$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1577c06e-ca3b-4888-b6f3-ff7a5aaed3d4.roa File: 1577c06e-ca3b-4888-b6f3-ff7a5aaed3d4.roa (raw, json) Hash identifier: jCyMtw2s7WjYIMJQiVhsPyVOljnh3Yl7/d45T0X7w2c= Subject key identifier: 44:96:DF:4E:2A:FC:D9:6B:0E:02:83:C1:A2:65:91:EB:D7:FA:24:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 424F7BF91A0AB8E081BFD26A285842CB13E6A742 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1577c06e-ca3b-4888-b6f3-ff7a5aaed3d4.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 207.9.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:4f:7b:f9:1a:0a:b8:e0:81:bf:d2:6a:28:58:42:cb:13:e6:a7:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=bb4cd6c7f5a940420d8826858fec411dd980881e93de0fd45198a244b63777cd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c8:8f:a8:03:de:8b:01:38:60:cf:a6:2f:77: 23:20:ec:9e:84:7b:04:36:f9:f8:39:dd:3b:6c:02: f0:91:d2:24:de:e3:28:39:97:df:14:b7:07:44:e9: 9b:db:ff:e5:34:11:2d:5e:44:62:38:8f:12:2d:42: f2:38:8b:2d:0b:2f:28:ff:c3:92:77:76:51:8e:ca: 45:a3:56:c1:d1:3b:d9:ec:ab:2e:97:c7:bd:80:a8: 71:bc:a4:a8:7f:78:1b:e2:14:25:21:e3:d3:69:2d: 58:14:d4:f3:34:86:35:ce:6a:7a:f8:eb:c7:58:c9: 41:56:18:b1:75:91:4f:d4:77:89:92:1f:3d:c9:cf: f6:ea:ed:4b:fe:12:d5:52:ba:e9:00:0e:11:b3:0f: 1c:c3:09:fb:8c:9a:86:76:81:ca:db:15:0a:19:7c: 07:0d:76:da:a2:e8:b7:cb:15:ab:42:98:14:91:0d: b6:21:5d:0e:e4:f5:ed:10:e8:42:cb:82:23:e2:3b: 37:e3:8d:0c:84:8f:c3:4c:5d:5f:d2:2d:a9:8b:56: f8:b3:46:16:e4:63:33:f3:e5:15:15:e4:d1:73:cb: f5:c0:82:86:4f:9b:20:17:81:ad:3c:12:31:44:c6: 3b:0f:e2:8b:50:fd:1b:8a:65:fb:69:e7:e7:8f:a4: 64:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:96:DF:4E:2A:FC:D9:6B:0E:02:83:C1:A2:65:91:EB:D7:FA:24:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1577c06e-ca3b-4888-b6f3-ff7a5aaed3d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.9.0.0/16 Signature Algorithm: sha256WithRSAEncryption b1:81:6c:95:ae:0c:da:43:3c:48:99:3e:af:92:db:3e:72:e8: 1b:04:6e:4d:35:8f:dd:69:37:f3:17:76:1d:98:06:f2:20:c3: c5:2c:3b:27:19:a4:cd:31:b1:11:df:06:ba:79:98:02:a5:7f: 55:19:21:b8:c7:84:36:f3:e5:e1:9b:25:78:91:10:92:06:82: c6:4a:e7:ab:49:c7:d3:6d:f4:a4:cf:00:13:0e:cd:37:5c:f5: 32:f3:3a:b2:01:de:1a:25:ea:16:7f:75:8d:21:15:4d:b3:98: a7:e1:0e:b2:f1:0e:fc:08:6d:5f:b5:38:5a:6b:fc:f5:94:b8: 41:5a:ec:be:25:4f:f8:ee:b9:7e:90:cf:03:c4:3f:6a:ae:3d: a7:6a:d6:dc:e3:2a:fa:2d:91:87:df:82:4e:76:d7:f5:41:7c: 0e:13:ce:77:95:dc:25:79:bc:ba:19:82:e9:ab:f5:1e:17:c1: 27:de:53:8f:88:ec:d0:41:f3:28:47:f7:2d:bc:f5:40:08:f9: 0c:7b:3a:5e:bf:a7:20:6d:de:15:c1:ef:cd:e6:c7:77:b9:e4: bc:9a:c8:86:f8:94:a1:6c:d9:51:9c:06:12:9d:20:ae:41:aa: ca:fa:34:ae:4a:fc:08:fb:a5:45:1e:87:46:37:a1:2c:21:86: 48:81:0f:b1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQk97+RoKuOCBv9JqKFhCyxPmp0IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjRjZDZjN2Y1YTk0MDQyMGQ4ODI2ODU4ZmVjNDExZGQ5 ODA4ODFlOTNkZTBmZDQ1MTk4YTI0NGI2Mzc3N2NkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNyI+oA96LAThgz6YvdyMg7J6EewQ2+fg53TtsAvCR0iTe 4yg5l98UtwdE6Zvb/+U0ES1eRGI4jxItQvI4iy0LLyj/w5J3dlGOykWjVsHRO9ns qy6Xx72AqHG8pKh/eBviFCUh49NpLVgU1PM0hjXOanr468dYyUFWGLF1kU/Ud4mS Hz3Jz/bq7Uv+EtVSuukADhGzDxzDCfuMmoZ2gcrbFQoZfAcNdtqi6LfLFatCmBSR DbYhXQ7k9e0Q6ELLgiPiOzfjjQyEj8NMXV/SLamLVvizRhbkYzPz5RUV5NFzy/XA goZPmyAXga08EjFExjsP4otQ/RuKZftp5+ePpGTZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURJbfTir82WsOAoPBomWR69f6JM4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1NzdjMDZlLWNhM2ItNDg4OC1iNmYzLWZmN2E1YWFlZDNkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDPCTANBgkqhkiG9w0BAQsFAAOCAQEAsYFsla4M2kM8SJk+r5LbPnLoGwRu TTWP3Wk38xd2HZgG8iDDxSw7JxmkzTGxEd8GunmYAqV/VRkhuMeENvPl4ZsleJEQ kgaCxkrnq0nH0230pM8AEw7NN1z1MvM6sgHeGiXqFn91jSEVTbOYp+EOsvEO/Aht X7U4Wmv89ZS4QVrsviVP+O65fpDPA8Q/aq49p2rW3OMq+i2Rh9+CTnbX9UF8DhPO d5XcJXm8uhmC6av1HhfBJ95Tj4js0EHzKEf3Lbz1QAj5DHs6Xr+nIG3eFcHvzebH d7nkvJrIhviUoWzZUZwGEp0grkGqyvo0rkr8CPulRR6HRjehLCGGSIEPsQ== -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:03 2024 by rpki-client on console-fra.rpki-client.org