$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2913887f-1b92-4da2-8b74-668110b7223c.roa File: 2913887f-1b92-4da2-8b74-668110b7223c.roa (raw, json) Hash identifier: bzuD2S3bUKyr9oxjWAQ/AwKdJxlB59KTkL9gq7K+gYU= Subject key identifier: FA:64:16:8D:CF:41:83:33:65:79:63:10:6C:91:36:5D:B8:52:B7:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 604B8F96497BB784A2FEC2517F5402919FADF33E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2913887f-1b92-4da2-8b74-668110b7223c.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 134.38.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:4b:8f:96:49:7b:b7:84:a2:fe:c2:51:7f:54:02:91:9f:ad:f3:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=a85fcada57cb1fa1dad1ff507dce9ab965cd0451a550357d97eaf2a7fe61e99b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cb:89:3e:43:04:aa:8b:96:56:31:d6:01:a8: 60:0b:d8:63:98:b3:8b:03:64:5a:61:c8:80:ae:c3: f0:7e:13:d5:83:d9:6d:f1:3b:41:53:08:72:b6:ce: ab:25:89:60:c9:96:a2:22:f6:2f:b0:59:d2:7e:ca: bc:86:ff:88:9e:36:ed:cb:00:50:ec:eb:19:a6:21: c5:0d:e8:f4:09:dd:61:cc:f1:34:97:bd:f3:d1:71: 67:99:1a:1c:7c:a8:31:7d:20:52:52:44:85:a5:25: 3e:bb:7d:e3:13:c8:0d:dc:82:fe:b3:1f:42:ab:a1: 61:92:7f:e8:b4:6d:8c:26:08:4d:ae:18:b9:09:e9: 79:34:b6:02:e3:60:fd:1a:b0:04:b0:a4:cc:5e:dd: 86:1e:9e:26:db:98:47:6b:5c:ad:8c:bf:53:af:83: f7:0a:e2:83:2e:50:f5:fa:2a:86:5d:b7:22:a5:b2: fd:37:67:1c:01:06:99:aa:7f:90:b9:2c:b6:d1:50: 0e:d4:ed:9a:4b:bd:b2:2e:39:02:9a:ad:ad:b9:ab: c5:d5:57:b9:c1:11:69:19:c8:0b:17:93:da:35:d3: 74:fb:bf:b3:1e:ae:52:c5:7c:0b:55:c7:7c:cf:a6: 60:ab:34:05:58:b8:2b:ac:63:fb:d3:d3:d8:cb:62: 79:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:64:16:8D:CF:41:83:33:65:79:63:10:6C:91:36:5D:B8:52:B7:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2913887f-1b92-4da2-8b74-668110b7223c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.38.0.0/16 Signature Algorithm: sha256WithRSAEncryption be:64:07:47:b5:ed:e4:e5:bd:6c:a4:06:49:26:bf:ee:50:ee: 1a:c6:10:fc:e3:c7:9b:dd:ea:43:49:55:42:78:92:64:fd:21: a2:1e:fa:fb:37:11:ee:37:cb:50:79:bc:8f:1c:0c:60:b3:e7: 6f:9f:a5:1b:59:b0:c3:71:e2:5c:8d:e1:a3:d4:df:11:b5:34: 0c:4c:9b:18:26:e7:f6:00:65:1c:a6:5d:b5:27:02:4a:ff:c0: dd:35:ec:6b:e3:f2:54:41:77:c2:ee:d7:70:71:f2:7b:6c:0b: 1b:fb:54:56:24:3a:cf:bf:67:f9:7d:31:0a:7a:bb:d8:28:88: 71:26:c4:98:2d:9d:5d:d4:f8:76:2b:f1:cf:84:f1:90:2e:43: e9:80:d6:fb:71:04:ea:2c:a0:bd:d3:36:c4:41:e4:16:6c:46: f6:19:f8:24:4b:d1:90:3f:a4:50:ce:ab:25:11:35:15:b1:e7: 08:5d:f3:80:ec:c2:40:96:6b:28:c2:9a:52:77:12:7f:b9:55: 2a:5e:0a:27:c9:ba:b7:81:fa:a9:9a:bb:cd:97:58:f0:22:c0: 85:b2:fd:7d:ca:6a:6a:a6:d3:a2:89:42:4b:a5:6f:91:f5:10: 64:7d:93:96:fe:fb:1b:93:54:34:b8:42:5d:a7:50:f3:8b:70: 97:06:84:89 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYEuPlkl7t4Si/sJRf1QCkZ+t8z4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODVmY2FkYTU3Y2IxZmExZGFkMWZmNTA3ZGNlOWFiOTY1 Y2QwNDUxYTU1MDM1N2Q5N2VhZjJhN2ZlNjFlOTliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqy4k+QwSqi5ZWMdYBqGAL2GOYs4sDZFphyICuw/B+E9WD 2W3xO0FTCHK2zqsliWDJlqIi9i+wWdJ+yryG/4ieNu3LAFDs6xmmIcUN6PQJ3WHM 8TSXvfPRcWeZGhx8qDF9IFJSRIWlJT67feMTyA3cgv6zH0KroWGSf+i0bYwmCE2u GLkJ6Xk0tgLjYP0asASwpMxe3YYenibbmEdrXK2Mv1Ovg/cK4oMuUPX6KoZdtyKl sv03ZxwBBpmqf5C5LLbRUA7U7ZpLvbIuOQKara25q8XVV7nBEWkZyAsXk9o103T7 v7MerlLFfAtVx3zPpmCrNAVYuCusY/vT09jLYnl9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+mQWjc9BgzNleWMQbJE2XbhSt5owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5MTM4ODdmLTFiOTItNGRhMi04Yjc0LTY2ODExMGI3MjIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCGJjANBgkqhkiG9w0BAQsFAAOCAQEAvmQHR7Xt5OW9bKQGSSa/7lDuGsYQ /OPHm93qQ0lVQniSZP0hoh76+zcR7jfLUHm8jxwMYLPnb5+lG1mww3HiXI3ho9Tf EbU0DEybGCbn9gBlHKZdtScCSv/A3TXsa+PyVEF3wu7XcHHye2wLG/tUViQ6z79n +X0xCnq72CiIcSbEmC2dXdT4divxz4TxkC5D6YDW+3EE6iygvdM2xEHkFmxG9hn4 JEvRkD+kUM6rJRE1FbHnCF3zgOzCQJZrKMKaUncSf7lVKl4KJ8m6t4H6qZq7zZdY 8CLAhbL9fcpqaqbToolCS6VvkfUQZH2Tlv77G5NUNLhCXadQ84twlwaEiQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:49 2024 by rpki-client on console-fra.rpki-client.org