$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23ef0758-1090-4510-af75-cb75140d882f.roa File: 23ef0758-1090-4510-af75-cb75140d882f.roa (raw, json) Hash identifier: lC2Xm3ptSH+3sZqFgijW0UBpOsII1pG1DS5lxKm87Ck= Subject key identifier: 0B:AF:BD:98:29:20:F2:D7:86:0C:6E:FF:C3:69:B8:E8:AF:DF:03:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C05AABF45E2DC6C887BB859BD533431A9AAE820 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23ef0758-1090-4510-af75-cb75140d882f.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.176.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:05:aa:bf:45:e2:dc:6c:88:7b:b8:59:bd:53:34:31:a9:aa:e8:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=1b2dcb587c7f7fef53796d5444f06a53c0e2471253e6a6905acd4b473cb0e45c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8b:7e:2c:25:bf:56:73:ec:cc:c8:9a:71:5d: d3:ef:86:4d:df:ec:10:6e:40:56:13:b0:ff:2a:a2: c5:94:53:2a:0b:01:7a:1b:69:d2:61:8e:f2:2f:63: 0f:9e:30:7e:4d:71:2c:79:b0:69:81:b1:dd:35:d3: bb:92:c3:21:52:6c:25:e1:75:91:29:7c:50:4f:42: 07:a1:4c:80:0e:b9:72:d1:e3:45:f9:2d:8d:4d:a7: 7e:ba:04:41:cb:48:e9:94:1c:0c:79:89:34:55:fa: ba:5d:5b:f1:1f:74:4b:25:32:c6:f0:77:e0:43:e8: 4a:d8:f2:15:bf:f0:3e:01:a1:3f:0e:49:0d:c1:4a: c9:3c:b7:cd:57:5e:13:48:e4:af:18:e5:4f:73:ae: 5a:9e:fc:fb:27:ce:4a:07:7c:13:4e:85:49:65:ad: c7:24:12:a6:d5:a2:e4:13:80:3e:69:e6:66:99:ae: 71:91:0f:7f:8d:c4:c8:e5:16:db:d3:6e:d4:fa:94: d3:6b:e3:12:47:43:6d:35:88:f7:97:a3:7b:84:79: 2c:37:d3:da:6e:58:aa:e0:7b:df:e8:ca:f9:d1:3f: 5d:10:22:fc:7f:b6:ea:69:ee:c7:d2:76:2a:79:ff: 23:da:08:e5:9c:73:da:69:f1:7c:38:22:eb:cc:ab: ef:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:AF:BD:98:29:20:F2:D7:86:0C:6E:FF:C3:69:B8:E8:AF:DF:03:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23ef0758-1090-4510-af75-cb75140d882f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.176.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:83:e3:cf:34:bc:c4:53:7c:00:5a:e4:f6:dd:df:01:3b:8a: 0e:01:6f:bb:dd:71:ac:c5:93:09:67:d6:1b:91:9b:ad:db:48: 35:a3:eb:c5:43:d2:bb:e1:d7:c6:1f:96:e7:66:67:8b:36:0b: 22:fd:1a:cd:f8:52:e9:8b:86:fe:01:e4:bf:62:6c:d9:8d:14: 96:48:a8:49:cb:24:a4:01:7f:2a:bd:1e:97:37:a9:d0:f3:3c: ff:89:80:b7:98:06:9c:de:d3:59:37:1c:83:ca:57:f4:62:20: 91:0e:ca:d7:c2:35:5f:80:47:e1:7b:5f:3c:6a:e4:7a:a5:eb: f8:b1:d6:82:9e:4e:27:45:78:8f:d1:5a:a5:d1:39:15:b8:b6: bc:ee:14:ef:e1:8e:04:8a:13:db:37:1d:39:a5:da:26:12:13: 44:1e:3d:d9:34:02:81:a7:99:1e:67:f6:a7:f6:64:64:36:15: d0:d6:0f:96:96:63:71:87:ee:11:88:32:e7:71:1c:4a:40:bb: 86:6b:49:9b:eb:90:53:f0:1c:a5:be:cc:ce:4f:bb:9b:ff:f3: 2a:8a:45:f2:a3:1b:40:81:8c:dd:41:5b:b3:20:ec:c0:08:18: d5:90:04:82:ad:e3:6d:12:cd:84:7a:06:14:43:1c:d9:6d:75: f8:e8:da:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfAWqv0Xi3GyIe7hZvVM0Mamq6CAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjJkY2I1ODdjN2Y3ZmVmNTM3OTZkNTQ0NGYwNmE1M2Mw ZTI0NzEyNTNlNmE2OTA1YWNkNGI0NzNjYjBlNDVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgi34sJb9Wc+zMyJpxXdPvhk3f7BBuQFYTsP8qosWUUyoL AXobadJhjvIvYw+eMH5NcSx5sGmBsd0107uSwyFSbCXhdZEpfFBPQgehTIAOuXLR 40X5LY1Np366BEHLSOmUHAx5iTRV+rpdW/EfdEslMsbwd+BD6ErY8hW/8D4BoT8O SQ3BSsk8t81XXhNI5K8Y5U9zrlqe/PsnzkoHfBNOhUllrcckEqbVouQTgD5p5maZ rnGRD3+NxMjlFtvTbtT6lNNr4xJHQ201iPeXo3uEeSw309puWKrge9/oyvnRP10Q Ivx/tupp7sfSdip5/yPaCOWcc9pp8Xw4IuvMq+9rAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUC6+9mCkg8teGDG7/w2m46K/fA9cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzZWYwNzU4LTEwOTAtNDUxMC1hZjc1LWNiNzUxNDBkODgyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4sDANBgkqhkiG9w0BAQsFAAOCAQEAKYPjzzS8xFN8AFrk9t3fATuKDgFv u91xrMWTCWfWG5GbrdtINaPrxUPSu+HXxh+W52ZnizYLIv0azfhS6YuG/gHkv2Js 2Y0UlkioScskpAF/Kr0elzep0PM8/4mAt5gGnN7TWTccg8pX9GIgkQ7K18I1X4BH 4XtfPGrkeqXr+LHWgp5OJ0V4j9FapdE5Fbi2vO4U7+GOBIoT2zcdOaXaJhITRB49 2TQCgaeZHmf2p/ZkZDYV0NYPlpZjcYfuEYgy53EcSkC7hmtJm+uQU/Acpb7Mzk+7 m//zKopF8qMbQIGM3UFbsyDswAgY1ZAEgq3jbRLNhHoGFEMc2W11+OjaaQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:48 2024 by rpki-client on console-fra.rpki-client.org