$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41e8567f-9435-4df8-b278-835c66fc0372.roa File: 41e8567f-9435-4df8-b278-835c66fc0372.roa (raw, json) Hash identifier: EKRcwe8DiIj2pxQ7OMnH97YR606XsBNFwA/jJSbmO5I= Subject key identifier: 5B:4C:CA:A6:23:0D:A0:0C:7D:15:97:92:4D:DB:95:7F:6A:23:7E:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5AD341F09E70A2621F8CB288E19957A142DCCA83 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41e8567f-9435-4df8-b278-835c66fc0372.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.180.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:d3:41:f0:9e:70:a2:62:1f:8c:b2:88:e1:99:57:a1:42:dc:ca:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=715d64f88ca998a99f47229c3d94474c06e666bade0210e7c43d1014f409daa9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4b:ab:72:39:69:25:50:19:b0:67:4b:0d:83: 8c:cf:c2:f6:fc:cc:cf:5a:3c:c0:cc:85:84:15:94: d0:61:7c:7b:79:c1:2d:ee:66:4d:ed:d8:1f:e8:ab: 07:f3:f2:c9:90:a3:44:0a:a4:cc:6a:b9:d4:59:40: d4:cf:5a:48:80:6a:3c:24:21:28:97:c8:aa:2c:3b: 99:0c:1f:ce:eb:e3:37:75:bd:58:a1:c7:88:1b:7e: 40:d8:21:47:04:60:58:08:89:dd:19:be:9c:20:54: 85:e5:78:a8:f6:3a:4d:8f:7b:41:78:06:4f:2b:69: df:bd:e8:08:9c:51:1c:0f:60:49:80:0b:a5:e8:36: 44:b4:2c:9a:eb:99:d4:b2:4c:e7:f9:5c:16:c3:9a: a7:58:71:11:dc:25:71:9a:95:bf:31:2a:a7:a1:bb: 18:e1:76:9b:91:16:4d:f3:79:4c:aa:58:cb:30:af: cb:0e:b2:fb:26:70:8d:96:05:20:5d:8d:8f:4f:b3: dd:ab:0e:d5:e5:c4:f3:ae:25:be:2f:b0:b5:04:2c: f6:21:47:f5:aa:e4:2a:f0:52:cf:33:03:88:7d:c4: 3a:f2:71:e2:5a:df:e3:f6:06:ea:24:4a:00:ac:c2: 62:a0:ea:26:c2:74:de:1a:d8:c4:39:34:70:5f:e8: 29:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:4C:CA:A6:23:0D:A0:0C:7D:15:97:92:4D:DB:95:7F:6A:23:7E:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41e8567f-9435-4df8-b278-835c66fc0372.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.180.0.0/16 Signature Algorithm: sha256WithRSAEncryption d8:f0:4a:a2:34:e8:df:bc:94:4e:6f:0f:5f:73:6c:7a:1e:30: a1:da:68:20:a6:7d:e7:98:ed:2c:1a:ec:27:89:f8:3a:85:b2: 2b:5b:a6:89:a8:3a:98:7f:b9:4b:b2:6f:97:b5:0c:f2:c0:08: ab:0c:f3:e2:fa:3e:c3:8b:d5:68:2f:5a:85:67:8d:e8:79:36: 9f:83:aa:25:a8:bc:50:be:95:1e:d9:e3:00:23:67:16:af:82: 92:64:f8:8e:04:ab:21:d7:b0:26:08:ca:f6:54:81:93:b2:5a: 76:1c:89:bc:79:d1:e1:93:c2:78:51:5c:e8:25:60:82:d8:46: 2e:30:1c:e6:6b:97:b8:66:37:d8:23:95:a9:e2:8c:06:fd:2a: 3e:1e:3a:8b:bc:f6:12:d5:60:ad:17:ec:6a:f4:32:c9:08:9f: 9e:55:38:3b:a4:eb:35:0b:e0:e1:2a:34:23:72:1a:cf:61:a1: 72:be:df:ee:99:08:0e:88:d8:e4:f7:8c:07:56:37:17:96:00: f3:f4:cf:92:56:5f:a9:fd:0b:83:d8:83:90:d9:36:6c:98:bc: c5:f8:f9:91:51:37:17:9b:07:58:a4:5c:c1:1c:0a:08:72:db: d3:ba:72:e7:10:0e:29:66:4a:e5:51:ca:d5:a2:d7:56:82:92: d6:10:73:84 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWtNB8J5womIfjLKI4ZlXoULcyoMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTVkNjRmODhjYTk5OGE5OWY0NzIyOWMzZDk0NDc0YzA2 ZTY2NmJhZGUwMjEwZTdjNDNkMTAxNGY0MDlkYWE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDS6tyOWklUBmwZ0sNg4zPwvb8zM9aPMDMhYQVlNBhfHt5 wS3uZk3t2B/oqwfz8smQo0QKpMxqudRZQNTPWkiAajwkISiXyKosO5kMH87r4zd1 vVihx4gbfkDYIUcEYFgIid0ZvpwgVIXleKj2Ok2Pe0F4Bk8rad+96AicURwPYEmA C6XoNkS0LJrrmdSyTOf5XBbDmqdYcRHcJXGalb8xKqehuxjhdpuRFk3zeUyqWMsw r8sOsvsmcI2WBSBdjY9Ps92rDtXlxPOuJb4vsLUELPYhR/Wq5CrwUs8zA4h9xDry ceJa3+P2BuokSgCswmKg6ibCdN4a2MQ5NHBf6CltAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUW0zKpiMNoAx9FZeSTduVf2ojfrcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxZTg1NjdmLTk0MzUtNGRmOC1iMjc4LTgzNWM2NmZjMDM3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAotDANBgkqhkiG9w0BAQsFAAOCAQEA2PBKojTo37yUTm8PX3Nseh4wodpo IKZ955jtLBrsJ4n4OoWyK1umiag6mH+5S7Jvl7UM8sAIqwzz4vo+w4vVaC9ahWeN 6Hk2n4OqJai8UL6VHtnjACNnFq+CkmT4jgSrIdewJgjK9lSBk7JadhyJvHnR4ZPC eFFc6CVggthGLjAc5muXuGY32COVqeKMBv0qPh46i7z2EtVgrRfsavQyyQifnlU4 O6TrNQvg4So0I3Iaz2Ghcr7f7pkIDojY5PeMB1Y3F5YA8/TPklZfqf0Lg9iDkNk2 bJi8xfj5kVE3F5sHWKRcwRwKCHLb07py5xAOKWZK5VHK1aLXVoKS1hBzhA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:56 2024 by rpki-client on console-fra.rpki-client.org