$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d378206-0887-425a-86bb-bba414bfdc45.roa File: 1d378206-0887-425a-86bb-bba414bfdc45.roa (raw, json) Hash identifier: obkdS7fOjmjAwdAmEN+S1oI3X8hIZZjjODCo2GQvc0k= Subject key identifier: 8F:43:D8:6F:05:58:98:F6:2C:50:C6:6F:0E:48:61:01:2C:EF:C7:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43CFC927EBCEB01D0E9BC3C5FD760653D3F018FC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d378206-0887-425a-86bb-bba414bfdc45.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 147.106.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:cf:c9:27:eb:ce:b0:1d:0e:9b:c3:c5:fd:76:06:53:d3:f0:18:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=c6255636d016c443464d80b4955a2af37c1bffd82f8682c422521404813cee64, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ab:36:c0:0c:a8:fc:75:d8:f7:88:5f:a1:ca: 64:c6:84:18:14:03:de:86:cb:80:61:52:9c:a8:4c: 6b:67:00:bf:fe:35:8d:bb:94:00:ee:f2:8c:99:76: ec:dd:a8:c7:be:d6:61:33:27:d2:37:f5:08:b2:2b: 0d:34:e3:b7:30:d4:f2:c5:2d:56:3e:85:19:42:39: 63:20:5a:1f:83:33:aa:e3:0f:ed:7a:fd:d4:a0:15: 15:a3:1e:7e:7d:2d:69:66:ff:2b:6e:52:27:4c:98: 9a:32:84:cd:06:5a:e3:aa:9f:f4:db:c5:b3:c0:ef: 8e:94:0a:65:51:f7:e7:bc:25:69:78:95:e2:c0:4c: 4d:38:d8:b6:cc:40:11:e9:31:41:0d:80:0c:00:7c: 18:b7:99:28:f9:fc:11:18:18:d9:2d:a4:15:90:2a: fa:b5:ee:59:b4:82:8a:5f:08:b9:e0:ef:56:b6:b7: 97:eb:53:e5:2f:6d:eb:4c:81:de:93:2b:d8:5f:80: d8:43:a6:60:8c:1d:bc:fa:67:4d:50:06:59:a6:58: ee:d5:53:9f:cc:94:c1:ee:77:1c:ac:8b:55:0e:52: 30:ca:03:c4:da:7d:6e:19:2d:b5:8e:c0:09:0e:01: f3:43:9e:90:c6:39:9e:4c:37:d9:5c:30:7c:dd:ba: e8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:43:D8:6F:05:58:98:F6:2C:50:C6:6F:0E:48:61:01:2C:EF:C7:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d378206-0887-425a-86bb-bba414bfdc45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.106.64.0/18 Signature Algorithm: sha256WithRSAEncryption 3f:27:da:4a:d6:d6:7e:21:3b:8c:2d:15:e4:ac:ee:c3:40:17: 57:ae:0d:fb:50:e5:c4:65:09:56:19:f6:52:70:3a:17:58:fa: 32:fe:7c:e3:fa:e1:d0:11:ba:10:99:75:db:e8:ff:a6:79:0a: 7b:4b:a7:46:aa:f2:c8:65:37:87:bd:e5:8c:98:e6:f4:a0:dc: bf:f4:a2:99:0c:ba:c1:2d:95:0a:9c:9d:81:e8:a7:05:2d:a7: 59:29:a9:f4:ab:36:05:21:d5:60:e2:a8:43:77:8f:85:fd:47: f7:89:22:93:e6:db:41:d7:b0:51:d8:ba:1e:fc:5e:b6:bf:18: e9:b3:c8:4b:c3:5e:83:bf:9e:07:a9:36:01:b4:14:f8:15:78: d4:59:be:49:49:1c:3c:19:98:1f:22:e2:49:b0:25:c9:72:9c: 04:d9:4e:a9:11:7e:cd:c5:f5:1f:67:c4:17:61:b4:33:36:e3: 84:db:7c:b9:23:19:a5:cf:b4:35:bf:48:bc:dd:f8:25:a7:84: 32:4a:21:43:37:39:f7:c9:2f:4d:48:eb:a2:88:c1:c5:4e:81: 7d:48:c8:b4:c2:91:92:12:5c:e1:bb:53:c3:ff:c1:08:95:25: 10:74:30:bd:97:20:62:13:0e:4b:d1:35:ea:8a:98:48:f9:2d: c6:8e:47:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ8/JJ+vOsB0Om8PF/XYGU9PwGPwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjI1NTYzNmQwMTZjNDQzNDY0ZDgwYjQ5NTVhMmFmMzdj MWJmZmQ4MmY4NjgyYzQyMjUyMTQwNDgxM2NlZTY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1qzbADKj8ddj3iF+hymTGhBgUA96Gy4BhUpyoTGtnAL/+ NY27lADu8oyZduzdqMe+1mEzJ9I39QiyKw0047cw1PLFLVY+hRlCOWMgWh+DM6rj D+16/dSgFRWjHn59LWlm/ytuUidMmJoyhM0GWuOqn/TbxbPA746UCmVR9+e8JWl4 leLATE042LbMQBHpMUENgAwAfBi3mSj5/BEYGNktpBWQKvq17lm0gopfCLng71a2 t5frU+UvbetMgd6TK9hfgNhDpmCMHbz6Z01QBlmmWO7VU5/MlMHudxysi1UOUjDK A8TafW4ZLbWOwAkOAfNDnpDGOZ5MN9lcMHzduug9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj0PYbwVYmPYsUMZvDkhhASzvxzEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFkMzc4MjA2LTA4ODctNDI1YS04NmJiLWJiYTQxNGJmZGM0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaTakAwDQYJKoZIhvcNAQELBQADggEBAD8n2krW1n4hO4wtFeSs7sNAF1eu DftQ5cRlCVYZ9lJwOhdY+jL+fOP64dARuhCZddvo/6Z5CntLp0aq8shlN4e95YyY 5vSg3L/0opkMusEtlQqcnYHopwUtp1kpqfSrNgUh1WDiqEN3j4X9R/eJIpPm20HX sFHYuh78Xra/GOmzyEvDXoO/ngepNgG0FPgVeNRZvklJHDwZmB8i4kmwJclynATZ TqkRfs3F9R9nxBdhtDM244TbfLkjGaXPtDW/SLzd+CWnhDJKIUM3OffJL01I66KI wcVOgX1IyLTCkZISXOG7U8P/wQiVJRB0ML2XIGITDkvRNeqKmEj5LcaOR6U= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:46 2024 by rpki-client on console-fra.rpki-client.org