$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/505db6e9-5269-401f-b51b-5432b764551e.roa File: 505db6e9-5269-401f-b51b-5432b764551e.roa (raw, json) Hash identifier: DXJ+cg2uwIMhQhZ7TWg4LXTDwJ2zVpMArjxqHY8ef5M= Subject key identifier: C9:11:0D:5A:1A:72:88:9A:B8:06:50:E7:72:47:16:29:C0:8E:CD:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70A2C4B9EBB46776EEAF65DC806FC47893C0E40B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/505db6e9-5269-401f-b51b-5432b764551e.roa Signing time: Fri 04 Oct 2024 00:00:00 +0000 ROA not before: Fri 04 Oct 2024 00:00:00 +0000 ROA not after: Fri 08 Nov 2024 23:59:59 +0000 asID: 14618 IP address blocks: 146.77.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Oct 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:a2:c4:b9:eb:b4:67:76:ee:af:65:dc:80:6f:c4:78:93:c0:e4:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 4 00:00:00 2024 GMT Not After : Nov 8 23:59:59 2024 GMT Subject: serialNumber=c6bb1d6fd823ac768901416c45f9b3588076d169e46c39a31cfbe639134ba2a6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ce:69:62:ac:1f:68:56:22:56:b4:9e:c8:12: 3b:ed:2a:d8:17:02:7a:6c:f5:e1:9a:b8:7c:ac:f8: a7:3c:f2:29:47:39:2d:99:b4:23:6d:9b:e9:70:21: 10:16:28:0f:61:9a:a0:14:43:55:6a:92:6c:df:7e: 2c:d7:c2:b6:b4:5e:08:65:ca:ba:42:28:f5:ae:ac: 24:19:8a:64:d4:a8:22:5b:f0:fd:37:78:e8:f6:c1: 32:38:96:48:6d:44:bf:5c:a5:98:c7:b0:ff:ae:1b: 95:68:a8:da:86:95:a2:45:bc:c1:69:a6:ce:81:c2: 92:fa:bb:1b:1b:6b:2f:72:ae:13:0a:e2:35:fd:ca: 55:07:76:70:79:8d:28:68:45:1a:6f:58:f7:eb:e1: 5e:8e:f1:11:35:1f:7c:2a:ce:dc:8f:93:b0:8b:c3: 6e:19:5a:37:01:5c:dc:71:fa:ff:24:87:d3:48:f0: 19:e0:46:66:af:7a:9e:65:9a:de:15:05:0c:6f:e7: dd:8c:53:b5:2a:73:0d:5f:1a:f5:a5:88:31:61:c0: 50:c3:bd:83:b6:b3:bd:73:1c:2f:7d:da:ba:a3:95: 29:f8:e7:9a:30:7b:db:37:2e:9e:e2:62:df:a6:30: 41:34:0f:ad:a3:5a:e9:5a:2d:53:3f:48:30:9c:d3: 58:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:11:0D:5A:1A:72:88:9A:B8:06:50:E7:72:47:16:29:C0:8E:CD:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/505db6e9-5269-401f-b51b-5432b764551e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.77.0.0/16 Signature Algorithm: sha256WithRSAEncryption 06:fd:e6:d8:40:1b:e3:d5:ad:50:24:11:af:21:3a:80:bc:c0: 66:ff:58:e0:be:74:7c:8c:96:f3:9d:79:2d:37:14:ee:6a:1e: e4:ac:49:be:ba:4b:18:f3:14:2c:15:b6:48:71:c7:13:71:38: 77:bf:d4:47:1d:c7:0f:a7:bc:ad:d5:fc:61:94:39:61:b5:cc: 17:49:28:13:54:b8:65:10:ba:57:ca:64:54:6c:5e:9c:21:0b: 7c:29:c3:16:7c:63:32:55:df:37:12:79:8c:25:79:95:27:35: 7a:45:4d:20:86:10:71:bb:e3:29:c1:04:c8:85:b3:62:18:cc: cf:e9:17:ec:f4:c9:5c:11:32:c6:a2:44:40:e0:d8:4a:4a:67: f1:89:3b:a1:85:39:55:20:2f:48:6f:12:33:f1:f3:d5:a0:1f: 45:5b:ef:7d:44:fa:37:7a:f0:0c:bb:39:ae:85:c3:56:3e:58: 59:b4:d0:c8:86:a3:0d:be:d5:4e:22:04:ef:fe:f3:11:ac:39: 6d:be:3f:60:c5:d8:fa:91:37:a0:31:13:dd:30:04:fe:b3:c2: 9e:46:60:0f:43:5b:d0:a8:59:5f:99:52:1c:a2:e2:a2:db:89: 18:65:22:fb:69:08:e5:1e:af:f7:5c:ab:29:36:73:48:96:13: 32:92:aa:33 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcKLEueu0Z3bur2XcgG/EeJPA5AswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDA0MDAwMDAwWhcNMjQxMTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNmJiMWQ2ZmQ4MjNhYzc2ODkwMTQxNmM0NWY5YjM1ODgw NzZkMTY5ZTQ2YzM5YTMxY2ZiZTYzOTEzNGJhMmE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmzmlirB9oViJWtJ7IEjvtKtgXAnps9eGauHys+Kc88ilH OS2ZtCNtm+lwIRAWKA9hmqAUQ1VqkmzffizXwra0XghlyrpCKPWurCQZimTUqCJb 8P03eOj2wTI4lkhtRL9cpZjHsP+uG5VoqNqGlaJFvMFpps6BwpL6uxsbay9yrhMK 4jX9ylUHdnB5jShoRRpvWPfr4V6O8RE1H3wqztyPk7CLw24ZWjcBXNxx+v8kh9NI 8BngRmavep5lmt4VBQxv592MU7Uqcw1fGvWliDFhwFDDvYO2s71zHC992rqjlSn4 55owe9s3Lp7iYt+mMEE0D62jWulaLVM/SDCc01jdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyRENWhpyiJq4BlDnckcWKcCOzQUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUwNWRiNmU5LTUyNjktNDAxZi1iNTFiLTU0MzJiNzY0NTUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCSTTANBgkqhkiG9w0BAQsFAAOCAQEABv3m2EAb49WtUCQRryE6gLzAZv9Y 4L50fIyW8515LTcU7moe5KxJvrpLGPMULBW2SHHHE3E4d7/URx3HD6e8rdX8YZQ5 YbXMF0koE1S4ZRC6V8pkVGxenCELfCnDFnxjMlXfNxJ5jCV5lSc1ekVNIIYQcbvj KcEEyIWzYhjMz+kX7PTJXBEyxqJEQODYSkpn8Yk7oYU5VSAvSG8SM/Hz1aAfRVvv fUT6N3rwDLs5roXDVj5YWbTQyIajDb7VTiIE7/7zEaw5bb4/YMXY+pE3oDET3TAE /rPCnkZgD0Nb0KhZX5lSHKLiotuJGGUi+2kI5R6v91yrKTZzSJYTMpKqMw== -----END CERTIFICATE-----Generated at Tue Oct 22 00:46:45 2024 by rpki-client on console-fra.rpki-client.org