$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbb8c34-7621-4fa5-902c-9dd95bbabe32.roa File: 3cbb8c34-7621-4fa5-902c-9dd95bbabe32.roa (raw, json) Hash identifier: AL3FEh7JWCI5B2h9hoQjtoaDqx325U2I405zOGLoHIg= Subject key identifier: 4A:C3:0A:FF:68:9F:03:73:5E:E5:B9:D4:1A:F4:75:B7:0C:78:FF:20 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 188D5CC99595A4D51A223558820B621E4714FFA4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbb8c34-7621-4fa5-902c-9dd95bbabe32.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffe:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:8d:5c:c9:95:95:a4:d5:1a:22:35:58:82:0b:62:1e:47:14:ff:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=a6804613ac6ce1b8a817ffd6c6338c62a67bbed19549992fbe926107965e285a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:72:0a:db:1c:3e:aa:05:de:44:ca:04:df:76: 5b:4a:1a:3b:da:cc:23:77:61:60:ad:38:f0:e5:79: 3d:03:79:07:86:22:41:e3:fb:6b:47:93:25:ea:97: 29:b3:96:27:52:30:49:28:46:29:11:cb:64:53:cf: 59:2c:05:01:d9:d5:c9:ac:39:b9:19:38:26:13:25: 7c:ff:80:b1:a9:96:47:a8:46:1d:bb:9a:a9:06:30: f3:51:64:e9:17:c5:a3:cd:ec:82:2e:06:64:31:62: f6:5c:39:14:38:a9:11:11:94:08:0e:6f:25:9e:1b: 98:e2:11:1a:99:94:94:ce:b4:47:27:9d:74:71:35: 8b:66:9c:82:38:a7:bb:88:f7:f5:cb:a8:a0:0f:31: 66:02:19:33:bf:a6:2d:b6:6b:5e:f9:d9:37:38:fb: fe:1e:7d:83:13:fa:75:9e:e0:d8:9a:64:0b:08:62: 22:1a:96:91:c7:75:c7:d7:ef:f3:8e:54:94:68:53: 13:27:1d:3f:d0:95:61:c4:9d:90:cb:55:55:f3:c6: 7e:18:a0:87:b9:75:6f:bf:ab:ba:4b:f0:af:f0:f5: 79:65:8d:b6:f8:7f:24:1a:2d:6c:60:13:0d:86:19: 0b:4d:bb:75:de:f3:7d:49:55:72:07:60:5c:46:9b: 52:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:C3:0A:FF:68:9F:03:73:5E:E5:B9:D4:1A:F4:75:B7:0C:78:FF:20 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbb8c34-7621-4fa5-902c-9dd95bbabe32.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffe:4000::/40 Signature Algorithm: sha256WithRSAEncryption ae:fc:3e:78:9f:c6:dd:78:37:8e:ac:f9:ed:f4:23:bd:39:4d: a9:19:73:fe:75:4f:fc:13:2b:e9:74:32:06:39:cd:b5:b3:bf: 5f:63:89:05:a9:22:06:be:e9:0c:67:5e:a5:05:26:19:67:4a: c8:f0:d9:66:f5:0a:d9:96:2d:00:de:8e:d5:6e:c9:77:1e:31: d0:50:d2:ba:e4:be:cf:f2:dd:99:e8:4f:25:7a:24:98:f5:08: b1:a0:f9:b3:bd:33:0d:a1:3f:6f:74:c7:26:6e:e2:26:91:16: 65:3f:1d:b1:c7:41:5f:80:dc:80:2e:c1:91:32:28:74:57:ee: 48:5d:ff:16:58:ee:d4:c1:f3:04:fe:38:56:fb:c4:a7:66:1b: b2:7f:d5:92:c2:32:b2:be:16:93:c2:5a:8c:15:77:87:04:a3: cf:44:02:90:6e:d3:86:b9:bd:ca:a0:3a:5b:e8:d8:f5:72:17: 35:57:a9:4b:5f:b5:03:c4:9d:5e:ec:bc:75:14:7f:54:63:f9: d8:94:42:5d:c5:bb:1e:85:53:63:61:8a:91:02:17:dc:6e:97: 06:cb:45:bd:d8:a5:ff:95:87:26:85:e4:1b:3a:1d:70:38:91: 67:a2:d4:c8:f1:6f:e8:ec:de:1a:1d:35:5f:9e:64:18:6f:ca: c1:65:1a:76 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGI1cyZWVpNUaIjVYggtiHkcU/6QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjgwNDYxM2FjNmNlMWI4YTgxN2ZmZDZjNjMzOGM2MmE2 N2JiZWQxOTU0OTk5MmZiZTkyNjEwNzk2NWUyODVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChcgrbHD6qBd5EygTfdltKGjvazCN3YWCtOPDleT0DeQeG IkHj+2tHkyXqlymzlidSMEkoRikRy2RTz1ksBQHZ1cmsObkZOCYTJXz/gLGplkeo Rh27mqkGMPNRZOkXxaPN7IIuBmQxYvZcORQ4qRERlAgObyWeG5jiERqZlJTOtEcn nXRxNYtmnII4p7uI9/XLqKAPMWYCGTO/pi22a1752Tc4+/4efYMT+nWe4NiaZAsI YiIalpHHdcfX7/OOVJRoUxMnHT/QlWHEnZDLVVXzxn4YoIe5dW+/q7pL8K/w9Xll jbb4fyQaLWxgEw2GGQtNu3Xe831JVXIHYFxGm1LfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUSsMK/2ifA3Ne5bnUGvR1twx4/yAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjYmI4YzM0LTc2MjEtNGZhNS05MDJjLTlkZDk1YmJhYmUzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/+QDANBgkqhkiG9w0BAQsFAAOCAQEArvw+eJ/G3Xg3jqz57fQjvTlN qRlz/nVP/BMr6XQyBjnNtbO/X2OJBakiBr7pDGdepQUmGWdKyPDZZvUK2ZYtAN6O 1W7Jdx4x0FDSuuS+z/LdmehPJXokmPUIsaD5s70zDaE/b3THJm7iJpEWZT8dscdB X4DcgC7BkTIodFfuSF3/Flju1MHzBP44VvvEp2Ybsn/VksIysr4Wk8JajBV3hwSj z0QCkG7Thrm9yqA6W+jY9XIXNVepS1+1A8SdXuy8dRR/VGP52JRCXcW7HoVTY2GK kQIX3G6XBstFvdil/5WHJoXkGzodcDiRZ6LUyPFv6OzeGh01X55kGG/KwWUadg== -----END CERTIFICATE-----Generated at Mon Nov 25 02:57:31 2024 by rpki-client on console-fra.rpki-client.org