$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f167ba2-3d62-4a61-8543-28364bba0ece.roa File: 1f167ba2-3d62-4a61-8543-28364bba0ece.roa (raw, json) Hash identifier: aQMIsYw8079SMjxjo40MT1ZSut3FrF0lNCNARmWULpE= Subject key identifier: 73:D0:94:5C:ED:62:35:93:28:E3:0F:A5:E2:08:87:A8:45:73:EE:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41E8F0B76FC445B335B540E3DD53BABC01211FCD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f167ba2-3d62-4a61-8543-28364bba0ece.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 63.249.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:e8:f0:b7:6f:c4:45:b3:35:b5:40:e3:dd:53:ba:bc:01:21:1f:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=fd604e317d8c1c0289165012caa9a11fe48aec158577bc50839ae52f1247b013, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f4:e6:bb:1f:7a:1c:bd:ac:fc:54:82:ad:e5: 6d:07:d0:24:cf:c0:83:a9:c7:23:57:60:ff:9a:ca: 40:03:24:52:31:a4:a1:cd:cc:85:6f:33:5e:20:c2: a1:59:2a:ab:a7:79:5b:92:69:76:ad:06:d4:47:ea: 70:3a:b3:e3:7b:37:0e:73:68:2f:37:24:88:d6:8b: f4:60:fd:75:9b:76:7d:d6:8b:29:43:b3:e2:eb:cf: 90:6b:96:e4:b4:73:6f:94:19:c7:32:13:17:b7:8d: 2b:95:f1:0d:21:5a:3f:dc:0d:aa:04:bb:2d:da:79: e8:de:b9:16:67:0a:ca:57:f3:a5:6a:7e:fe:39:6c: 19:d4:ba:47:80:08:97:66:28:34:fa:bd:5e:02:1a: fb:6a:12:73:60:22:9f:96:d3:37:84:2b:cb:6d:e2: da:76:c5:f4:53:44:3d:bd:62:52:d7:66:4b:7d:ea: bb:60:5d:fe:b7:ba:ca:22:2b:cc:f1:3b:23:5c:44: d7:51:b2:c8:5f:23:59:21:18:b5:a4:a5:fc:dd:f3: 15:b4:eb:fe:3d:e6:b9:4e:74:f2:ce:08:5a:9a:63: 59:6d:5f:34:dc:01:fe:f2:49:f3:c3:46:54:52:96: 15:c0:52:3a:1a:65:97:29:3e:b3:aa:00:d1:d1:2c: 65:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:D0:94:5C:ED:62:35:93:28:E3:0F:A5:E2:08:87:A8:45:73:EE:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f167ba2-3d62-4a61-8543-28364bba0ece.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.249.128.0/17 Signature Algorithm: sha256WithRSAEncryption 04:d4:a5:36:44:dd:d6:23:54:2b:83:1d:3e:91:09:b3:40:89: 4b:86:d4:4b:43:a7:82:d2:61:07:55:c8:9d:1e:1c:5c:6e:ed: 72:ba:77:be:db:a4:c9:0b:96:63:3a:2d:9d:e1:59:a8:e7:3e: 8b:87:a6:ff:b8:89:84:7d:24:22:9c:7d:c7:31:61:b8:34:ff: 53:3c:79:36:40:d2:80:89:d2:5a:7b:e8:b1:05:d5:50:77:90: 37:53:58:a9:4d:d8:42:48:02:10:b0:31:54:62:2a:65:d0:20: e5:54:4f:35:a6:09:7c:77:5e:fd:9d:6a:f4:df:4a:03:8a:64: 24:49:79:82:1d:8f:16:c8:ea:20:b4:20:b1:cc:57:12:bb:bd: 1b:6d:75:93:1b:32:cb:eb:b4:eb:46:de:f3:a1:ce:58:49:a0: 5c:45:1b:78:5a:d4:0d:23:cc:e6:3f:c6:65:ca:3d:4c:0d:13: 76:4d:80:a9:82:07:29:58:8f:04:70:be:2a:a2:5e:af:8c:f6: b5:17:a7:20:fd:2d:5d:bd:03:6f:d8:d9:64:36:ca:99:b1:3a: 1e:20:b3:bf:bb:98:f7:e5:d1:a8:f8:94:1d:7a:4e:49:5e:1e: d2:db:4a:e8:6f:31:b0:97:e7:f9:5a:42:34:b9:3e:55:54:d7: de:85:bb:bb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQejwt2/ERbM1tUDj3VO6vAEhH80wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDYwNGUzMTdkOGMxYzAyODkxNjUwMTJjYWE5YTExZmU0 OGFlYzE1ODU3N2JjNTA4MzlhZTUyZjEyNDdiMDEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCU9Oa7H3ocvaz8VIKt5W0H0CTPwIOpxyNXYP+aykADJFIx pKHNzIVvM14gwqFZKquneVuSaXatBtRH6nA6s+N7Nw5zaC83JIjWi/Rg/XWbdn3W iylDs+Lrz5BrluS0c2+UGccyExe3jSuV8Q0hWj/cDaoEuy3aeejeuRZnCspX86Vq fv45bBnUukeACJdmKDT6vV4CGvtqEnNgIp+W0zeEK8tt4tp2xfRTRD29YlLXZkt9 6rtgXf63usoiK8zxOyNcRNdRsshfI1khGLWkpfzd8xW06/495rlOdPLOCFqaY1lt XzTcAf7ySfPDRlRSlhXAUjoaZZcpPrOqANHRLGXJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc9CUXO1iNZMo4w+l4giHqEVz7jIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmMTY3YmEyLTNkNjItNGE2MS04NTQzLTI4MzY0YmJhMGVjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc/+YAwDQYJKoZIhvcNAQELBQADggEBAATUpTZE3dYjVCuDHT6RCbNAiUuG 1EtDp4LSYQdVyJ0eHFxu7XK6d77bpMkLlmM6LZ3hWajnPouHpv+4iYR9JCKcfccx Ybg0/1M8eTZA0oCJ0lp76LEF1VB3kDdTWKlN2EJIAhCwMVRiKmXQIOVUTzWmCXx3 Xv2davTfSgOKZCRJeYIdjxbI6iC0ILHMVxK7vRttdZMbMsvrtOtG3vOhzlhJoFxF G3ha1A0jzOY/xmXKPUwNE3ZNgKmCBylYjwRwviqiXq+M9rUXpyD9LV29A2/Y2WQ2 ypmxOh4gs7+7mPfl0aj4lB16TkleHtLbSuhvMbCX5/laQjS5PlVU196Fu7s= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:46 2024 by rpki-client on console-fra.rpki-client.org