$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa File: 5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa (raw, json) Hash identifier: 6pUp+ArQcwjwQJFpYwOaw8sCvBFQg/HqspaPcvoi/Bc= Subject key identifier: 22:95:24:2B:0A:C7:2A:30:41:ED:5D:DA:15:D2:83:A3:19:00:1A:41 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3FD91DF9D7BEC398498373FC920BAD09B54628EC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.233.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:d9:1d:f9:d7:be:c3:98:49:83:73:fc:92:0b:ad:09:b5:46:28:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=032786d2c8d5280efb5b7d7a42259f311acc197f38b130f3fc7a921028d6e550, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0c:2d:2a:09:72:9a:53:a4:a6:56:44:ef:3a: df:54:02:0a:60:b5:e7:d3:6d:58:34:6b:32:0d:1f: e4:9d:7a:42:41:0b:ab:7c:ca:a7:27:62:cd:4c:7d: e3:17:86:c0:fc:de:18:85:eb:4d:cc:1d:a4:d9:1c: fe:56:5e:b1:1f:22:c5:b9:28:6a:aa:78:55:d0:c5: 54:dd:37:ed:b6:20:ec:14:31:5e:4c:59:f0:cf:5d: 0e:db:f0:4c:1e:23:e7:c9:15:78:94:9e:57:a9:b9: ad:af:0a:fe:f3:bd:87:f9:55:f9:12:98:cb:12:ef: 4b:30:4c:d5:90:e3:f2:03:45:f6:47:a9:af:9a:e3: 74:6d:ec:31:31:47:89:f6:13:2c:c3:4d:63:f9:d1: 54:01:89:53:43:31:81:d6:e5:45:67:1c:ce:36:ff: 47:55:52:81:e4:8c:d1:4b:75:cc:dc:13:0b:ec:9d: e9:ee:65:ea:d1:ee:0b:61:80:3b:f0:cb:20:48:7d: ae:30:3d:a6:5a:41:ad:0b:6a:0e:ff:3b:d2:82:38: 52:7b:09:73:f7:a5:eb:c4:bd:fd:8f:eb:95:7f:7d: 22:e9:1c:16:a4:a7:da:8a:7e:ee:a0:66:06:ba:6c: 82:09:58:47:4b:b3:1b:23:28:3c:c2:51:88:3f:cb: e4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:95:24:2B:0A:C7:2A:30:41:ED:5D:DA:15:D2:83:A3:19:00:1A:41 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d484a06-5c86-4f33-a91d-70e2aa3e89a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.233.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3c:f6:13:26:39:01:2f:99:69:93:c0:a1:84:55:97:51:da:09: 87:56:19:5d:e2:ee:10:15:6a:5f:1e:29:3d:27:2c:3b:da:90: 3b:35:37:f7:e6:0f:4c:c0:bb:d2:81:af:f0:0c:32:8a:ad:e8: 1e:c4:18:ff:3c:88:73:05:34:d5:b3:ce:97:48:87:5a:07:88: 55:a6:e4:34:15:cf:b6:c0:81:74:ab:bb:86:90:6f:f3:41:ed: 52:b4:54:34:50:f9:16:7e:20:55:23:1f:10:f9:2d:39:20:14: 59:61:11:81:34:65:1e:a8:54:ae:8c:65:9e:88:ed:df:e1:2f: 9d:10:4e:8d:6c:2e:0d:0d:4d:2f:79:5a:0a:9c:89:c9:71:e9: 60:63:9c:c2:b3:b5:dd:5c:fd:3b:f4:4e:36:b6:79:4c:f6:83: 5c:7f:1f:2d:56:f4:0f:b6:04:21:e3:59:22:e8:c0:d5:a0:fb: b8:a5:a7:7b:f2:3b:08:48:1c:ca:47:1a:37:3d:98:ad:09:c0: c8:5e:9c:f7:d1:4d:59:2d:52:12:32:ba:33:33:12:1b:0a:3e: 9f:13:0c:65:44:df:4b:63:45:45:23:2b:21:02:94:61:9c:e2: ad:5d:69:55:e6:33:8d:5d:5f:97:0d:0d:15:1d:ce:51:4c:1f: 2e:6d:ae:33 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUP9kd+de+w5hJg3P8kgutCbVGKOwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzI3ODZkMmM4ZDUyODBlZmI1YjdkN2E0MjI1OWYzMTFh Y2MxOTdmMzhiMTMwZjNmYzdhOTIxMDI4ZDZlNTUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClDC0qCXKaU6SmVkTvOt9UAgpgtefTbVg0azINH+SdekJB C6t8yqcnYs1MfeMXhsD83hiF603MHaTZHP5WXrEfIsW5KGqqeFXQxVTdN+22IOwU MV5MWfDPXQ7b8EweI+fJFXiUnlepua2vCv7zvYf5VfkSmMsS70swTNWQ4/IDRfZH qa+a43Rt7DExR4n2EyzDTWP50VQBiVNDMYHW5UVnHM42/0dVUoHkjNFLdczcEwvs nenuZerR7gthgDvwyyBIfa4wPaZaQa0Lag7/O9KCOFJ7CXP3pevEvf2P65V/fSLp HBakp9qKfu6gZga6bIIJWEdLsxsjKDzCUYg/y+TbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIpUkKwrHKjBB7V3aFdKDoxkAGkEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkNDg0YTA2LTVjODYtNGYzMy1hOTFkLTcwZTJhYTNlODlhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA46TANBgkqhkiG9w0BAQsFAAOCAQEAPPYTJjkBL5lpk8ChhFWXUdoJh1YZ XeLuEBVqXx4pPScsO9qQOzU39+YPTMC70oGv8Awyiq3oHsQY/zyIcwU01bPOl0iH WgeIVabkNBXPtsCBdKu7hpBv80HtUrRUNFD5Fn4gVSMfEPktOSAUWWERgTRlHqhU roxlnojt3+EvnRBOjWwuDQ1NL3laCpyJyXHpYGOcwrO13Vz9O/RONrZ5TPaDXH8f LVb0D7YEIeNZIujA1aD7uKWne/I7CEgcykcaNz2YrQnAyF6c99FNWS1SEjK6MzMS Gwo+nxMMZUTfS2NFRSMrIQKUYZzirV1pVeYzjV1flw0NFR3OUUwfLm2uMw== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:04 2024 by rpki-client on console-ams.rpki-client.org