$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61d0d1a8-1d1a-4b6a-be79-09198325212d.roa File: 61d0d1a8-1d1a-4b6a-be79-09198325212d.roa (raw, json) Hash identifier: 9KyPK9muaUSVtbhP2N/u0Owl/u3EVKh2f9c9suyytLM= Subject key identifier: 9D:AB:4B:91:51:DD:2D:8D:CC:62:CC:EA:30:38:22:A4:53:AD:EE:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 125C35683162964E23F7F9FE9FB6AEFE5FAC8A38 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61d0d1a8-1d1a-4b6a-be79-09198325212d.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 65.4.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:5c:35:68:31:62:96:4e:23:f7:f9:fe:9f:b6:ae:fe:5f:ac:8a:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=953d62fb8255a0b3c5592a2fe74023da7d4042df1c0a31076a546260284e67ee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5e:b0:be:96:97:bc:c5:ed:68:66:4d:c8:7a: 49:d6:8f:b6:bc:7b:3e:e0:f6:32:1c:2f:c2:e3:12: 6d:7b:50:28:97:ce:72:d6:d9:7a:08:22:1d:6d:94: 61:42:44:9d:2d:b3:1f:a5:59:c3:42:1d:75:1b:17: 09:0f:a2:2d:66:de:28:bf:40:af:88:77:02:35:ae: 75:d7:1b:67:16:9a:a7:83:e9:1a:8d:f4:a1:8e:45: a8:51:04:54:d0:46:92:31:d6:23:5b:f3:03:79:c4: 9c:3b:2b:da:b7:4a:33:61:19:76:db:1f:d7:d5:39: 62:b7:1f:3c:a9:86:8e:37:ef:f1:d3:06:5f:46:33: 02:5b:17:22:2f:e6:9e:66:b5:ad:7c:4d:3c:f3:00: 9c:14:a9:f4:35:ad:ee:cc:93:dd:de:df:38:77:dc: 86:fa:f9:0c:43:3d:03:f6:fe:d2:b1:ad:4a:92:ce: 7e:db:74:cb:aa:64:d4:1c:33:ad:dd:c0:8b:fa:90: 51:18:94:b1:94:2e:17:b2:5e:f6:9c:65:05:a8:af: fe:69:90:e4:b6:cf:01:2b:ee:21:4b:91:70:53:50: 72:0e:8d:1f:e0:0c:49:3e:a9:cf:6f:ca:f1:45:ae: 6d:17:8a:45:27:a0:5a:a1:bd:6e:1d:4e:96:a3:32: 64:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:AB:4B:91:51:DD:2D:8D:CC:62:CC:EA:30:38:22:A4:53:AD:EE:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61d0d1a8-1d1a-4b6a-be79-09198325212d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.4.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:f9:22:41:ba:db:31:32:f3:e1:e4:51:21:6a:50:5d:b2:88: 46:92:5d:4f:3f:55:bc:30:3d:e0:98:0f:ed:db:4d:f7:c7:a4: 57:69:7c:95:f8:e7:63:cd:02:da:00:4d:f8:06:b3:00:5d:d0: 12:02:a0:46:13:24:eb:b7:dc:bb:1f:62:0b:aa:23:7a:e8:42: ce:79:79:34:02:91:7d:47:c6:1e:9f:f2:90:37:e8:a6:2f:b6: c8:f9:27:75:62:60:50:bb:61:1b:c3:05:a2:ca:1a:2f:99:d3: 49:cf:07:53:fa:a4:bc:03:a2:e3:4b:2e:31:81:61:3e:f3:6f: 34:f7:75:8b:b3:a2:a5:38:11:f3:fb:39:0f:89:90:fb:64:3f: b6:43:0b:03:9b:e1:46:c8:6e:c5:49:93:78:57:42:2e:d7:7a: 26:4c:64:43:b7:25:ff:1c:d6:01:b8:af:1d:43:2f:c9:43:7d: 27:45:d9:98:9e:0a:62:86:0e:da:bf:51:74:81:9f:a9:f5:97: 27:94:f5:75:65:8f:a9:ab:20:37:25:47:fe:25:72:3c:24:78: 17:ee:88:47:c8:95:b4:a9:7e:0a:e0:68:6e:d8:e8:0e:ef:66: 0f:a0:32:a4:f8:51:b1:c9:f7:18:8d:98:7d:85:76:58:1b:01: eb:00:56:c8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUElw1aDFilk4j9/n+n7au/l+sijgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTNkNjJmYjgyNTVhMGIzYzU1OTJhMmZlNzQwMjNkYTdk NDA0MmRmMWMwYTMxMDc2YTU0NjI2MDI4NGU2N2VlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/XrC+lpe8xe1oZk3IeknWj7a8ez7g9jIcL8LjEm17UCiX znLW2XoIIh1tlGFCRJ0tsx+lWcNCHXUbFwkPoi1m3ii/QK+IdwI1rnXXG2cWmqeD 6RqN9KGORahRBFTQRpIx1iNb8wN5xJw7K9q3SjNhGXbbH9fVOWK3Hzypho437/HT Bl9GMwJbFyIv5p5mta18TTzzAJwUqfQ1re7Mk93e3zh33Ib6+QxDPQP2/tKxrUqS zn7bdMuqZNQcM63dwIv6kFEYlLGULheyXvacZQWor/5pkOS2zwEr7iFLkXBTUHIO jR/gDEk+qc9vyvFFrm0XikUnoFqhvW4dTpajMmQtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnatLkVHdLY3MYszqMDgipFOt7mswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxZDBkMWE4LTFkMWEtNGI2YS1iZTc5LTA5MTk4MzI1MjEyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBBBDANBgkqhkiG9w0BAQsFAAOCAQEAHPkiQbrbMTLz4eRRIWpQXbKIRpJd Tz9VvDA94JgP7dtN98ekV2l8lfjnY80C2gBN+AazAF3QEgKgRhMk67fcux9iC6oj euhCznl5NAKRfUfGHp/ykDfopi+2yPkndWJgULthG8MFosoaL5nTSc8HU/qkvAOi 40suMYFhPvNvNPd1i7OipTgR8/s5D4mQ+2Q/tkMLA5vhRshuxUmTeFdCLtd6Jkxk Q7cl/xzWAbivHUMvyUN9J0XZmJ4KYoYO2r9RdIGfqfWXJ5T1dWWPqasgNyVH/iVy PCR4F+6IR8iVtKl+CuBobtjoDu9mD6AypPhRscn3GI2YfYV2WBsB6wBWyA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:04 2024 by rpki-client on console-fra.rpki-client.org