$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2645849a-4d1c-4d39-9157-62ba39467753.roa File: 2645849a-4d1c-4d39-9157-62ba39467753.roa (raw, json) Hash identifier: ZVQjyLEfwEXIHYkt4HOEdO/xuo+fFy3D9f6Pfv2NWQw= Subject key identifier: 43:F7:C2:99:1A:C9:EF:C4:95:D5:39:0C:41:E9:F3:08:5D:97:60:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52328FA3A6A4EFC55B170681356DBD30BFB97D98 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2645849a-4d1c-4d39-9157-62ba39467753.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f70:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:32:8f:a3:a6:a4:ef:c5:5b:17:06:81:35:6d:bd:30:bf:b9:7d:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=4c3517a2b163068503e8707b07e59f17185ab4f4d5f084275383364e5aee62b6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ba:61:9f:fd:70:09:dd:43:8b:12:92:e3:34: 4f:4a:82:26:c4:58:00:a6:92:ca:8d:83:33:38:10: ea:82:b8:f8:22:8a:bf:02:72:36:2a:66:d1:0f:d3: 61:48:10:b6:90:86:c3:ad:5b:40:0c:a8:16:9e:7c: 8a:31:14:c8:e6:64:01:f9:ba:9d:9a:0e:6a:cb:d0: 01:06:e6:65:a1:48:c4:72:98:1f:5b:5e:87:0e:85: 67:d0:1c:ae:30:95:7d:6d:51:bb:e0:ae:f8:52:df: 49:34:00:25:ee:79:70:13:49:a3:fa:69:13:bd:89: 26:68:2c:e0:11:8f:64:08:d4:78:c9:25:81:f2:92: 5b:1e:fc:80:0b:bd:b1:b3:1f:56:03:4c:9d:22:21: fe:57:a1:95:9e:6f:f5:bc:dd:f8:13:86:f4:5a:95: e9:9c:bf:a6:2e:a5:f2:e5:91:4f:2d:65:8a:10:74: ec:10:0a:29:03:b1:68:9d:fc:ac:0a:f1:78:53:32: 99:85:31:b9:2c:2b:09:87:03:56:12:c6:60:7b:68: 3f:3f:2d:63:c4:14:48:86:b0:e3:3e:f7:0c:ad:6a: d4:ef:ba:a1:76:0c:81:e5:14:73:e0:37:64:8c:03: a3:e0:85:9d:4e:08:a3:b2:b5:65:7e:5a:a1:a1:d6: cb:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F7:C2:99:1A:C9:EF:C4:95:D5:39:0C:41:E9:F3:08:5D:97:60:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2645849a-4d1c-4d39-9157-62ba39467753.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:c000::/40 Signature Algorithm: sha256WithRSAEncryption ab:63:13:22:04:c9:bb:c2:9f:c4:24:f7:80:60:63:ba:65:6b: 19:c1:31:2a:9f:9d:c2:8a:49:c4:74:9c:cf:84:9d:d3:e0:af: e8:75:fd:ad:fc:cc:4c:ca:94:ee:cb:d8:24:d6:e6:a1:8f:97: e8:af:50:e2:17:28:40:41:c1:a0:f2:de:f1:4f:61:b4:bd:3a: 85:8b:f3:59:8e:5c:0d:74:65:7f:21:37:ea:05:8d:98:eb:f0: 61:0c:b0:28:29:2c:2f:c0:28:ed:a8:d4:4b:2b:c4:ab:6c:fd: 19:d6:d2:eb:58:ee:31:20:86:77:78:ed:89:7d:fd:36:97:6e: 0c:a9:13:99:bb:45:4f:f2:d0:8a:ca:cd:29:89:2f:f6:5b:f6: 3d:dd:26:98:0f:55:98:42:8e:6d:24:84:1a:38:20:1f:c6:f7: 0e:ce:2b:bf:6d:65:8e:82:3a:a4:3d:2e:65:c3:b5:8b:d4:f5: bd:c7:ec:95:52:8a:45:56:da:f7:53:cc:fb:50:74:44:c6:1e: b3:84:89:5a:25:aa:49:76:e5:8c:6f:ca:ba:93:32:ba:ab:ef: ae:5f:b7:82:5d:2d:f3:cc:4e:82:30:0f:84:23:58:94:30:ed: 49:cf:7e:d9:35:5a:fc:2a:0b:04:29:07:2a:90:a5:07:85:d6: 81:ed:35:f4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUjKPo6ak78VbFwaBNW29ML+5fZgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzM1MTdhMmIxNjMwNjg1MDNlODcwN2IwN2U1OWYxNzE4 NWFiNGY0ZDVmMDg0Mjc1MzgzMzY0ZTVhZWU2MmI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUumGf/XAJ3UOLEpLjNE9KgibEWACmksqNgzM4EOqCuPgi ir8CcjYqZtEP02FIELaQhsOtW0AMqBaefIoxFMjmZAH5up2aDmrL0AEG5mWhSMRy mB9bXocOhWfQHK4wlX1tUbvgrvhS30k0ACXueXATSaP6aRO9iSZoLOARj2QI1HjJ JYHyklse/IALvbGzH1YDTJ0iIf5XoZWeb/W83fgThvRalemcv6YupfLlkU8tZYoQ dOwQCikDsWid/KwK8XhTMpmFMbksKwmHA1YSxmB7aD8/LWPEFEiGsOM+9wytatTv uqF2DIHlFHPgN2SMA6PghZ1OCKOytWV+WqGh1st1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUQ/fCmRrJ78SV1TkMQenzCF2XYLYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI2NDU4NDlhLTRkMWMtNGQzOS05MTU3LTYyYmEzOTQ2Nzc1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9wwDANBgkqhkiG9w0BAQsFAAOCAQEAq2MTIgTJu8KfxCT3gGBjumVr GcExKp+dwopJxHScz4Sd0+Cv6HX9rfzMTMqU7svYJNbmoY+X6K9Q4hcoQEHBoPLe 8U9htL06hYvzWY5cDXRlfyE36gWNmOvwYQywKCksL8Ao7ajUSyvEq2z9GdbS61ju MSCGd3jtiX39NpduDKkTmbtFT/LQisrNKYkv9lv2Pd0mmA9VmEKObSSEGjggH8b3 Ds4rv21ljoI6pD0uZcO1i9T1vcfslVKKRVba91PM+1B0RMYes4SJWiWqSXbljG/K upMyuqvvrl+3gl0t88xOgjAPhCNYlDDtSc9+2TVa/CoLBCkHKpClB4XWge019A== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:48 2024 by rpki-client on console-fra.rpki-client.org