$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e51245d-1821-47cf-b48e-9cb21543a832.roa File: 1e51245d-1821-47cf-b48e-9cb21543a832.roa (raw, json) Hash identifier: oavpiA8E98iwiIIaunyoHvw/L89IdWxcSH7RtOI9lBs= Subject key identifier: 27:7B:36:2B:32:20:A0:22:12:BF:67:94:9F:CB:84:09:7D:89:82:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19F210D15C94D486AEE87A371B48C632E948C234 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e51245d-1821-47cf-b48e-9cb21543a832.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 194.21.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f2:10:d1:5c:94:d4:86:ae:e8:7a:37:1b:48:c6:32:e9:48:c2:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=ea0076b98034f3664af9652ae885158d50c865fc9b365096e8d5f3855df9fc5b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b1:80:72:5c:fa:61:7f:0a:b1:a6:0b:f0:63: 26:c6:a3:54:bd:b5:72:9b:86:c2:37:07:ec:1c:9f: 29:58:1a:45:9c:24:63:ec:7e:d0:57:d9:cc:b2:ed: ae:9f:b0:40:c7:d4:21:06:0a:af:18:1a:a3:51:20: 19:7d:6a:a2:01:7c:74:7f:30:33:83:dc:29:0c:0e: 5b:d4:67:cc:0c:b4:db:9f:40:03:c2:60:0b:70:39: 4e:79:05:a6:6f:4d:31:35:03:2a:b0:e2:ee:e4:cf: f0:62:91:7f:af:4d:29:35:ef:d7:62:1f:79:4d:65: b1:cf:b7:56:04:bd:1e:cc:ee:2d:d7:b9:33:fa:9f: 14:00:a3:dc:97:81:cf:d1:ca:b9:a1:20:98:3a:04: 62:02:d1:1a:57:3d:fe:41:ec:8c:a9:14:c9:0e:9e: 55:65:40:bb:9e:14:bf:64:d7:f6:f1:72:f7:c1:13: 73:e7:89:23:b8:91:33:2b:6f:4e:6f:5c:ef:1d:b2: c0:75:b9:45:9a:45:8d:f7:ba:3b:0b:20:0a:14:a5: a1:16:ff:0e:f8:de:9f:ac:61:17:51:8f:c6:45:f1: 05:8a:7e:c0:08:f0:a4:35:c8:1c:d6:76:32:3a:d5: de:f8:05:6b:20:e4:ae:b1:0b:7f:3d:80:8e:4e:04: 19:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:7B:36:2B:32:20:A0:22:12:BF:67:94:9F:CB:84:09:7D:89:82:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e51245d-1821-47cf-b48e-9cb21543a832.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.21.128.0/18 Signature Algorithm: sha256WithRSAEncryption b8:71:df:ed:6e:a3:51:da:b6:e5:ef:f3:d6:fb:c5:4e:d7:3e: 32:9c:84:21:2e:40:ea:2d:9c:dd:5f:26:a9:c2:70:f7:fb:44: c3:81:90:ee:af:08:38:0b:af:d3:58:ce:4e:f3:96:7f:a4:62: d4:08:d7:55:35:62:e8:8b:65:13:e8:0a:93:a8:d6:8a:ff:2a: 83:15:9c:4b:0d:e6:b1:fd:73:25:76:70:94:e9:d9:0b:c8:91: 94:cf:03:99:d0:78:ff:0d:ff:75:53:23:93:62:ca:cd:90:80: ce:59:2d:dd:96:2b:5f:8d:81:27:e2:73:fc:a5:ab:01:6c:23: 79:71:8f:77:ba:ea:75:0c:d8:42:9f:16:8c:68:a7:2a:35:fb: 33:d3:21:25:fb:e1:01:11:12:6e:31:3b:62:ee:3d:83:0a:16: 23:ce:43:b3:25:42:e3:be:5e:e7:1e:17:10:b3:06:34:78:0e: 80:34:47:ad:2a:24:09:61:06:65:a4:1e:13:e8:05:17:b3:b1: 97:e5:da:78:35:ed:67:5f:03:48:18:1e:cb:00:c3:39:12:8b: ff:4f:43:bc:90:69:63:41:0b:a8:64:bd:51:54:6e:90:7a:a0: 6d:c6:1b:60:d2:ef:ac:62:86:37:d8:ea:f3:a2:2f:7e:4f:db: 58:cf:d3:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGfIQ0VyU1Iau6Ho3G0jGMulIwjQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTAwNzZiOTgwMzRmMzY2NGFmOTY1MmFlODg1MTU4ZDUw Yzg2NWZjOWIzNjUwOTZlOGQ1ZjM4NTVkZjlmYzViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdsYByXPphfwqxpgvwYybGo1S9tXKbhsI3B+wcnylYGkWc JGPsftBX2cyy7a6fsEDH1CEGCq8YGqNRIBl9aqIBfHR/MDOD3CkMDlvUZ8wMtNuf QAPCYAtwOU55BaZvTTE1Ayqw4u7kz/BikX+vTSk179diH3lNZbHPt1YEvR7M7i3X uTP6nxQAo9yXgc/RyrmhIJg6BGIC0RpXPf5B7IypFMkOnlVlQLueFL9k1/bxcvfB E3PniSO4kTMrb05vXO8dssB1uUWaRY33ujsLIAoUpaEW/w743p+sYRdRj8ZF8QWK fsAI8KQ1yBzWdjI61d74BWsg5K6xC389gI5OBBn3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJ3s2KzIgoCISv2eUn8uECX2Jgk8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlNTEyNDVkLTE4MjEtNDdjZi1iNDhlLTljYjIxNTQzYTgzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbCFYAwDQYJKoZIhvcNAQELBQADggEBALhx3+1uo1HatuXv89b7xU7XPjKc hCEuQOotnN1fJqnCcPf7RMOBkO6vCDgLr9NYzk7zln+kYtQI11U1YuiLZRPoCpOo 1or/KoMVnEsN5rH9cyV2cJTp2QvIkZTPA5nQeP8N/3VTI5Niys2QgM5ZLd2WK1+N gSfic/ylqwFsI3lxj3e66nUM2EKfFoxopyo1+zPTISX74QEREm4xO2LuPYMKFiPO Q7MlQuO+XuceFxCzBjR4DoA0R60qJAlhBmWkHhPoBRezsZfl2ng17WdfA0gYHssA wzkSi/9PQ7yQaWNBC6hkvVFUbpB6oG3GG2DS76xihjfY6vOiL35P21jP0zc= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:46 2024 by rpki-client on console-fra.rpki-client.org