$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa File: 5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa (raw, json) Hash identifier: M31z7zum1s7/+66EzQxlRkZZJHJcGJ3ApABvGCWGbaQ= Subject key identifier: 37:BC:42:7D:82:42:32:60:6E:A4:7F:75:18:5A:33:21:21:08:00:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02C8D98924F091332F2793C0EEC198E09BEB6B20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.52.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:c8:d9:89:24:f0:91:33:2f:27:93:c0:ee:c1:98:e0:9b:eb:6b:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=77cf5ed3a71aad0b12bfa16fd902a169904933a18a4e705d822bcf7d6a1fd842, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:72:bc:f9:8f:eb:6b:9f:c1:ae:69:6f:12:9a: 53:48:15:c7:d3:2c:5b:7f:91:f2:e8:51:ba:1c:fb: 6b:56:76:0d:3f:b2:df:0c:14:6e:68:94:5f:b5:c5: de:4d:ef:1a:2e:f4:c9:b7:49:03:1d:66:88:0f:54: a1:65:f4:98:43:2f:06:bd:a4:f8:7a:0d:d9:41:a0: 40:a4:54:a7:8f:5b:a4:4b:fe:0a:fa:11:4d:fc:e3: 91:d4:56:85:ac:05:ab:cf:2d:9c:72:1d:10:c1:ab: e0:54:64:ab:d2:ac:96:fb:d3:83:1e:e6:db:53:be: 0c:8b:54:d0:00:0c:a8:4f:f5:a1:04:29:98:12:0d: 9d:c1:21:b8:9a:b9:c1:bd:40:a8:14:20:1c:e0:e6: f3:39:4e:2d:6d:8d:85:0b:d9:59:84:db:f5:f4:9e: 58:f2:a7:f3:62:f2:f5:d0:dc:25:bd:d6:e1:11:70: bc:06:1b:23:e2:19:0f:e3:fd:8c:a5:b5:b7:e5:07: 62:31:50:bd:49:ba:c9:80:c3:d5:0b:13:81:5b:59: fa:82:a8:a4:fe:e6:c1:97:bb:15:c7:91:e1:48:14: f2:47:a7:dd:0a:d8:eb:a8:3b:5d:4a:e7:7c:88:ba: 9c:9e:bd:46:88:34:e3:da:00:b2:81:d1:95:38:29: 0f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:BC:42:7D:82:42:32:60:6E:A4:7F:75:18:5A:33:21:21:08:00:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:f1:93:e4:08:88:f8:9d:94:9c:8f:f6:f7:24:9a:c0:2a:ae: bd:4b:6c:04:ec:a0:39:68:38:09:f8:d0:22:38:1d:a0:7d:a3: 23:3b:db:ed:d0:2d:2f:0b:dd:fa:03:80:76:fc:f4:1c:3c:e9: 9a:32:81:44:32:e6:37:97:09:73:f7:e7:e5:d7:b4:b6:d4:89: 30:c3:91:55:8f:3a:1e:73:bd:64:28:87:d2:58:75:03:8f:a1: ae:72:c3:44:b5:6f:f5:b3:c4:f3:69:24:40:8a:b7:3e:91:89: fe:de:a0:45:73:6c:d0:ba:f0:a4:7d:d2:d0:d6:8f:8c:8e:4c: 3e:bd:0f:3f:5b:4a:f0:1d:01:a8:e6:13:37:00:54:97:08:2c: 97:ee:8b:a1:0e:27:7d:83:e8:97:56:0d:59:b0:4d:7a:65:7d: d1:31:cd:ef:69:72:eb:04:84:47:e9:b4:1e:3e:17:42:ca:65: 67:6a:9c:d9:38:5c:82:12:f5:94:ce:9c:2d:32:a8:b3:7d:3d: 78:11:44:6d:58:8d:07:c7:04:31:33:2b:78:6d:00:f8:05:4e: 61:bf:2f:08:ec:a5:b0:51:59:19:a3:93:bc:94:50:bc:51:12: ae:1d:fa:1e:0c:4f:bf:78:8a:e5:4d:1f:b2:2d:0b:a3:88:cb: 18:37:3f:fa -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAsjZiSTwkTMvJ5PA7sGY4JvrayAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2NmNWVkM2E3MWFhZDBiMTJiZmExNmZkOTAyYTE2OTkw NDkzM2ExOGE0ZTcwNWQ4MjJiY2Y3ZDZhMWZkODQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzcrz5j+trn8GuaW8SmlNIFcfTLFt/kfLoUboc+2tWdg0/ st8MFG5olF+1xd5N7xou9Mm3SQMdZogPVKFl9JhDLwa9pPh6DdlBoECkVKePW6RL /gr6EU3845HUVoWsBavPLZxyHRDBq+BUZKvSrJb704Me5ttTvgyLVNAADKhP9aEE KZgSDZ3BIbiaucG9QKgUIBzg5vM5Ti1tjYUL2VmE2/X0nljyp/Ni8vXQ3CW91uER cLwGGyPiGQ/j/YyltbflB2IxUL1JusmAw9ULE4FbWfqCqKT+5sGXuxXHkeFIFPJH p90K2OuoO11K53yIupyevUaINOPaALKB0ZU4KQ9jAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUN7xCfYJCMmBupH91GFozISEIAHMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhNDc0YjJlLWE2ZmQtNDI5OC1iNWRmLWZmOWNhYTI2ZjkxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4NDANBgkqhkiG9w0BAQsFAAOCAQEAefGT5AiI+J2UnI/29ySawCquvUts BOygOWg4CfjQIjgdoH2jIzvb7dAtLwvd+gOAdvz0HDzpmjKBRDLmN5cJc/fn5de0 ttSJMMORVY86HnO9ZCiH0lh1A4+hrnLDRLVv9bPE82kkQIq3PpGJ/t6gRXNs0Lrw pH3S0NaPjI5MPr0PP1tK8B0BqOYTNwBUlwgsl+6LoQ4nfYPol1YNWbBNemV90THN 72ly6wSER+m0Hj4XQsplZ2qc2ThcghL1lM6cLTKos309eBFEbViNB8cEMTMreG0A +AVOYb8vCOylsFFZGaOTvJRQvFESrh36HgxPv3iK5U0fsi0Lo4jLGDc/+g== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:02 2024 by rpki-client on console-fra.rpki-client.org