$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa File: 2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa (raw, json) Hash identifier: 1qxZV99GKHKSQv88txGx0NdVIQiYP+G7T+2vx79GXMA= Subject key identifier: D2:91:C3:6F:F8:7E:98:16:28:11:09:94:2F:7A:E0:C6:15:37:B0:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 490948A3337B98ECD2546768CBD66FA26280F97D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa Signing time: Mon 28 Oct 2024 00:00:00 +0000 ROA not before: Mon 28 Oct 2024 00:00:00 +0000 ROA not after: Mon 02 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.63.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:09:48:a3:33:7b:98:ec:d2:54:67:68:cb:d6:6f:a2:62:80:f9:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 28 00:00:00 2024 GMT Not After : Dec 2 23:59:59 2024 GMT Subject: serialNumber=8f6c745ff0d7e4d84ad9896d1c376fdf5e0322e38572a2735294871df4272155, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c1:3e:ba:dd:7e:84:ce:db:96:7a:65:e5:b0: 35:0f:64:49:98:a9:f1:b8:1e:c5:4a:4f:46:23:ad: c2:96:d2:51:20:e8:d6:63:0d:bc:a8:81:04:e1:15: 09:6d:0d:14:3b:38:7c:56:5d:9b:c6:69:87:1f:46: 5e:a6:cc:ae:a9:33:6b:0d:97:2c:cd:49:c3:e6:df: d8:dc:b3:da:7d:76:8d:2b:f7:a8:59:87:ec:9b:9a: 58:ce:0c:68:c4:24:2b:81:b8:24:16:2f:91:01:02: 5f:88:8c:9c:15:5c:7e:5b:d6:b5:8c:49:5b:97:cf: 50:80:05:73:80:8d:24:77:01:b3:a2:f5:ed:99:24: d1:69:d7:55:e9:e1:c2:6a:7a:cc:b0:11:19:f2:ff: 73:a6:7f:07:ec:f2:48:66:23:1f:de:bf:f8:49:88: a5:f3:91:ee:0a:32:10:cb:cc:10:7d:55:ce:16:3c: 12:21:6c:79:41:3f:1b:43:e1:12:73:27:0b:a2:e6: e3:1d:e2:27:06:7f:3c:c8:37:d9:4a:57:8b:23:35: f4:34:0e:b9:c2:e1:09:f3:91:c8:04:37:55:af:20: 9e:04:ee:06:0d:37:96:c0:09:ff:32:3e:78:58:e4: 8a:7c:58:3f:69:0c:38:fd:dd:47:33:32:e2:12:aa: 66:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:91:C3:6F:F8:7E:98:16:28:11:09:94:2F:7A:E0:C6:15:37:B0:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.63.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9b:74:3d:fe:a0:f9:49:54:f6:87:a2:51:4e:d6:24:79:5e:fb: 0f:5f:66:b1:7f:0d:fb:0e:01:88:0a:7a:aa:87:ea:6f:89:59: 3c:f8:a7:cd:73:7e:97:ac:98:a1:95:73:4d:1d:de:9b:28:9b: e9:0e:c0:36:17:60:64:33:4c:41:30:e2:0f:6e:c1:7b:e3:ab: 36:78:c4:ef:36:bb:7b:f0:3d:0e:58:3e:28:92:ff:79:9c:b7: d8:03:bd:1e:6c:86:ed:05:4b:89:d8:ae:43:c6:eb:61:c7:79: 30:5a:f0:5e:a6:7d:94:a3:db:ac:49:06:d7:1b:1d:d4:e6:61: fc:de:f3:1c:c4:77:b1:56:ba:22:aa:8b:e1:82:a6:79:99:12: ef:93:62:a1:49:99:91:00:f2:d4:fb:35:d6:99:32:b4:fc:08: 15:1c:79:68:de:2a:b1:2d:73:d2:33:b6:65:c1:97:05:92:9d: 78:87:ce:0b:04:da:92:31:40:ac:90:59:12:6f:e2:fa:18:7a: 53:85:60:d3:3e:03:e9:5b:df:46:d0:34:12:96:83:37:ee:d4: c7:30:31:f9:d5:2e:8a:7b:30:b2:18:e9:6a:db:74:fb:17:0f: cb:3b:27:31:09:0d:73:62:d7:77:c2:fe:a0:c3:8b:3f:2e:28: e9:a2:e4:bf -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSQlIozN7mOzSVGdoy9ZvomKA+X0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDI4MDAwMDAwWhcNMjQxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjZjNzQ1ZmYwZDdlNGQ4NGFkOTg5NmQxYzM3NmZkZjVl MDMyMmUzODU3MmEyNzM1Mjk0ODcxZGY0MjcyMTU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCowT663X6EztuWemXlsDUPZEmYqfG4HsVKT0YjrcKW0lEg 6NZjDbyogQThFQltDRQ7OHxWXZvGaYcfRl6mzK6pM2sNlyzNScPm39jcs9p9do0r 96hZh+ybmljODGjEJCuBuCQWL5EBAl+IjJwVXH5b1rWMSVuXz1CABXOAjSR3AbOi 9e2ZJNFp11Xp4cJqesywERny/3Omfwfs8khmIx/ev/hJiKXzke4KMhDLzBB9Vc4W PBIhbHlBPxtD4RJzJwui5uMd4icGfzzIN9lKV4sjNfQ0DrnC4QnzkcgEN1WvIJ4E 7gYNN5bACf8yPnhY5Ip8WD9pDDj93UczMuISqmahAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0pHDb/h+mBYoEQmUL3rgxhU3sGswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhMjViY2IzLWNlNTctNDhkNy05YTlmLWU2OGE1YjI5NDNhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4PzANBgkqhkiG9w0BAQsFAAOCAQEAm3Q9/qD5SVT2h6JRTtYkeV77D19m sX8N+w4BiAp6qofqb4lZPPinzXN+l6yYoZVzTR3emyib6Q7ANhdgZDNMQTDiD27B e+OrNnjE7za7e/A9Dlg+KJL/eZy32AO9HmyG7QVLidiuQ8brYcd5MFrwXqZ9lKPb rEkG1xsd1OZh/N7zHMR3sVa6IqqL4YKmeZkS75NioUmZkQDy1Ps11pkytPwIFRx5 aN4qsS1z0jO2ZcGXBZKdeIfOCwTakjFArJBZEm/i+hh6U4Vg0z4D6VvfRtA0EpaD N+7UxzAx+dUuinswshjpatt0+xcPyzsnMQkNc2LXd8L+oMOLPy4o6aLkvw== -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:52 2024 by rpki-client on console-ams.rpki-client.org