$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fabe9e1-94c2-485f-9753-123a43e161e3.roa File: 1fabe9e1-94c2-485f-9753-123a43e161e3.roa (raw, json) Hash identifier: 7Ny8UC65jw7s0Po6firPoTlFTC2EcXrgO3ZWSOaV6L4= Subject key identifier: 03:42:6A:BA:32:E3:75:5C:50:3A:1A:B3:83:33:F3:DC:1F:C3:29:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 276896F1B5F02FE2B660D1048C445C49D02FAB5B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fabe9e1-94c2-485f-9753-123a43e161e3.roa Signing time: Wed 13 Nov 2024 00:00:00 +0000 ROA not before: Wed 13 Nov 2024 00:00:00 +0000 ROA not after: Wed 18 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 99.83.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:68:96:f1:b5:f0:2f:e2:b6:60:d1:04:8c:44:5c:49:d0:2f:ab:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 13 00:00:00 2024 GMT Not After : Dec 18 23:59:59 2024 GMT Subject: serialNumber=1047dd7a18d7cc1189e7f3b4035ffb1b9fd2de59f01de78c34af87bfcea513be, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:6d:a2:49:f6:72:27:7c:40:3e:b9:77:d7: 7d:41:45:23:d4:dd:c5:21:11:26:3d:01:10:71:0e: 2a:63:01:d9:a5:24:a4:d1:10:a3:e8:56:a4:8e:b8: 10:66:80:b1:7f:88:99:37:00:0b:0d:fa:69:74:27: 1d:e9:45:f9:8c:70:30:bf:48:c3:9b:51:d7:15:86: 2f:81:8d:e6:73:d6:0a:9f:36:9a:af:54:f1:d4:fe: c4:39:83:78:87:60:82:42:6c:d6:43:45:d9:87:b1: 1c:34:ff:a1:4e:ff:49:50:c3:6b:35:3f:93:26:99: e3:4c:36:72:db:2f:89:8d:01:b1:e5:4f:c9:ba:af: d1:dd:68:0c:a8:02:e3:6b:16:ab:8f:8a:37:db:5b: 6f:cc:9a:6d:ba:79:a0:67:0a:43:b1:82:51:5b:76: 53:ec:da:bd:c5:3b:68:cc:e4:ce:62:79:7f:1a:96: 36:8d:13:38:f7:44:8f:a2:c4:84:3d:b1:34:8f:ef: 1c:10:9d:b3:4b:23:dc:68:75:38:0b:c9:1d:0d:33: 46:a7:b6:9c:a8:45:d4:b5:be:9e:52:f9:b8:1b:6e: b0:d1:89:68:0a:1c:b4:7f:f2:98:b1:cd:7e:21:ec: a3:c3:81:04:d4:fd:10:6f:ec:c7:f8:ca:05:ee:bd: d6:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:42:6A:BA:32:E3:75:5C:50:3A:1A:B3:83:33:F3:DC:1F:C3:29:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fabe9e1-94c2-485f-9753-123a43e161e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.83.64.0/18 Signature Algorithm: sha256WithRSAEncryption 6c:87:8e:83:21:47:32:ec:79:34:97:2a:6b:9a:ec:de:8c:c1: dd:dd:35:ea:e4:86:e3:f4:2b:db:e5:54:aa:24:49:85:4d:48: 2d:2e:f3:a1:44:7c:03:ac:bc:35:e4:a7:a2:81:d4:6a:c9:a4: b3:0d:8d:c2:45:37:09:4b:45:86:2a:51:20:58:cf:0a:3e:01: 4c:2c:08:56:46:d8:24:20:14:2e:16:b7:14:84:26:1d:91:56: 7f:12:d4:c9:26:72:7b:b2:37:71:8e:13:54:9b:8c:62:83:ef: 17:0f:e4:b6:72:48:a5:53:98:aa:e1:4f:2f:3f:7b:9e:b4:b6: a6:c3:80:71:e5:5b:33:31:6e:bd:16:a0:2e:86:dd:a2:c7:60: e2:80:2f:79:23:57:0d:c4:be:4e:c7:3d:87:d4:c6:e4:6a:ff: d5:e1:1f:4a:e7:9b:15:02:3d:e6:c5:35:84:04:63:9f:89:b0: 64:ac:5f:06:37:0b:09:c9:eb:c9:2c:a0:55:d3:46:62:b7:48: ac:3b:69:35:91:60:3b:91:e4:36:34:08:5b:97:b8:a4:64:60: a6:df:55:59:a0:e7:a8:b6:9e:29:36:9e:1f:7e:55:aa:3d:1b: 00:a7:ad:59:79:d3:dc:a0:ab:c2:df:be:60:52:d5:c6:98:51: 49:b9:95:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ2iW8bXwL+K2YNEEjERcSdAvq1swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTEzMDAwMDAwWhcNMjQxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDQ3ZGQ3YTE4ZDdjYzExODllN2YzYjQwMzVmZmIxYjlm ZDJkZTU5ZjAxZGU3OGMzNGFmODdiZmNlYTUxM2JlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxo22iSfZyJ3xAPrl3131BRSPU3cUhESY9ARBxDipjAdml JKTREKPoVqSOuBBmgLF/iJk3AAsN+ml0Jx3pRfmMcDC/SMObUdcVhi+BjeZz1gqf NpqvVPHU/sQ5g3iHYIJCbNZDRdmHsRw0/6FO/0lQw2s1P5MmmeNMNnLbL4mNAbHl T8m6r9HdaAyoAuNrFquPijfbW2/Mmm26eaBnCkOxglFbdlPs2r3FO2jM5M5ieX8a ljaNEzj3RI+ixIQ9sTSP7xwQnbNLI9xodTgLyR0NM0antpyoRdS1vp5S+bgbbrDR iWgKHLR/8pixzX4h7KPDgQTU/RBv7Mf4ygXuvdYPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUA0JqujLjdVxQOhqzgzPz3B/DKawwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmYWJlOWUxLTk0YzItNDg1Zi05NzUzLTEyM2E0M2UxNjFlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjU0AwDQYJKoZIhvcNAQELBQADggEBAGyHjoMhRzLseTSXKmua7N6Mwd3d NerkhuP0K9vlVKokSYVNSC0u86FEfAOsvDXkp6KB1GrJpLMNjcJFNwlLRYYqUSBY zwo+AUwsCFZG2CQgFC4WtxSEJh2RVn8S1MkmcnuyN3GOE1SbjGKD7xcP5LZySKVT mKrhTy8/e560tqbDgHHlWzMxbr0WoC6G3aLHYOKAL3kjVw3Evk7HPYfUxuRq/9Xh H0rnmxUCPebFNYQEY5+JsGSsXwY3CwnJ68ksoFXTRmK3SKw7aTWRYDuR5DY0CFuX uKRkYKbfVVmg56i2nik2nh9+Vao9GwCnrVl509ygq8LfvmBS1caYUUm5lXI= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:46 2024 by rpki-client on console-fra.rpki-client.org