$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5db31593-d4f8-4d80-8920-1f55638e5662.roa File: 5db31593-d4f8-4d80-8920-1f55638e5662.roa (raw, json) Hash identifier: LfwG+UEvOqZXacF7jSfCwAfTSihqiAk0W4s7UraKfqg= Subject key identifier: F0:61:DF:BD:78:10:E8:CE:FB:69:84:D4:CF:C8:B7:F8:99:AC:CD:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32DDE4F40F196D2FB029A7215D39F2526CDF62E8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5db31593-d4f8-4d80-8920-1f55638e5662.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.186.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:dd:e4:f4:0f:19:6d:2f:b0:29:a7:21:5d:39:f2:52:6c:df:62:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=c52df6c3a6a81c70dbc7712659b08765e5402728ed736419f7a01e6c870b39f3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:e0:dc:7f:6b:38:3a:7e:9c:e4:bb:61:69:f6: b2:88:2f:0f:3b:6c:bf:95:60:c3:34:2a:31:45:c7: dd:56:43:80:17:cb:c3:31:37:15:81:94:f0:53:59: 6f:60:42:22:10:66:d8:8b:4b:55:4c:83:2f:11:cc: 44:69:43:ab:b5:78:22:d8:a8:8e:cc:16:46:c4:c4: ab:1c:39:32:56:1b:36:69:bf:19:70:2e:38:0a:c4: f2:8d:cd:cd:19:16:b4:c7:f2:b9:89:80:01:29:85: 56:96:0e:42:40:9a:01:3a:8a:62:fa:1f:c9:98:62: 4b:26:36:f3:2d:fc:4d:6f:ce:5d:50:fe:6a:f7:b7: 77:35:3c:45:5c:e4:a2:80:b2:8d:18:f4:23:17:45: da:d8:f1:88:2d:19:64:21:80:3c:5c:c4:9c:04:b2: 61:06:91:c4:86:1d:f5:c3:d9:62:e3:da:e7:12:8b: f5:ef:0f:fd:8d:19:36:df:07:bb:ad:e9:5c:75:fc: 19:18:d1:6b:03:e5:a8:26:6d:28:4f:29:bb:ec:1f: 4a:b5:87:5e:c9:45:9e:80:16:e3:be:7a:1b:0c:0f: f6:77:44:48:6c:80:b9:13:ed:dc:9e:2c:bc:6b:72: 17:fc:5e:27:d5:c1:6f:79:25:6c:fe:f6:b9:56:d4: db:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:61:DF:BD:78:10:E8:CE:FB:69:84:D4:CF:C8:B7:F8:99:AC:CD:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5db31593-d4f8-4d80-8920-1f55638e5662.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.186.0.0/16 Signature Algorithm: sha256WithRSAEncryption b1:38:01:1e:85:a0:d2:14:15:32:76:37:a8:8f:dc:54:f3:a9: 1e:e1:6e:40:48:b6:5f:c6:eb:dd:5d:05:d1:8f:c3:ee:5a:26: 19:6f:d7:f8:9c:c5:d1:99:1e:23:59:ae:d3:33:2e:87:2f:e0: 24:74:aa:5e:2f:f6:87:6b:72:49:19:79:25:a2:c2:20:ab:2a: c9:23:a9:14:4e:e4:cb:f6:08:27:d5:d1:3c:8a:75:23:82:63: 9f:a2:53:69:7d:7c:b0:c0:8f:73:a7:03:0f:eb:80:af:ae:0b: 77:e5:c4:a8:eb:07:0d:98:9b:34:c0:8e:7c:c8:bc:4f:28:73: 92:66:bf:a0:50:aa:2d:c9:19:51:ec:58:d8:6b:95:6b:ef:82: 5e:5f:13:c8:99:fc:6d:bf:1e:4a:5d:93:ee:54:e1:c6:5f:83: 4a:a3:da:39:02:af:63:25:3b:36:74:35:08:e1:df:79:b3:fb: b2:26:2a:ef:ad:b1:81:34:c5:d1:81:c2:05:3b:2f:86:c7:f7: a1:57:7a:b2:c5:04:6e:d3:ef:f6:76:a0:72:e1:05:49:88:2f: f9:88:a1:22:9c:ed:d2:66:35:d7:ca:e9:a2:32:7b:7d:0b:06: 26:33:af:b7:7f:9b:a6:93:2c:ce:96:6d:30:78:78:20:ef:4e: 83:16:6c:ef -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMt3k9A8ZbS+wKachXTnyUmzfYugwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTJkZjZjM2E2YTgxYzcwZGJjNzcxMjY1OWIwODc2NWU1 NDAyNzI4ZWQ3MzY0MTlmN2EwMWU2Yzg3MGIzOWYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT4Nx/azg6fpzku2Fp9rKILw87bL+VYMM0KjFFx91WQ4AX y8MxNxWBlPBTWW9gQiIQZtiLS1VMgy8RzERpQ6u1eCLYqI7MFkbExKscOTJWGzZp vxlwLjgKxPKNzc0ZFrTH8rmJgAEphVaWDkJAmgE6imL6H8mYYksmNvMt/E1vzl1Q /mr3t3c1PEVc5KKAso0Y9CMXRdrY8YgtGWQhgDxcxJwEsmEGkcSGHfXD2WLj2ucS i/XvD/2NGTbfB7ut6Vx1/BkY0WsD5agmbShPKbvsH0q1h17JRZ6AFuO+ehsMD/Z3 REhsgLkT7dyeLLxrchf8XifVwW95JWz+9rlW1Nt5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8GHfvXgQ6M77aYTUz8i3+JmszdgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkYjMxNTkzLWQ0ZjgtNGQ4MC04OTIwLTFmNTU2MzhlNTY2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQujANBgkqhkiG9w0BAQsFAAOCAQEAsTgBHoWg0hQVMnY3qI/cVPOpHuFu QEi2X8br3V0F0Y/D7lomGW/X+JzF0ZkeI1mu0zMuhy/gJHSqXi/2h2tySRl5JaLC IKsqySOpFE7ky/YIJ9XRPIp1I4Jjn6JTaX18sMCPc6cDD+uAr64Ld+XEqOsHDZib NMCOfMi8Tyhzkma/oFCqLckZUexY2GuVa++CXl8TyJn8bb8eSl2T7lThxl+DSqPa OQKvYyU7NnQ1COHfebP7siYq762xgTTF0YHCBTsvhsf3oVd6ssUEbtPv9nagcuEF SYgv+YihIpzt0mY118rpojJ7fQsGJjOvt3+bppMszpZtMHh4IO9OgxZs7w== -----END CERTIFICATE-----Generated at Mon Nov 25 02:57:39 2024 by rpki-client on console-fra.rpki-client.org