$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a09fa41-89bc-4d82-8848-9b27027e3c89.roa File: 3a09fa41-89bc-4d82-8848-9b27027e3c89.roa (raw, json) Hash identifier: SiCPWw7PJ+7M+QBaKIm49jB6yKx+s+94xTFbCROK7vQ= Subject key identifier: 73:6E:5C:D5:E0:E0:7F:1E:F1:30:C3:D0:6E:E5:EA:96:7D:6B:5C:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77D0A1BA39700EB27515ED94848797B8F9487C55 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a09fa41-89bc-4d82-8848-9b27027e3c89.roa Signing time: Wed 02 Oct 2024 00:00:00 +0000 ROA not before: Wed 02 Oct 2024 00:00:00 +0000 ROA not after: Wed 06 Nov 2024 23:59:59 +0000 asID: 14618 IP address blocks: 5.60.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Oct 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:d0:a1:ba:39:70:0e:b2:75:15:ed:94:84:87:97:b8:f9:48:7c:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 2 00:00:00 2024 GMT Not After : Nov 6 23:59:59 2024 GMT Subject: serialNumber=bc88d4db7f12ded6f99b873e8f4b4af705f6222db4a3860a69c239dcdccce637, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:61:c9:ad:67:52:59:87:7f:0d:fc:25:f2:3b: 03:45:c7:b2:6d:43:93:48:a3:38:f2:b6:54:7b:91: cf:d6:97:11:8d:da:e5:d0:53:25:1a:ca:cc:92:12: d6:1c:ef:6c:f6:19:15:c8:c2:24:ed:a2:28:1e:d8: 7c:2d:21:a3:37:4f:9c:de:a0:e1:a6:22:72:9a:e7: dc:07:18:3e:c5:d6:1e:eb:fb:0f:27:84:f8:77:bc: 96:5e:8a:76:ca:ef:46:bf:56:92:38:07:d3:b8:fc: 0a:2c:e2:4e:2f:cf:93:b5:e6:78:b1:80:50:c2:8f: 05:64:f9:d7:d7:86:1f:9c:96:0e:8a:ff:c4:b6:5f: 58:cb:e4:0e:e2:5d:8b:6e:e4:50:66:ea:3b:cd:58: c7:8c:9e:5a:3e:5b:7c:ac:4d:5f:35:2d:29:3e:54: f7:5d:c0:42:6a:9d:f9:e7:16:7e:bb:8b:a6:b0:89: e5:28:72:fa:9f:cf:e7:6b:67:70:04:e0:a3:79:9a: 71:d8:72:b8:0f:f5:b4:fc:dc:86:6d:45:29:d1:74: 75:d9:86:8f:f4:ab:17:71:f0:84:e8:42:78:10:9d: c8:8b:8a:c1:7b:f3:49:c0:d7:8e:aa:a7:17:70:76: 78:33:d6:37:2b:15:97:1d:af:d6:8f:97:1b:c3:7d: e9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6E:5C:D5:E0:E0:7F:1E:F1:30:C3:D0:6E:E5:EA:96:7D:6B:5C:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a09fa41-89bc-4d82-8848-9b27027e3c89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.48.0/22 Signature Algorithm: sha256WithRSAEncryption c3:cb:6a:e5:ee:41:36:7d:1e:c3:44:c7:41:75:e1:b3:98:d7: 6a:84:cf:a0:a9:be:7b:35:cb:ed:01:0a:8b:0e:a3:a8:c3:87: 5b:a5:ff:2a:74:dd:d6:f3:86:a3:59:df:c5:96:ef:cb:3a:3d: 61:1c:97:4a:c4:c6:7c:5a:5f:c2:49:b7:e1:7b:c9:35:6b:73: 7b:9e:c4:19:f4:19:9c:52:e5:d2:68:82:bc:36:9d:28:29:31: 89:5d:23:67:4c:85:af:b0:dd:ae:52:ce:2a:4a:75:3b:0b:c3: 6e:18:c0:0e:be:30:1f:74:2b:cc:53:e6:00:18:73:33:ee:f1: ac:0d:55:2d:dd:67:fa:7a:c7:56:8e:fe:ee:67:d7:5c:f8:55: 01:ea:67:ec:e8:01:25:7c:0a:06:ae:77:b3:cb:b9:d6:b6:31: 68:f9:7e:df:6e:5b:a6:b4:9f:8a:43:e5:3d:23:a3:f7:ee:ee: 19:f6:49:16:c6:60:91:f2:17:a5:cc:b4:cb:8f:1f:da:6b:66: 43:da:e2:5d:07:62:12:b9:0c:d5:d9:00:6e:93:1b:04:62:1b: f7:b0:23:16:71:a5:94:2b:da:d8:65:e2:ec:52:f3:9d:63:d1: d7:e7:d4:d1:e0:0c:b4:99:99:75:55:64:01:cc:ad:c7:00:09: 0a:f7:cf:13 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd9ChujlwDrJ1Fe2UhIeXuPlIfFUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDAyMDAwMDAwWhcNMjQxMTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzg4ZDRkYjdmMTJkZWQ2Zjk5Yjg3M2U4ZjRiNGFmNzA1 ZjYyMjJkYjRhMzg2MGE2OWMyMzlkY2RjY2NlNjM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjYcmtZ1JZh38N/CXyOwNFx7JtQ5NIozjytlR7kc/WlxGN 2uXQUyUaysySEtYc72z2GRXIwiTtoige2HwtIaM3T5zeoOGmInKa59wHGD7F1h7r +w8nhPh3vJZeinbK70a/VpI4B9O4/Aos4k4vz5O15nixgFDCjwVk+dfXhh+clg6K /8S2X1jL5A7iXYtu5FBm6jvNWMeMnlo+W3ysTV81LSk+VPddwEJqnfnnFn67i6aw ieUocvqfz+drZ3AE4KN5mnHYcrgP9bT83IZtRSnRdHXZho/0qxdx8IToQngQnciL isF780nA146qpxdwdngz1jcrFZcdr9aPlxvDfenpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc25c1eDgfx7xMMPQbuXqln1rXEUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNhMDlmYTQxLTg5YmMtNGQ4Mi04ODQ4LTliMjcwMjdlM2M4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIFPDAwDQYJKoZIhvcNAQELBQADggEBAMPLauXuQTZ9HsNEx0F14bOY12qE z6Cpvns1y+0BCosOo6jDh1ul/yp03dbzhqNZ38WW78s6PWEcl0rExnxaX8JJt+F7 yTVrc3uexBn0GZxS5dJogrw2nSgpMYldI2dMha+w3a5SzipKdTsLw24YwA6+MB90 K8xT5gAYczPu8awNVS3dZ/p6x1aO/u5n11z4VQHqZ+zoASV8Cgaud7PLuda2MWj5 ft9uW6a0n4pD5T0jo/fu7hn2SRbGYJHyF6XMtMuPH9prZkPa4l0HYhK5DNXZAG6T GwRiG/ewIxZxpZQr2thl4uxS851j0dfn1NHgDLSZmXVVZAHMrccACQr3zxM= -----END CERTIFICATE-----Generated at Tue Oct 22 00:46:41 2024 by rpki-client on console-fra.rpki-client.org