$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5db4078f-1172-4a30-ae18-016b0f73a8b7.roa File: 5db4078f-1172-4a30-ae18-016b0f73a8b7.roa (raw, json) Hash identifier: TqcpKV6H0DytdYFaXJFDRwC/1/65gupYmVexqoZU6wg= Subject key identifier: 6B:0F:9A:43:0F:3E:5A:0C:6F:2F:B0:57:C7:DE:94:05:07:59:A9:F5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 602530E0DBF16B519B67B1CD65FFC8B4F2376FC8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5db4078f-1172-4a30-ae18-016b0f73a8b7.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 76.211.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:25:30:e0:db:f1:6b:51:9b:67:b1:cd:65:ff:c8:b4:f2:37:6f:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=3046c490dac068f717b39a402d2f287f6dbf2d20419fc77d2d947d9ccea83f93, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:37:7c:0b:14:cf:a8:fd:47:c1:c3:24:28:af: e0:fd:c2:68:93:c8:ed:d2:bf:35:4b:04:3f:76:fb: 09:37:49:e9:70:68:d0:0f:1b:64:da:9a:38:53:67: 87:b8:e3:5e:57:34:fb:6a:d3:e6:13:5e:dd:54:03: 10:4d:ed:bd:3e:44:e3:92:de:c4:89:6e:bc:a1:fa: 28:ee:47:bb:f2:5e:57:35:91:76:24:c3:c7:25:c4: bc:6e:ab:37:f2:6c:a6:04:20:9c:42:2d:cc:50:28: 85:3a:06:a5:15:95:36:22:3e:1a:5c:de:fa:2f:b9: d0:ff:78:16:a4:fb:bc:73:4f:b2:71:24:da:98:65: 5d:1c:27:67:fe:a6:ca:5f:69:1c:2e:0a:6c:a3:e3: e5:72:ac:f5:48:77:ac:7b:4c:29:c9:ba:56:b2:b1: cf:7b:09:1e:8c:6c:d2:45:55:d4:e6:88:dd:7c:2a: bf:12:e1:f7:c2:fb:68:09:f4:22:a8:38:76:e2:0f: d3:cb:74:ad:2c:18:7f:02:6a:db:bd:de:03:c3:cd: f9:98:c2:a7:27:f4:fb:5b:1b:1e:4c:d1:37:ee:53: 9a:ac:10:e5:d6:8d:47:cf:6d:90:f4:f3:f3:bc:6a: 0b:b2:0f:68:6b:25:66:6e:3a:a4:1e:20:76:08:8c: 73:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:0F:9A:43:0F:3E:5A:0C:6F:2F:B0:57:C7:DE:94:05:07:59:A9:F5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5db4078f-1172-4a30-ae18-016b0f73a8b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.211.0.0/18 Signature Algorithm: sha256WithRSAEncryption 63:3f:a8:9c:4a:03:0c:a2:b4:8c:4b:6e:5f:a3:71:cf:65:1b: 8a:ec:fb:6e:01:fd:9e:97:e7:3d:6a:d9:03:49:36:9b:8e:32: 23:1a:85:09:bc:ce:d7:3e:70:de:33:0f:79:a0:77:70:b2:eb: 4f:5e:71:37:17:3d:2b:05:31:61:c6:7f:dd:99:28:d1:cc:b4: ea:b3:5d:a2:ec:d8:de:fe:7f:b4:ff:37:38:a8:27:8b:25:91: 9d:09:cf:51:31:72:15:de:47:18:b6:83:d3:a3:1b:89:38:a9: 75:ed:dd:4e:68:92:92:e3:d6:5d:b2:83:87:40:a1:e1:0d:a3: 42:f1:22:ac:99:35:24:37:2b:65:30:1c:1a:35:6d:23:13:b6: 3e:ba:1e:d4:30:d8:8e:ba:8f:5c:fd:4b:70:2c:2b:5f:d1:7a: 4c:88:5e:b6:c3:2e:d6:4e:5e:43:0d:5b:e7:9c:a4:c0:74:95: 2f:6c:5c:2e:5b:41:0d:4f:fb:6b:5d:ab:cf:22:02:96:0b:0e: b0:fe:87:26:d2:42:ee:bc:78:76:5d:10:5a:16:f4:0d:02:48: 81:88:ed:44:93:58:7e:67:cf:ee:39:67:3a:1c:16:42:b2:69: 73:f0:59:76:86:29:d0:bf:06:89:c4:6b:21:32:f1:90:98:e3: ad:93:dd:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYCUw4Nvxa1GbZ7HNZf/ItPI3b8gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDQ2YzQ5MGRhYzA2OGY3MTdiMzlhNDAyZDJmMjg3ZjZk YmYyZDIwNDE5ZmM3N2QyZDk0N2Q5Y2NlYTgzZjkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNN3wLFM+o/UfBwyQor+D9wmiTyO3SvzVLBD92+wk3Selw aNAPG2TamjhTZ4e4415XNPtq0+YTXt1UAxBN7b0+ROOS3sSJbryh+ijuR7vyXlc1 kXYkw8clxLxuqzfybKYEIJxCLcxQKIU6BqUVlTYiPhpc3vovudD/eBak+7xzT7Jx JNqYZV0cJ2f+pspfaRwuCmyj4+VyrPVId6x7TCnJulaysc97CR6MbNJFVdTmiN18 Kr8S4ffC+2gJ9CKoOHbiD9PLdK0sGH8Catu93gPDzfmYwqcn9PtbGx5M0TfuU5qs EOXWjUfPbZD08/O8aguyD2hrJWZuOqQeIHYIjHPFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaw+aQw8+WgxvL7BXx96UBQdZqfUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkYjQwNzhmLTExNzItNGEzMC1hZTE4LTAxNmIwZjczYThiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZM0wAwDQYJKoZIhvcNAQELBQADggEBAGM/qJxKAwyitIxLbl+jcc9lG4rs +24B/Z6X5z1q2QNJNpuOMiMahQm8ztc+cN4zD3mgd3Cy609ecTcXPSsFMWHGf92Z KNHMtOqzXaLs2N7+f7T/NzioJ4slkZ0Jz1ExchXeRxi2g9OjG4k4qXXt3U5okpLj 1l2yg4dAoeENo0LxIqyZNSQ3K2UwHBo1bSMTtj66HtQw2I66j1z9S3AsK1/RekyI XrbDLtZOXkMNW+ecpMB0lS9sXC5bQQ1P+2tdq88iApYLDrD+hybSQu68eHZdEFoW 9A0CSIGI7USTWH5nz+45ZzocFkKyaXPwWXaGKdC/BonEayEy8ZCY462T3eI= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:05 2024 by rpki-client on console-ams.rpki-client.org