$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c6a736f-73c8-4db9-aaeb-4ffe174f99a0.roa File: 1c6a736f-73c8-4db9-aaeb-4ffe174f99a0.roa (raw, json) Hash identifier: 5bOKkNaOnBDfth1csRaIxkIlbpv6DkUQhUWf9ly8PlE= Subject key identifier: 0E:51:4E:EB:3F:39:D3:A1:AE:0F:15:0C:64:1E:E5:3F:39:A3:21:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14720814F4DC4C48D79E81BC4E4D3142D06AE27F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c6a736f-73c8-4db9-aaeb-4ffe174f99a0.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.36.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:72:08:14:f4:dc:4c:48:d7:9e:81:bc:4e:4d:31:42:d0:6a:e2:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=84e0c501555450b2d4784b5c52589b7dfdd95c886d9fc29d412c477a8baff8a0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e0:0e:c7:f8:a6:ae:63:87:ec:b2:a3:cf:12: f2:a7:3b:e0:36:90:2b:13:93:c6:9b:55:d7:02:0f: f2:7a:96:82:4e:2a:29:6e:2e:5b:32:75:67:db:7a: 30:74:8b:2e:0a:d6:45:20:9a:2c:ff:92:a2:62:47: d2:29:aa:5d:4c:01:2e:9a:87:23:fb:a6:ec:58:8e: 41:04:b9:02:5f:f3:50:7a:1b:c6:f7:e4:d0:14:d6: 36:6e:5f:ce:d5:bd:41:ce:26:06:26:ff:21:dc:1f: f9:bf:98:ac:87:88:06:79:25:ab:a1:e0:9b:04:4c: 1d:b8:87:ad:40:72:e8:4a:fa:9b:0d:15:e1:bd:03: 48:2b:e4:eb:d0:a1:24:72:01:e6:18:6b:61:a9:09: ca:c8:cf:41:ce:59:34:35:d2:6f:f7:c4:e6:de:b9: 40:bb:74:4b:a1:ff:4f:85:ce:8d:cf:a1:d5:50:e1: 55:53:e4:49:31:e9:f4:70:ca:a4:64:29:8e:c1:19: bf:cb:66:23:60:9e:63:bf:69:8b:b8:1c:a1:89:ef: 96:f8:8a:0b:88:c6:7c:b6:d5:0c:44:a4:58:3e:fb: c4:55:31:57:e9:2e:a1:bd:fb:9c:b7:4e:d5:9c:9d: 7b:2b:4c:09:8d:65:ab:51:dc:c3:c7:18:a4:78:d6: 9f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:51:4E:EB:3F:39:D3:A1:AE:0F:15:0C:64:1E:E5:3F:39:A3:21:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c6a736f-73c8-4db9-aaeb-4ffe174f99a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.36.0.0/16 Signature Algorithm: sha256WithRSAEncryption c5:f3:ab:43:eb:61:79:7d:38:08:73:22:ed:b0:e3:c0:e2:6a: 9e:ac:da:ad:08:f1:ba:4b:ca:9c:80:47:49:ff:4a:ce:80:84: 22:40:ed:38:b0:a9:f0:2e:00:33:8c:a4:cc:3b:29:d3:32:82: 2f:7f:64:f7:99:10:bb:0f:c4:0a:1f:02:48:c6:e7:fa:6f:cb: 5a:2c:30:e0:56:0e:e1:1f:26:27:25:58:65:ca:f8:e1:81:f2: 79:8e:70:f5:db:2b:01:7e:a2:5d:04:ec:2d:e4:72:30:d5:9f: ac:e7:0a:25:21:9c:83:c8:68:44:7f:24:d6:7c:ab:12:4d:e8: aa:1f:17:27:b9:0e:b4:57:e5:9e:39:7b:f2:c9:ba:e7:28:61: 06:90:38:28:0f:5c:09:65:53:e0:87:6f:d9:14:a5:7a:d5:4c: 18:ce:e9:93:62:02:d5:f1:86:00:6c:41:e4:ce:72:69:47:d4: 65:cb:ab:b0:ac:e6:b3:7c:15:f1:02:32:46:b5:60:1a:26:99: 32:54:28:0f:56:3e:be:d9:c1:d8:9f:f6:c6:91:3a:42:97:86: 6e:94:08:87:79:a5:0e:5f:ac:e9:dd:5a:a2:f7:4f:83:84:0e: ee:f1:68:0c:23:1f:58:2e:c6:de:c3:92:35:6c:ba:5f:65:9e: c5:9f:31:68 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFHIIFPTcTEjXnoG8Tk0xQtBq4n8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGUwYzUwMTU1NTQ1MGIyZDQ3ODRiNWM1MjU4OWI3ZGZk ZDk1Yzg4NmQ5ZmMyOWQ0MTJjNDc3YThiYWZmOGEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDW4A7H+KauY4fssqPPEvKnO+A2kCsTk8abVdcCD/J6loJO KiluLlsydWfbejB0iy4K1kUgmiz/kqJiR9Ipql1MAS6ahyP7puxYjkEEuQJf81B6 G8b35NAU1jZuX87VvUHOJgYm/yHcH/m/mKyHiAZ5Jauh4JsETB24h61AcuhK+psN FeG9A0gr5OvQoSRyAeYYa2GpCcrIz0HOWTQ10m/3xObeuUC7dEuh/0+Fzo3PodVQ 4VVT5Ekx6fRwyqRkKY7BGb/LZiNgnmO/aYu4HKGJ75b4iguIxny21QxEpFg++8RV MVfpLqG9+5y3TtWcnXsrTAmNZatR3MPHGKR41p8xAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDlFO6z8506GuDxUMZB7lPzmjIfcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjNmE3MzZmLTczYzgtNGRiOS1hYWViLTRmZmUxNzRmOTlhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4JDANBgkqhkiG9w0BAQsFAAOCAQEAxfOrQ+theX04CHMi7bDjwOJqnqza rQjxukvKnIBHSf9KzoCEIkDtOLCp8C4AM4ykzDsp0zKCL39k95kQuw/ECh8CSMbn +m/LWiww4FYO4R8mJyVYZcr44YHyeY5w9dsrAX6iXQTsLeRyMNWfrOcKJSGcg8ho RH8k1nyrEk3oqh8XJ7kOtFflnjl78sm65yhhBpA4KA9cCWVT4Idv2RSletVMGM7p k2IC1fGGAGxB5M5yaUfUZcursKzms3wV8QIyRrVgGiaZMlQoD1Y+vtnB2J/2xpE6 QpeGbpQIh3mlDl+s6d1aovdPg4QO7vFoDCMfWC7G3sOSNWy6X2WexZ8xaA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:45 2024 by rpki-client on console-fra.rpki-client.org