$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa File: 43679d0b-d4d6-4195-8f78-61e5d3431f35.roa (raw, json) Hash identifier: dKeGTeSy5eleWNcCnB4YxkxixSCK3y9fm+EbDDNxVts= Subject key identifier: 42:B5:FC:14:A7:6E:5C:8F:3C:C4:8D:C6:B8:B3:6E:89:90:91:30:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E74A24C79F42AA5E1567F3D7599443ADFE0BF56 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 164.152.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:74:a2:4c:79:f4:2a:a5:e1:56:7f:3d:75:99:44:3a:df:e0:bf:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=843dce12b7543450721bd56ab0e7f40f832e57bbad562552bd86ab9d63f4ff60, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:98:49:43:0f:38:31:78:59:64:b0:04:3c:e9: 3a:83:cc:95:56:36:49:e0:04:8a:bc:e9:be:e4:a9: b2:7f:b4:c2:2c:3a:e5:fd:1f:29:d4:03:92:08:23: bb:48:a2:c2:55:cd:6b:da:18:4e:56:00:a7:58:8f: 72:1d:10:b2:08:5f:bc:bd:96:4b:23:ce:be:4f:ce: 3c:f1:17:bb:75:db:d6:f4:e7:58:fc:39:d5:ea:d9: 6d:23:ff:b0:c2:77:4f:57:57:79:41:f0:37:24:d5: 93:c8:d5:9c:0d:fe:f4:c3:1c:81:03:6d:ad:39:5f: 01:60:d7:ba:89:4e:58:53:30:5d:a0:0a:f8:e2:e0: f5:04:d7:88:ac:ac:42:81:c5:a5:09:df:4c:5e:3c: 8e:5a:ab:da:3e:14:e3:ae:5e:e6:dd:4e:0b:6c:20: cd:d6:a7:a6:27:fc:df:50:6e:f8:a8:97:f1:d4:24: 13:22:db:83:e8:ce:f5:bc:7d:47:56:bf:65:95:97: 2f:b0:26:66:b8:ab:61:54:ca:7e:9d:ce:82:fb:fd: a7:86:46:32:f6:56:6c:78:dd:53:62:7e:b9:39:0a: 57:4a:41:5f:cf:fd:2d:93:4b:f3:9a:e2:4a:9f:7d: 24:1d:89:7b:22:c5:71:a8:28:2c:97:39:65:fa:e3: ea:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B5:FC:14:A7:6E:5C:8F:3C:C4:8D:C6:B8:B3:6E:89:90:91:30:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.200.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:8b:af:5f:4e:1a:6f:fb:b5:83:ca:52:e2:61:60:7c:45:12: 3b:fb:2f:c7:6d:e6:0f:62:b5:2d:79:80:87:f0:56:c0:50:8a: 12:2a:9f:eb:49:f6:fb:92:65:01:b9:e3:ea:67:76:e6:87:3c: 3c:19:73:98:9f:6e:a8:96:b3:52:d6:96:83:99:19:ed:f6:81: 66:99:b8:6e:c1:a3:a8:3d:df:33:aa:ca:0f:ee:85:cd:a2:d6: bb:53:d0:c1:01:ba:4c:11:7f:d3:cd:6f:5b:69:06:72:a0:08: 3a:09:5e:6b:e4:98:93:23:c4:42:85:f2:f7:72:05:6d:98:82: 65:51:27:9d:c1:c6:43:31:6d:5e:1a:60:9b:fd:a9:f7:d7:e3: 4c:ea:eb:38:48:96:72:42:0a:63:a3:69:3e:16:7e:aa:45:d7: c8:96:db:72:83:97:dc:37:32:5a:b9:70:18:21:67:d2:23:cf: 10:2e:c6:3b:cf:49:52:83:7f:f7:7d:1e:c1:66:c7:cd:16:f2: d5:cd:18:26:c8:b4:c5:7e:78:da:e8:e1:21:80:cc:35:db:74: 0d:e4:17:f3:3c:56:da:06:03:4c:91:d0:2b:2a:dc:c3:1b:a9: 14:a2:33:6c:4f:dd:31:45:23:92:1e:d5:4a:36:91:64:7b:b9: a4:97:e6:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTnSiTHn0KqXhVn89dZlEOt/gv1YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDNkY2UxMmI3NTQzNDUwNzIxYmQ1NmFiMGU3ZjQwZjgz MmU1N2JiYWQ1NjI1NTJiZDg2YWI5ZDYzZjRmZjYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7mElDDzgxeFlksAQ86TqDzJVWNkngBIq86b7kqbJ/tMIs OuX9HynUA5III7tIosJVzWvaGE5WAKdYj3IdELIIX7y9lksjzr5PzjzxF7t129b0 51j8OdXq2W0j/7DCd09XV3lB8Dck1ZPI1ZwN/vTDHIEDba05XwFg17qJTlhTMF2g Cvji4PUE14isrEKBxaUJ30xePI5aq9o+FOOuXubdTgtsIM3Wp6Yn/N9Qbviol/HU JBMi24PozvW8fUdWv2WVly+wJma4q2FUyn6dzoL7/aeGRjL2Vmx43VNifrk5CldK QV/P/S2TS/Oa4kqffSQdiXsixXGoKCyXOWX64+pxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQrX8FKduXI88xI3GuLNuiZCRMOYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNjc5ZDBiLWQ0ZDYtNDE5NS04Zjc4LTYxZTVkMzQzMWYzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKkmMgwDQYJKoZIhvcNAQELBQADggEBAF2Lr19OGm/7tYPKUuJhYHxFEjv7 L8dt5g9itS15gIfwVsBQihIqn+tJ9vuSZQG54+pnduaHPDwZc5ifbqiWs1LWloOZ Ge32gWaZuG7Bo6g93zOqyg/uhc2i1rtT0MEBukwRf9PNb1tpBnKgCDoJXmvkmJMj xEKF8vdyBW2YgmVRJ53BxkMxbV4aYJv9qffX40zq6zhIlnJCCmOjaT4WfqpF18iW 23KDl9w3Mlq5cBghZ9IjzxAuxjvPSVKDf/d9HsFmx80W8tXNGCbItMV+eNro4SGA zDXbdA3kF/M8VtoGA0yR0Csq3MMbqRSiM2xP3TFFI5Ie1Uo2kWR7uaSX5sE= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:56 2024 by rpki-client on console-fra.rpki-client.org