$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/588d7b14-72cd-4c96-9882-1aa361b8b9af.roa File: 588d7b14-72cd-4c96-9882-1aa361b8b9af.roa (raw, json) Hash identifier: MYobiJCkGNJMk+i3LG+rvxAz61C5F74ztEQwtQGfXT0= Subject key identifier: 75:A2:FF:6A:8C:8A:B5:27:3E:C8:74:83:36:97:C2:34:67:9C:2B:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F4DE39DC4AFD253942B1D25612306AF201EBE7A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/588d7b14-72cd-4c96-9882-1aa361b8b9af.roa Signing time: Wed 06 Nov 2024 00:00:00 +0000 ROA not before: Wed 06 Nov 2024 00:00:00 +0000 ROA not after: Wed 11 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 168.203.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:4d:e3:9d:c4:af:d2:53:94:2b:1d:25:61:23:06:af:20:1e:be:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 6 00:00:00 2024 GMT Not After : Dec 11 23:59:59 2024 GMT Subject: serialNumber=0f4d0e5b29392773ac0b272af87370981042516986fcf654a8f14da31403a3b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cf:03:f1:1d:1a:21:f5:52:8e:94:2e:aa:54: 54:83:b0:75:39:bf:8e:61:05:dc:9e:99:22:f8:d0: 51:84:30:52:05:1f:ff:d9:15:87:2e:37:7c:54:93: 34:4a:e1:1e:75:c0:fe:b8:28:02:06:8d:77:f8:19: 15:f3:fd:a9:78:98:93:93:5e:a6:0b:11:33:a6:94: bf:31:e9:7c:a5:c6:ae:76:9f:92:01:88:11:d7:e9: 4e:02:59:22:78:a5:17:1a:6f:33:b2:88:e0:45:7a: ea:e8:1d:98:81:dc:55:b1:56:ac:10:27:55:69:ea: 27:72:ed:3a:c5:54:5b:f6:6a:f0:72:b6:f2:b2:76: 0c:03:b2:c1:23:89:ac:da:e0:0a:2d:fe:24:69:e0: 87:b0:cf:de:db:a3:f0:dc:8a:24:02:00:01:b1:11: 10:57:5b:df:2a:88:f2:4c:13:5f:b8:6f:c9:10:7b: 83:ec:b1:9a:87:c9:77:d5:c2:d0:c0:84:50:7c:5a: dd:7e:f1:2b:06:c6:aa:b8:bf:ec:37:a3:7d:ca:07: 27:b6:48:ec:c6:44:9b:cd:df:46:02:05:bb:a9:2d: 3f:58:a1:ea:6c:59:a8:6b:36:88:21:39:f9:73:24: 62:5e:75:42:b5:eb:b2:68:ca:d8:48:55:c8:ac:18: d5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A2:FF:6A:8C:8A:B5:27:3E:C8:74:83:36:97:C2:34:67:9C:2B:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/588d7b14-72cd-4c96-9882-1aa361b8b9af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.203.64.0/18 Signature Algorithm: sha256WithRSAEncryption 46:c4:f7:43:d5:11:d1:ad:80:cd:6e:2d:3f:fc:15:2f:2c:ef: 14:bb:52:2a:8e:24:36:ed:5c:17:26:61:1f:6d:f7:45:52:86: 16:a2:5f:8f:e1:65:42:b9:93:02:58:97:8d:6a:28:0d:d3:a3: d9:b6:5d:4b:aa:76:75:fb:8d:83:fc:ec:4f:98:9e:e8:99:36: 53:b7:66:c8:4e:e8:d0:13:aa:61:78:7c:ac:a1:88:ba:f3:0d: 2d:35:cc:19:a6:a9:b9:58:b3:4a:4e:e3:8f:44:56:d2:f1:26: ac:d7:fd:73:a2:34:5e:21:eb:bf:77:b3:5d:9c:09:0d:f9:0e: 38:7b:76:6d:ff:49:c2:d9:72:50:58:69:26:de:73:2a:31:fa: 64:55:a2:b5:2e:b9:f6:f5:0a:6f:7c:2a:74:a6:33:1a:39:01: a6:7f:e1:3b:76:40:3c:4b:2d:9d:c1:2a:d6:49:2a:18:ea:4c: 34:99:e8:cb:4e:a2:dc:fc:13:5e:48:35:c4:5e:d9:74:a7:1a: 04:5b:4c:f7:f0:3d:46:fc:3d:07:5b:5a:9a:fe:f7:d8:2e:17: 9d:e0:67:09:62:d4:fe:a2:cd:87:50:70:88:0f:57:01:d8:6f: b7:13:f4:fd:9d:d5:06:31:31:e1:ca:1b:4d:4c:db:b1:3f:82: e9:eb:f9:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb03jncSv0lOUKx0lYSMGryAevnowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA2MDAwMDAwWhcNMjQxMjExMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjRkMGU1YjI5MzkyNzczYWMwYjI3MmFmODczNzA5ODEw NDI1MTY5ODZmY2Y2NTRhOGYxNGRhMzE0MDNhM2I1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwzwPxHRoh9VKOlC6qVFSDsHU5v45hBdyemSL40FGEMFIF H//ZFYcuN3xUkzRK4R51wP64KAIGjXf4GRXz/al4mJOTXqYLETOmlL8x6Xylxq52 n5IBiBHX6U4CWSJ4pRcabzOyiOBFeuroHZiB3FWxVqwQJ1Vp6idy7TrFVFv2avBy tvKydgwDssEjiaza4Aot/iRp4Iewz97bo/DciiQCAAGxERBXW98qiPJME1+4b8kQ e4PssZqHyXfVwtDAhFB8Wt1+8SsGxqq4v+w3o33KBye2SOzGRJvN30YCBbupLT9Y oepsWahrNoghOflzJGJedUK167JoythIVcisGNUdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdaL/aoyKtSc+yHSDNpfCNGecKxcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4OGQ3YjE0LTcyY2QtNGM5Ni05ODgyLTFhYTM2MWI4YjlhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaoy0AwDQYJKoZIhvcNAQELBQADggEBAEbE90PVEdGtgM1uLT/8FS8s7xS7 UiqOJDbtXBcmYR9t90VShhaiX4/hZUK5kwJYl41qKA3To9m2XUuqdnX7jYP87E+Y nuiZNlO3ZshO6NATqmF4fKyhiLrzDS01zBmmqblYs0pO449EVtLxJqzX/XOiNF4h 6793s12cCQ35Djh7dm3/ScLZclBYaSbecyox+mRVorUuufb1Cm98KnSmMxo5AaZ/ 4Tt2QDxLLZ3BKtZJKhjqTDSZ6MtOotz8E15INcRe2XSnGgRbTPfwPUb8PQdbWpr+ 99guF53gZwli1P6izYdQcIgPVwHYb7cT9P2d1QYxMeHKG01M27E/gunr+dI= -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:22 2024 by rpki-client on console-fra.rpki-client.org