$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa File: 52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa (raw, json) Hash identifier: FU5JUlvtHRsAs4dXYWo4/hVaCotv9wb9hIqesJYr0+M= Subject key identifier: D5:AC:9D:07:9D:5C:A8:4A:49:98:31:1A:73:D0:A1:56:70:CC:F7:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77B8B838E2C9D85848989BC21DA12B0381FEB1FE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:b8:b8:38:e2:c9:d8:58:48:98:9b:c2:1d:a1:2b:03:81:fe:b1:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=113dda35238be871b6cd4d1d44e999f16d81b5f1050a0d98c884056ee0557c76, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:90:73:49:b8:73:a9:5e:c6:4e:be:f4:ef:42: 84:28:76:92:84:05:d5:8e:b1:70:e6:be:59:e9:af: 42:71:c5:50:49:4b:15:53:71:f1:fd:a2:02:88:d1: c1:5e:29:00:ce:f5:1a:ea:31:d7:06:76:57:8b:bd: df:43:3e:c9:dc:4d:4d:84:f0:f1:74:a5:9d:14:df: 9d:65:25:bb:8b:af:cd:52:71:59:eb:8a:92:6f:fa: 9c:52:75:c1:89:b4:30:ea:fa:62:bb:9c:88:87:03: 6e:c3:7c:62:99:fc:67:2f:7e:67:c7:13:e6:79:2c: ed:0b:8e:d5:89:3b:29:44:52:7d:20:8d:32:49:2c: 52:a1:6f:1a:27:30:3a:a4:8b:56:9e:a8:1f:f9:f0: f0:b8:09:7a:be:91:fc:aa:4e:9c:4c:1f:11:07:79: 2f:9b:1c:f7:38:0e:ce:b5:35:a6:38:9b:8c:d1:91: 85:2c:a7:18:42:c7:62:54:4b:2f:ee:cd:91:ff:5c: 04:98:85:11:1c:de:c1:51:88:86:e5:9c:f2:86:12: ef:e1:6a:2e:e5:00:a2:25:2e:38:14:d2:8b:0d:40: 38:b3:04:5e:1e:2d:19:38:38:0c:a7:2f:a7:a0:8b: 96:d3:4a:59:c3:b4:af:bb:85:70:e1:0c:23:0e:68: a5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:AC:9D:07:9D:5C:A8:4A:49:98:31:1A:73:D0:A1:56:70:CC:F7:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 68:4f:40:65:8d:df:3c:03:3d:0e:31:18:a0:cb:22:28:99:f8: 11:4e:8f:a9:32:f1:0f:d0:3c:5c:c9:6b:00:f4:ec:e9:a7:5d: 85:a1:e0:08:5b:af:ea:4b:50:da:1a:33:d0:9f:60:ab:b1:5b: 56:31:e1:87:44:ab:5b:aa:74:e5:f7:77:a0:a1:0a:14:ec:2f: 7a:ca:fe:3d:30:2c:83:50:aa:39:2f:01:3f:7d:84:e3:24:6b: ca:ac:28:bc:8e:80:41:66:28:7c:1f:bd:92:4c:ed:26:9c:44: 83:b4:b8:e2:d2:78:c2:29:f1:5f:f1:d4:36:05:72:3e:3f:e0: d4:81:88:f6:a3:dc:65:6b:16:d5:79:2f:74:ab:e3:86:23:ad: 92:3d:a7:6e:79:b9:5c:0d:4b:90:3c:c5:c2:0a:50:cd:e1:ec: cf:75:35:f3:17:9b:bc:05:47:c0:e9:78:49:ae:67:c5:66:78: 5d:09:4f:c1:c8:c4:7b:30:c5:8c:cb:6c:41:a7:e8:89:76:eb: 36:59:a1:0c:12:3a:23:66:9c:0d:7e:62:f6:26:7e:dc:ed:4f: 07:c8:36:ba:8c:2f:f3:cb:5b:5f:6d:ab:0a:d5:83:64:8e:2a: d2:42:64:0a:6b:30:fd:2e:86:9b:47:e9:bb:b2:ad:69:31:00: 3c:44:ad:e1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUd7i4OOLJ2FhImJvCHaErA4H+sf4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTNkZGEzNTIzOGJlODcxYjZjZDRkMWQ0NGU5OTlmMTZk ODFiNWYxMDUwYTBkOThjODg0MDU2ZWUwNTU3Yzc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBkHNJuHOpXsZOvvTvQoQodpKEBdWOsXDmvlnpr0JxxVBJ SxVTcfH9ogKI0cFeKQDO9RrqMdcGdleLvd9DPsncTU2E8PF0pZ0U351lJbuLr81S cVnripJv+pxSdcGJtDDq+mK7nIiHA27DfGKZ/GcvfmfHE+Z5LO0LjtWJOylEUn0g jTJJLFKhbxonMDqki1aeqB/58PC4CXq+kfyqTpxMHxEHeS+bHPc4Ds61NaY4m4zR kYUspxhCx2JUSy/uzZH/XASYhREc3sFRiIblnPKGEu/hai7lAKIlLjgU0osNQDiz BF4eLRk4OAynL6egi5bTSlnDtK+7hXDhDCMOaKWFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1aydB51cqEpJmDEac9ChVnDM9xMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyNjAzYzA1LTg2ZTgtNGFjMC05NGY0LTgxNWI3ZmM2ZmNhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFjANBgkqhkiG9w0BAQsFAAOCAQEAaE9AZY3fPAM9DjEYoMsiKJn4EU6P qTLxD9A8XMlrAPTs6addhaHgCFuv6ktQ2hoz0J9gq7FbVjHhh0SrW6p05fd3oKEK FOwvesr+PTAsg1CqOS8BP32E4yRryqwovI6AQWYofB+9kkztJpxEg7S44tJ4winx X/HUNgVyPj/g1IGI9qPcZWsW1XkvdKvjhiOtkj2nbnm5XA1LkDzFwgpQzeHsz3U1 8xebvAVHwOl4Sa5nxWZ4XQlPwcjEezDFjMtsQafoiXbrNlmhDBI6I2acDX5i9iZ+ 3O1PB8g2uowv88tbX22rCtWDZI4q0kJkCmsw/S6Gm0fpu7KtaTEAPESt4Q== -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:20 2024 by rpki-client on console-fra.rpki-client.org