$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1db02b21-b410-4618-a3ef-3a974c02813c.roa File: 1db02b21-b410-4618-a3ef-3a974c02813c.roa (raw, json) Hash identifier: yMFq4aJsFN4viuAKGS+QGPwmOXrfBzSdDeNOshxVQZU= Subject key identifier: DD:0C:E0:59:53:F5:17:E4:2D:B9:49:85:9A:73:7F:F1:7C:94:6B:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49DF9F0220A3CAFC33C43B48E4609CF8BEC799A9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1db02b21-b410-4618-a3ef-3a974c02813c.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 192.157.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:df:9f:02:20:a3:ca:fc:33:c4:3b:48:e4:60:9c:f8:be:c7:99:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=9dde31cf95f57ce1c189959d500a4f7ba6312a587a1c58c1d28cadd395e2ed89, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c9:b3:db:c3:fd:2f:3c:f9:d8:9c:88:87:ff: 1f:5c:9c:d0:cd:4d:b1:ff:70:b0:f7:15:0b:44:b4: 4a:d4:27:de:04:55:e1:0d:4e:19:8c:81:12:6b:98: c8:ec:71:e6:c4:7c:cd:55:a5:97:51:1e:65:43:b1: c2:bd:b9:8a:57:53:5a:a4:1b:1c:10:f5:99:a3:00: 42:ae:e9:62:66:ed:73:6b:60:14:47:4f:66:9f:40: 0f:1d:7d:e7:d5:25:66:5e:9f:36:7d:cc:52:70:b2: fc:3b:fa:32:5a:f7:3e:2e:02:f4:99:76:84:3c:98: 05:36:55:12:2f:40:94:23:ff:76:50:42:66:fc:1e: 58:ac:c7:2a:83:b3:78:36:65:52:de:9d:dc:f0:d6: b6:73:b0:08:23:ed:0b:bd:3d:39:36:86:7c:74:8c: 29:e7:95:74:c4:54:76:0e:6b:9a:03:65:bf:08:33: be:59:35:fc:27:96:95:dc:2b:dc:e4:f1:9c:d7:56: 2a:81:d0:87:45:35:8d:24:51:7f:91:9b:1c:c0:e9: bf:3f:4b:c2:a1:02:66:3e:24:b1:c2:49:48:52:75: 20:2e:1d:ca:e5:a5:10:42:a2:db:f0:e0:93:d5:2a: f1:83:fa:14:26:98:3e:39:e7:5b:3c:0e:cd:ba:86: de:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0C:E0:59:53:F5:17:E4:2D:B9:49:85:9A:73:7F:F1:7C:94:6B:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1db02b21-b410-4618-a3ef-3a974c02813c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.157.64.0/21 Signature Algorithm: sha256WithRSAEncryption ab:d0:d6:5f:31:36:40:75:aa:82:31:0b:2a:ff:a2:49:81:e3: 5b:2d:16:47:9d:f8:e1:d2:e0:db:1d:22:1d:5e:04:0d:41:53: 3c:6e:ff:4a:a1:de:a6:24:b5:82:2f:59:51:aa:75:36:20:4e: d0:32:5e:25:30:3f:94:4c:1a:b2:0e:71:2c:38:21:60:e9:42: 56:fc:85:08:b8:7e:e5:70:7f:4b:f4:b2:75:b8:f0:42:c8:db: 45:c5:60:b2:26:e0:e3:76:c2:c1:43:43:53:f5:5c:8a:fa:0b: 96:dc:44:a6:50:47:75:29:08:ef:ba:db:86:43:e9:01:fd:3f: 5a:de:a8:71:00:29:ec:8b:a3:17:ec:47:80:82:fc:bb:2c:01: e7:04:d9:4b:de:b0:b5:52:ad:78:ea:b1:72:48:d4:42:34:cd: 86:b9:16:86:29:74:cb:62:ad:fc:5c:20:c7:00:1c:ae:7a:32: 8f:8d:3f:aa:2c:8b:50:23:53:12:db:20:97:2e:2a:71:2a:4b: 28:20:f7:df:c1:0a:48:f0:bb:83:19:40:7e:b8:75:63:b2:55: d4:a1:14:19:40:6e:ff:11:8b:9f:98:39:22:a5:8e:11:d9:c7: 1f:20:75:6a:39:49:60:44:0d:f9:8c:bd:8e:35:c2:c6:d9:4d: 79:87:37:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSd+fAiCjyvwzxDtI5GCc+L7HmakwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGRlMzFjZjk1ZjU3Y2UxYzE4OTk1OWQ1MDBhNGY3YmE2 MzEyYTU4N2ExYzU4YzFkMjhjYWRkMzk1ZTJlZDg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0ybPbw/0vPPnYnIiH/x9cnNDNTbH/cLD3FQtEtErUJ94E VeENThmMgRJrmMjscebEfM1VpZdRHmVDscK9uYpXU1qkGxwQ9ZmjAEKu6WJm7XNr YBRHT2afQA8dfefVJWZenzZ9zFJwsvw7+jJa9z4uAvSZdoQ8mAU2VRIvQJQj/3ZQ Qmb8HlisxyqDs3g2ZVLendzw1rZzsAgj7Qu9PTk2hnx0jCnnlXTEVHYOa5oDZb8I M75ZNfwnlpXcK9zk8ZzXViqB0IdFNY0kUX+RmxzA6b8/S8KhAmY+JLHCSUhSdSAu HcrlpRBCotvw4JPVKvGD+hQmmD4551s8Ds26ht7rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3QzgWVP1F+QtuUmFmnN/8XyUa18wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFkYjAyYjIxLWI0MTAtNDYxOC1hM2VmLTNhOTc0YzAyODEzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPAnUAwDQYJKoZIhvcNAQELBQADggEBAKvQ1l8xNkB1qoIxCyr/okmB41st Fked+OHS4NsdIh1eBA1BUzxu/0qh3qYktYIvWVGqdTYgTtAyXiUwP5RMGrIOcSw4 IWDpQlb8hQi4fuVwf0v0snW48ELI20XFYLIm4ON2wsFDQ1P1XIr6C5bcRKZQR3Up CO+624ZD6QH9P1reqHEAKeyLoxfsR4CC/LssAecE2UvesLVSrXjqsXJI1EI0zYa5 FoYpdMtirfxcIMcAHK56Mo+NP6osi1AjUxLbIJcuKnEqSygg99/BCkjwu4MZQH64 dWOyVdShFBlAbv8Ri5+YOSKljhHZxx8gdWo5SWBEDfmMvY41wsbZTXmHN+4= -----END CERTIFICATE-----Generated at Mon Nov 25 02:46:20 2024 by rpki-client on console-ams.rpki-client.org