$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3674612a-1422-4966-891b-952abad30de9.roa File: 3674612a-1422-4966-891b-952abad30de9.roa (raw, json) Hash identifier: LUKstiXDiJ6vDa/aSL8xW7ItPRQbS75z64ZnC+Jz/ZM= Subject key identifier: 2B:58:A5:B7:A6:D7:A0:EE:BE:29:61:37:3A:84:31:54:7F:8A:03:FC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BDC1B97B273F559B652CB5846168124E9170F14 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3674612a-1422-4966-891b-952abad30de9.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 136.2.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:dc:1b:97:b2:73:f5:59:b6:52:cb:58:46:16:81:24:e9:17:0f:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=81975c5ea837beee5884a49af0dab882a714ff736c05190fdeb9f64ed1dadaa7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c6:2a:95:5c:22:67:2c:b9:a9:cd:96:b2:e2: cf:2e:73:1b:56:eb:41:a7:bb:39:36:26:c2:2b:7a: bd:bd:df:ba:00:91:fa:41:fd:23:02:f0:d8:13:f5: e9:78:b9:cc:7a:87:27:0e:32:6c:ef:29:c0:9b:af: fb:c9:16:20:ae:c5:a4:20:b9:8f:fe:71:c1:7f:e1: e1:e1:e1:65:0f:27:8c:55:d3:41:00:f0:d5:29:2b: 34:d7:45:05:81:d5:87:83:ac:9f:ac:9f:fe:ec:de: 3c:99:0f:d0:be:77:e5:30:1b:66:fd:70:85:a6:b3: 0a:4b:52:3f:bb:b9:f5:ad:78:01:0e:27:0f:f2:5a: 59:dc:50:d1:8b:fe:61:45:8f:78:ae:e5:70:2c:2d: c7:bb:76:0b:9d:cb:d1:11:94:be:fe:ae:43:96:aa: 04:1c:28:47:1a:9f:31:db:69:93:26:13:f5:60:f3: 5b:2b:3b:8c:fa:af:0b:c9:40:0e:e1:9c:34:5a:7a: 9d:c3:a8:f7:3f:7f:17:c1:b9:d0:38:fc:ce:44:52: c8:83:c4:e5:0f:b4:90:93:42:84:d7:75:14:b0:93: c9:17:44:30:49:ec:33:75:78:cf:e3:58:9c:ce:0e: ce:57:49:bd:6f:41:60:81:7f:c4:1b:7f:e5:ff:43: a3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:58:A5:B7:A6:D7:A0:EE:BE:29:61:37:3A:84:31:54:7F:8A:03:FC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3674612a-1422-4966-891b-952abad30de9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.2.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7b:61:cb:df:19:35:ef:5d:ab:33:ec:3b:02:07:fb:da:c9:0f: e5:37:ba:6b:86:ea:0c:99:58:5d:8f:b0:32:ad:ca:ac:6e:3f: 33:00:e1:43:ec:66:17:c5:8c:bf:c4:64:a6:77:d8:d5:9e:47: 92:6c:dc:9a:5a:bb:fd:42:ad:33:c6:8c:aa:f7:33:d0:d8:de: b9:04:39:31:c6:2f:29:76:eb:83:4e:97:d0:55:04:0d:cc:18: 5a:3b:dd:3d:c3:fc:b3:8c:e1:f0:67:79:ae:4f:63:93:dd:36: 25:2d:b6:18:56:a0:6d:7f:7c:da:e8:6d:1d:f2:58:8e:53:10: da:dc:0e:6f:7c:bb:e0:34:ae:f6:b8:d3:8e:30:29:13:bb:1a: 3e:3c:af:b0:46:d9:e0:61:43:5a:3f:21:de:d6:6b:5d:c1:61: ff:77:db:98:e3:39:18:f1:1b:fa:12:ea:c4:1d:a2:d5:1d:bd: 8c:69:99:f2:c8:59:bd:26:eb:fc:95:c7:0f:e3:95:8a:28:be: 5b:4f:25:dc:ab:a0:1e:e3:c8:ae:c3:1e:7b:c3:1f:36:31:31: 7e:a1:53:c0:58:92:ed:b7:74:0f:a8:d7:0d:0a:31:89:cc:b9: 65:9b:4d:29:fb:38:69:f7:d1:23:63:26:04:c6:74:31:95:1e: 8d:37:53:b3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUe9wbl7Jz9Vm2UstYRhaBJOkXDxQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTk3NWM1ZWE4MzdiZWVlNTg4NGE0OWFmMGRhYjg4MmE3 MTRmZjczNmMwNTE5MGZkZWI5ZjY0ZWQxZGFkYWE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpxiqVXCJnLLmpzZay4s8ucxtW60Gnuzk2JsIrer2937oA kfpB/SMC8NgT9el4ucx6hycOMmzvKcCbr/vJFiCuxaQguY/+ccF/4eHh4WUPJ4xV 00EA8NUpKzTXRQWB1YeDrJ+sn/7s3jyZD9C+d+UwG2b9cIWmswpLUj+7ufWteAEO Jw/yWlncUNGL/mFFj3iu5XAsLce7dgudy9ERlL7+rkOWqgQcKEcanzHbaZMmE/Vg 81srO4z6rwvJQA7hnDRaep3DqPc/fxfBudA4/M5EUsiDxOUPtJCTQoTXdRSwk8kX RDBJ7DN1eM/jWJzODs5XSb1vQWCBf8Qbf+X/Q6OxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUK1ilt6bXoO6+KWE3OoQxVH+KA/wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2NzQ2MTJhLTE0MjItNDk2Ni04OTFiLTk1MmFiYWQzMGRlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCIAjANBgkqhkiG9w0BAQsFAAOCAQEAe2HL3xk1712rM+w7Agf72skP5Te6 a4bqDJlYXY+wMq3KrG4/MwDhQ+xmF8WMv8RkpnfY1Z5Hkmzcmlq7/UKtM8aMqvcz 0NjeuQQ5McYvKXbrg06X0FUEDcwYWjvdPcP8s4zh8Gd5rk9jk902JS22GFagbX98 2uhtHfJYjlMQ2twOb3y74DSu9rjTjjApE7saPjyvsEbZ4GFDWj8h3tZrXcFh/3fb mOM5GPEb+hLqxB2i1R29jGmZ8shZvSbr/JXHD+OViii+W08l3KugHuPIrsMee8Mf NjExfqFTwFiS7bd0D6jXDQoxicy5ZZtNKfs4affRI2MmBMZ0MZUejTdTsw== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:28 2024 by rpki-client on console-ams.rpki-client.org