$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c8aa772-631f-4308-ac99-2035c49e2c27.roa File: 1c8aa772-631f-4308-ac99-2035c49e2c27.roa (raw, json) Hash identifier: POFu6Kem16hSK/f71yIpSMkqOeHKWmlJnS2ign4z8D4= Subject key identifier: 3F:07:36:66:45:A2:A8:50:C6:C7:A1:22:23:0E:6F:5D:F5:F2:BF:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12E5DD64D14D8844FECACFEB95A7AFCC393D46E2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c8aa772-631f-4308-ac99-2035c49e2c27.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 151.148.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:e5:dd:64:d1:4d:88:44:fe:ca:cf:eb:95:a7:af:cc:39:3d:46:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=f4c8689d31db21888e7adf6b17aafc3e133cb81aada641342701ebfdb577ffc0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:00:51:c4:75:c5:b1:4e:93:70:e3:ed:c3:41: a5:b5:12:5a:98:6c:ef:4e:7a:fe:5a:d3:90:45:ef: 96:9a:d6:a7:96:a8:1d:2d:78:d3:bf:e0:71:49:3f: 98:2a:11:aa:1b:f6:58:12:3c:ca:56:e7:c4:da:2f: ea:67:89:7a:1f:1e:17:69:7e:0c:19:ff:b5:82:05: 04:2f:15:4b:56:a4:e1:5a:d8:6d:77:c9:4d:b0:e9: af:44:d3:4d:89:46:ef:2e:22:b1:04:38:87:99:43: 06:fa:14:85:6e:32:cf:59:ce:53:7d:52:e8:25:08: aa:d5:92:0c:8c:d1:dc:2d:29:0e:96:02:80:a7:71: 39:8d:ef:51:87:cd:0e:b9:83:97:f6:f1:f4:33:44: a3:4c:45:5a:a1:92:54:89:29:b0:97:d4:59:14:fc: 72:e7:34:e0:1e:cf:d2:5a:ce:b1:f8:9a:99:02:02: cf:92:d1:0f:69:5b:75:77:70:08:8d:0b:19:c7:15: 43:a0:58:1b:3a:24:aa:69:78:84:99:70:74:be:a0: c2:ca:82:09:31:dc:c4:05:87:08:4e:a9:b5:03:bb: ec:82:31:b1:ab:cc:fe:8f:53:ee:f5:b9:3d:b9:04: da:47:f2:ed:87:d1:63:f3:b8:bf:e9:ca:b2:0c:c9: dc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:07:36:66:45:A2:A8:50:C6:C7:A1:22:23:0E:6F:5D:F5:F2:BF:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c8aa772-631f-4308-ac99-2035c49e2c27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.64.0/18 Signature Algorithm: sha256WithRSAEncryption 85:f3:19:56:b3:6d:f7:b0:5c:21:63:af:bc:54:21:57:32:83: 6a:09:8a:6d:ea:d8:7d:18:c9:83:49:1e:d4:69:ba:69:e9:94: 95:c9:51:7d:4b:fb:d0:1f:56:45:e9:19:fb:f6:4a:94:5e:9c: c7:27:bb:07:4f:22:6f:ed:60:2d:df:de:81:fe:6e:82:8e:e0: a6:d5:9f:cd:b7:00:24:19:66:4b:0c:6a:b3:60:f8:ed:bf:1b: 4f:5e:f7:c1:06:f6:61:96:61:8d:f4:54:21:ca:0d:6a:78:d2: ea:52:26:fa:34:1d:14:66:e1:dd:b9:1d:b2:07:8a:f2:b3:37: 75:f1:68:87:e9:1f:f0:05:fc:cf:44:c3:eb:e8:97:59:b5:e6: 3c:6c:de:e8:1c:32:dd:00:57:36:fc:01:61:7c:14:a0:e9:1c: 18:6f:35:3f:44:6e:d8:5d:da:db:d4:01:45:95:88:60:15:62: 24:30:f1:06:6d:19:89:42:6b:09:ca:84:4a:66:5d:ce:63:62: 18:52:52:c2:0c:1c:18:24:f8:82:c3:66:04:16:e0:d8:d2:7d: 88:3d:54:eb:a5:1c:21:b5:39:13:fc:e3:69:31:dd:79:40:0b: 73:c4:52:d1:a7:51:c1:4d:e4:49:b6:db:59:bd:70:12:c5:9f: d2:92:33:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEuXdZNFNiET+ys/rlaevzDk9RuIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNGM4Njg5ZDMxZGIyMTg4OGU3YWRmNmIxN2FhZmMzZTEz M2NiODFhYWRhNjQxMzQyNzAxZWJmZGI1NzdmZmMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwAFHEdcWxTpNw4+3DQaW1ElqYbO9Oev5a05BF75aa1qeW qB0teNO/4HFJP5gqEaob9lgSPMpW58TaL+pniXofHhdpfgwZ/7WCBQQvFUtWpOFa 2G13yU2w6a9E002JRu8uIrEEOIeZQwb6FIVuMs9ZzlN9UuglCKrVkgyM0dwtKQ6W AoCncTmN71GHzQ65g5f28fQzRKNMRVqhklSJKbCX1FkU/HLnNOAez9JazrH4mpkC As+S0Q9pW3V3cAiNCxnHFUOgWBs6JKppeISZcHS+oMLKggkx3MQFhwhOqbUDu+yC MbGrzP6PU+71uT25BNpH8u2H0WPzuL/pyrIMydwZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPwc2ZkWiqFDGx6EiIw5vXfXyv9IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjOGFhNzcyLTYzMWYtNDMwOC1hYzk5LTIwMzVjNDllMmMyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaXlEAwDQYJKoZIhvcNAQELBQADggEBAIXzGVazbfewXCFjr7xUIVcyg2oJ im3q2H0YyYNJHtRpumnplJXJUX1L+9AfVkXpGfv2SpRenMcnuwdPIm/tYC3f3oH+ boKO4KbVn823ACQZZksMarNg+O2/G09e98EG9mGWYY30VCHKDWp40upSJvo0HRRm 4d25HbIHivKzN3XxaIfpH/AF/M9Ew+vol1m15jxs3ugcMt0AVzb8AWF8FKDpHBhv NT9Ebthd2tvUAUWViGAVYiQw8QZtGYlCawnKhEpmXc5jYhhSUsIMHBgk+ILDZgQW 4NjSfYg9VOulHCG1ORP842kx3XlAC3PEUtGnUcFN5Em221m9cBLFn9KSM04= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:45 2024 by rpki-client on console-fra.rpki-client.org