$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa File: 5238a6c5-a106-4b94-9f46-2c619db863c6.roa (raw, json) Hash identifier: LgZHMD+mjk9LKj9hQxRvm1SgCNgcrOchmuawfLNh+jE= Subject key identifier: 46:20:C6:2E:A9:56:70:2F:00:9F:0D:B0:7F:D7:4E:A1:D5:F1:6B:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D25268DDAE6B989DD751A850720A5A983790F5A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 107.150.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:25:26:8d:da:e6:b9:89:dd:75:1a:85:07:20:a5:a9:83:79:0f:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=fb92ffd77e4611dcda2b0cf3f38230143dd182f57e74e0585ed4bd386a18e398, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:60:73:2a:3b:bb:8a:65:57:e9:93:ba:76:5f: 8d:64:1c:60:ba:d1:2a:99:69:64:e0:01:85:82:f5: 4b:f8:b5:cd:84:f6:ee:4f:ac:51:03:74:eb:98:b4: c2:58:2e:e7:07:a2:d8:47:9f:ac:23:99:28:53:e6: f7:cb:e8:37:e4:31:fc:6e:c2:a5:36:5d:36:32:df: e6:6f:d5:9b:b3:48:94:f0:fa:75:4c:df:d6:34:ac: d0:51:44:24:ab:85:44:17:db:d1:0c:6d:9d:b7:23: a9:6d:cd:bb:25:6c:99:58:ed:cf:db:2e:e7:0e:80: 88:d6:ef:24:f0:05:6d:f8:74:8f:da:ec:b2:ef:d8: 51:23:93:f4:c8:e7:f8:aa:3d:6a:96:2c:30:a7:57: 43:9d:24:31:f1:41:b8:bc:89:30:b2:c4:91:98:6b: 69:c3:0b:5a:59:37:c1:95:95:da:9e:c2:a5:55:41: 2a:27:d6:df:3f:3d:79:55:64:61:0d:c1:7a:54:7b: 04:88:4d:bd:b5:1d:26:76:a9:2d:2f:a0:1f:3a:9e: 49:33:3a:91:cd:b4:10:29:86:57:db:a2:60:e6:3e: 03:c1:8b:3a:a1:55:c0:0f:86:01:43:eb:5c:f6:73: 8b:a6:34:af:46:70:18:19:56:4f:81:2a:52:05:13: 56:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:20:C6:2E:A9:56:70:2F:00:9F:0D:B0:7F:D7:4E:A1:D5:F1:6B:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.150.192.0/19 Signature Algorithm: sha256WithRSAEncryption 75:b9:8f:0e:5d:1a:00:b5:81:e8:7d:d2:7e:2c:50:d5:1e:ea: 7d:b8:81:11:16:49:b3:1f:b8:a2:5f:95:b5:7e:1d:82:eb:ad: 2c:b4:c6:fb:db:c8:48:41:a4:3f:0b:8f:cd:03:84:d7:d4:7e: ea:57:a9:81:b4:bc:48:6b:fd:64:eb:fa:0a:35:2b:c5:f4:b0: e7:00:53:a3:79:8f:53:25:f9:10:79:f2:fe:4f:44:a8:f7:33: f3:8a:df:b3:91:ef:84:f8:5e:4b:c6:b2:e4:49:3e:bc:75:fa: f9:96:b5:12:c4:a9:37:a8:5e:a3:49:7a:12:2a:14:50:61:95: 3e:a4:e4:3d:ff:ea:c3:f5:f6:33:6e:9d:58:8e:35:b8:34:06: 3c:2b:10:d3:75:e9:91:3a:49:80:0d:95:00:2d:e3:e0:b3:a4: a7:73:c5:6c:a0:05:1d:65:a3:8d:4c:1c:da:15:ac:99:1c:25: 1b:c4:24:24:f0:ab:e3:a5:27:ef:f5:07:ae:96:4c:8c:c0:97: b1:9e:bc:71:7f:24:ce:87:84:e8:55:65:eb:ad:93:38:d4:5c: 30:02:d6:eb:e9:b8:52:9d:21:b2:66:44:81:e1:5a:e9:47:bd: 91:dc:53:05:1b:70:49:1c:64:46:58:7d:c1:e5:9f:0a:bb:d8: 86:79:b6:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPSUmjdrmuYnddRqFByClqYN5D1owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjkyZmZkNzdlNDYxMWRjZGEyYjBjZjNmMzgyMzAxNDNk ZDE4MmY1N2U3NGUwNTg1ZWQ0YmQzODZhMThlMzk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/YHMqO7uKZVfpk7p2X41kHGC60SqZaWTgAYWC9Uv4tc2E 9u5PrFEDdOuYtMJYLucHothHn6wjmShT5vfL6DfkMfxuwqU2XTYy3+Zv1ZuzSJTw +nVM39Y0rNBRRCSrhUQX29EMbZ23I6ltzbslbJlY7c/bLucOgIjW7yTwBW34dI/a 7LLv2FEjk/TI5/iqPWqWLDCnV0OdJDHxQbi8iTCyxJGYa2nDC1pZN8GVldqewqVV QSon1t8/PXlVZGENwXpUewSITb21HSZ2qS0voB86nkkzOpHNtBAphlfbomDmPgPB izqhVcAPhgFD61z2c4umNK9GcBgZVk+BKlIFE1b9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURiDGLqlWcC8Anw2wf9dOodXxazQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyMzhhNmM1LWExMDYtNGI5NC05ZjQ2LTJjNjE5ZGI4NjNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrlsAwDQYJKoZIhvcNAQELBQADggEBAHW5jw5dGgC1geh90n4sUNUe6n24 gREWSbMfuKJflbV+HYLrrSy0xvvbyEhBpD8Lj80DhNfUfupXqYG0vEhr/WTr+go1 K8X0sOcAU6N5j1Ml+RB58v5PRKj3M/OK37OR74T4XkvGsuRJPrx1+vmWtRLEqTeo XqNJehIqFFBhlT6k5D3/6sP19jNunViONbg0BjwrENN16ZE6SYANlQAt4+CzpKdz xWygBR1lo41MHNoVrJkcJRvEJCTwq+OlJ+/1B66WTIzAl7GevHF/JM6HhOhVZeut kzjUXDAC1uvpuFKdIbJmRIHhWulHvZHcUwUbcEkcZEZYfcHlnwq72IZ5tqU= -----END CERTIFICATE-----Generated at Mon Nov 25 02:57:37 2024 by rpki-client on console-fra.rpki-client.org