$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a577e49-2663-4f75-8a4f-8e3a12046599.roa File: 5a577e49-2663-4f75-8a4f-8e3a12046599.roa (raw, json) Hash identifier: KqOyp4Ztdl392b4bDc9lLRGK+0crjI7OroXyHsKzKYo= Subject key identifier: AE:32:4B:67:1E:BE:51:CB:E4:D8:0D:41:EC:40:4D:16:B6:2C:31:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C89A0D2A2D087F318D733431E0F2B089C28E936 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a577e49-2663-4f75-8a4f-8e3a12046599.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.177.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:89:a0:d2:a2:d0:87:f3:18:d7:33:43:1e:0f:2b:08:9c:28:e9:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=26bebf6db6b3fa7952fce4cb2b5310da5e454abbb55c3e7bc9202357387a93ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5f:c7:8b:74:dd:6a:9c:a4:1d:a6:44:6d:2b: e3:a7:d8:20:b9:4a:ad:09:67:3a:4a:7f:c5:bd:ba: e8:2c:35:90:bc:0f:ab:4c:86:d4:af:d2:70:56:01: 56:55:ae:8d:8a:18:5c:c0:3d:d5:a5:1a:22:86:2f: db:0a:cf:16:6c:ae:d8:bb:7a:99:91:22:d9:1c:11: 66:27:cc:f1:3d:37:10:c8:12:bb:60:55:63:f8:c2: 42:33:5a:81:cb:e0:3d:10:c2:cd:fc:6a:82:d5:5b: d1:2f:b0:c5:77:a7:fa:c1:1c:86:b9:4d:15:f3:93: 80:79:94:93:29:c0:21:1c:fc:59:ff:8b:07:41:9b: 2f:dd:41:38:25:eb:47:e5:d1:eb:f7:a1:aa:61:01: a6:5c:66:7b:aa:4f:80:2f:27:c9:fe:e9:90:e4:54: e3:33:96:6c:90:6d:97:19:4f:e8:6f:20:8c:6f:bd: 9c:b1:6c:3a:f2:5b:6f:16:df:bc:39:18:86:11:5b: a5:80:81:07:18:6d:ff:2c:65:e2:ed:b6:0f:16:c1: 0e:50:66:76:62:89:94:2c:58:f9:12:3d:73:bc:8d: fb:30:55:ed:93:ee:da:91:13:c1:c1:62:b3:1c:b5: 66:b1:04:bd:b6:00:16:a7:ce:9b:83:bd:df:a5:0a: e6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:32:4B:67:1E:BE:51:CB:E4:D8:0D:41:EC:40:4D:16:B6:2C:31:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a577e49-2663-4f75-8a4f-8e3a12046599.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.177.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3b:1d:f4:a9:f0:bd:4d:51:9d:b7:17:f5:cb:7d:f3:29:b0:14: f0:82:d5:27:97:85:b9:42:37:fe:64:a4:10:88:67:83:02:e6: 8f:a9:da:77:f6:eb:50:ad:5d:97:d5:ec:5d:24:ca:ed:68:51: 7a:52:e7:ec:10:ce:5c:22:8c:4d:57:84:08:1e:27:d2:49:88: 7c:09:93:6a:03:cf:5d:d1:b9:9b:09:81:13:05:64:4a:ab:94: d3:c7:45:7c:45:35:d3:62:ed:d3:e3:5d:39:3e:32:32:54:44: 0a:0b:9a:d8:52:07:93:dc:2b:85:a4:da:c4:bb:f5:26:73:38: 20:aa:37:fa:d9:5b:1e:18:68:a9:0c:0f:d7:e3:e6:cc:ee:5f: cb:81:a1:c3:e9:f0:38:8d:08:4b:bd:b5:b6:70:94:85:50:78: e0:88:93:27:b4:b6:d9:e3:ee:32:3c:67:69:b1:70:9c:ad:cb: cd:fa:5b:30:69:59:ff:d6:42:ff:0e:5b:17:9b:ba:64:bf:95: 6b:8f:d9:ef:69:bc:a8:06:dc:3e:97:e5:95:7a:20:17:bc:2c: 9a:98:74:1f:74:81:c2:f1:f2:f6:85:3c:71:4f:fb:23:a5:b6: b1:73:fb:0b:6c:3c:ad:3c:8f:16:37:d5:d7:92:d4:cf:87:34: 9f:ed:94:40 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPImg0qLQh/MY1zNDHg8rCJwo6TYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNmJlYmY2ZGI2YjNmYTc5NTJmY2U0Y2IyYjUzMTBkYTVl NDU0YWJiYjU1YzNlN2JjOTIwMjM1NzM4N2E5M2VkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdX8eLdN1qnKQdpkRtK+On2CC5Sq0JZzpKf8W9uugsNZC8 D6tMhtSv0nBWAVZVro2KGFzAPdWlGiKGL9sKzxZsrti7epmRItkcEWYnzPE9NxDI ErtgVWP4wkIzWoHL4D0Qws38aoLVW9EvsMV3p/rBHIa5TRXzk4B5lJMpwCEc/Fn/ iwdBmy/dQTgl60fl0ev3oaphAaZcZnuqT4AvJ8n+6ZDkVOMzlmyQbZcZT+hvIIxv vZyxbDryW28W37w5GIYRW6WAgQcYbf8sZeLttg8WwQ5QZnZiiZQsWPkSPXO8jfsw Ve2T7tqRE8HBYrMctWaxBL22ABanzpuDvd+lCubTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrjJLZx6+Ucvk2A1B7EBNFrYsMZUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhNTc3ZTQ5LTI2NjMtNGY3NS04YTRmLThlM2ExMjA0NjU5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQsTANBgkqhkiG9w0BAQsFAAOCAQEAOx30qfC9TVGdtxf1y33zKbAU8ILV J5eFuUI3/mSkEIhngwLmj6nad/brUK1dl9XsXSTK7WhRelLn7BDOXCKMTVeECB4n 0kmIfAmTagPPXdG5mwmBEwVkSquU08dFfEU102Lt0+NdOT4yMlRECgua2FIHk9wr haTaxLv1JnM4IKo3+tlbHhhoqQwP1+PmzO5fy4Ghw+nwOI0IS721tnCUhVB44IiT J7S22ePuMjxnabFwnK3LzfpbMGlZ/9ZC/w5bF5u6ZL+Va4/Z72m8qAbcPpfllXog F7wsmph0H3SBwvHy9oU8cU/7I6W2sXP7C2w8rTyPFjfV15LUz4c0n+2UQA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:02 2024 by rpki-client on console-fra.rpki-client.org