$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c35551e-a01f-4f64-b39a-f1ada190eab2.roa File: 2c35551e-a01f-4f64-b39a-f1ada190eab2.roa (raw, json) Hash identifier: z8OoPBNhnTR0dfSUuuAPEqXFMH05RVCKIKUCdHHgTCM= Subject key identifier: 40:FC:77:EA:29:B2:AD:29:25:E0:F0:EA:19:32:BC:6D:EF:66:EA:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 672215B7F89F18542AFE169174A2E0C6D0D36091 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c35551e-a01f-4f64-b39a-f1ada190eab2.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 100.42.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:22:15:b7:f8:9f:18:54:2a:fe:16:91:74:a2:e0:c6:d0:d3:60:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=779e4d2b8385dc1f04813344955b35cdfd48075b7252e4d6350bd54c6df72f51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a3:ed:a2:f0:7f:a8:8d:9d:2b:24:8f:bd:08: c9:9f:d1:5d:62:78:bc:d8:ff:e3:52:3f:aa:70:c1: cc:94:7c:78:6b:21:83:71:9c:ac:e7:33:62:83:59: 2a:7b:9e:dd:eb:59:7f:41:57:09:9f:4a:ab:de:a8: 30:f1:08:43:5c:ed:59:d2:26:41:1a:58:ac:61:94: 92:3f:b3:47:ee:0b:3a:c0:aa:e4:17:e9:94:8a:3a: d8:d5:ab:63:15:95:2f:92:6a:29:28:fc:2e:83:8f: a6:9a:ca:d2:bd:63:d3:c6:85:33:50:03:7a:ce:37: 3c:c4:fa:87:74:ca:ec:78:de:fb:6b:e3:b5:4f:f4: 20:ce:fa:74:80:c0:b8:14:9d:1d:19:20:a6:4c:9d: d0:f6:20:14:c5:3d:f1:62:bd:2b:24:a3:b7:9a:48: 75:e5:57:b8:70:0f:5d:07:13:9b:4d:75:17:60:65: 12:e1:73:27:6d:6b:44:f7:36:8d:74:9d:9d:9a:d2: a7:e0:48:cd:1c:a3:bb:db:8b:f9:5a:53:0d:f0:33: af:d1:d6:8e:0f:12:b6:32:8c:3a:36:61:fd:ae:bc: 1e:b1:e1:f0:a6:6c:61:be:80:de:a0:80:fd:af:ac: 80:88:e8:8d:e5:38:23:e3:98:44:0f:0d:e6:81:8c: 1e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:FC:77:EA:29:B2:AD:29:25:E0:F0:EA:19:32:BC:6D:EF:66:EA:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c35551e-a01f-4f64-b39a-f1ada190eab2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 100.42.64.0/20 Signature Algorithm: sha256WithRSAEncryption 78:e7:bb:7c:16:ea:ca:b7:d9:f1:32:87:42:14:cb:b9:50:a7: d1:6a:19:88:af:8b:05:50:b2:cb:c2:5d:10:ee:a0:38:f8:a1: bb:97:22:ea:d0:68:e9:16:d8:b0:82:47:82:a0:a8:64:11:89: f5:5a:b3:ba:71:69:f0:f1:4d:c5:bf:df:f1:73:2f:ec:d3:d0: 79:cb:95:63:e0:23:38:c0:6f:03:3d:0f:54:69:53:80:19:41: 39:03:59:63:0b:5b:1d:b4:df:7e:98:94:b1:b3:4c:01:4d:5c: 64:7d:f8:ee:38:cd:ed:f7:85:1d:2a:ad:dd:9d:21:e2:c0:88: 8b:d7:b7:c0:45:d8:f6:c8:7d:90:11:2f:5d:4a:46:e3:76:f2: 10:49:f5:9a:84:0e:a5:6b:51:33:6f:dd:01:97:db:0e:a6:90: 92:ac:36:17:3a:c7:3c:9f:32:bc:2d:ad:4a:25:18:73:ff:a7: c1:15:3f:07:19:31:96:d1:7e:be:3c:f7:c4:8c:4d:48:ea:6b: cc:8a:d3:1c:f1:71:a3:b0:b6:ae:6b:40:70:54:7c:5a:b4:75: e9:1a:53:87:f3:73:a4:ef:b7:29:0e:91:ac:56:de:e2:8a:5f: b5:c6:0d:49:60:02:45:b5:6e:43:24:92:16:5c:f4:82:2b:09: 07:21:7e:36 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZyIVt/ifGFQq/haRdKLgxtDTYJEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAyMDAwMDAwWhcNMjQxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzllNGQyYjgzODVkYzFmMDQ4MTMzNDQ5NTViMzVjZGZk NDgwNzViNzI1MmU0ZDYzNTBiZDU0YzZkZjcyZjUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5o+2i8H+ojZ0rJI+9CMmf0V1ieLzY/+NSP6pwwcyUfHhr IYNxnKznM2KDWSp7nt3rWX9BVwmfSqveqDDxCENc7VnSJkEaWKxhlJI/s0fuCzrA quQX6ZSKOtjVq2MVlS+Saiko/C6Dj6aaytK9Y9PGhTNQA3rONzzE+od0yux43vtr 47VP9CDO+nSAwLgUnR0ZIKZMndD2IBTFPfFivSsko7eaSHXlV7hwD10HE5tNdRdg ZRLhcydta0T3No10nZ2a0qfgSM0co7vbi/laUw3wM6/R1o4PErYyjDo2Yf2uvB6x 4fCmbGG+gN6ggP2vrICI6I3lOCPjmEQPDeaBjB6JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQPx36imyrSkl4PDqGTK8be9m6o8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjMzU1NTFlLWEwMWYtNGY2NC1iMzlhLWYxYWRhMTkwZWFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARkKkAwDQYJKoZIhvcNAQELBQADggEBAHjnu3wW6sq32fEyh0IUy7lQp9Fq GYiviwVQssvCXRDuoDj4obuXIurQaOkW2LCCR4KgqGQRifVas7pxafDxTcW/3/Fz L+zT0HnLlWPgIzjAbwM9D1RpU4AZQTkDWWMLWx20336YlLGzTAFNXGR9+O44ze33 hR0qrd2dIeLAiIvXt8BF2PbIfZARL11KRuN28hBJ9ZqEDqVrUTNv3QGX2w6mkJKs Nhc6xzyfMrwtrUolGHP/p8EVPwcZMZbRfr4898SMTUjqa8yK0xzxcaOwtq5rQHBU fFq0dekaU4fzc6TvtykOkaxW3uKKX7XGDUlgAkW1bkMkkhZc9IIrCQchfjY= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:50 2024 by rpki-client on console-fra.rpki-client.org