$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4401cca8-5964-48b1-b1b5-2ab2021ddf02.roa File: 4401cca8-5964-48b1-b1b5-2ab2021ddf02.roa (raw, json) Hash identifier: +TbZj+7fl8LxY4a52C2YLif6W0jahsBMXayoRuiNmgw= Subject key identifier: D2:CE:BD:BE:E7:DC:C1:F7:A9:E2:7C:30:79:1F:99:64:68:0E:5E:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D29E275665FC478F8015059B14963270ACBE9E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4401cca8-5964-48b1-b1b5-2ab2021ddf02.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 15.240.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:29:e2:75:66:5f:c4:78:f8:01:50:59:b1:49:63:27:0a:cb:e9:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=68c990823b65a07ac49215380db78a86ec8de43282f995d94c9ebd0ee3f22eb3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a0:ed:2e:46:b5:f8:e5:00:a4:55:f2:16:05: a2:bf:35:85:49:eb:bf:30:1c:58:3c:f7:21:ce:99: 80:ca:4b:55:fc:ea:a2:6b:2d:2e:ef:44:d6:97:21: 98:86:a5:3a:8a:14:12:0b:df:24:d5:b2:25:8c:f0: f3:49:b5:4d:0e:7e:56:ba:40:76:48:57:3e:c6:8a: 95:dd:07:2e:33:7a:4f:57:b4:bd:a8:63:f3:c3:1c: fc:54:85:73:65:01:d5:02:21:8d:88:d2:f2:f9:1e: 42:c7:68:22:86:72:aa:fe:0a:38:72:3d:f9:f4:d9: 22:df:db:c6:a1:47:9c:cb:c3:a2:d1:99:ff:42:28: 8c:66:55:42:ef:9f:8c:e4:e0:81:3f:de:d1:fd:c2: 8c:1e:e9:67:65:eb:54:01:49:1c:ef:d0:86:2e:7f: 4e:43:af:4d:2f:b6:67:61:14:24:a6:87:6a:22:5e: 77:ac:7d:d7:d0:0b:02:68:5b:ea:6c:b6:95:9a:96: 03:aa:dc:05:bd:9c:4a:b7:39:1a:58:e8:17:e0:67: e4:2f:56:f1:5d:b8:fa:22:95:d2:c1:6f:75:4e:38: 90:03:a8:81:95:78:0f:1a:64:23:86:9b:9a:25:97: 8a:9a:41:1e:5b:b3:d5:fe:13:df:0c:a1:f7:cf:8b: fa:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:CE:BD:BE:E7:DC:C1:F7:A9:E2:7C:30:79:1F:99:64:68:0E:5E:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4401cca8-5964-48b1-b1b5-2ab2021ddf02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.240.0.0/16 Signature Algorithm: sha256WithRSAEncryption d9:6d:9c:40:3f:4f:d3:9e:69:9e:ca:b5:24:2a:b6:82:d5:4a: c2:28:26:8c:fa:be:46:14:4a:a9:64:a9:4c:4b:10:8d:1e:7a: 21:18:e2:60:db:90:d8:1c:23:f1:fd:23:f5:a4:14:5f:fc:b9: c1:4d:9f:fc:28:9f:00:b1:72:b9:19:1e:7c:12:3c:8a:fa:38: 0d:1b:36:09:96:ec:0e:3c:c4:e0:34:77:c2:9e:4a:ec:a5:99: 6d:0e:e1:13:c3:6e:4f:e1:12:a1:06:44:e3:db:70:cf:c4:18: a3:27:7b:53:ca:54:8b:68:c8:c2:02:22:b3:cc:7b:4e:90:4c: 34:0d:24:6d:0c:65:8f:60:4f:02:5c:55:5a:04:43:c1:d7:df: d0:6a:44:aa:b4:15:6e:6b:ff:07:56:e5:42:f4:3d:ec:d7:a4: ef:7c:b6:79:af:1c:eb:6f:1b:33:3c:62:0c:03:32:a9:54:a6: 6d:15:9b:cf:b4:73:2c:de:2d:33:1c:00:d0:7d:e0:70:08:63: a2:d5:17:57:68:d8:35:29:b2:89:bd:c0:9f:2d:d5:f7:52:f4: 16:e2:83:bf:ec:1e:d6:f9:f4:31:0c:23:dc:f5:21:f7:97:b3: 62:eb:e4:0b:f7:5e:2a:4b:2d:0b:e0:8f:6d:3b:16:28:42:17: 29:c9:42:96 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfSnidWZfxHj4AVBZsUljJwrL6eEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAyMDAwMDAwWhcNMjQxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OGM5OTA4MjNiNjVhMDdhYzQ5MjE1MzgwZGI3OGE4NmVj OGRlNDMyODJmOTk1ZDk0YzllYmQwZWUzZjIyZWIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+oO0uRrX45QCkVfIWBaK/NYVJ678wHFg89yHOmYDKS1X8 6qJrLS7vRNaXIZiGpTqKFBIL3yTVsiWM8PNJtU0Ofla6QHZIVz7GipXdBy4zek9X tL2oY/PDHPxUhXNlAdUCIY2I0vL5HkLHaCKGcqr+CjhyPfn02SLf28ahR5zLw6LR mf9CKIxmVULvn4zk4IE/3tH9wowe6Wdl61QBSRzv0IYuf05Dr00vtmdhFCSmh2oi XnesfdfQCwJoW+pstpWalgOq3AW9nEq3ORpY6BfgZ+QvVvFduPoildLBb3VOOJAD qIGVeA8aZCOGm5oll4qaQR5bs9X+E98MoffPi/rDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0s69vufcwfep4nwweR+ZZGgOXh8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0MDFjY2E4LTU5NjQtNDhiMS1iMWI1LTJhYjIwMjFkZGYwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP8DANBgkqhkiG9w0BAQsFAAOCAQEA2W2cQD9P055pnsq1JCq2gtVKwigm jPq+RhRKqWSpTEsQjR56IRjiYNuQ2Bwj8f0j9aQUX/y5wU2f/CifALFyuRkefBI8 ivo4DRs2CZbsDjzE4DR3wp5K7KWZbQ7hE8NuT+ESoQZE49twz8QYoyd7U8pUi2jI wgIis8x7TpBMNA0kbQxlj2BPAlxVWgRDwdff0GpEqrQVbmv/B1blQvQ97Nek73y2 ea8c628bMzxiDAMyqVSmbRWbz7RzLN4tMxwA0H3gcAhjotUXV2jYNSmyib3Any3V 91L0FuKDv+we1vn0MQwj3PUh95ezYuvkC/deKkstC+CPbTsWKEIXKclClg== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:56 2024 by rpki-client on console-fra.rpki-client.org