$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37c5a8d3-0377-4588-b874-fb35f89d8d62.roa File: 37c5a8d3-0377-4588-b874-fb35f89d8d62.roa (raw, json) Hash identifier: kjpLPQpRSB7QvBO6tldLP0ppqKyTpLyjFqS5syKheHg= Subject key identifier: 01:77:FE:01:07:81:75:1E:99:94:C6:B0:2C:94:21:15:81:EC:E6:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E47C4B8E54DC676E545429C7228BBCB253BCB6E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37c5a8d3-0377-4588-b874-fb35f89d8d62.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:47:c4:b8:e5:4d:c6:76:e5:45:42:9c:72:28:bb:cb:25:3b:cb:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=eea6feccdc3a59ca2ba8c38ac509b6c40d16f64fc9b01788997d7a4463292fd2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d8:91:7b:88:76:83:d1:13:12:c0:0c:f9:3f: f2:9d:cc:88:12:9f:35:4f:7a:1d:b7:c7:7a:bb:aa: e8:96:a9:9e:d7:2f:64:14:3c:b0:d7:fd:9e:c1:30: b6:b6:2d:1b:a4:7b:13:24:73:9c:2e:ea:6f:a9:5a: 09:f2:5e:74:dc:24:5a:f5:11:07:1c:38:87:77:5c: eb:2d:0b:fb:dd:67:b6:2b:92:32:71:f3:cf:9f:4f: a0:42:0f:3b:cd:13:77:ed:45:c9:63:42:5e:77:ea: 4f:af:a4:2d:a1:de:d4:e7:e6:a4:9f:8c:c4:f9:bf: 66:00:a2:a5:1e:9f:56:dc:49:f0:ba:ad:67:7b:7d: 21:3a:05:02:94:d1:f9:78:92:f5:51:40:2b:13:b7: 2a:ec:ea:c9:fe:63:8b:19:21:2a:40:f4:54:2f:c9: e8:af:77:ab:c9:4a:9a:89:0f:e7:f0:d9:5f:61:05: fb:cc:f9:c8:17:ec:e4:13:fc:7a:03:da:1e:79:65: 3a:0a:45:4b:75:42:a4:96:15:6c:1a:09:08:9e:0e: 16:0d:3f:d1:94:f5:72:8b:54:70:00:74:fc:08:00: 48:84:05:23:b6:2a:93:da:26:74:d4:4f:2e:15:71: b8:73:d3:0f:50:fc:91:49:1a:cc:ff:a8:97:81:5d: ec:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:77:FE:01:07:81:75:1E:99:94:C6:B0:2C:94:21:15:81:EC:E6:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/37c5a8d3-0377-4588-b874-fb35f89d8d62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:c000::/40 Signature Algorithm: sha256WithRSAEncryption b5:19:e4:fa:5d:5c:26:55:dd:f1:86:e8:2c:73:26:75:e9:e7: 9a:19:d0:9b:44:ec:01:c4:54:97:eb:e7:1e:f4:92:c6:9e:d0: 1b:21:64:0a:60:17:a0:d2:89:48:0a:34:10:40:c2:c3:71:56: e1:d8:96:ff:ee:df:3d:11:44:d6:1f:27:87:9c:9d:a1:eb:1a: 79:39:3e:06:9a:4e:00:99:b6:b7:c8:61:e1:12:a7:cb:e8:6d: da:30:07:b1:f6:aa:90:4f:6a:f3:cd:62:4f:bd:1a:cb:28:96: 96:8f:b9:88:0c:be:27:95:be:d1:73:98:60:84:2c:fe:cc:dc: b9:5e:9c:b1:e0:f4:1a:c2:4c:54:b8:85:25:da:88:eb:60:1d: 60:40:93:3f:ac:8d:b8:5c:94:fd:4d:8e:48:0f:66:51:f7:bd: 8b:32:71:78:d9:27:9b:6d:37:96:58:a3:27:b5:94:33:e1:58: 72:ae:67:93:af:c8:5e:44:b5:8a:39:49:2a:c4:8b:ce:68:10: 25:f4:8d:00:23:dc:be:c5:74:81:79:78:d3:3b:6e:46:2a:bc: c0:95:70:30:5c:26:bf:5b:63:e4:76:a3:b3:83:62:17:df:00: 9d:32:30:5a:45:3d:5a:0b:e4:35:59:ef:b2:bd:50:61:34:2a: 58:c7:5b:e5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPkfEuOVNxnblRUKccii7yyU7y24wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWE2ZmVjY2RjM2E1OWNhMmJhOGMzOGFjNTA5YjZjNDBk MTZmNjRmYzliMDE3ODg5OTdkN2E0NDYzMjkyZmQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB2JF7iHaD0RMSwAz5P/KdzIgSnzVPeh23x3q7quiWqZ7X L2QUPLDX/Z7BMLa2LRukexMkc5wu6m+pWgnyXnTcJFr1EQccOId3XOstC/vdZ7Yr kjJx88+fT6BCDzvNE3ftRcljQl536k+vpC2h3tTn5qSfjMT5v2YAoqUen1bcSfC6 rWd7fSE6BQKU0fl4kvVRQCsTtyrs6sn+Y4sZISpA9FQvyeivd6vJSpqJD+fw2V9h BfvM+cgX7OQT/HoD2h55ZToKRUt1QqSWFWwaCQieDhYNP9GU9XKLVHAAdPwIAEiE BSO2KpPaJnTUTy4Vcbhz0w9Q/JFJGsz/qJeBXeylAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUAXf+AQeBdR6ZlMawLJQhFYHs5pswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3YzVhOGQzLTAzNzctNDU4OC1iODc0LWZiMzVmODlkOGQ2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//wDANBgkqhkiG9w0BAQsFAAOCAQEAtRnk+l1cJlXd8YboLHMmdenn mhnQm0TsAcRUl+vnHvSSxp7QGyFkCmAXoNKJSAo0EEDCw3FW4diW/+7fPRFE1h8n h5ydoesaeTk+BppOAJm2t8hh4RKny+ht2jAHsfaqkE9q881iT70ayyiWlo+5iAy+ J5W+0XOYYIQs/szcuV6cseD0GsJMVLiFJdqI62AdYECTP6yNuFyU/U2OSA9mUfe9 izJxeNknm203llijJ7WUM+FYcq5nk6/IXkS1ijlJKsSLzmgQJfSNACPcvsV0gXl4 0ztuRiq8wJVwMFwmv1tj5Hajs4NiF98AnTIwWkU9WgvkNVnvsr1QYTQqWMdb5Q== -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:12 2024 by rpki-client on console-fra.rpki-client.org