$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/168abf89-e038-42c4-902c-1baac22e0633.roa File: 168abf89-e038-42c4-902c-1baac22e0633.roa (raw, json) Hash identifier: X3+0ElhIuY/NX4o2kNHuA9krfVMccNpHdhtAZuATXWM= Subject key identifier: 30:29:5E:51:4A:5D:01:9C:FF:20:40:94:2F:10:D3:99:98:11:2F:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2044539D058E92A509CE03F2E30BECFB85B1547B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/168abf89-e038-42c4-902c-1baac22e0633.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 216.182.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:44:53:9d:05:8e:92:a5:09:ce:03:f2:e3:0b:ec:fb:85:b1:54:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=ff1544533c98ccae40d53e99fb0825b7fab5ad80ea8425afd56e675ea25fa414, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9d:02:2e:73:7a:ab:27:33:a0:62:6b:a6:fb: 23:f2:6f:7f:52:ee:e8:96:e0:a1:be:08:da:b7:82: 50:d5:49:41:e5:dd:38:58:3a:1e:1b:7c:d0:52:5c: 5e:06:19:71:98:d5:1e:71:a9:4a:f6:87:04:54:b5: fb:96:b5:01:e4:79:10:37:31:a7:1b:4e:92:26:7e: fa:f7:94:c3:30:95:26:c5:b8:27:6e:39:fa:fc:89: a3:3b:8f:3a:0a:45:e7:b2:fa:79:1a:ad:bc:d5:72: 5c:81:21:72:b4:98:e5:10:d7:83:a1:0a:04:7e:f3: 85:bc:76:1c:64:8a:52:88:0b:77:66:7c:35:c6:2f: 47:49:30:fa:8c:87:f4:ea:d9:f9:cb:07:f6:1d:2e: 57:1e:e6:96:6a:75:e0:b8:c2:8d:5d:ce:41:cf:89: 0f:ef:06:13:58:ea:6d:be:ea:36:32:05:1e:36:72: 9b:bd:30:69:3a:a8:af:e3:be:44:d7:52:b8:fd:5f: 5f:61:22:df:bb:53:a5:19:ab:1b:bd:ef:30:5d:a4: 63:a1:72:07:d9:e2:98:32:18:00:8d:fb:1c:04:56: 0b:8c:d4:34:b7:42:82:0c:a8:7c:f6:57:b8:8f:22: 8a:f0:e0:42:a8:e7:8f:0b:b9:4e:f8:ae:e3:92:40: f1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:29:5E:51:4A:5D:01:9C:FF:20:40:94:2F:10:D3:99:98:11:2F:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/168abf89-e038-42c4-902c-1baac22e0633.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.182.236.0/23 Signature Algorithm: sha256WithRSAEncryption bf:5e:fe:7f:82:d0:e2:8d:db:bd:2a:e0:74:77:d4:dc:85:34: f7:3f:79:34:10:86:54:ca:43:81:de:c5:81:0f:4c:22:7d:9d: 70:ef:05:77:5d:4f:66:c3:f5:cf:68:cd:b8:17:f4:a4:b9:d6: 74:3c:61:6b:11:fe:44:1e:b4:97:08:10:af:7e:40:27:1a:e5: 89:f5:79:e8:ff:ce:06:1b:31:b5:74:f8:a1:75:29:fe:c8:2a: be:ab:4e:ea:1e:ce:41:21:1e:d9:a7:83:8c:64:eb:0b:c7:c4: fb:d1:b6:11:c5:2b:c1:09:1b:20:ae:ea:f3:65:0f:c3:27:8b: 11:7e:9b:68:d7:a2:52:64:64:f4:e8:de:8b:de:c4:60:56:08: e9:45:0d:e3:ae:cb:e6:08:7f:75:96:8e:9b:fb:bf:44:6c:34: 1f:f9:c7:25:d8:2e:a0:6d:a0:4e:4d:d7:9c:e1:71:01:22:c9: 62:74:1e:6a:80:f2:04:7b:1b:21:8a:ab:e2:82:28:63:60:73: 44:86:13:1c:4b:c0:a7:d2:a6:e4:01:b5:26:5d:64:d3:49:00: e3:09:24:c3:e2:af:26:7c:28:19:43:e1:e8:a0:fd:77:00:45: ba:8e:28:09:49:28:02:56:71:58:af:83:b1:44:ed:dc:5f:f7: ae:45:a5:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIERTnQWOkqUJzgPy4wvs+4WxVHswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjE1NDQ1MzNjOThjY2FlNDBkNTNlOTlmYjA4MjViN2Zh YjVhZDgwZWE4NDI1YWZkNTZlNjc1ZWEyNWZhNDE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpnQIuc3qrJzOgYmum+yPyb39S7uiW4KG+CNq3glDVSUHl 3ThYOh4bfNBSXF4GGXGY1R5xqUr2hwRUtfuWtQHkeRA3MacbTpImfvr3lMMwlSbF uCduOfr8iaM7jzoKReey+nkarbzVclyBIXK0mOUQ14OhCgR+84W8dhxkilKIC3dm fDXGL0dJMPqMh/Tq2fnLB/YdLlce5pZqdeC4wo1dzkHPiQ/vBhNY6m2+6jYyBR42 cpu9MGk6qK/jvkTXUrj9X19hIt+7U6UZqxu97zBdpGOhcgfZ4pgyGACN+xwEVguM 1DS3QoIMqHz2V7iPIorw4EKo548LuU74ruOSQPH5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMCleUUpdAZz/IECULxDTmZgRL7owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2OGFiZjg5LWUwMzgtNDJjNC05MDJjLTFiYWFjMjJlMDYzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHYtuwwDQYJKoZIhvcNAQELBQADggEBAL9e/n+C0OKN270q4HR31NyFNPc/ eTQQhlTKQ4HexYEPTCJ9nXDvBXddT2bD9c9ozbgX9KS51nQ8YWsR/kQetJcIEK9+ QCca5Yn1eej/zgYbMbV0+KF1Kf7IKr6rTuoezkEhHtmng4xk6wvHxPvRthHFK8EJ GyCu6vNlD8MnixF+m2jXolJkZPTo3ovexGBWCOlFDeOuy+YIf3WWjpv7v0RsNB/5 xyXYLqBtoE5N15zhcQEiyWJ0HmqA8gR7GyGKq+KCKGNgc0SGExxLwKfSpuQBtSZd ZNNJAOMJJMPiryZ8KBlD4eig/XcARbqOKAlJKAJWcVivg7FE7dxf965FpWk= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:43 2024 by rpki-client on console-fra.rpki-client.org