$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/211b1e52-4b6d-4415-92d4-b1788c65a486.roa File: 211b1e52-4b6d-4415-92d4-b1788c65a486.roa (raw, json) Hash identifier: vRpvEQCrv9pCAgzFJpk589ImuLPzNNWWbsmYqdjYR/w= Subject key identifier: 22:FF:D2:B6:30:54:CB:18:BB:45:87:72:52:AC:16:44:E3:EF:B3:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65CE130E706C2FF40184F20C5DFEA12615E215E8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/211b1e52-4b6d-4415-92d4-b1788c65a486.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 207.9.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ce:13:0e:70:6c:2f:f4:01:84:f2:0c:5d:fe:a1:26:15:e2:15:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=f7310a34baf921461201133ad40ddb580c28959f76d751071ecb1f9b339f2ad4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5f:c7:e8:d9:a3:65:dc:53:0a:ce:aa:3f:c4: 0c:7c:6f:1a:10:63:d8:aa:9a:ba:35:a3:83:d4:d9: 4f:14:66:c6:9d:99:50:af:90:e6:cb:77:6c:73:fe: b1:20:31:af:30:13:a6:45:ba:b5:0f:1f:b1:a8:83: 34:79:d4:cd:d6:15:db:f2:8f:77:73:83:7d:ed:b8: 78:a3:6c:17:44:26:e8:03:d8:bd:bf:e8:57:ce:84: 7b:30:b4:c0:67:b3:b5:50:b7:be:e2:d6:59:2c:bb: 8a:ec:55:c3:ea:cc:b4:64:3d:e7:53:0b:36:c9:fc: 88:7d:a8:b2:45:4f:29:44:80:0e:aa:2f:95:04:03: fe:c7:d2:d9:30:38:ee:ac:97:a3:4a:82:23:45:24: 03:30:3f:4a:bd:b8:07:1f:34:af:1e:51:dc:d4:28: e3:84:28:eb:d0:09:dd:20:5a:56:5a:70:38:7e:c2: c3:83:20:0d:f6:84:8a:10:d2:ba:ea:18:02:d7:af: 54:5e:81:1e:56:33:44:bb:3d:e9:d0:c4:1b:08:92: 31:e9:8a:09:14:3e:2c:4e:ed:3d:e1:92:37:8d:67: 09:f3:d2:73:66:06:fb:56:50:c7:b7:e9:bf:03:4d: c7:d9:5e:84:20:e1:58:51:3f:71:fe:15:14:21:7d: 73:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FF:D2:B6:30:54:CB:18:BB:45:87:72:52:AC:16:44:E3:EF:B3:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/211b1e52-4b6d-4415-92d4-b1788c65a486.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.9.0.0/16 Signature Algorithm: sha256WithRSAEncryption 96:fd:a9:47:59:a9:f0:d0:cf:f8:bf:7e:4b:5f:70:e3:1c:51: df:d6:e9:97:32:ec:c6:21:5e:ee:44:91:d1:af:63:e3:7c:5f: 4c:74:c2:1f:40:c7:5e:88:7e:ab:e1:24:05:a3:ad:1f:be:9e: 9d:41:e7:65:f2:20:ff:ed:34:81:cf:69:39:24:a1:b4:0c:9e: d8:9a:8d:4e:9e:e7:fb:ea:e8:cf:cb:b1:a3:03:aa:ec:98:f6: d7:14:de:d6:ce:69:74:03:08:73:77:aa:64:04:89:1d:b8:a2: f2:da:33:84:46:13:9c:ca:67:23:19:a7:39:30:00:1d:4b:53: cf:61:7e:c5:e1:38:9b:bc:b4:7d:3c:26:26:4d:f9:eb:34:97: 7c:be:28:cf:27:49:4b:cd:4a:9d:a8:ed:e3:12:a4:a4:61:65: f1:1c:99:e5:62:75:f4:5e:60:c3:71:c5:85:cc:9b:e7:4e:43: 91:d9:a0:35:fe:c4:67:48:b5:1b:c4:a9:0e:e9:4c:23:43:a5: 39:9e:42:51:ab:19:85:bf:33:99:01:97:3f:79:48:c5:be:0f: 15:4f:07:78:c5:79:c2:e2:c7:e5:24:58:eb:54:5a:6e:d1:91: ae:9d:b2:4b:dd:c8:2b:d0:7d:83:91:0c:84:ec:bb:81:49:e7: 64:33:68:c6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZc4TDnBsL/QBhPIMXf6hJhXiFegwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzMxMGEzNGJhZjkyMTQ2MTIwMTEzM2FkNDBkZGI1ODBj Mjg5NTlmNzZkNzUxMDcxZWNiMWY5YjMzOWYyYWQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZX8fo2aNl3FMKzqo/xAx8bxoQY9iqmro1o4PU2U8UZsad mVCvkObLd2xz/rEgMa8wE6ZFurUPH7GogzR51M3WFdvyj3dzg33tuHijbBdEJugD 2L2/6FfOhHswtMBns7VQt77i1lksu4rsVcPqzLRkPedTCzbJ/Ih9qLJFTylEgA6q L5UEA/7H0tkwOO6sl6NKgiNFJAMwP0q9uAcfNK8eUdzUKOOEKOvQCd0gWlZacDh+ wsODIA32hIoQ0rrqGALXr1RegR5WM0S7PenQxBsIkjHpigkUPixO7T3hkjeNZwnz 0nNmBvtWUMe36b8DTcfZXoQg4VhRP3H+FRQhfXOJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIv/StjBUyxi7RYdyUqwWROPvs2EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxMWIxZTUyLTRiNmQtNDQxNS05MmQ0LWIxNzg4YzY1YTQ4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDPCTANBgkqhkiG9w0BAQsFAAOCAQEAlv2pR1mp8NDP+L9+S19w4xxR39bp lzLsxiFe7kSR0a9j43xfTHTCH0DHXoh+q+EkBaOtH76enUHnZfIg/+00gc9pOSSh tAye2JqNTp7n++roz8uxowOq7Jj21xTe1s5pdAMIc3eqZASJHbii8tozhEYTnMpn IxmnOTAAHUtTz2F+xeE4m7y0fTwmJk356zSXfL4ozydJS81Knajt4xKkpGFl8RyZ 5WJ19F5gw3HFhcyb505DkdmgNf7EZ0i1G8SpDulMI0OlOZ5CUasZhb8zmQGXP3lI xb4PFU8HeMV5wuLH5SRY61RabtGRrp2yS93IK9B9g5EMhOy7gUnnZDNoxg== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:23 2024 by rpki-client on console-ams.rpki-client.org