$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/523da1ab-d77c-4d50-838c-764a699f10da.roa File: 523da1ab-d77c-4d50-838c-764a699f10da.roa (raw, json) Hash identifier: 0ycZCrpcEXFpsV8GVzJWpQdA0kg7ah/c6tEbui0Ghog= Subject key identifier: 15:72:9C:8A:CA:2F:46:52:24:72:DC:3D:6E:10:D6:A8:1F:AD:4B:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66D331F0CC9977E5BD098397DFC2137A34A6F3EA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/523da1ab-d77c-4d50-838c-764a699f10da.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 159.174.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:d3:31:f0:cc:99:77:e5:bd:09:83:97:df:c2:13:7a:34:a6:f3:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=27ee4f451574c06d9d384d77c0d886437de120ec1b788c0aa6653eedd658cca7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:74:31:6c:fe:47:68:57:0e:c4:c9:8d:85:ee: 93:54:47:58:97:85:ee:ad:82:63:d7:cb:3e:b0:f9: 11:95:1e:95:ce:14:42:2b:40:55:38:d3:30:fe:ec: 01:85:de:68:2f:6d:07:63:82:9b:d8:bc:c9:15:4e: ed:01:00:e5:0f:97:de:1e:ef:48:b3:56:fc:d4:a1: b3:be:05:72:8d:e5:02:3e:ea:c1:b5:b6:8f:09:bc: 0b:24:a8:0e:40:ca:fc:6b:e0:f5:1a:92:67:35:45: 3f:c4:6f:11:62:e2:09:09:8f:31:16:e1:d3:74:50: a5:38:fc:92:ae:2a:f4:61:d9:4a:12:6c:aa:8f:c3: 42:3e:95:5d:54:0e:84:f8:ac:95:6d:d5:8a:f3:ee: 57:de:51:9d:b8:c5:fb:65:b9:ce:34:e5:12:10:3f: a1:04:70:66:53:8f:f7:0e:74:d5:d3:66:04:c6:a9: de:c1:9c:50:11:4c:dc:36:cc:16:f1:82:f5:5b:c4: 46:3e:5e:7d:5e:51:57:bd:12:90:2b:d9:ac:8e:e2: 56:a4:2d:9c:64:70:23:a6:fe:ca:c6:d1:cc:b5:8b: b3:46:0a:d2:69:0c:50:51:df:a1:4d:37:c7:1c:09: 63:79:43:f4:82:4d:26:ff:a5:13:b7:81:20:e6:df: 1e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:72:9C:8A:CA:2F:46:52:24:72:DC:3D:6E:10:D6:A8:1F:AD:4B:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/523da1ab-d77c-4d50-838c-764a699f10da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.174.0.0/16 Signature Algorithm: sha256WithRSAEncryption 69:07:22:0d:c6:e4:f5:01:a4:95:c6:58:e2:e7:da:96:9a:ef: fe:8c:bc:17:c9:7f:b0:af:57:bd:fe:b0:95:20:5d:4d:97:59: 5d:32:47:c3:dc:d2:83:b2:18:70:fd:dd:88:31:8a:13:12:50: 0a:b7:4e:4a:65:1c:f7:dd:cb:43:c3:fc:ab:f5:b9:bb:6d:41: 2c:1e:2b:32:d7:f5:6f:05:9c:70:1c:13:2e:93:90:c0:63:88: 42:a7:c9:d6:ac:ca:e3:c5:3d:2e:41:5c:39:3f:6a:b6:91:b4: ce:a7:47:65:58:46:f6:47:8f:40:33:5a:a9:e5:39:23:85:cc: b6:5c:ce:57:92:a3:f1:d8:ad:34:6a:e2:c5:f5:61:49:e5:3c: a6:4d:d9:52:4e:78:50:e2:15:9f:8e:15:1f:1e:1e:ec:ec:81: 39:ca:b6:51:fa:b6:a7:b7:c8:4e:df:8e:bf:c7:3a:5b:7f:05: 7b:3a:e9:14:bd:a4:a3:f0:05:e8:3d:ce:ef:92:e2:73:10:3e: ae:42:d8:64:32:aa:8d:62:0b:44:d6:36:a0:8a:18:60:3c:c2: ce:9c:d2:9a:f8:22:bf:2f:9d:a9:ca:1a:44:4a:b6:06:24:5e: cd:c9:af:9d:be:99:d6:63:28:6e:a4:ba:2a:22:f2:72:90:73: c4:00:64:06 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZtMx8MyZd+W9CYOX38ITejSm8+owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyN2VlNGY0NTE1NzRjMDZkOWQzODRkNzdjMGQ4ODY0Mzdk ZTEyMGVjMWI3ODhjMGFhNjY1M2VlZGQ2NThjY2E3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLdDFs/kdoVw7EyY2F7pNUR1iXhe6tgmPXyz6w+RGVHpXO FEIrQFU40zD+7AGF3mgvbQdjgpvYvMkVTu0BAOUPl94e70izVvzUobO+BXKN5QI+ 6sG1to8JvAskqA5Ayvxr4PUakmc1RT/EbxFi4gkJjzEW4dN0UKU4/JKuKvRh2UoS bKqPw0I+lV1UDoT4rJVt1Yrz7lfeUZ24xftluc405RIQP6EEcGZTj/cOdNXTZgTG qd7BnFARTNw2zBbxgvVbxEY+Xn1eUVe9EpAr2ayO4lakLZxkcCOm/srG0cy1i7NG CtJpDFBR36FNN8ccCWN5Q/SCTSb/pRO3gSDm3x4rAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFXKcisovRlIkctw9bhDWqB+tS84wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyM2RhMWFiLWQ3N2MtNGQ1MC04MzhjLTc2NGE2OTlmMTBkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCfrjANBgkqhkiG9w0BAQsFAAOCAQEAaQciDcbk9QGklcZY4ufalprv/oy8 F8l/sK9Xvf6wlSBdTZdZXTJHw9zSg7IYcP3diDGKExJQCrdOSmUc993LQ8P8q/W5 u21BLB4rMtf1bwWccBwTLpOQwGOIQqfJ1qzK48U9LkFcOT9qtpG0zqdHZVhG9keP QDNaqeU5I4XMtlzOV5Kj8ditNGrixfVhSeU8pk3ZUk54UOIVn44VHx4e7OyBOcq2 Ufq2p7fITt+Ov8c6W38FezrpFL2ko/AF6D3O75LicxA+rkLYZDKqjWILRNY2oIoY YDzCzpzSmvgivy+dqcoaREq2BiRezcmvnb6Z1mMobqS6KiLycpBzxABkBg== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:00 2024 by rpki-client on console-fra.rpki-client.org