$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa File: 59f5622d-1ca3-4310-a7bb-9aeda3799734.roa (raw, json) Hash identifier: 6S0dsPIkqO0gntBY5LX2rwzAXLPsr8lZXfsJ16zSrrI= Subject key identifier: 30:B9:1B:D8:74:C5:6B:98:9D:1F:E9:75:0C:8F:20:92:6C:65:09:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CEBE4BCBCDF596725ADD2F8A3015DD3B8B8A0E6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.189.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:eb:e4:bc:bc:df:59:67:25:ad:d2:f8:a3:01:5d:d3:b8:b8:a0:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=b9451eeb1a3e7b648c85ef439850656f37ec2b8361fdbd3f3bd4ede26571a6ab, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ab:73:ea:8a:63:ed:cf:60:f1:7c:89:17:52: fc:d3:49:ac:68:cc:53:a3:45:35:59:fb:48:47:39: cc:74:63:41:f9:ac:5b:a5:43:0e:13:48:ca:5f:41: f5:e4:e3:ff:21:1a:0b:4b:60:1f:c3:86:73:1d:c0: d6:72:08:4f:34:e3:69:18:ba:9d:02:d8:42:3c:eb: 7b:de:fb:50:b8:f8:f2:cd:04:e4:59:e3:e6:18:7a: 64:84:fe:5b:6d:fa:0e:a3:eb:f7:e5:25:45:15:11: 9b:3b:26:b9:c9:15:76:48:15:7b:48:2b:4a:20:f2: 31:ea:8a:0d:97:32:e4:f1:c8:d4:5a:d4:32:6e:d4: fa:1c:a6:b2:a4:b4:10:fe:1b:23:f8:e9:27:5b:0e: e1:ca:98:bd:d2:e3:c2:92:b0:d7:7b:f8:95:44:54: e6:69:f7:ba:4e:ba:f9:8e:09:72:39:d5:69:0f:78: b5:c7:3f:c4:2a:08:07:53:70:ac:f6:a8:ec:bf:bb: b0:90:33:10:1a:d1:ec:da:eb:3e:34:4a:91:ad:e7: 3d:9a:8c:2f:75:30:10:9b:bd:f3:d0:33:98:4d:17: a0:e9:1b:50:36:73:49:1b:29:19:f6:d7:21:45:d8: 90:bc:41:4b:ff:ea:76:34:9d:db:c7:02:f0:e8:e8: d5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:B9:1B:D8:74:C5:6B:98:9D:1F:E9:75:0C:8F:20:92:6C:65:09:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.189.0.0/16 Signature Algorithm: sha256WithRSAEncryption cf:19:df:7e:19:d4:88:25:3a:0a:90:7b:1a:48:52:83:df:0c: fb:ae:63:60:c1:40:ab:b0:bd:7d:c2:a5:50:d9:bd:fc:05:0b: 05:d6:19:ad:3a:12:12:36:10:d2:37:dd:3e:17:73:63:57:d7: 2d:8c:14:0f:5d:96:6d:4e:b9:80:8f:6c:a1:66:67:ac:f5:a5: 1d:76:09:5d:c8:c6:fa:0a:f8:d9:c3:ab:43:18:bd:57:17:00: cc:fd:7d:32:f9:91:bd:82:b6:bf:74:05:69:59:3d:bb:1e:ba: a9:82:28:5e:bf:d6:da:0f:59:75:33:07:e3:d2:63:30:d8:d9: 96:38:e6:5c:a0:3f:4a:2a:e1:b8:b8:a6:37:06:79:2f:14:6a: aa:37:61:50:1f:de:ab:30:4a:f5:0d:ab:79:a3:8d:3f:42:a4: d5:62:42:ca:f8:27:a3:5d:db:b2:b8:aa:45:c4:78:7f:cb:51: f1:29:2d:de:69:23:b7:ce:c1:3c:68:52:89:a1:49:0b:2f:7b: 92:aa:44:b7:39:b2:6a:b7:e7:f5:87:b2:e4:59:76:48:62:4e: ad:cf:2a:fb:b5:91:78:ab:23:ee:e6:52:1c:1e:23:3f:a7:7b: 24:b9:1e:cb:e6:62:56:7d:bf:51:df:c4:44:6e:58:60:47:8e: 7d:c2:53:f7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbOvkvLzfWWclrdL4owFd07i4oOYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTQ1MWVlYjFhM2U3YjY0OGM4NWVmNDM5ODUwNjU2ZjM3 ZWMyYjgzNjFmZGJkM2YzYmQ0ZWRlMjY1NzFhNmFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZq3PqimPtz2DxfIkXUvzTSaxozFOjRTVZ+0hHOcx0Y0H5 rFulQw4TSMpfQfXk4/8hGgtLYB/DhnMdwNZyCE8042kYup0C2EI863ve+1C4+PLN BORZ4+YYemSE/ltt+g6j6/flJUUVEZs7JrnJFXZIFXtIK0og8jHqig2XMuTxyNRa 1DJu1PocprKktBD+GyP46SdbDuHKmL3S48KSsNd7+JVEVOZp97pOuvmOCXI51WkP eLXHP8QqCAdTcKz2qOy/u7CQMxAa0eza6z40SpGt5z2ajC91MBCbvfPQM5hNF6Dp G1A2c0kbKRn21yFF2JC8QUv/6nY0ndvHAvDo6NVVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUMLkb2HTFa5idH+l1DI8gkmxlCaMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5ZjU2MjJkLTFjYTMtNDMxMC1hN2JiLTlhZWRhMzc5OTczNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvTANBgkqhkiG9w0BAQsFAAOCAQEAzxnffhnUiCU6CpB7GkhSg98M+65j YMFAq7C9fcKlUNm9/AULBdYZrToSEjYQ0jfdPhdzY1fXLYwUD12WbU65gI9soWZn rPWlHXYJXcjG+gr42cOrQxi9VxcAzP19MvmRvYK2v3QFaVk9ux66qYIoXr/W2g9Z dTMH49JjMNjZljjmXKA/SirhuLimNwZ5LxRqqjdhUB/eqzBK9Q2reaONP0Kk1WJC yvgno13bsriqRcR4f8tR8Skt3mkjt87BPGhSiaFJCy97kqpEtzmyarfn9Yey5Fl2 SGJOrc8q+7WReKsj7uZSHB4jP6d7JLkey+ZiVn2/Ud/ERG5YYEeOfcJT9w== -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:22 2024 by rpki-client on console-fra.rpki-client.org