$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e02a595-7697-4c66-b83b-c7ec1f66968d.roa File: 1e02a595-7697-4c66-b83b-c7ec1f66968d.roa (raw, json) Hash identifier: Wr7C+/80nnJxA842FFPQ3e6NLGzVKcf8fggSRpNO9+I= Subject key identifier: BE:EA:F5:D7:47:17:82:89:FD:EF:F3:39:6C:89:99:84:45:69:FE:48 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C9C24EEF68ABBDD4924722F2658D06AE228B683 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e02a595-7697-4c66-b83b-c7ec1f66968d.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.23.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:9c:24:ee:f6:8a:bb:dd:49:24:72:2f:26:58:d0:6a:e2:28:b6:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=06185fd2ed08dfa97ee80f150cc1fd1f28f46b2cfae082cd53cf4e194ba16d81, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f6:b0:c0:b5:5c:29:dc:2f:10:19:35:4f:29: 96:5b:7d:2d:a4:3c:92:5b:91:35:85:85:f5:a1:4e: 17:ef:35:bc:d9:6e:4f:50:90:3f:1f:5e:5a:b9:03: 8e:52:88:0d:aa:ac:e1:78:34:77:ce:2a:a0:06:7f: 43:92:6d:86:75:8a:0e:72:fd:5f:4e:52:43:a3:1a: c5:f6:e5:63:de:ae:8d:30:8b:55:7e:c1:fe:b2:0e: 19:c1:df:1d:bc:cd:bb:fa:ec:6f:77:d8:5d:62:25: f3:c4:0e:18:a2:67:34:61:39:37:ae:e6:60:0f:eb: 5f:f4:85:5a:42:90:be:b6:66:75:88:91:69:52:7d: 78:f5:59:47:16:2b:a2:10:8d:ff:b6:d2:8e:b6:31: e5:60:9e:fb:0a:a2:df:a2:15:1e:11:ce:4a:27:6e: 56:f6:2d:5d:41:34:40:0d:42:49:53:3e:3f:3d:a3: a9:56:95:ef:72:bb:ad:53:e0:5e:c8:40:df:88:fb: 45:75:71:40:0b:1f:b8:e4:bb:b0:b8:40:8b:88:75: 16:03:4b:73:e3:cd:2d:10:41:37:69:8b:ff:df:0b: 52:cb:11:6e:f7:09:e3:f9:fd:30:7f:14:a5:6d:78: 7c:f3:8c:4e:a0:83:8d:de:b2:a4:43:37:82:20:78: 8e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:EA:F5:D7:47:17:82:89:FD:EF:F3:39:6C:89:99:84:45:69:FE:48 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e02a595-7697-4c66-b83b-c7ec1f66968d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.23.0.0/16 Signature Algorithm: sha256WithRSAEncryption c4:d6:97:8e:45:c2:bf:e1:81:4b:59:ba:6f:a9:41:5f:d5:25: 39:98:b1:12:dd:29:c2:f6:a8:65:74:95:d6:b6:48:fd:33:14: 50:22:7e:a3:db:aa:bd:bb:64:f8:c6:6f:c9:f9:35:ac:3d:98: 09:10:5a:e5:1c:6f:de:ee:ce:9b:5a:c3:b5:32:28:f2:cf:62: 79:3e:ca:4b:d6:ef:15:99:bd:0b:21:79:78:0c:21:55:bc:e0: 7c:aa:dc:7a:74:0e:55:e8:91:59:55:11:a5:b0:bd:54:e1:96: 31:75:4c:d8:63:5b:50:ab:43:d7:3c:bd:0f:1e:65:68:e7:74: 67:c9:b1:a1:92:73:2f:15:77:ec:f7:0e:5d:de:3e:53:17:6d: a8:c2:6f:ce:90:7c:8e:0e:1a:19:2a:9a:b4:ab:ce:09:ec:4a: b1:0d:16:18:bc:81:02:12:ac:32:c8:ff:08:d5:b7:13:a9:c8: f8:33:88:c2:e5:88:15:60:64:ac:d1:2f:5c:65:d3:da:c1:1a: 92:d7:b9:49:44:89:08:c3:3b:3a:5d:c2:aa:1a:33:ff:84:e9: 6d:3f:ed:8f:4d:77:69:64:6c:a3:59:96:d9:d8:e5:2f:db:2a: 39:3d:ae:65:cf:bb:ce:06:a9:f6:7c:14:69:9c:2f:25:28:13: 1d:1a:6e:f8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDJwk7vaKu91JJHIvJljQauIotoMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAyMDAwMDAwWhcNMjQxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjE4NWZkMmVkMDhkZmE5N2VlODBmMTUwY2MxZmQxZjI4 ZjQ2YjJjZmFlMDgyY2Q1M2NmNGUxOTRiYTE2ZDgxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC09rDAtVwp3C8QGTVPKZZbfS2kPJJbkTWFhfWhThfvNbzZ bk9QkD8fXlq5A45SiA2qrOF4NHfOKqAGf0OSbYZ1ig5y/V9OUkOjGsX25WPero0w i1V+wf6yDhnB3x28zbv67G932F1iJfPEDhiiZzRhOTeu5mAP61/0hVpCkL62ZnWI kWlSfXj1WUcWK6IQjf+20o62MeVgnvsKot+iFR4Rzkonblb2LV1BNEANQklTPj89 o6lWle9yu61T4F7IQN+I+0V1cUALH7jku7C4QIuIdRYDS3PjzS0QQTdpi//fC1LL EW73CeP5/TB/FKVteHzzjE6gg43esqRDN4IgeI7vAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUvur110cXgon97/M5bImZhEVp/kgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlMDJhNTk1LTc2OTctNGM2Ni1iODNiLWM3ZWMxZjY2OTY4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFzANBgkqhkiG9w0BAQsFAAOCAQEAxNaXjkXCv+GBS1m6b6lBX9UlOZix Et0pwvaoZXSV1rZI/TMUUCJ+o9uqvbtk+MZvyfk1rD2YCRBa5Rxv3u7Om1rDtTIo 8s9ieT7KS9bvFZm9CyF5eAwhVbzgfKrcenQOVeiRWVURpbC9VOGWMXVM2GNbUKtD 1zy9Dx5laOd0Z8mxoZJzLxV37PcOXd4+UxdtqMJvzpB8jg4aGSqatKvOCexKsQ0W GLyBAhKsMsj/CNW3E6nI+DOIwuWIFWBkrNEvXGXT2sEakte5SUSJCMM7Ol3Cqhoz /4TpbT/tj013aWRso1mW2djlL9sqOT2uZc+7zgap9nwUaZwvJSgTHRpu+A== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:46 2024 by rpki-client on console-fra.rpki-client.org