$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ff67b07-091b-43da-9723-1a94e29d65e8.roa File: 1ff67b07-091b-43da-9723-1a94e29d65e8.roa (raw, json) Hash identifier: h9JVFxG8aqK8to6IT/4/cuakuH6W753dmAYVnsBwtc0= Subject key identifier: 44:1B:5C:46:61:1E:24:C2:67:F6:B0:31:CE:27:6F:9D:C5:30:33:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A638565B2EB0BEF516416854532998D9A8F9211 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ff67b07-091b-43da-9723-1a94e29d65e8.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:63:85:65:b2:eb:0b:ef:51:64:16:85:45:32:99:8d:9a:8f:92:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=4602908daa6476fadc697f6ae443b8f453ee4ea89f19d4e4db3d7a016ce3349c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d6:3f:6a:32:f1:22:16:cc:a2:0b:e3:a4:04: 92:0d:b6:64:da:11:5d:61:d2:bf:3a:0b:46:17:c3: 7d:8c:79:d9:78:5b:db:1d:5e:02:3a:38:3e:a5:8c: fc:73:57:68:98:8c:31:6a:cd:47:88:08:cb:36:62: 19:fa:08:c1:33:c5:e8:74:4a:2c:2a:75:10:dc:b0: f3:4a:28:e3:fc:a7:81:c2:0b:bc:83:99:25:c2:b3: bc:a7:27:de:b9:c3:21:13:49:b6:5d:d8:ab:21:9f: c9:bc:f9:a8:7b:42:a3:27:b0:2a:55:7e:2d:0f:37: 84:64:5f:66:7c:32:76:31:d7:8b:cc:c6:03:a2:99: be:95:9f:2b:28:b1:f1:84:12:43:e1:53:38:4e:0c: 0e:17:cf:17:07:82:f0:ab:4c:10:cb:36:20:39:64: 75:42:c2:d8:70:74:5b:cb:3f:d6:83:10:bd:98:37: e5:ec:84:a9:50:a3:71:00:cf:b3:11:86:de:8c:8f: 10:20:a6:fd:f6:45:c0:07:65:82:5f:21:6c:15:84: 48:1f:67:e6:5b:c3:8e:bd:c2:9b:48:fe:9c:97:c6: 10:9a:b2:83:86:21:7a:6e:2f:3c:64:9d:86:b8:79: b7:24:d7:63:09:d0:1e:3f:96:2c:4c:60:6b:98:37: f7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:1B:5C:46:61:1E:24:C2:67:F6:B0:31:CE:27:6F:9D:C5:30:33:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ff67b07-091b-43da-9723-1a94e29d65e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 99:83:cf:41:a4:b1:ed:ef:2a:37:f7:c6:64:44:31:f3:05:55: 9a:cf:9f:f5:7d:0d:40:f5:9c:ea:27:2c:d1:75:13:a6:92:a7: 74:3f:44:d4:52:8f:da:fb:1a:0e:27:78:ae:70:9b:52:93:01: 73:30:a4:fa:f3:97:a0:7f:08:51:9d:2f:91:64:d6:82:ac:2b: fb:85:32:a0:67:03:95:3f:38:90:71:75:73:bd:18:4f:92:64: f0:4b:cb:77:41:b9:ad:55:eb:eb:90:e8:24:bc:9a:f2:7d:f2: 42:98:73:03:19:5e:80:b0:77:ab:ba:f1:45:48:d1:3e:a3:ea: a8:85:18:f4:6b:07:00:e3:ab:13:b1:9e:c7:dc:cd:a8:9d:cb: 6f:e4:19:1b:97:63:f1:71:b1:a5:5f:b5:c8:a0:c9:2a:72:df: 41:1a:e1:6f:16:04:d2:27:17:69:39:91:83:b5:fd:3e:93:10: 43:7d:f4:1c:b1:61:b5:d0:c3:1d:db:d1:f6:d7:8e:cd:38:30: d2:6a:6e:2b:fb:32:9d:d0:a2:02:cd:e1:05:98:7c:a9:f3:6c: 81:86:06:93:3e:c3:a3:1e:74:83:52:85:29:0a:3a:16:a0:93: 1a:f2:41:0c:33:b5:ad:0d:58:dc:77:17:a5:7e:db:87:f0:80: f1:29:7e:a9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSmOFZbLrC+9RZBaFRTKZjZqPkhEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjAyOTA4ZGFhNjQ3NmZhZGM2OTdmNmFlNDQzYjhmNDUz ZWU0ZWE4OWYxOWQ0ZTRkYjNkN2EwMTZjZTMzNDljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx1j9qMvEiFsyiC+OkBJINtmTaEV1h0r86C0YXw32Medl4 W9sdXgI6OD6ljPxzV2iYjDFqzUeICMs2Yhn6CMEzxeh0SiwqdRDcsPNKKOP8p4HC C7yDmSXCs7ynJ965wyETSbZd2Kshn8m8+ah7QqMnsCpVfi0PN4RkX2Z8MnYx14vM xgOimb6VnysosfGEEkPhUzhODA4XzxcHgvCrTBDLNiA5ZHVCwthwdFvLP9aDEL2Y N+XshKlQo3EAz7MRht6MjxAgpv32RcAHZYJfIWwVhEgfZ+Zbw469wptI/pyXxhCa soOGIXpuLzxknYa4ebck12MJ0B4/lixMYGuYN/dTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURBtcRmEeJMJn9rAxzidvncUwMzwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmZjY3YjA3LTA5MWItNDNkYS05NzIzLTFhOTRlMjlkNjVlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4KzANBgkqhkiG9w0BAQsFAAOCAQEAmYPPQaSx7e8qN/fGZEQx8wVVms+f 9X0NQPWc6ics0XUTppKndD9E1FKP2vsaDid4rnCbUpMBczCk+vOXoH8IUZ0vkWTW gqwr+4UyoGcDlT84kHF1c70YT5Jk8EvLd0G5rVXr65DoJLya8n3yQphzAxlegLB3 q7rxRUjRPqPqqIUY9GsHAOOrE7Gex9zNqJ3Lb+QZG5dj8XGxpV+1yKDJKnLfQRrh bxYE0icXaTmRg7X9PpMQQ330HLFhtdDDHdvR9teOzTgw0mpuK/syndCiAs3hBZh8 qfNsgYYGkz7Dox50g1KFKQo6FqCTGvJBDDO1rQ1Y3HcXpX7bh/CA8Sl+qQ== -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:06 2024 by rpki-client on console-fra.rpki-client.org