$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/206d96f1-1619-4027-bbab-6d34fe5d248c.roa File: 206d96f1-1619-4027-bbab-6d34fe5d248c.roa (raw, json) Hash identifier: 47lsqvGRQRLgQVmAsecefRNiC3KDtOqJ1ufFt+cKr/0= Subject key identifier: 23:D3:A4:28:65:42:9C:25:38:C6:9D:22:9D:DD:BC:32:0E:27:19:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A9AC8C7E2AD825E8358093ECD67197B85D4E45F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/206d96f1-1619-4027-bbab-6d34fe5d248c.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 132.223.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:9a:c8:c7:e2:ad:82:5e:83:58:09:3e:cd:67:19:7b:85:d4:e4:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=3d83163093ef47efe18abc417ee605e0bdecda5cbed6fff167893ab966a80f35, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b6:de:b6:40:ae:05:30:7b:8d:55:a0:c7:96: 4a:dd:c0:07:c5:8b:56:fc:e1:e4:61:6a:b2:c5:25: b1:97:6a:26:34:1e:bf:37:74:7a:54:69:9c:23:2d: 75:4a:78:b7:c9:ac:df:a6:69:9d:e1:f5:0a:0f:7a: c6:63:d4:10:8f:29:02:9a:7c:80:da:46:db:be:45: c8:97:4f:cd:d5:e3:5a:4b:fe:35:f3:07:7f:92:8e: 04:c4:ee:08:4c:1d:24:9b:ea:d8:bf:26:5c:10:33: eb:a7:d2:7f:66:e3:ca:09:ac:2f:18:54:3a:1e:ef: 42:1d:9d:6c:34:56:bf:4e:95:f9:64:b6:41:5f:de: 9b:c0:f9:36:62:ff:1c:aa:83:19:98:17:87:0c:42: 15:34:75:ce:e4:4d:2a:07:62:a8:a1:23:0e:32:9b: 11:b6:fe:1a:57:f7:c3:d9:ee:85:fc:9d:04:8e:ad: 4f:a7:9d:63:f8:50:5c:e8:19:21:59:12:a2:5c:e3: bb:4a:7f:cb:22:dc:12:5c:88:34:d5:63:e6:52:8d: a1:22:54:c2:d2:f3:0e:1c:40:eb:76:62:a8:76:25: 8c:0e:85:44:f3:0e:b5:83:74:2c:f8:bd:26:fb:c2: 98:5a:b3:05:0c:42:fd:91:77:f6:c1:5f:fd:ef:9c: 9a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D3:A4:28:65:42:9C:25:38:C6:9D:22:9D:DD:BC:32:0E:27:19:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/206d96f1-1619-4027-bbab-6d34fe5d248c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 132.223.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:39:7e:39:2f:f0:e9:dd:5c:b0:15:6e:46:fa:a1:bd:c4:52: ca:71:b6:48:df:aa:21:54:b5:6e:46:25:de:fd:a8:b8:ee:43: 34:0b:16:76:aa:16:83:93:dd:5a:2a:0b:5a:8c:3b:4e:fb:bc: ce:d0:c8:a1:73:cb:2b:82:6b:31:80:60:ae:4c:b7:0d:00:f0: a9:e3:17:11:96:5a:51:53:ca:61:08:55:aa:7a:ff:5f:13:1a: d6:a3:7c:59:00:b7:76:c7:aa:95:0e:d5:c5:9f:5e:de:12:da: 44:07:ce:55:09:3d:7b:96:ff:18:47:21:97:9c:d1:0c:47:41: fa:72:29:9e:a0:ec:f8:bc:27:8d:9d:b3:80:73:da:0a:3a:0d: 0f:93:34:37:56:5c:7b:ae:a1:67:6e:e2:33:4a:45:cc:93:bc: 8f:75:60:a8:1a:fb:01:04:a0:6b:b3:fb:8a:28:2e:53:40:21: f5:bd:65:1e:b9:3a:0d:b3:b9:e7:dd:eb:ef:65:5b:4d:3c:03: a8:f9:ad:40:14:22:3d:87:45:4a:fe:40:0a:71:b6:80:20:e0: 3c:41:fb:1a:68:c0:0f:b1:a6:c0:74:87:ea:28:17:98:6b:8a: 17:5a:be:9c:78:6c:87:a3:fb:ce:c5:a6:50:e9:18:42:e2:53: ca:08:9b:be -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSprIx+Ktgl6DWAk+zWcZe4XU5F8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDgzMTYzMDkzZWY0N2VmZTE4YWJjNDE3ZWU2MDVlMGJk ZWNkYTVjYmVkNmZmZjE2Nzg5M2FiOTY2YTgwZjM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2tt62QK4FMHuNVaDHlkrdwAfFi1b84eRharLFJbGXaiY0 Hr83dHpUaZwjLXVKeLfJrN+maZ3h9QoPesZj1BCPKQKafIDaRtu+RciXT83V41pL /jXzB3+SjgTE7ghMHSSb6ti/JlwQM+un0n9m48oJrC8YVDoe70IdnWw0Vr9Olflk tkFf3pvA+TZi/xyqgxmYF4cMQhU0dc7kTSoHYqihIw4ymxG2/hpX98PZ7oX8nQSO rU+nnWP4UFzoGSFZEqJc47tKf8si3BJciDTVY+ZSjaEiVMLS8w4cQOt2Yqh2JYwO hUTzDrWDdCz4vSb7wphaswUMQv2Rd/bBX/3vnJqNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUI9OkKGVCnCU4xp0ind28Mg4nGRYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwNmQ5NmYxLTE2MTktNDAyNy1iYmFiLTZkMzRmZTVkMjQ4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCE3zANBgkqhkiG9w0BAQsFAAOCAQEALjl+OS/w6d1csBVuRvqhvcRSynG2 SN+qIVS1bkYl3v2ouO5DNAsWdqoWg5PdWioLWow7Tvu8ztDIoXPLK4JrMYBgrky3 DQDwqeMXEZZaUVPKYQhVqnr/XxMa1qN8WQC3dseqlQ7VxZ9e3hLaRAfOVQk9e5b/ GEchl5zRDEdB+nIpnqDs+LwnjZ2zgHPaCjoND5M0N1Zce66hZ27iM0pFzJO8j3Vg qBr7AQSga7P7iiguU0Ah9b1lHrk6DbO5593r72VbTTwDqPmtQBQiPYdFSv5ACnG2 gCDgPEH7GmjAD7GmwHSH6igXmGuKF1q+nHhsh6P7zsWmUOkYQuJTygibvg== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:46 2024 by rpki-client on console-fra.rpki-client.org