generated at Thu Dec 26 01:22:39 2024 by rpki-client on console-fra.rpki-client.org