$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/613367f1-288d-490e-a6ec-6c12c5bf1805.roa File: 613367f1-288d-490e-a6ec-6c12c5bf1805.roa (raw, json) Hash identifier: dd/uvDrZvPg6BreeToc0suj5Vm1x1SWIUKXEUTJP/bg= Subject key identifier: 4D:83:A9:2F:1D:E3:86:EA:64:5F:D4:9C:BC:C9:87:B5:2F:59:C4:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DB2B373BF2C3328B293B2F17B8F158E8EEF04AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/613367f1-288d-490e-a6ec-6c12c5bf1805.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 192.189.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b2:b3:73:bf:2c:33:28:b2:93:b2:f1:7b:8f:15:8e:8e:ef:04:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=0b1c2f14cbfcba193550c8c97fff9ab2b24b2fde9390b73925fef15842c7b779, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:11:7e:ed:1e:72:34:3c:f0:fe:99:b5:8d:6c: 8d:fa:b6:ab:78:fa:ab:05:73:8c:11:57:43:6a:45: 83:48:62:d4:be:16:43:75:0d:81:c1:8b:77:5e:19: b3:91:f9:59:52:fc:04:b7:9e:2b:0e:54:3a:84:51: 5c:e4:e5:be:37:17:03:82:31:38:a2:5a:7d:c8:cc: 4b:2c:27:17:0e:c3:22:27:6c:05:59:bd:53:40:8e: 69:6c:d8:8d:b5:69:76:f2:ac:a4:49:c9:75:e3:4a: 08:89:b7:fe:4e:5c:1a:15:7d:18:50:92:60:fc:8e: ce:59:04:9c:6d:d8:5b:ca:ed:e0:ac:f2:98:0c:9f: eb:41:b5:ae:ab:c8:aa:57:66:d2:12:75:76:78:99: 7b:72:d1:1b:14:a9:55:90:ea:3f:e8:f1:35:96:7e: 2c:28:4f:f7:ab:f7:2b:04:7a:5b:e6:c4:25:79:d8: c1:7f:8e:27:41:41:9b:14:67:0a:46:cf:fe:42:00: 00:ac:ce:49:31:0f:c1:e2:5d:a9:89:1b:48:88:ef: b7:11:28:e7:62:cf:5f:6a:a1:16:b1:b9:00:73:11: a7:9f:6c:6c:77:30:f1:db:36:70:5c:2f:aa:a5:28: 74:b7:c4:3f:3e:88:48:73:a7:f7:45:22:63:4f:24: 38:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:83:A9:2F:1D:E3:86:EA:64:5F:D4:9C:BC:C9:87:B5:2F:59:C4:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/613367f1-288d-490e-a6ec-6c12c5bf1805.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.189.196.0/24 Signature Algorithm: sha256WithRSAEncryption 84:0f:11:99:cf:5e:b3:fa:c9:e9:34:cf:58:08:70:6d:09:3e: 2a:98:07:1f:a3:e5:9b:82:58:6f:82:eb:29:8f:7f:44:d7:d8: 1a:c8:5d:86:7c:24:f3:61:59:f8:bb:c3:44:93:24:3b:ef:d4: ea:9c:e6:0e:cb:96:fe:c5:d9:ee:29:a5:56:e2:a0:98:55:59: cc:a2:47:c0:bc:5e:a8:59:78:e1:c0:5b:56:b2:9b:51:d4:03: d9:26:1c:04:3f:1c:4d:9a:b7:60:b2:19:55:d6:69:80:a6:9c: 72:50:2c:7c:da:ee:fa:7a:88:7f:88:36:8b:1b:d7:d7:49:82: 06:49:4a:14:48:e8:a4:d6:a2:60:50:4f:3f:1a:d7:ad:5d:9c: da:e2:47:3d:b3:98:6a:a2:35:c0:26:36:a1:9a:0d:36:41:72: 04:27:54:ea:ac:e7:ab:eb:87:1e:be:4b:f7:e5:ee:9f:8b:64: 0b:c1:7d:91:cc:0a:34:f2:a0:06:98:73:ef:32:8a:38:4a:64: a2:7e:b3:c8:63:c8:f7:ee:92:3b:16:3c:f8:dd:c7:45:67:a7: c7:36:c5:38:04:32:a6:46:4a:1b:66:49:b6:56:cd:16:bd:41: 1a:58:3d:b7:54:d1:34:a4:0f:da:1d:39:90:81:85:ab:f2:bc: 47:32:5f:5e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTbKzc78sMyiyk7Lxe48Vjo7vBKowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjFjMmYxNGNiZmNiYTE5MzU1MGM4Yzk3ZmZmOWFiMmIy NGIyZmRlOTM5MGI3MzkyNWZlZjE1ODQyYzdiNzc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwEX7tHnI0PPD+mbWNbI36tqt4+qsFc4wRV0NqRYNIYtS+ FkN1DYHBi3deGbOR+VlS/AS3nisOVDqEUVzk5b43FwOCMTiiWn3IzEssJxcOwyIn bAVZvVNAjmls2I21aXbyrKRJyXXjSgiJt/5OXBoVfRhQkmD8js5ZBJxt2FvK7eCs 8pgMn+tBta6ryKpXZtISdXZ4mXty0RsUqVWQ6j/o8TWWfiwoT/er9ysEelvmxCV5 2MF/jidBQZsUZwpGz/5CAACszkkxD8HiXamJG0iI77cRKOdiz19qoRaxuQBzEaef bGx3MPHbNnBcL6qlKHS3xD8+iEhzp/dFImNPJDhtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTYOpLx3jhupkX9ScvMmHtS9ZxNowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxMzM2N2YxLTI4OGQtNDkwZS1hNmVjLTZjMTJjNWJmMTgwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAvcQwDQYJKoZIhvcNAQELBQADggEBAIQPEZnPXrP6yek0z1gIcG0JPiqY Bx+j5ZuCWG+C6ymPf0TX2BrIXYZ8JPNhWfi7w0STJDvv1Oqc5g7Llv7F2e4ppVbi oJhVWcyiR8C8XqhZeOHAW1aym1HUA9kmHAQ/HE2at2CyGVXWaYCmnHJQLHza7vp6 iH+INosb19dJggZJShRI6KTWomBQTz8a161dnNriRz2zmGqiNcAmNqGaDTZBcgQn VOqs56vrhx6+S/fl7p+LZAvBfZHMCjTyoAaYc+8yijhKZKJ+s8hjyPfukjsWPPjd x0Vnp8c2xTgEMqZGShtmSbZWzRa9QRpYPbdU0TSkD9odOZCBhavyvEcyX14= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:04 2024 by rpki-client on console-fra.rpki-client.org