$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/618f902c-fc69-42ce-8940-445cf07120ee.roa File: 618f902c-fc69-42ce-8940-445cf07120ee.roa (raw, json) Hash identifier: EFH2Xa39g5pYHH0DPjAuybhQitGRECExt+BFi8PNxKU= Subject key identifier: B2:40:F2:8D:6F:4D:40:81:6B:1B:06:07:13:13:9F:6E:34:97:1B:51 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 308D1085044937E06A5064BA61EE904EDBAFF127 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/618f902c-fc69-42ce-8940-445cf07120ee.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 208.115.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:8d:10:85:04:49:37:e0:6a:50:64:ba:61:ee:90:4e:db:af:f1:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=bbb86bb35f352a355aa1384237e372c468980f66fc3d20f4cd05272d3f1527c7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c9:aa:d9:9e:2c:d2:77:22:22:79:62:06:db: d9:f3:80:95:9b:a8:22:5c:f1:32:f8:b4:c0:df:fb: 2c:0c:f7:5c:13:e4:7b:c8:c0:30:b7:56:88:66:9b: f2:dc:b4:bd:83:56:70:93:33:7b:07:54:9e:6a:3e: 3c:7b:5c:ab:e6:2a:b7:19:45:7d:0a:10:ee:bd:9b: 89:9e:99:7d:44:5c:1a:b3:3b:cf:7e:ae:64:88:e1: 35:11:f9:e8:94:73:23:b7:17:dc:5e:09:0c:33:ad: d7:4d:ac:b1:37:e8:dd:46:d9:14:58:49:98:f1:12: e2:b4:89:f7:83:7a:ff:17:f5:94:0a:54:33:70:cd: e8:68:3c:25:c0:e3:f1:59:11:ec:6f:f2:c5:73:77: 6e:ea:f8:82:27:99:20:aa:37:f3:d9:87:5c:2e:67: 5c:9e:2a:6b:59:22:77:58:88:f3:2a:0d:d1:07:10: b6:83:61:c1:d8:71:7e:46:18:e7:e6:9a:a3:c7:ae: 69:74:61:1b:47:60:e3:9c:c7:02:37:1a:58:9a:3f: bb:aa:fc:1d:72:c5:82:ce:58:37:9e:7a:94:44:35: f0:8a:9a:4f:ae:f1:4b:e6:b5:66:64:0b:70:10:99: 67:ea:ba:47:3a:6e:e4:a4:51:57:b7:42:f4:d5:30: 36:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:40:F2:8D:6F:4D:40:81:6B:1B:06:07:13:13:9F:6E:34:97:1B:51 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/618f902c-fc69-42ce-8940-445cf07120ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.115.0.0/19 Signature Algorithm: sha256WithRSAEncryption 4f:e7:e2:66:8e:b0:24:9d:f1:3f:63:d0:4e:a0:cc:cb:7f:8f: 8d:a2:ac:c6:56:8a:99:ce:dd:36:fd:5d:cf:8c:b9:42:3e:24: d1:9e:1c:1c:da:ac:c5:ac:d3:72:b2:38:f1:f0:0e:54:4c:cd: d9:1d:02:c3:bf:40:5a:0e:1b:24:e9:73:d9:29:75:f1:17:ac: 3c:ac:02:7e:e2:53:4e:7c:77:34:73:b4:6b:4b:f7:0b:4d:69: a4:fe:ae:31:40:40:84:43:83:92:06:b4:0f:e4:dd:0d:a4:8b: 8f:f1:f5:ab:d7:4a:72:2e:17:85:19:15:ac:a2:49:08:e7:c5: 59:c1:0c:d5:ec:7b:ce:ef:a1:2b:8a:af:b8:a6:8a:e3:f9:53: 30:82:cd:cc:70:2f:c7:35:2d:be:1d:5d:05:b6:5a:d7:d7:c6: dd:87:b0:e2:f4:ca:6e:41:7d:ba:2b:48:39:0f:22:51:d9:f0: 90:ec:d8:c1:aa:ee:37:e3:cc:92:3e:2e:c5:91:b0:18:cf:18: bf:1d:2b:b7:c0:70:d3:48:68:0e:1a:8f:2d:8a:5d:8f:f4:9b: 4e:3d:ae:dc:38:70:2e:73:cd:56:03:72:2a:9a:85:13:b6:b9: 7f:f8:c7:db:d2:39:be:1d:a8:f2:60:03:19:da:43:38:da:16: 05:ea:59:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMI0QhQRJN+BqUGS6Ye6QTtuv8ScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYmI4NmJiMzVmMzUyYTM1NWFhMTM4NDIzN2UzNzJjNDY4 OTgwZjY2ZmMzZDIwZjRjZDA1MjcyZDNmMTUyN2M3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYyarZnizSdyIieWIG29nzgJWbqCJc8TL4tMDf+ywM91wT 5HvIwDC3Vohmm/LctL2DVnCTM3sHVJ5qPjx7XKvmKrcZRX0KEO69m4memX1EXBqz O89+rmSI4TUR+eiUcyO3F9xeCQwzrddNrLE36N1G2RRYSZjxEuK0ifeDev8X9ZQK VDNwzehoPCXA4/FZEexv8sVzd27q+IInmSCqN/PZh1wuZ1yeKmtZIndYiPMqDdEH ELaDYcHYcX5GGOfmmqPHrml0YRtHYOOcxwI3GliaP7uq/B1yxYLOWDeeepRENfCK mk+u8UvmtWZkC3AQmWfqukc6buSkUVe3QvTVMDa/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUskDyjW9NQIFrGwYHExOfbjSXG1EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxOGY5MDJjLWZjNjktNDJjZS04OTQwLTQ0NWNmMDcxMjBlZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXQcwAwDQYJKoZIhvcNAQELBQADggEBAE/n4maOsCSd8T9j0E6gzMt/j42i rMZWipnO3Tb9Xc+MuUI+JNGeHBzarMWs03KyOPHwDlRMzdkdAsO/QFoOGyTpc9kp dfEXrDysAn7iU058dzRztGtL9wtNaaT+rjFAQIRDg5IGtA/k3Q2ki4/x9avXSnIu F4UZFayiSQjnxVnBDNXse87voSuKr7imiuP5UzCCzcxwL8c1Lb4dXQW2WtfXxt2H sOL0ym5BfborSDkPIlHZ8JDs2MGq7jfjzJI+LsWRsBjPGL8dK7fAcNNIaA4ajy2K XY/0m049rtw4cC5zzVYDciqahRO2uX/4x9vSOb4dqPJgAxnaQzjaFgXqWXQ= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:04 2024 by rpki-client on console-fra.rpki-client.org