$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/404e92f3-75c8-4009-90ff-77096b5f65f8.roa File: 404e92f3-75c8-4009-90ff-77096b5f65f8.roa (raw, json) Hash identifier: 63W22krgkk29Dgfw+nB67oWDZfxHSzQ5nzQa7CKJd8I= Subject key identifier: CD:65:6C:C7:44:2E:84:F8:B2:26:3C:BA:77:C4:30:E5:E6:DA:63:B9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06CD9A0D84DE8DA5AA94D8A0D57823FD05799233 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/404e92f3-75c8-4009-90ff-77096b5f65f8.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:cd:9a:0d:84:de:8d:a5:aa:94:d8:a0:d5:78:23:fd:05:79:92:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=a4eb37c733ea0de2ddf0692736bc57102bc3539111574890aa2f56c8cbc078a4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:dc:fb:71:3c:24:38:c1:7d:a9:b3:a7:06:6e: 09:81:2f:86:a9:e0:5d:45:b6:c1:14:a7:8c:d9:32: 46:1a:12:c0:a8:7f:aa:01:28:1b:f2:c3:6d:9d:9a: 43:d7:e7:7a:b4:89:92:ac:d3:8c:96:82:2f:6f:ed: 7c:7f:9d:d9:9d:e3:55:b9:2e:7c:77:e1:63:dd:e3: 9f:60:b1:e9:4f:82:23:6e:86:c3:f8:c5:6d:d0:89: e9:f2:41:5f:78:ae:58:d2:7f:20:c8:71:a1:5f:3e: 44:c4:0d:77:80:71:7e:bc:21:f9:c0:9e:89:9e:f4: 25:18:aa:22:83:bc:d8:5c:2f:96:8a:18:77:de:7d: 70:04:8c:f3:79:6d:72:a6:31:35:0b:2a:08:ce:ad: a5:7b:3b:a7:8b:94:09:ac:8d:9c:c0:4b:ec:45:01: 1b:53:4a:45:47:3a:7f:5c:c5:83:8c:ec:e6:59:d8: cb:bb:1e:ba:a6:da:d9:71:06:c2:82:d6:5e:08:a4: 7f:c4:ea:02:3b:9f:a2:1d:ca:83:92:2f:44:e5:7b: 2c:50:f4:81:45:21:0f:62:8a:3d:2a:09:a4:d5:f9: 0e:2d:2f:73:59:43:90:c6:f1:be:e7:ab:c5:61:64: 6d:fa:4b:43:78:82:0b:2b:27:41:c2:ff:c7:e3:e1: ef:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:65:6C:C7:44:2E:84:F8:B2:26:3C:BA:77:C4:30:E5:E6:DA:63:B9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/404e92f3-75c8-4009-90ff-77096b5f65f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.128.0/17 Signature Algorithm: sha256WithRSAEncryption 0b:48:7d:54:f7:79:a2:9f:18:31:42:9d:a8:a7:eb:85:26:5a: 82:65:60:7e:96:af:b0:1c:54:be:38:90:32:ab:11:a9:0d:1d: e7:e7:3c:c3:b2:e8:58:55:b2:5a:98:ad:84:eb:12:a9:fc:99: 39:f1:ce:85:7a:02:6c:fb:08:ab:a2:cd:a0:ce:78:1b:bd:52: d5:b6:4e:2a:26:82:51:87:6c:64:21:a0:8b:e7:71:d2:cc:da: ab:cc:a3:08:e3:67:8a:c7:9d:4a:5e:84:71:d1:ca:44:2d:ac: d3:b0:03:71:88:95:dd:cd:1b:2d:c0:d8:00:e0:bd:69:fe:0b: 24:34:2e:5a:52:c2:70:27:44:6f:a4:0c:63:c4:37:71:e3:40: 8c:61:11:47:5d:c5:b3:ce:2f:e9:a0:ba:2f:85:48:96:1c:d9: 1d:47:95:79:80:1d:db:28:89:d8:fe:ba:a8:96:6b:e8:0d:40: 0f:f3:a0:7b:f1:99:9f:9c:82:15:a1:f2:87:d8:12:07:02:f9: db:4a:13:90:37:07:af:9f:2c:d0:53:fc:7f:c6:54:9c:ea:03: 0a:95:7f:66:17:c5:fe:1f:07:f7:b5:99:a7:8d:8d:28:7b:f6: a8:bb:93:cb:40:74:11:88:46:b5:3e:46:22:95:53:d9:71:07: 0f:c5:e9:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBs2aDYTejaWqlNig1Xgj/QV5kjMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGViMzdjNzMzZWEwZGUyZGRmMDY5MjczNmJjNTcxMDJi YzM1MzkxMTE1NzQ4OTBhYTJmNTZjOGNiYzA3OGE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCX3PtxPCQ4wX2ps6cGbgmBL4ap4F1FtsEUp4zZMkYaEsCo f6oBKBvyw22dmkPX53q0iZKs04yWgi9v7Xx/ndmd41W5Lnx34WPd459gselPgiNu hsP4xW3QienyQV94rljSfyDIcaFfPkTEDXeAcX68IfnAnome9CUYqiKDvNhcL5aK GHfefXAEjPN5bXKmMTULKgjOraV7O6eLlAmsjZzAS+xFARtTSkVHOn9cxYOM7OZZ 2Mu7Hrqm2tlxBsKC1l4IpH/E6gI7n6IdyoOSL0TleyxQ9IFFIQ9iij0qCaTV+Q4t L3NZQ5DG8b7nq8VhZG36S0N4ggsrJ0HC/8fj4e9TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzWVsx0QuhPiyJjy6d8Qw5ebaY7kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwNGU5MmYzLTc1YzgtNDAwOS05MGZmLTc3MDk2YjVmNjVmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjToAwDQYJKoZIhvcNAQELBQADggEBAAtIfVT3eaKfGDFCnain64UmWoJl YH6Wr7AcVL44kDKrEakNHefnPMOy6FhVslqYrYTrEqn8mTnxzoV6Amz7CKuizaDO eBu9UtW2TiomglGHbGQhoIvncdLM2qvMowjjZ4rHnUpehHHRykQtrNOwA3GIld3N Gy3A2ADgvWn+CyQ0LlpSwnAnRG+kDGPEN3HjQIxhEUddxbPOL+mgui+FSJYc2R1H lXmAHdsoidj+uqiWa+gNQA/zoHvxmZ+cghWh8ofYEgcC+dtKE5A3B6+fLNBT/H/G VJzqAwqVf2YXxf4fB/e1maeNjSh79qi7k8tAdBGIRrU+RiKVU9lxBw/F6Sw= -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:15 2024 by rpki-client on console-fra.rpki-client.org