$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3576efe4-9459-491f-8cf4-441ebbe60b38.roa File: 3576efe4-9459-491f-8cf4-441ebbe60b38.roa (raw, json) Hash identifier: n8dnuY1o3/ZMlwiLIAxRrue4lyaviM3XFhYZ9USf9IM= Subject key identifier: 94:1A:9A:17:72:66:D1:63:F7:F0:FD:55:CD:C0:4A:E3:49:A2:49:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14CDD75BC1F9C22F63852DC73AD463DBB8EC367B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3576efe4-9459-491f-8cf4-441ebbe60b38.roa Signing time: Tue 12 Nov 2024 00:00:00 +0000 ROA not before: Tue 12 Nov 2024 00:00:00 +0000 ROA not after: Tue 17 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.129.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:cd:d7:5b:c1:f9:c2:2f:63:85:2d:c7:3a:d4:63:db:b8:ec:36:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 12 00:00:00 2024 GMT Not After : Dec 17 23:59:59 2024 GMT Subject: serialNumber=d0b0d09186d6bce125e608f1a493812feddd06751161122f7900487246d631b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:be:b2:c1:bb:ea:2b:35:aa:a0:f4:b8:c6:36: 69:39:ee:f0:78:ce:84:ca:c7:ee:32:92:63:b9:5a: 2e:a1:ac:ea:28:d6:44:17:32:df:47:43:a5:7b:66: ea:22:cf:9e:55:45:0f:89:3f:b1:e4:95:cb:9c:01: dc:09:4f:14:34:9c:89:28:2d:37:4e:2b:54:f8:26: 91:b1:67:00:51:c7:65:02:e3:66:41:71:bc:57:b2: 74:1f:5b:42:1f:01:2b:1c:d5:4c:4c:ca:5f:e9:7d: 31:69:0f:5f:01:52:bb:a5:f6:84:de:5b:15:4a:15: 40:59:66:f2:cb:7f:f7:f9:5f:73:b5:60:db:3e:4b: 76:1f:65:ac:63:d4:90:1d:0e:d9:fe:06:9b:58:b9: 23:dc:b5:75:7b:8c:54:64:f5:7f:99:7e:15:c2:8d: 3b:62:bd:bb:2d:73:8b:99:c9:61:17:21:88:fe:a3: ec:c4:d2:5e:7b:4c:a9:fd:98:de:46:27:00:31:b7: 40:c9:7b:e4:9f:fe:bf:a3:be:0f:c3:fe:ef:64:e5: a6:59:4d:ca:1e:77:39:7b:c7:8a:21:c2:c9:78:6b: bd:86:8b:50:a4:cc:a7:df:13:7d:04:a8:69:56:f0: e1:09:94:8b:ef:92:08:95:04:d6:c0:bb:c0:a4:82: 3f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:1A:9A:17:72:66:D1:63:F7:F0:FD:55:CD:C0:4A:E3:49:A2:49:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3576efe4-9459-491f-8cf4-441ebbe60b38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.129.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0e:59:62:3b:78:e5:de:0b:ca:c1:1a:c3:01:40:63:75:16:08: 15:34:08:03:78:98:a1:4c:fe:9d:5d:19:34:bc:d0:c3:6a:68: 49:81:47:aa:ff:cc:8b:c2:87:fe:35:58:35:06:58:8e:a2:d1: f3:ae:8b:a7:60:a3:8d:54:23:77:40:32:74:69:b7:ea:21:62: 1e:ac:52:76:82:bf:f8:44:b8:c0:f9:84:a9:cc:19:7d:4f:b8: 1d:8a:15:3c:7c:0e:41:ff:af:bb:33:f7:48:72:af:cf:89:4f: 96:20:0a:a3:65:4d:ce:6c:18:4e:9a:8e:63:8b:22:6d:bb:b0: 92:86:44:68:31:b7:c1:cc:d3:39:e5:68:de:af:c8:d7:b0:22: e5:dc:34:82:77:f4:7e:04:6c:57:4f:95:ad:12:e8:43:ee:82: 9a:8f:8e:a2:0e:99:c2:fa:48:cc:d9:04:c5:fa:7e:b6:23:5a: d2:b2:42:58:da:35:15:a1:8e:4c:a0:db:e1:33:6d:bc:5c:37: ed:8d:b7:c8:67:32:77:cb:ed:30:3a:ee:69:9d:99:bd:5c:d9: b8:a7:89:c5:df:fb:35:bc:13:24:e4:ba:7a:01:4a:2e:22:b1: 79:63:88:01:be:2a:36:5a:94:f4:29:bf:b6:60:48:7c:91:38: 86:a3:40:a5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFM3XW8H5wi9jhS3HOtRj27jsNnswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTEyMDAwMDAwWhcNMjQxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMGIwZDA5MTg2ZDZiY2UxMjVlNjA4ZjFhNDkzODEyZmVk ZGQwNjc1MTE2MTEyMmY3OTAwNDg3MjQ2ZDYzMWI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPvrLBu+orNaqg9LjGNmk57vB4zoTKx+4ykmO5Wi6hrOoo 1kQXMt9HQ6V7Zuoiz55VRQ+JP7HklcucAdwJTxQ0nIkoLTdOK1T4JpGxZwBRx2UC 42ZBcbxXsnQfW0IfASsc1UxMyl/pfTFpD18BUrul9oTeWxVKFUBZZvLLf/f5X3O1 YNs+S3YfZaxj1JAdDtn+BptYuSPctXV7jFRk9X+ZfhXCjTtivbstc4uZyWEXIYj+ o+zE0l57TKn9mN5GJwAxt0DJe+Sf/r+jvg/D/u9k5aZZTcoedzl7x4ohwsl4a72G i1CkzKffE30EqGlW8OEJlIvvkgiVBNbAu8Ckgj+zAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlBqaF3Jm0WP38P1VzcBK40miSQowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1NzZlZmU0LTk0NTktNDkxZi04Y2Y0LTQ0MWViYmU2MGIzOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4gTANBgkqhkiG9w0BAQsFAAOCAQEADlliO3jl3gvKwRrDAUBjdRYIFTQI A3iYoUz+nV0ZNLzQw2poSYFHqv/Mi8KH/jVYNQZYjqLR866Lp2CjjVQjd0AydGm3 6iFiHqxSdoK/+ES4wPmEqcwZfU+4HYoVPHwOQf+vuzP3SHKvz4lPliAKo2VNzmwY TpqOY4sibbuwkoZEaDG3wczTOeVo3q/I17Ai5dw0gnf0fgRsV0+VrRLoQ+6Cmo+O og6ZwvpIzNkExfp+tiNa0rJCWNo1FaGOTKDb4TNtvFw37Y23yGcyd8vtMDruaZ2Z vVzZuKeJxd/7NbwTJOS6egFKLiKxeWOIAb4qNlqU9Cm/tmBIfJE4hqNApQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:52 2024 by rpki-client on console-fra.rpki-client.org