$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3694a095-b131-421a-9330-fac2c9987478.roa File: 3694a095-b131-421a-9330-fac2c9987478.roa (raw, json) Hash identifier: tjylVHFw9NjMmxvoXYnF2ZoCL1KXyeMZNit4aurszBc= Subject key identifier: F1:65:33:95:BC:77:94:07:61:F1:F7:55:50:D0:4F:5D:B2:05:D6:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B6EBBCE7DD430170B372F35063145CC3DE96B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3694a095-b131-421a-9330-fac2c9987478.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.79.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:6e:bb:ce:7d:d4:30:17:0b:37:2f:35:06:31:45:cc:3d:e9:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=b8cd4e54008be6cbdea5dd741bbc34dfed00f8bb34780c1e660821c1528ba6f3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:34:fc:28:07:27:af:ab:d4:65:70:81:07:d2: f5:72:e2:38:b0:33:17:d8:08:ca:87:52:ce:e4:aa: 19:4d:3e:67:70:19:c1:dc:b9:5b:92:d0:f9:44:d3: 05:80:f1:8d:89:e7:27:fd:8a:d6:3d:b3:31:32:92: 03:58:6a:a5:d6:ad:c3:b3:7c:4f:3a:4a:8f:da:3a: d7:ca:ac:a0:d9:21:ce:70:dc:f4:2a:af:66:75:55: 18:45:f9:07:5b:10:3f:e6:c5:ba:1d:7b:f2:f7:92: 16:73:14:f3:6f:43:3a:d1:8f:6c:ba:35:07:40:8d: 45:d3:83:39:1a:31:d7:6c:99:dd:fd:4f:ac:9e:b7: 17:6d:5b:23:f6:3f:4e:c0:2e:17:27:4c:17:0c:c4: 80:9b:d0:a6:aa:a1:56:17:6f:a3:d2:11:6d:f4:53: d7:f7:5a:0c:ab:cd:98:c8:f6:b9:c0:f5:ed:bc:47: 6c:45:8b:f5:5c:2a:82:2f:d8:c0:cc:bf:ae:72:f8: ab:3d:9e:54:86:1c:20:b6:a4:7e:2e:7b:30:04:55: af:08:fc:e0:95:ee:b8:08:05:23:15:d3:e1:80:9d: ce:9f:6d:66:16:5c:70:14:89:82:78:75:90:d7:1a: 1c:e0:2b:79:5b:ee:18:cd:fe:9f:8c:01:ae:69:30: 80:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:65:33:95:BC:77:94:07:61:F1:F7:55:50:D0:4F:5D:B2:05:D6:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3694a095-b131-421a-9330-fac2c9987478.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.79.0.0/16 Signature Algorithm: sha256WithRSAEncryption 80:e0:af:60:c9:43:52:70:51:ca:3a:7e:ce:f0:aa:de:74:15: e0:07:8b:3d:8a:fb:2e:04:77:2d:f6:65:16:4f:58:3e:de:d2: 55:90:c0:f9:f1:59:98:0f:4e:7d:ec:1e:2b:8b:8f:83:78:bc: d7:2e:a8:3a:37:7f:b4:3e:85:8b:51:bc:fe:5a:9f:5c:5b:31: 05:8d:7a:0d:5a:d5:e8:f8:21:a5:9d:0a:44:a0:50:0b:19:38: b9:bb:ac:b9:fb:2c:0f:97:e2:b9:b4:b8:9f:a2:d0:37:36:37: aa:45:9c:5a:0e:c1:59:2a:ad:eb:09:e8:c7:f9:6e:97:b3:10: af:f4:9c:1a:4d:16:54:4b:3b:c6:71:18:f7:d8:e2:e8:d4:1f: 08:db:4e:52:37:27:08:c7:a8:f4:4f:ec:16:96:3e:21:62:99: de:4e:98:24:bd:90:71:24:9a:d3:65:1d:f6:fd:11:39:4c:b0: 58:2d:48:c0:c9:e3:fd:18:2e:01:2a:c3:58:49:0b:e1:47:0d: 27:9b:7e:9a:c2:51:f4:46:67:d9:0f:b9:74:b3:4b:9a:45:65: 3a:a1:6e:91:fb:ad:bf:9c:e2:ef:c2:7f:6c:d8:79:82:bb:4c: 87:95:4d:4f:8e:85:55:a1:27:b8:f0:cf:84:60:ba:3f:7a:f4: 62:a3:51:a5 -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITC267zn3UMBcLNy81BjFFzD3pazANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDEwMzAwMDAwMDBaFw0yNDEyMDQyMzU5NTla MHoxSTBHBgNVBAUTQGI4Y2Q0ZTU0MDA4YmU2Y2JkZWE1ZGQ3NDFiYmMzNGRmZWQw MGY4YmIzNDc4MGMxZTY2MDgyMWMxNTI4YmE2ZjMxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANM0/CgHJ6+r1GVwgQfS9XLiOLAzF9gIyodSzuSqGU0+Z3AZ wdy5W5LQ+UTTBYDxjYnnJ/2K1j2zMTKSA1hqpdatw7N8TzpKj9o618qsoNkhznDc 9CqvZnVVGEX5B1sQP+bFuh178veSFnMU829DOtGPbLo1B0CNRdODORox12yZ3f1P rJ63F21bI/Y/TsAuFydMFwzEgJvQpqqhVhdvo9IRbfRT1/daDKvNmMj2ucD17bxH bEWL9Vwqgi/YwMy/rnL4qz2eVIYcILakfi57MARVrwj84JXuuAgFIxXT4YCdzp9t ZhZccBSJgnh1kNcaHOAreVvuGM3+n4wBrmkwgI8CAwEAAaOCArAwggKsMB0GA1Ud DgQWBBTxZTOVvHeUB2Hx91VQ0E9dsgXWrzAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMzY5NGEwOTUtYjEzMS00MjFhLTkzMzAtZmFjMmM5OTg3NDc4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAGNPMA0GCSqGSIb3DQEBCwUAA4IBAQCA4K9gyUNScFHKOn7O8KredBXgB4s9 ivsuBHct9mUWT1g+3tJVkMD58VmYD0597B4ri4+DeLzXLqg6N3+0PoWLUbz+Wp9c WzEFjXoNWtXo+CGlnQpEoFALGTi5u6y5+ywPl+K5tLifotA3NjeqRZxaDsFZKq3r CejH+W6XsxCv9JwaTRZUSzvGcRj32OLo1B8I205SNycIx6j0T+wWlj4hYpneTpgk vZBxJJrTZR32/RE5TLBYLUjAyeP9GC4BKsNYSQvhRw0nm36awlH0RmfZD7l0s0ua RWU6oW6R+62/nOLvwn9s2HmCu0yHlU1PjoVVoSe48M+EYLo/evRio1Gl -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:53 2024 by rpki-client on console-fra.rpki-client.org