$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64c19aa3-f04a-4ad3-a8af-582cef894edf.roa File: 64c19aa3-f04a-4ad3-a8af-582cef894edf.roa (raw, json) Hash identifier: gjlM+yxaa56oeEP15ilyWMzdViwqHuorKEn27LPPP0g= Subject key identifier: 50:9B:51:65:80:67:E4:37:C5:AF:98:56:01:D9:19:46:AF:43:BD:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4AD5DF9AFE4468AD3B5020E3DF27635466DFDC7A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64c19aa3-f04a-4ad3-a8af-582cef894edf.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 161.228.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d5:df:9a:fe:44:68:ad:3b:50:20:e3:df:27:63:54:66:df:dc:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=d9e2d40ced425c2c7d97e1347eb74a04f266258182bea3097ae07b231209cc82, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f2:b3:98:54:0e:cc:ab:28:43:cb:51:60:ec: a7:f2:96:90:c3:c0:0c:6f:a4:35:d6:7e:b2:b8:02: ba:15:01:2f:54:3b:6f:43:67:ed:d0:c0:64:d0:1c: bf:44:06:27:1d:cd:ca:f0:f7:f1:7d:47:1a:40:6b: 04:fc:a4:ec:89:76:9b:ee:25:b3:5d:aa:eb:ce:4c: 6e:71:02:12:e8:94:2a:8a:04:76:22:70:39:ea:7b: 66:9d:ab:14:22:e6:df:6b:e3:d0:6d:17:3a:1a:a5: e6:fb:52:b2:d5:97:71:e4:03:fc:c2:4e:d2:97:0b: f6:06:f6:75:64:b8:42:c6:6a:d2:9e:ba:6a:58:e5: e0:2c:c6:dc:f5:93:a3:c7:e7:f0:cf:04:17:f8:c2: 6b:97:a8:a8:8d:19:e7:d0:35:5e:e4:4b:e8:78:fe: d5:9e:0a:8e:5e:cc:2a:19:ce:5d:28:9c:79:cd:a3: 2b:ba:34:ec:e3:41:77:de:96:37:9c:dd:7f:c0:67: f5:ea:60:42:0c:1e:06:5d:ce:5b:b4:84:59:61:7e: a7:21:06:b8:32:6f:ba:98:bd:68:2e:54:e5:9c:4d: ac:65:1a:b2:d6:fb:73:26:cb:44:06:0a:f7:d3:b6: 9e:86:ba:9d:51:a2:1e:11:45:4f:59:19:ce:b0:4e: b5:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:9B:51:65:80:67:E4:37:C5:AF:98:56:01:D9:19:46:AF:43:BD:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64c19aa3-f04a-4ad3-a8af-582cef894edf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.228.192.0/18 Signature Algorithm: sha256WithRSAEncryption 9b:52:5f:2f:76:0e:e3:27:70:10:37:31:15:3f:be:83:61:41: 97:6c:5d:26:99:c2:05:3b:71:1f:47:5a:f7:e8:85:3a:ad:4b: 85:b5:b0:b6:12:60:9e:d9:90:ff:b6:c6:5c:c8:7a:58:59:22: 42:33:fc:02:fc:e5:6f:94:49:ca:33:68:23:ff:6f:34:8e:00: fb:7f:06:22:3b:e5:93:1d:e7:38:93:0b:ac:ff:cd:1b:ba:7f: 40:b8:11:f8:ea:22:cc:e4:8a:bd:27:84:58:73:eb:f1:e4:2a: 58:38:7b:10:79:0c:eb:11:9e:44:54:12:0f:96:80:44:a0:9f: cf:ea:76:93:b0:e8:eb:67:a9:e6:ab:cc:0e:5c:ac:a1:a1:64: f3:87:ca:5b:04:a5:7f:93:69:95:7b:68:de:24:90:70:95:11: 08:e1:b8:b2:f7:0c:af:cd:6d:85:3a:0f:d9:fd:b0:89:a6:26: 24:a5:72:10:ca:09:e7:aa:a0:24:e0:2a:2c:20:76:f2:ed:f7: b0:d0:fd:d7:f5:d1:82:94:78:80:50:f3:6f:7e:0e:8c:35:8f: 65:9f:8c:e7:54:ac:5c:48:9b:0f:04:5b:4e:eb:9a:96:b1:c6: 42:8d:8f:64:e9:10:f4:8b:1a:ed:a9:39:53:16:bd:b6:13:53: f8:66:5f:ce -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUStXfmv5EaK07UCDj3ydjVGbf3HowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWUyZDQwY2VkNDI1YzJjN2Q5N2UxMzQ3ZWI3NGEwNGYy NjYyNTgxODJiZWEzMDk3YWUwN2IyMzEyMDljYzgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+8rOYVA7MqyhDy1Fg7KfylpDDwAxvpDXWfrK4AroVAS9U O29DZ+3QwGTQHL9EBicdzcrw9/F9RxpAawT8pOyJdpvuJbNdquvOTG5xAhLolCqK BHYicDnqe2adqxQi5t9r49BtFzoapeb7UrLVl3HkA/zCTtKXC/YG9nVkuELGatKe umpY5eAsxtz1k6PH5/DPBBf4wmuXqKiNGefQNV7kS+h4/tWeCo5ezCoZzl0onHnN oyu6NOzjQXfeljec3X/AZ/XqYEIMHgZdzlu0hFlhfqchBrgyb7qYvWguVOWcTaxl GrLW+3Mmy0QGCvfTtp6Gup1Roh4RRU9ZGc6wTrW9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUJtRZYBn5DfFr5hWAdkZRq9Dvd0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0YzE5YWEzLWYwNGEtNGFkMy1hOGFmLTU4MmNlZjg5NGVkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAah5MAwDQYJKoZIhvcNAQELBQADggEBAJtSXy92DuMncBA3MRU/voNhQZds XSaZwgU7cR9HWvfohTqtS4W1sLYSYJ7ZkP+2xlzIelhZIkIz/AL85W+UScozaCP/ bzSOAPt/BiI75ZMd5ziTC6z/zRu6f0C4EfjqIszkir0nhFhz6/HkKlg4exB5DOsR nkRUEg+WgESgn8/qdpOw6OtnqearzA5crKGhZPOHylsEpX+TaZV7aN4kkHCVEQjh uLL3DK/NbYU6D9n9sImmJiSlchDKCeeqoCTgKiwgdvLt97DQ/df10YKUeIBQ829+ Dow1j2WfjOdUrFxImw8EW07rmpaxxkKNj2TpEPSLGu2pOVMWvbYTU/hmX84= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:05 2024 by rpki-client on console-fra.rpki-client.org