$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fed9eca-2333-457c-922c-71cebf42dc4d.roa File: 4fed9eca-2333-457c-922c-71cebf42dc4d.roa (raw, json) Hash identifier: 4CQdgGFi9Nv3Yt/rI6FXFZZZUYw2OmCh9LD4gohZ9tI= Subject key identifier: 8B:F1:57:8F:8D:84:41:61:D9:50:AE:56:A1:88:A6:A8:49:E8:DC:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B61F596E009D90E4CCCB87709550EA6709CFCD6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fed9eca-2333-457c-922c-71cebf42dc4d.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 71.141.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:61:f5:96:e0:09:d9:0e:4c:cc:b8:77:09:55:0e:a6:70:9c:fc:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=2768a3f628bc6ddbc0ef6c23ea46f6a0a84de9f96d479573091752972d1cac32, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:7f:16:05:fa:26:68:b8:1d:68:2b:ce:0e:c7: ae:19:fa:09:aa:3b:cd:de:a7:d1:fc:a1:35:b2:a3: ad:ba:69:f2:8f:5a:b8:c6:50:7b:b7:cd:44:24:dd: 3d:56:06:7d:7b:0b:ed:82:5d:2b:1f:d0:b3:09:4e: 8c:1a:b8:89:bd:2e:c6:0a:17:f0:5f:d3:25:9a:64: 1f:77:43:aa:a1:0b:f6:8b:9f:12:21:3c:e7:a6:84: 4e:74:0a:c8:96:72:9f:cf:5e:59:eb:be:fa:84:0b: 36:a8:0f:77:72:1d:9b:80:3b:d1:22:eb:78:01:67: 1d:7d:b4:9b:8b:4b:1a:2a:54:4f:66:26:6e:61:52: 87:1b:33:3b:04:f8:a3:95:8b:00:d5:9b:6a:19:95: 6b:cd:78:c6:03:f5:55:0f:b4:a2:23:4c:cd:17:f5: 39:53:35:df:5a:57:6a:47:41:11:31:d8:18:45:db: 06:69:e2:88:f3:af:c9:66:98:46:08:ce:ba:6b:7d: e9:a7:31:81:69:0c:7d:c1:83:11:bc:3e:c2:0f:a3: 4f:b2:0d:41:a8:96:51:b9:a6:1c:ea:c2:85:4a:6b: 95:f4:c7:26:d7:09:9d:b2:47:45:e0:ef:48:f9:03: 9a:1f:3a:80:8e:fb:cc:4b:62:4a:1c:2c:6b:9f:6b: 49:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F1:57:8F:8D:84:41:61:D9:50:AE:56:A1:88:A6:A8:49:E8:DC:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fed9eca-2333-457c-922c-71cebf42dc4d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.141.0.0/18 Signature Algorithm: sha256WithRSAEncryption 2c:f8:2f:87:24:5f:b7:47:e7:b7:36:ec:10:c0:95:d1:f1:0d: 96:8b:a9:df:53:ba:86:be:f5:61:ba:46:b4:f1:d5:a9:8d:fc: 72:7c:b3:91:31:d2:d4:77:c9:af:08:91:b3:f2:31:82:8c:3a: 60:3f:4d:20:86:fd:9c:25:43:cb:39:2b:7d:7c:6e:7a:21:5b: e0:c4:fe:7d:6c:ba:bb:2d:4a:fc:8e:0c:71:fa:d3:89:29:df: ef:c0:cf:0f:00:54:73:b5:02:66:69:2f:af:82:25:d6:e1:db: 26:3c:d2:ff:9b:65:7b:b1:dc:df:02:5f:27:09:79:23:91:f2: 5e:3f:73:f9:ee:47:e6:10:e0:77:ba:ef:ac:7b:35:2c:7e:c2: 6d:fb:32:17:1f:de:4b:ad:b3:37:45:ca:64:94:db:3b:0c:74: 00:64:0a:4d:45:5b:51:c7:3d:f2:30:20:f5:69:7e:5c:ef:18: a3:24:cc:21:6d:da:ee:66:2c:d2:f8:b3:e6:c8:a5:9c:d1:c7: 10:55:a4:64:32:3a:f1:b3:35:5f:e4:1f:9a:c0:a4:28:67:eb: 65:bf:65:86:73:ed:d3:44:e6:c8:02:31:3b:6c:f3:60:f5:c1: f5:5f:ed:14:f1:bb:36:ce:0c:14:da:f6:a9:8f:c7:47:16:52: 04:eb:9e:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS2H1luAJ2Q5MzLh3CVUOpnCc/NYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzY4YTNmNjI4YmM2ZGRiYzBlZjZjMjNlYTQ2ZjZhMGE4 NGRlOWY5NmQ0Nzk1NzMwOTE3NTI5NzJkMWNhYzMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpfxYF+iZouB1oK84Ox64Z+gmqO83ep9H8oTWyo626afKP WrjGUHu3zUQk3T1WBn17C+2CXSsf0LMJTowauIm9LsYKF/Bf0yWaZB93Q6qhC/aL nxIhPOemhE50CsiWcp/PXlnrvvqECzaoD3dyHZuAO9Ei63gBZx19tJuLSxoqVE9m Jm5hUocbMzsE+KOViwDVm2oZlWvNeMYD9VUPtKIjTM0X9TlTNd9aV2pHQREx2BhF 2wZp4ojzr8lmmEYIzrprfemnMYFpDH3BgxG8PsIPo0+yDUGollG5phzqwoVKa5X0 xybXCZ2yR0Xg70j5A5ofOoCO+8xLYkocLGufa0nHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi/FXj42EQWHZUK5WoYimqEno3CMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmZWQ5ZWNhLTIzMzMtNDU3Yy05MjJjLTcxY2ViZjQyZGM0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZHjQAwDQYJKoZIhvcNAQELBQADggEBACz4L4ckX7dH57c27BDAldHxDZaL qd9Tuoa+9WG6RrTx1amN/HJ8s5Ex0tR3ya8IkbPyMYKMOmA/TSCG/ZwlQ8s5K318 bnohW+DE/n1surstSvyODHH604kp3+/Azw8AVHO1AmZpL6+CJdbh2yY80v+bZXux 3N8CXycJeSOR8l4/c/nuR+YQ4He676x7NSx+wm37Mhcf3kutszdFymSU2zsMdABk Ck1FW1HHPfIwIPVpflzvGKMkzCFt2u5mLNL4s+bIpZzRxxBVpGQyOvGzNV/kH5rA pChn62W/ZYZz7dNE5sgCMTts82D1wfVf7RTxuzbODBTa9qmPx0cWUgTrntc= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:00 2024 by rpki-client on console-fra.rpki-client.org