$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fefa7d9-baf0-4d92-a29b-fd2710f5effe.roa File: 1fefa7d9-baf0-4d92-a29b-fd2710f5effe.roa (raw, json) Hash identifier: s9yow3CYQIiOO2Y+Owb5a++4lptNwUIgB73QYzB4G1E= Subject key identifier: 6D:87:91:6E:AF:E2:98:D7:14:7A:43:3A:7F:A1:07:F4:68:54:14:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B1508826E3F6C6691050491660DFF8964E4B9D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fefa7d9-baf0-4d92-a29b-fd2710f5effe.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 398378 IP address blocks: 192.189.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:15:08:82:6e:3f:6c:66:91:05:04:91:66:0d:ff:89:64:e4:b9:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=6cb51aa2221428e64a76951703fae0c19aed98bcfdf6392a126201a048f3bdef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:77:ee:92:b9:f1:d3:f2:bb:00:5a:4f:08:32: 29:60:f0:c2:e1:6c:40:2f:61:0d:48:8a:6d:f8:40: 60:55:78:e2:1c:1e:c1:a9:bd:72:d5:4d:4d:2b:33: a9:b2:fe:c7:10:06:b7:33:9e:7e:a7:82:69:d3:5b: 47:2c:e2:47:0d:ec:61:34:4a:75:df:3e:52:67:41: e5:35:ff:60:89:d2:77:82:d3:94:55:45:f1:e9:b4: f3:21:51:fa:7d:3c:82:75:84:68:05:06:1e:1d:78: 0e:fb:26:5a:00:3f:84:22:7d:71:94:a0:cf:c2:75: 5d:2a:90:0f:2c:52:ec:78:df:da:a3:35:f9:e2:91: 6e:df:ec:06:80:99:28:8f:26:2d:85:b0:29:27:64: f4:e0:fe:d1:3e:cb:00:b8:96:2e:fb:65:3f:14:31: 44:91:19:4c:53:fa:ff:a3:a3:63:45:24:ce:22:67: 25:e8:d1:c8:29:9d:40:28:af:a0:c2:de:12:a2:be: 5f:fe:2a:65:03:a5:a4:ab:ec:09:87:9a:58:db:48: 36:f3:d1:e4:28:8a:d9:4d:e0:47:1e:be:81:d2:4c: 78:08:d8:37:8b:88:4a:74:ed:6b:3c:39:2a:ce:e0: 3a:5a:36:78:d1:a5:75:ed:56:64:68:75:20:bf:30: c3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:87:91:6E:AF:E2:98:D7:14:7A:43:3A:7F:A1:07:F4:68:54:14:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fefa7d9-baf0-4d92-a29b-fd2710f5effe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.189.196.0/24 Signature Algorithm: sha256WithRSAEncryption c3:72:50:fd:6c:83:5d:8f:81:e1:94:f4:6c:c5:e1:6c:5a:43: 63:51:30:da:7d:91:11:54:ad:cd:f3:9d:13:7e:56:c7:1b:c4: 8f:1f:aa:a4:af:c6:5f:e7:e0:f6:0d:d6:c3:b9:1e:ba:dd:7c: 73:74:33:93:4e:69:b2:6e:18:8f:f9:61:b9:e6:09:de:f6:b9: 0a:a6:20:e6:1e:9f:2d:00:02:30:d2:2b:d1:a3:0e:bc:8e:d4: 7a:cb:5e:ad:aa:4a:9f:25:ac:17:b5:0e:ef:4d:1b:2d:91:77: a4:7a:fa:e0:eb:8b:22:55:67:08:c4:f7:fc:22:f0:3e:0c:03: 1c:f8:e9:74:05:a9:a3:ea:66:a6:6a:e3:ce:bf:b2:1c:07:9e: 4d:f5:d4:bf:76:bf:0e:47:8c:18:fc:2c:b8:f6:22:23:93:19: 18:b0:63:a2:ff:fe:87:d6:01:a9:d9:48:9e:22:f3:16:e3:be: 31:59:c1:57:e8:50:0f:a9:ce:52:a9:92:b6:6e:12:0a:fd:f0: 7d:4e:7c:9d:98:b5:09:7e:27:86:88:0f:31:8c:8d:6f:ce:b5: 43:cb:52:6e:b6:07:01:2f:28:dd:86:fb:a4:bf:a6:a0:90:45: e4:c9:53:11:50:4a:55:45:c2:69:c5:5b:fd:d8:96:73:d7:42: 36:7b:a5:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOxUIgm4/bGaRBQSRZg3/iWTkudAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2Y2I1MWFhMjIyMTQyOGU2NGE3Njk1MTcwM2ZhZTBjMTlh ZWQ5OGJjZmRmNjM5MmExMjYyMDFhMDQ4ZjNiZGVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9d+6SufHT8rsAWk8IMilg8MLhbEAvYQ1Iim34QGBVeOIc HsGpvXLVTU0rM6my/scQBrcznn6ngmnTW0cs4kcN7GE0SnXfPlJnQeU1/2CJ0neC 05RVRfHptPMhUfp9PIJ1hGgFBh4deA77JloAP4QifXGUoM/CdV0qkA8sUux439qj NfnikW7f7AaAmSiPJi2FsCknZPTg/tE+ywC4li77ZT8UMUSRGUxT+v+jo2NFJM4i ZyXo0cgpnUAor6DC3hKivl/+KmUDpaSr7AmHmljbSDbz0eQoitlN4EcevoHSTHgI 2DeLiEp07Ws8OSrO4DpaNnjRpXXtVmRodSC/MMNpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbYeRbq/imNcUekM6f6EH9GhUFOUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmZWZhN2Q5LWJhZjAtNGQ5Mi1hMjliLWZkMjcxMGY1ZWZmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAvcQwDQYJKoZIhvcNAQELBQADggEBAMNyUP1sg12PgeGU9GzF4WxaQ2NR MNp9kRFUrc3znRN+VscbxI8fqqSvxl/n4PYN1sO5HrrdfHN0M5NOabJuGI/5Ybnm Cd72uQqmIOYeny0AAjDSK9GjDryO1HrLXq2qSp8lrBe1Du9NGy2Rd6R6+uDriyJV ZwjE9/wi8D4MAxz46XQFqaPqZqZq486/shwHnk311L92vw5HjBj8LLj2IiOTGRiw Y6L//ofWAanZSJ4i8xbjvjFZwVfoUA+pzlKpkrZuEgr98H1OfJ2YtQl+J4aIDzGM jW/OtUPLUm62BwEvKN2G+6S/pqCQReTJUxFQSlVFwmnFW/3YlnPXQjZ7pdA= -----END CERTIFICATE-----Generated at Mon Nov 25 17:57:21 2024 by rpki-client on console-fra.rpki-client.org