$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa File: 16ffac70-214d-4030-80b9-261fde777a67.roa (raw, json) Hash identifier: GNqlv0RU6sNGxDnSp6WbVaKB987ht/5rbkRb5/w1LHs= Subject key identifier: 80:5B:8D:E2:C6:0F:36:A5:61:9D:D0:63:0A:E9:A7:56:C8:C6:E7:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D3CA31AFE191E5DC1207CA46406568B8462FD8F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 32.168.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:3c:a3:1a:fe:19:1e:5d:c1:20:7c:a4:64:06:56:8b:84:62:fd:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=ad5fc6c5286914c4225b923824823ab8e0190e1dda7959347db1052281b05246, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b2:4e:69:ed:6d:52:e8:23:c6:a6:14:80:70: ec:6a:97:5a:07:a9:ab:ef:90:3c:d5:20:73:94:c7: 3c:4f:f7:f0:c3:34:10:e3:2d:ef:63:7f:1a:af:9c: 12:3a:5a:49:db:f3:e0:ee:ff:7c:2a:0f:2d:4f:03: 28:87:65:70:54:5f:6a:56:ca:54:b7:eb:45:ad:8f: d9:ca:dd:2f:08:b5:f1:61:80:4c:cf:d9:a8:bb:fc: 11:3e:09:07:a3:a3:f4:d0:31:9d:67:4b:e2:4b:e9: b7:50:17:b6:e1:54:ad:6c:0e:cb:78:ea:c7:9b:91: df:a4:0a:f5:e9:c4:11:81:c0:71:92:85:9c:05:03: 53:f6:8c:f0:f0:d3:2b:f3:0e:f5:6f:61:c3:20:80: d2:d0:a5:51:1b:0b:86:94:fb:c5:96:df:d9:d0:89: c8:cf:dc:e9:da:e0:aa:df:8c:5c:b4:34:3a:4c:7e: f5:e5:cf:99:c9:a6:d1:6e:d7:5c:56:ae:37:f2:22: d7:6b:a0:46:84:d8:3a:da:ca:4d:42:9e:cf:12:63: 8d:d9:44:dd:2a:71:dc:5f:f6:5a:0a:ca:a3:9d:e7: 6f:98:8b:7c:1b:2f:1b:a2:7d:97:43:af:42:de:66: ab:60:e7:98:82:b6:4f:dd:0d:ca:b8:e2:67:25:60: 79:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5B:8D:E2:C6:0F:36:A5:61:9D:D0:63:0A:E9:A7:56:C8:C6:E7:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.168.0.0/14 Signature Algorithm: sha256WithRSAEncryption 2a:4c:ac:d9:a9:2b:7c:c0:5a:69:59:25:5b:f2:0e:0e:c9:2a: 38:a0:8f:f7:11:ae:49:34:a3:62:37:6b:1a:de:25:f9:ec:7e: 2f:72:e6:ff:d6:23:ab:53:a3:01:44:ae:89:28:d5:97:43:fb: 6f:73:01:51:07:3d:b4:ef:2f:57:50:08:65:c5:a0:d6:ce:44: 49:da:63:ac:90:be:3b:c3:cb:8e:79:b2:ce:7e:d2:89:d6:be: c6:98:2f:a7:e1:0e:97:79:eb:19:29:36:4e:49:42:32:b5:d3: dc:6e:fb:57:9a:50:06:5d:f6:98:13:37:5e:56:04:26:f7:79: e2:c4:7b:1b:f0:cd:37:4f:36:12:b7:ad:14:0c:27:36:be:87: aa:dc:13:0d:68:9d:0d:64:d9:16:69:7a:64:87:7d:ca:2f:2b: b9:f9:cd:86:29:36:3d:34:9b:75:98:a5:00:8d:1b:fd:83:96: 36:8d:14:57:52:57:ff:72:b9:c4:46:d2:be:de:4c:24:2f:b1: d5:86:3c:19:69:f5:c3:e3:02:06:81:7d:c0:70:df:7b:34:af: 2a:7c:0f:02:98:d0:5d:83:73:78:7d:66:be:df:56:a8:bb:aa: cb:b2:80:b1:66:10:d3:8f:90:88:5d:70:9c:aa:25:b9:c7:36: d8:8b:5a:3a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTTyjGv4ZHl3BIHykZAZWi4Ri/Y8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDVmYzZjNTI4NjkxNGM0MjI1YjkyMzgyNDgyM2FiOGUw MTkwZTFkZGE3OTU5MzQ3ZGIxMDUyMjgxYjA1MjQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMsk5p7W1S6CPGphSAcOxql1oHqavvkDzVIHOUxzxP9/DD NBDjLe9jfxqvnBI6Wknb8+Du/3wqDy1PAyiHZXBUX2pWylS360Wtj9nK3S8ItfFh gEzP2ai7/BE+CQejo/TQMZ1nS+JL6bdQF7bhVK1sDst46sebkd+kCvXpxBGBwHGS hZwFA1P2jPDw0yvzDvVvYcMggNLQpVEbC4aU+8WW39nQicjP3Ona4KrfjFy0NDpM fvXlz5nJptFu11xWrjfyItdroEaE2Drayk1Cns8SY43ZRN0qcdxf9loKyqOd52+Y i3wbLxuifZdDr0LeZqtg55iCtk/dDcq44mclYHlxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgFuN4sYPNqVhndBjCumnVsjG5ykwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2ZmZhYzcwLTIxNGQtNDAzMC04MGI5LTI2MWZkZTc3N2E2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgqDANBgkqhkiG9w0BAQsFAAOCAQEAKkys2akrfMBaaVklW/IODskqOKCP 9xGuSTSjYjdrGt4l+ex+L3Lm/9Yjq1OjAUSuiSjVl0P7b3MBUQc9tO8vV1AIZcWg 1s5ESdpjrJC+O8PLjnmyzn7Sida+xpgvp+EOl3nrGSk2TklCMrXT3G77V5pQBl32 mBM3XlYEJvd54sR7G/DNN082EretFAwnNr6HqtwTDWidDWTZFml6ZId9yi8rufnN hik2PTSbdZilAI0b/YOWNo0UV1JX/3K5xEbSvt5MJC+x1YY8GWn1w+MCBoF9wHDf ezSvKnwPApjQXYNzeH1mvt9WqLuqy7KAsWYQ04+QiF1wnKolucc22ItaOg== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:44 2024 by rpki-client on console-fra.rpki-client.org