$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cf9411e-47ef-4e5d-aa41-9ef66c1d5d71.roa File: 2cf9411e-47ef-4e5d-aa41-9ef66c1d5d71.roa (raw, json) Hash identifier: W5zlePYEAzDdKQbjbo57VDhTHflArisFTdjO8y+4BDk= Subject key identifier: B9:61:08:6F:48:B6:DE:2E:49:1D:D6:77:58:4B:BA:E1:C0:13:16:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2DECC2B7E731088B101C3AE2C4085431C9106AF3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cf9411e-47ef-4e5d-aa41-9ef66c1d5d71.roa Signing time: Wed 06 Nov 2024 00:00:00 +0000 ROA not before: Wed 06 Nov 2024 00:00:00 +0000 ROA not after: Wed 11 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 147.2.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:ec:c2:b7:e7:31:08:8b:10:1c:3a:e2:c4:08:54:31:c9:10:6a:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 6 00:00:00 2024 GMT Not After : Dec 11 23:59:59 2024 GMT Subject: serialNumber=1686f37e82178cec41e0ac54424c48aea3fe7fdd3db5fa53fb85ef1ea1f74ba4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e7:61:11:70:6c:5c:14:db:0b:ff:db:d6:75: 26:54:26:81:62:53:c0:e2:7c:54:1f:33:a5:03:34: 62:67:3f:8e:92:5f:50:72:ab:d3:10:35:af:18:2f: 2a:97:fb:11:0a:f9:d3:8d:ee:f3:ce:37:18:95:af: ec:11:e1:ec:0c:df:6a:44:54:93:c5:b4:eb:a2:da: 10:d1:fc:c9:92:d6:53:d2:3e:5d:78:2a:61:2d:ee: 21:e2:56:05:ef:4b:21:35:f3:43:69:6d:e8:3e:61: a3:f5:2f:5c:45:69:f7:9b:16:5c:a0:70:46:b9:4c: d5:0a:0f:48:ff:76:8a:6e:59:54:00:75:01:57:d1: 7d:61:13:8d:d0:92:cd:04:66:6a:ae:3b:4c:2c:48: 06:3f:dd:dd:d6:f5:38:0d:bd:6f:0e:5d:2d:88:c1: 6f:55:bd:f2:d6:9f:ec:2b:04:52:72:fe:6d:54:3e: ef:d3:9f:3d:35:b4:6e:c5:17:28:3a:d6:e6:3c:7f: cf:5c:39:80:c7:a9:d8:f6:0f:53:69:8b:ce:96:77: 98:1f:e8:b9:17:49:75:0f:45:17:2b:dc:e9:f3:f5: 53:9a:42:05:84:5e:3d:3f:ee:e0:cb:b5:35:c5:3d: 8c:e2:7b:75:44:19:74:2a:41:42:f1:61:1b:c2:83: 71:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:61:08:6F:48:B6:DE:2E:49:1D:D6:77:58:4B:BA:E1:C0:13:16:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cf9411e-47ef-4e5d-aa41-9ef66c1d5d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.2.0.0/16 Signature Algorithm: sha256WithRSAEncryption a5:38:de:c6:f9:12:7f:7e:48:b6:11:80:b6:8e:6e:ea:9b:17: 04:3a:68:ec:ce:63:f0:e6:84:75:2a:3b:92:10:36:f3:48:50: bd:1e:69:b7:54:6c:15:e9:70:fc:48:1e:a3:97:2c:1d:f8:d3: 5d:62:ab:0a:7a:79:45:d8:88:6b:2c:76:88:72:02:49:7c:a7: 84:05:65:73:df:61:2d:07:a7:ae:90:0a:7b:8e:c0:47:d5:a6: fb:6c:1d:66:ce:32:a2:23:2f:d8:c8:11:d6:49:c6:d0:b1:4f: af:7a:ef:c1:54:21:fa:3b:cb:fa:98:78:81:a0:4b:96:3c:0d: 4d:fa:bb:99:97:71:b8:e4:75:ed:df:69:53:70:bc:fb:57:0a: 06:1b:63:cb:0c:8e:5b:09:bb:fe:24:27:ac:84:31:f0:6c:99: b6:09:84:e1:f5:27:32:c5:ed:b8:c2:d1:14:c6:50:94:6e:88: 77:ab:c5:08:81:48:cf:51:b7:f2:ae:04:bc:fc:7b:7a:4b:11: d4:f1:b5:e3:fe:fb:82:c6:e5:b7:61:91:fc:89:8c:3f:7e:e4: 9d:4e:ee:fa:8f:41:19:16:4e:c8:90:5b:fb:93:2f:b1:1b:62: 55:fc:86:40:c7:e2:23:7d:5b:05:ec:a0:39:8b:b5:a2:63:57: fb:0e:0b:da -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULezCt+cxCIsQHDrixAhUMckQavMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA2MDAwMDAwWhcNMjQxMjExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjg2ZjM3ZTgyMTc4Y2VjNDFlMGFjNTQ0MjRjNDhhZWEz ZmU3ZmRkM2RiNWZhNTNmYjg1ZWYxZWExZjc0YmE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx52ERcGxcFNsL/9vWdSZUJoFiU8DifFQfM6UDNGJnP46S X1Byq9MQNa8YLyqX+xEK+dON7vPONxiVr+wR4ewM32pEVJPFtOui2hDR/MmS1lPS Pl14KmEt7iHiVgXvSyE180Npbeg+YaP1L1xFafebFlygcEa5TNUKD0j/dopuWVQA dQFX0X1hE43Qks0EZmquO0wsSAY/3d3W9TgNvW8OXS2IwW9VvfLWn+wrBFJy/m1U Pu/Tnz01tG7FFyg61uY8f89cOYDHqdj2D1Npi86Wd5gf6LkXSXUPRRcr3Onz9VOa QgWEXj0/7uDLtTXFPYzie3VEGXQqQULxYRvCg3GPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuWEIb0i23i5JHdZ3WEu64cATFhEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjZjk0MTFlLTQ3ZWYtNGU1ZC1hYTQxLTllZjY2YzFkNWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCTAjANBgkqhkiG9w0BAQsFAAOCAQEApTjexvkSf35IthGAto5u6psXBDpo 7M5j8OaEdSo7khA280hQvR5pt1RsFelw/Egeo5csHfjTXWKrCnp5RdiIayx2iHIC SXynhAVlc99hLQenrpAKe47AR9Wm+2wdZs4yoiMv2MgR1knG0LFPr3rvwVQh+jvL +ph4gaBLljwNTfq7mZdxuOR17d9pU3C8+1cKBhtjywyOWwm7/iQnrIQx8GyZtgmE 4fUnMsXtuMLRFMZQlG6Id6vFCIFIz1G38q4EvPx7eksR1PG14/77gsblt2GR/ImM P37knU7u+o9BGRZOyJBb+5MvsRtiVfyGQMfiI31bBeygOYu1omNX+w4L2g== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:50 2024 by rpki-client on console-fra.rpki-client.org