$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c135327-ca35-4503-a212-cddd775338fc.roa File: 1c135327-ca35-4503-a212-cddd775338fc.roa (raw, json) Hash identifier: 9BVhaMOztEohc1dkGgNweOw1+EkFKecPJio2BWAV2Rc= Subject key identifier: B3:BF:53:70:36:2D:31:59:77:64:AB:01:D1:03:1A:17:10:B9:EA:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65DCC04725291D63C372AC0F511831C722937944 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c135327-ca35-4503-a212-cddd775338fc.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 57.201.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:dc:c0:47:25:29:1d:63:c3:72:ac:0f:51:18:31:c7:22:93:79:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=be342f57bdf3f186ac58e17632c192b2eceedc4703fa5c15103c97baf8152ca3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c1:ce:71:8a:84:fa:87:1e:9a:01:2b:53:e3: 40:29:52:1a:7a:0a:b8:9e:36:52:0c:36:81:7e:dd: 3e:b1:0c:4a:46:28:99:15:d0:b0:55:b3:db:e8:40: c6:4b:53:dc:ae:01:6d:f3:f8:b7:08:b3:8e:9a:e8: 07:11:b7:71:02:05:a8:7c:54:98:8b:44:bb:ae:22: f6:06:21:ba:f1:88:d0:bb:f9:24:49:71:f2:80:fa: 46:e6:0c:0b:bf:71:7a:32:af:4c:bc:5f:80:72:61: 3a:cb:b8:15:0d:33:d0:7c:63:3d:24:0b:e4:dc:a1: 95:b7:5d:d1:90:d7:8a:ac:c4:5b:28:79:67:d1:d0: 97:c1:85:9d:39:22:e7:ac:32:d9:38:0a:57:d7:64: a8:0c:f1:0d:30:c7:e2:7a:b2:77:68:13:ef:1f:f3: 06:f3:90:ec:30:1f:57:f2:98:80:78:8d:93:84:0c: 20:f5:ad:bf:6a:77:a4:52:3a:03:7b:10:db:74:4c: c1:05:a0:bd:49:16:56:67:30:9b:50:bc:76:43:16: 38:b0:a4:12:0f:f0:09:a9:e1:79:df:18:0b:4d:41: ae:b8:d4:dd:0e:8b:84:f4:bc:ee:23:9a:b8:f7:79: 69:04:b9:5e:58:91:46:eb:ae:8c:38:00:8d:e9:12: a3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:BF:53:70:36:2D:31:59:77:64:AB:01:D1:03:1A:17:10:B9:EA:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c135327-ca35-4503-a212-cddd775338fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption 83:6d:e7:e7:f8:78:8f:46:41:c9:06:77:59:03:86:49:75:d0: 7d:89:ff:6c:45:ab:d6:1b:6f:04:36:66:47:4c:bb:8b:7c:aa: 61:ec:7e:d8:e6:f8:60:5b:3c:b5:7d:a8:56:89:12:60:12:54: b3:f1:43:56:bc:d6:da:d0:6e:a0:42:07:c1:89:d5:e4:13:fd: f9:d4:99:7a:6e:88:92:eb:d0:41:30:f8:6a:52:50:f9:dc:cf: b8:06:21:93:6b:80:c1:a5:88:2a:66:d3:c4:58:70:52:ca:07: 1c:33:bf:37:66:24:41:80:cc:d6:22:67:24:f0:08:5b:3b:22: 80:76:b5:13:73:ba:cb:b4:e8:6a:8d:88:f6:23:96:b2:81:45: 70:91:2b:f8:1c:ea:93:25:99:e5:6f:f3:56:a3:31:5e:75:ae: 3a:c6:fa:ae:e8:74:ea:a6:17:42:96:ca:26:d1:ef:8a:ea:69: 1f:18:92:1f:67:3f:2a:ed:75:a3:73:db:2b:bb:ff:55:fd:a2: 69:b7:10:f6:1d:81:2b:92:6f:c8:ad:dc:05:83:d1:7c:9c:a7: e0:e3:6d:0e:36:d3:5b:09:f3:a6:d6:5a:29:9d:e2:58:69:85: 48:7c:a9:a9:96:d7:88:1a:02:94:3c:2d:c8:99:ef:1d:8d:5a: f3:97:38:65 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZdzARyUpHWPDcqwPURgxxyKTeUQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTM0MmY1N2JkZjNmMTg2YWM1OGUxNzYzMmMxOTJiMmVj ZWVkYzQ3MDNmYTVjMTUxMDNjOTdiYWY4MTUyY2EzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCowc5xioT6hx6aAStT40ApUhp6CrieNlIMNoF+3T6xDEpG KJkV0LBVs9voQMZLU9yuAW3z+LcIs46a6AcRt3ECBah8VJiLRLuuIvYGIbrxiNC7 +SRJcfKA+kbmDAu/cXoyr0y8X4ByYTrLuBUNM9B8Yz0kC+TcoZW3XdGQ14qsxFso eWfR0JfBhZ05IuesMtk4ClfXZKgM8Q0wx+J6sndoE+8f8wbzkOwwH1fymIB4jZOE DCD1rb9qd6RSOgN7ENt0TMEFoL1JFlZnMJtQvHZDFjiwpBIP8Amp4XnfGAtNQa64 1N0Oi4T0vO4jmrj3eWkEuV5YkUbrrow4AI3pEqNVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUs79TcDYtMVl3ZKsB0QMaFxC56hYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjMTM1MzI3LWNhMzUtNDUwMy1hMjEyLWNkZGQ3NzUzMzhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5yTANBgkqhkiG9w0BAQsFAAOCAQEAg23n5/h4j0ZByQZ3WQOGSXXQfYn/ bEWr1htvBDZmR0y7i3yqYex+2Ob4YFs8tX2oVokSYBJUs/FDVrzW2tBuoEIHwYnV 5BP9+dSZem6IkuvQQTD4alJQ+dzPuAYhk2uAwaWIKmbTxFhwUsoHHDO/N2YkQYDM 1iJnJPAIWzsigHa1E3O6y7Toao2I9iOWsoFFcJEr+BzqkyWZ5W/zVqMxXnWuOsb6 ruh06qYXQpbKJtHviuppHxiSH2c/Ku11o3PbK7v/Vf2iabcQ9h2BK5JvyK3cBYPR fJyn4ONtDjbTWwnzptZaKZ3iWGmFSHypqZbXiBoClDwtyJnvHY1a85c4ZQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:45 2024 by rpki-client on console-fra.rpki-client.org