$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4ed53bed-d428-427a-9687-6dafdd5c0361.roa File: 4ed53bed-d428-427a-9687-6dafdd5c0361.roa (raw, json) Hash identifier: 4EdkDS44gh33E7W3uJCtbFqZuJuU3noBQpKu5r59IMY= Subject key identifier: 3A:56:4F:C4:32:4B:52:1D:64:4B:F0:4A:A1:F3:7A:56:27:D5:C4:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 470CC70E93AB5F4D7C0AB2498A6268BE49CE4658 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4ed53bed-d428-427a-9687-6dafdd5c0361.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.83.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:0c:c7:0e:93:ab:5f:4d:7c:0a:b2:49:8a:62:68:be:49:ce:46:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=c12a7bc96869253dae200c7dd51a703a5d81dae2a83b40ea4eec43a728c48b03, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:76:ba:84:da:5e:c7:ac:d6:79:82:59:e4:a0: c5:00:a2:f0:f5:be:f3:b7:b6:2b:83:70:49:f9:12: 0b:66:f4:f9:25:4c:d7:64:b5:41:ce:b9:43:e1:da: 20:6a:f1:39:a1:85:13:ce:a5:b6:db:a4:29:16:f0: 64:dc:7b:6d:d5:5f:5c:b0:ed:8d:df:29:e3:4b:8b: 32:b1:98:28:ec:31:cf:98:73:84:5d:de:6e:08:8a: 4a:e5:73:cd:3a:31:ca:6b:4d:e0:56:fe:6f:c9:27: 42:d4:95:93:b8:cd:19:d2:90:33:4f:85:11:5c:45: b1:b6:90:7d:20:a5:12:a6:9f:aa:7e:8f:7c:9b:18: 5e:3f:19:6f:b2:0d:a6:ac:da:92:a4:42:50:eb:88: d7:22:ba:4c:af:9a:1c:98:31:e7:6e:d7:f9:3c:f7: b6:97:9f:53:0e:a3:13:5c:d1:a9:08:22:ed:99:fd: 94:78:77:a2:83:9c:5d:c6:d6:76:2e:8b:68:c2:b1: c2:98:92:b8:58:aa:0f:09:e3:73:97:7b:13:02:fd: b0:0c:ec:45:67:df:ba:60:22:b0:01:ad:92:b4:b5: 24:a3:4a:4a:12:6d:f9:5c:fd:6e:46:65:05:f7:bc: 60:1c:c0:05:e2:ef:09:7a:c5:7e:9b:53:69:18:ce: 56:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:56:4F:C4:32:4B:52:1D:64:4B:F0:4A:A1:F3:7A:56:27:D5:C4:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4ed53bed-d428-427a-9687-6dafdd5c0361.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.83.112.0/21 Signature Algorithm: sha256WithRSAEncryption 63:85:85:23:21:af:81:06:af:f1:b5:ec:9b:b5:ce:f5:89:65: 62:22:7e:87:9c:2d:25:07:5c:20:cf:35:84:f0:12:ae:ee:55: 68:9e:79:73:65:05:16:4e:16:7e:3b:ac:5f:7d:dd:6f:f5:ff: 11:45:80:b1:ab:65:35:9b:24:2c:09:69:4a:80:a1:ab:57:20: d8:67:c6:b8:20:c7:97:aa:f0:0d:0a:0f:0e:92:78:5f:d0:59: 78:63:69:e2:2e:56:3a:b9:f0:22:81:81:92:a5:e8:91:ef:e9: ff:2a:0e:aa:13:d8:63:af:5b:4a:b6:75:4b:bd:c2:e1:bf:a0: 66:93:7a:f8:c9:bb:8d:cf:e1:45:19:d0:30:8c:b3:ab:48:da: bf:9e:b5:f7:13:11:c8:00:87:75:10:4e:e3:67:7e:c4:94:2f: ec:7a:41:21:41:b2:bf:12:5c:72:6f:bf:d5:a8:b6:dd:e0:0e: 56:b0:c0:68:6d:95:ec:cc:22:0d:da:a2:44:34:24:c9:a4:6e: 21:b7:46:5d:61:c4:5f:15:34:77:df:56:70:62:ca:00:a1:ae: be:02:aa:9b:d5:6e:d0:07:9f:c6:af:6d:87:4d:c5:8a:8d:e4: 4a:58:21:7c:06:63:8f:6c:4b:1a:35:2d:02:a8:25:f2:0f:f9: 63:6b:bc:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURwzHDpOrX018CrJJimJovknORlgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTJhN2JjOTY4NjkyNTNkYWUyMDBjN2RkNTFhNzAzYTVk ODFkYWUyYTgzYjQwZWE0ZWVjNDNhNzI4YzQ4YjAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmdrqE2l7HrNZ5glnkoMUAovD1vvO3tiuDcEn5Egtm9Pkl TNdktUHOuUPh2iBq8TmhhRPOpbbbpCkW8GTce23VX1yw7Y3fKeNLizKxmCjsMc+Y c4Rd3m4Iikrlc806McprTeBW/m/JJ0LUlZO4zRnSkDNPhRFcRbG2kH0gpRKmn6p+ j3ybGF4/GW+yDaas2pKkQlDriNciukyvmhyYMedu1/k897aXn1MOoxNc0akIIu2Z /ZR4d6KDnF3G1nYui2jCscKYkrhYqg8J43OXexMC/bAM7EVn37pgIrABrZK0tSSj SkoSbflc/W5GZQX3vGAcwAXi7wl6xX6bU2kYzlZBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOlZPxDJLUh1kS/BKofN6VifVxO8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlZDUzYmVkLWQ0MjgtNDI3YS05Njg3LTZkYWZkZDVjMDM2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjU3AwDQYJKoZIhvcNAQELBQADggEBAGOFhSMhr4EGr/G17Ju1zvWJZWIi foecLSUHXCDPNYTwEq7uVWieeXNlBRZOFn47rF993W/1/xFFgLGrZTWbJCwJaUqA oatXINhnxrggx5eq8A0KDw6SeF/QWXhjaeIuVjq58CKBgZKl6JHv6f8qDqoT2GOv W0q2dUu9wuG/oGaTevjJu43P4UUZ0DCMs6tI2r+etfcTEcgAh3UQTuNnfsSUL+x6 QSFBsr8SXHJvv9Wott3gDlawwGhtlezMIg3aokQ0JMmkbiG3Rl1hxF8VNHffVnBi ygChrr4CqpvVbtAHn8avbYdNxYqN5EpYIXwGY49sSxo1LQKoJfIP+WNrvPM= -----END CERTIFICATE-----Generated at Mon Nov 25 02:57:36 2024 by rpki-client on console-fra.rpki-client.org