$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6110b096-0b79-46f4-aced-71a2852c64c0.roa File: 6110b096-0b79-46f4-aced-71a2852c64c0.roa (raw, json) Hash identifier: Iu/+dXnS1tioXxSFswM67qRC4Gus4ky1yAyFuoKFNrg= Subject key identifier: A4:CF:DE:7C:07:AF:92:39:B3:00:86:C2:BC:79:C5:89:85:00:E5:74 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 584BA8B7EE4B46DBA3AD258B784043A6EF586441 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6110b096-0b79-46f4-aced-71a2852c64c0.roa Signing time: Sun 06 Oct 2024 00:00:00 +0000 ROA not before: Sun 06 Oct 2024 00:00:00 +0000 ROA not after: Sun 10 Nov 2024 23:59:59 +0000 asID: 14618 IP address blocks: 142.4.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Oct 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:4b:a8:b7:ee:4b:46:db:a3:ad:25:8b:78:40:43:a6:ef:58:64:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 6 00:00:00 2024 GMT Not After : Nov 10 23:59:59 2024 GMT Subject: serialNumber=5ea14402ce1c45a2539df305a59523eae0b1aa9575c513b2497621a1dfe17b31, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:33:26:8e:c0:42:77:3e:a8:93:5e:b0:b1:5f: 32:8c:1f:12:cc:9c:94:78:74:1f:6b:f6:42:33:fb: bc:6c:4f:79:6f:4c:12:89:bb:df:32:c9:b4:0b:ae: 69:10:17:56:74:a4:8a:4e:85:a5:57:1d:c0:4d:27: fc:20:93:bb:71:1e:4f:21:a4:1f:85:37:20:8d:fa: e1:c2:c9:92:f2:8b:d9:5f:2a:bf:3a:56:70:15:ec: 28:14:f3:ec:70:84:8a:53:7e:94:23:cb:9a:79:d4: 6a:2c:46:a0:33:b8:13:60:36:af:4f:a3:d2:74:8b: 98:1c:46:55:fe:68:41:5d:06:ac:a4:53:83:9c:62: cc:e3:40:a4:ce:93:ed:2f:99:3f:48:79:9f:36:98: 26:22:30:43:a7:dc:1c:9d:82:6b:a8:d2:04:3d:62: 49:8b:bc:36:12:b4:13:35:d6:a0:26:0e:53:45:46: 76:c1:c1:9b:45:96:13:92:c3:7b:c0:54:bc:a1:3d: c0:e3:d6:e5:35:b2:de:32:9e:f7:a6:36:ff:f8:4b: 47:b5:87:bc:a7:79:48:a0:82:50:af:7e:e9:95:bb: a8:1b:e8:43:46:50:cb:b3:3b:a5:34:59:1e:54:52: e1:f9:1a:ff:5f:23:50:da:b8:c2:a7:6e:d4:e7:73: 31:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:CF:DE:7C:07:AF:92:39:B3:00:86:C2:BC:79:C5:89:85:00:E5:74 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6110b096-0b79-46f4-aced-71a2852c64c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.4.164.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:25:f9:e4:ac:16:c4:5b:c2:28:27:d5:e0:47:cb:bf:f0:55: 02:d7:13:9d:38:fe:85:a8:7e:0a:ac:a9:17:75:af:05:2e:0d: 9b:39:3f:f1:75:4e:1c:35:19:3e:f7:6d:8d:4a:48:e0:b9:3c: e6:75:4d:93:9c:23:42:87:6e:aa:a0:8f:34:44:ba:02:ce:d4: b0:7e:07:77:7c:84:d3:5b:15:da:bd:97:11:a3:90:a3:13:8b: 6c:89:44:08:da:b6:16:ff:ec:96:8b:76:db:23:f1:80:0c:81: 3b:88:87:72:06:86:ff:0b:80:52:70:7d:7c:5f:96:dc:07:79: 17:12:9f:14:ac:c1:98:23:9e:b9:c6:9d:8e:24:50:6f:29:ee: 1e:a4:99:12:92:c7:ba:a8:57:3d:0d:52:32:0f:dd:9f:de:88: 68:c3:61:2d:c9:90:5e:a1:fb:79:52:bd:40:e2:1e:16:cc:b4: d7:1d:04:2f:cf:83:09:7f:e6:43:5e:8c:29:eb:b0:9f:26:96: 0d:fe:3e:ea:7e:9a:d1:df:0a:cd:22:a8:00:44:99:1d:42:b5: a4:f9:ee:d0:d2:c7:2f:dd:9d:54:b0:da:a6:7b:74:59:45:6a: b7:20:9c:0b:dc:58:e3:a4:b4:d1:73:4b:a5:9f:f9:b1:c9:59: 7c:b3:3c:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWEuot+5LRtujrSWLeEBDpu9YZEEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDA2MDAwMDAwWhcNMjQxMTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZWExNDQwMmNlMWM0NWEyNTM5ZGYzMDVhNTk1MjNlYWUw YjFhYTk1NzVjNTEzYjI0OTc2MjFhMWRmZTE3YjMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyMyaOwEJ3PqiTXrCxXzKMHxLMnJR4dB9r9kIz+7xsT3lv TBKJu98yybQLrmkQF1Z0pIpOhaVXHcBNJ/wgk7txHk8hpB+FNyCN+uHCyZLyi9lf Kr86VnAV7CgU8+xwhIpTfpQjy5p51GosRqAzuBNgNq9Po9J0i5gcRlX+aEFdBqyk U4OcYszjQKTOk+0vmT9IeZ82mCYiMEOn3Bydgmuo0gQ9YkmLvDYStBM11qAmDlNF RnbBwZtFlhOSw3vAVLyhPcDj1uU1st4ynvemNv/4S0e1h7yneUigglCvfumVu6gb 6ENGUMuzO6U0WR5UUuH5Gv9fI1DauMKnbtTnczEZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpM/efAevkjmzAIbCvHnFiYUA5XQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxMTBiMDk2LTBiNzktNDZmNC1hY2VkLTcxYTI4NTJjNjRjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACOBKQwDQYJKoZIhvcNAQELBQADggEBAA8l+eSsFsRbwign1eBHy7/wVQLX E504/oWofgqsqRd1rwUuDZs5P/F1Thw1GT73bY1KSOC5POZ1TZOcI0KHbqqgjzRE ugLO1LB+B3d8hNNbFdq9lxGjkKMTi2yJRAjathb/7JaLdtsj8YAMgTuIh3IGhv8L gFJwfXxfltwHeRcSnxSswZgjnrnGnY4kUG8p7h6kmRKSx7qoVz0NUjIP3Z/eiGjD YS3JkF6h+3lSvUDiHhbMtNcdBC/Pgwl/5kNejCnrsJ8mlg3+Pup+mtHfCs0iqABE mR1CtaT57tDSxy/dnVSw2qZ7dFlFarcgnAvcWOOktNFzS6Wf+bHJWXyzPKM= -----END CERTIFICATE-----Generated at Tue Oct 22 00:46:48 2024 by rpki-client on console-fra.rpki-client.org