$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f714af3-f8f7-4161-a5d0-f3680dfa2949.roa File: 3f714af3-f8f7-4161-a5d0-f3680dfa2949.roa (raw, json) Hash identifier: UlqiMomgXju9uND+LBFRT3LL/CZntP4d35vDNIHqTEk= Subject key identifier: 92:F7:89:7D:67:19:F7:65:2F:2C:EE:F5:DE:F9:D8:3F:55:BA:A1:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 361D15DF1CCB5278D859F25203B6CE249C014509 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f714af3-f8f7-4161-a5d0-f3680dfa2949.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.199.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:1d:15:df:1c:cb:52:78:d8:59:f2:52:03:b6:ce:24:9c:01:45:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=7b0e62608faeac5c0533b755a757571c6e23c74cc153e60a6a9093f12b741bb3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f4:0c:30:92:fd:c9:92:b2:34:c1:22:be:a6: 05:4a:43:8a:03:ae:b6:ac:80:1f:12:82:7d:9b:5c: 1a:33:e4:ae:46:d2:cf:66:09:df:fc:bf:0d:5c:0e: 37:00:5d:13:70:68:bc:5a:e5:5b:27:e3:8a:69:31: 6b:32:62:11:7c:aa:eb:71:6f:2a:2d:3c:b9:b8:13: 50:47:ef:8c:74:82:83:09:ab:04:69:0d:c0:95:5c: 56:30:74:1f:0a:a4:2e:8d:77:8f:37:06:ca:0b:c8: 06:87:0d:f9:b5:e2:26:24:9e:9e:b9:49:e0:17:f4: 1d:c8:f2:9b:1a:23:a5:f0:26:da:bc:58:bb:61:37: a6:04:65:89:d0:cc:04:15:07:43:5a:5e:87:f8:ab: 65:8e:a3:78:b0:cf:08:6c:af:1e:0c:ac:75:b2:78: 54:6f:b0:7f:d1:f0:42:55:69:9b:b9:22:1a:29:45: 01:c1:01:71:e0:2d:f5:77:e4:fb:63:c6:7d:c7:d5: 66:ff:07:1e:ba:da:c0:e4:19:55:da:5c:ca:fd:38: 81:89:b1:87:0c:ef:b3:fc:e3:41:be:65:a7:ce:f6: aa:4f:6a:0f:73:3c:4a:5a:38:c3:34:f0:d6:cf:0d: 09:e7:de:1e:93:94:d8:b3:a9:43:84:97:a0:6d:c8: b1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F7:89:7D:67:19:F7:65:2F:2C:EE:F5:DE:F9:D8:3F:55:BA:A1:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f714af3-f8f7-4161-a5d0-f3680dfa2949.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.199.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:aa:d8:dc:60:9c:71:b4:9b:3b:a1:95:2f:51:3d:aa:94:7b: b8:43:05:af:79:11:47:63:b7:53:23:6b:cf:ef:1f:22:f4:f3: 26:89:f4:41:c5:d6:d1:f0:cb:3b:6c:76:17:da:bc:96:f7:07: 90:2e:2b:9c:00:e0:10:72:9e:53:74:81:01:66:f6:14:a9:30: 70:08:6e:1a:a1:f2:6e:08:83:bc:72:66:de:ff:2d:06:f2:a5: cf:0d:59:6e:33:f6:37:bf:30:c7:85:bc:d1:09:c1:16:cf:23: 8b:70:54:8b:b5:9b:72:bf:b0:8b:a2:5a:69:72:b3:a8:07:7b: b1:2c:46:76:1f:93:98:de:5d:10:7c:5d:0c:aa:26:0c:df:d9: 1c:0e:0a:84:3a:ad:c1:b6:a9:4c:45:0d:bd:3f:bf:8c:7b:08: 71:f5:2d:7e:aa:7f:e2:a4:2d:2b:ae:b0:65:ce:ca:18:07:c0: bf:3d:55:69:1f:45:26:ae:97:c1:80:98:3e:63:eb:d3:91:d7: 62:6f:05:3d:1d:1a:d4:ab:0d:f8:a2:1a:35:21:4e:63:13:89: 1d:46:ee:99:d6:e0:81:1d:fb:e7:1b:ae:a1:33:5b:3d:98:e9: 13:1c:be:cc:04:8c:5e:90:69:e2:35:af:ad:30:09:9c:a4:bf: ac:d4:7f:fe -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNh0V3xzLUnjYWfJSA7bOJJwBRQkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjBlNjI2MDhmYWVhYzVjMDUzM2I3NTVhNzU3NTcxYzZl MjNjNzRjYzE1M2U2MGE2YTkwOTNmMTJiNzQxYmIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS9Awwkv3JkrI0wSK+pgVKQ4oDrrasgB8Sgn2bXBoz5K5G 0s9mCd/8vw1cDjcAXRNwaLxa5Vsn44ppMWsyYhF8qutxbyotPLm4E1BH74x0goMJ qwRpDcCVXFYwdB8KpC6Nd483BsoLyAaHDfm14iYknp65SeAX9B3I8psaI6XwJtq8 WLthN6YEZYnQzAQVB0NaXof4q2WOo3iwzwhsrx4MrHWyeFRvsH/R8EJVaZu5Ihop RQHBAXHgLfV35Ptjxn3H1Wb/Bx662sDkGVXaXMr9OIGJsYcM77P840G+ZafO9qpP ag9zPEpaOMM08NbPDQnn3h6TlNizqUOEl6BtyLH1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkveJfWcZ92UvLO713vnYP1W6oW0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNmNzE0YWYzLWY4ZjctNDE2MS1hNWQwLWYzNjgwZGZhMjk0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4xzANBgkqhkiG9w0BAQsFAAOCAQEAk6rY3GCccbSbO6GVL1E9qpR7uEMF r3kRR2O3UyNrz+8fIvTzJon0QcXW0fDLO2x2F9q8lvcHkC4rnADgEHKeU3SBAWb2 FKkwcAhuGqHybgiDvHJm3v8tBvKlzw1ZbjP2N78wx4W80QnBFs8ji3BUi7Wbcr+w i6JaaXKzqAd7sSxGdh+TmN5dEHxdDKomDN/ZHA4KhDqtwbapTEUNvT+/jHsIcfUt fqp/4qQtK66wZc7KGAfAvz1VaR9FJq6XwYCYPmPr05HXYm8FPR0a1KsN+KIaNSFO YxOJHUbumdbggR375xuuoTNbPZjpExy+zASMXpBp4jWvrTAJnKS/rNR//g== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:55 2024 by rpki-client on console-fra.rpki-client.org