$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/285a48af-2ccd-4b1a-8f68-325b86119506.roa File: 285a48af-2ccd-4b1a-8f68-325b86119506.roa (raw, json) Hash identifier: 2IasQat2hNucZwtGNLG8tQl+Yhc63KQu7r9B0SKiQqM= Subject key identifier: 1C:16:1F:02:34:22:4C:47:0F:F6:BE:7B:8B:19:80:96:D0:96:A5:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51710746E5E1555CCBE319B9754ED3CD52509BA7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/285a48af-2ccd-4b1a-8f68-325b86119506.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 172.103.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:71:07:46:e5:e1:55:5c:cb:e3:19:b9:75:4e:d3:cd:52:50:9b:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=46afa66301f536ca883bfd498e436094b3ad16144600bf2e88b3305e6a04a1ce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:79:91:e3:83:32:51:57:f9:9b:ed:ec:ce:46: 79:7a:40:c8:00:84:ff:86:34:de:08:ee:08:42:38: 11:f2:e1:99:64:45:5f:fc:94:4b:76:cc:d9:e3:b5: 8b:49:2a:33:d4:88:1c:13:d0:c6:52:cd:5f:21:13: 9e:ea:1c:0e:d9:06:51:d0:ee:e5:97:d1:51:b2:81: 82:0b:45:d3:71:3e:bd:eb:ea:f3:c4:35:be:50:2a: 4e:36:7b:e9:63:50:48:4d:52:87:90:ac:22:a1:5a: d2:74:1e:0f:68:1e:a7:78:25:f2:a0:99:5f:5c:3f: 9d:38:b1:f8:20:05:49:1f:19:6c:35:77:8c:e7:d7: bd:d5:24:be:84:88:3e:f9:cb:1d:6d:83:cb:d1:8c: 6a:fd:3f:9a:68:78:39:da:07:7e:19:a9:4f:21:05: 79:c1:f8:7d:97:04:4a:1e:ec:4f:2d:cd:f9:f2:09: fe:09:3e:e5:df:97:fe:23:3a:88:ac:5e:26:f0:fe: 4f:a9:6e:89:ae:59:53:67:62:3e:75:c6:61:41:c5: f6:6e:a7:5e:ea:ea:31:87:d1:b1:f0:e2:cb:45:a7: b1:47:89:ca:64:10:05:81:29:09:f2:db:5d:30:a4: e2:bc:2a:b8:97:03:6f:03:15:ad:f8:4f:ad:1b:8e: ba:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:16:1F:02:34:22:4C:47:0F:F6:BE:7B:8B:19:80:96:D0:96:A5:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/285a48af-2ccd-4b1a-8f68-325b86119506.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.103.40.0/21 Signature Algorithm: sha256WithRSAEncryption 38:18:5c:07:43:dd:55:de:00:1e:bc:58:da:73:99:e3:45:47: 52:d1:7a:84:62:1f:4c:f3:f1:ed:71:22:af:3b:f4:11:58:17: 66:4b:07:b9:5a:ba:d6:c8:68:16:d2:a0:39:2e:b3:ca:11:ab: 9f:0f:7d:7c:49:93:a5:79:c0:d8:48:e0:f9:1e:78:ae:48:54: b3:da:7b:63:19:f2:a7:da:91:0f:9e:ee:28:4a:0b:21:31:d3: 57:ce:10:c1:57:a0:cb:e0:bb:7f:b4:ca:5a:45:f9:28:ab:86: d7:27:5a:fd:52:41:66:b5:8b:4d:2d:e4:e5:7f:a8:e5:a0:ec: e9:17:ec:cb:eb:12:25:01:fe:9b:95:0e:72:9f:74:ff:25:6a: 96:0e:07:9c:53:1e:ef:b2:ab:af:0c:05:ba:4e:6f:97:5d:ac: 3f:77:49:08:a6:14:4c:e6:b2:5c:28:3d:53:8e:4b:1b:9e:e4: db:a1:df:2d:e7:9f:73:99:af:df:6e:13:c5:94:a5:e0:70:ce: f4:10:f4:61:40:45:d7:da:d5:53:c5:fe:8b:29:5f:a2:b9:a4: 43:56:c8:f9:e7:bb:1c:fe:de:c5:76:bb:f8:e1:64:dc:f2:f4: 05:eb:88:ea:27:29:80:c1:fa:f9:30:74:27:55:e0:83:ed:1c: be:50:36:f5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUXEHRuXhVVzL4xm5dU7TzVJQm6cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NmFmYTY2MzAxZjUzNmNhODgzYmZkNDk4ZTQzNjA5NGIz YWQxNjE0NDYwMGJmMmU4OGIzMzA1ZTZhMDRhMWNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCveZHjgzJRV/mb7ezORnl6QMgAhP+GNN4I7ghCOBHy4Zlk RV/8lEt2zNnjtYtJKjPUiBwT0MZSzV8hE57qHA7ZBlHQ7uWX0VGygYILRdNxPr3r 6vPENb5QKk42e+ljUEhNUoeQrCKhWtJ0Hg9oHqd4JfKgmV9cP504sfggBUkfGWw1 d4zn173VJL6EiD75yx1tg8vRjGr9P5poeDnaB34ZqU8hBXnB+H2XBEoe7E8tzfny Cf4JPuXfl/4jOoisXibw/k+pbomuWVNnYj51xmFBxfZup17q6jGH0bHw4stFp7FH icpkEAWBKQny210wpOK8KriXA28DFa34T60bjro5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHBYfAjQiTEcP9r57ixmAltCWpdkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4NWE0OGFmLTJjY2QtNGIxYS04ZjY4LTMyNWI4NjExOTUwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsZygwDQYJKoZIhvcNAQELBQADggEBADgYXAdD3VXeAB68WNpzmeNFR1LR eoRiH0zz8e1xIq879BFYF2ZLB7lautbIaBbSoDkus8oRq58PfXxJk6V5wNhI4Pke eK5IVLPae2MZ8qfakQ+e7ihKCyEx01fOEMFXoMvgu3+0ylpF+SirhtcnWv1SQWa1 i00t5OV/qOWg7OkX7MvrEiUB/puVDnKfdP8lapYOB5xTHu+yq68MBbpOb5ddrD93 SQimFEzmslwoPVOOSxue5Nuh3y3nn3OZr99uE8WUpeBwzvQQ9GFARdfa1VPF/osp X6K5pENWyPnnuxz+3sV2u/jhZNzy9AXriOonKYDB+vkwdCdV4IPtHL5QNvU= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:49 2024 by rpki-client on console-fra.rpki-client.org