$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68fb6455-21a4-4044-923b-37ddc9951312.roa File: 68fb6455-21a4-4044-923b-37ddc9951312.roa (raw, json) Hash identifier: QDV/1DibQqMWjmQKqzGVw2tT4+F+s+Mf8ImVsczpV3M= Subject key identifier: E9:44:A6:A0:28:73:4F:A2:14:87:2A:DC:CD:B2:30:78:43:2D:B8:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 470995D3E4EE110EBF6E17F98D821C66CFE2BD5A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68fb6455-21a4-4044-923b-37ddc9951312.roa Signing time: Mon 28 Oct 2024 00:00:00 +0000 ROA not before: Mon 28 Oct 2024 00:00:00 +0000 ROA not after: Mon 02 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 79.73.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:09:95:d3:e4:ee:11:0e:bf:6e:17:f9:8d:82:1c:66:cf:e2:bd:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 28 00:00:00 2024 GMT Not After : Dec 2 23:59:59 2024 GMT Subject: serialNumber=4832abc9f8e3ae3d5f31b91dbad71a794583b08dc1817e5043f8e409e37bc75d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:78:3c:a6:66:c7:83:8b:b6:7c:18:92:85:ad: cb:ae:af:19:51:0f:60:17:8e:c0:e8:dd:55:d6:66: 86:4d:e1:1b:be:e6:86:6e:d0:ea:55:7a:06:11:3c: 19:25:78:f1:13:f2:21:53:8c:c1:00:78:60:db:46: c6:ea:41:b4:30:83:66:59:a4:4f:bd:54:14:be:67: 2f:1d:d5:c0:ae:5d:ae:a8:a3:da:ce:c1:45:40:71: 96:d8:0a:31:72:32:a3:43:60:e8:81:63:e2:cc:2c: 3c:d1:15:fd:63:1f:53:32:90:24:05:d0:24:36:ef: 08:d4:28:34:8a:1e:db:f7:44:df:ba:ed:40:f7:23: 2f:19:24:5d:1b:bf:5f:b7:09:f8:e8:a3:42:d7:0e: 14:94:99:bf:03:79:3e:24:2b:6e:39:9e:62:9d:ff: c4:dd:88:44:c4:25:eb:bc:1f:f9:1b:2e:8a:80:29: da:80:70:7e:86:6b:3f:83:58:f1:46:82:56:51:55: 21:ca:78:1b:86:e4:be:5e:4f:53:9c:31:a0:82:1c: e2:53:ef:f7:58:40:18:3a:0b:b7:2d:63:d3:7a:aa: 66:8e:5c:0e:45:51:2e:13:ba:2e:39:3c:b7:65:2b: 3f:ba:b0:c7:40:19:00:56:4f:cb:e7:6e:12:e9:e7: 2a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:44:A6:A0:28:73:4F:A2:14:87:2A:DC:CD:B2:30:78:43:2D:B8:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68fb6455-21a4-4044-923b-37ddc9951312.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.73.128.0/17 Signature Algorithm: sha256WithRSAEncryption a2:a4:d1:7b:7e:0c:d9:72:ac:92:16:08:96:f2:8b:eb:cf:d2: 95:3e:b4:18:d0:eb:6e:e5:ed:5c:cb:d6:1b:d0:16:34:29:fb: f0:de:bc:e2:e3:07:a7:a2:d0:a9:87:ae:0b:33:1b:7c:1e:62: ce:6b:09:de:73:da:9b:4e:f7:79:7a:51:d3:1a:ca:ae:f9:ed: f9:3a:b8:2e:65:00:ac:b9:e8:0e:ac:f9:36:87:cf:c8:f1:3e: eb:07:81:93:ba:c2:39:f0:b3:53:65:ad:15:ef:d3:17:32:ab: 52:1b:6d:c2:bb:89:a1:72:a0:69:0b:bd:30:64:f0:f8:60:27: ba:05:45:26:eb:5e:63:8e:49:e1:ad:39:ca:be:3b:14:7d:96: e1:2d:db:9d:ad:b8:6c:0b:f1:be:44:ea:44:98:21:ec:9a:d4: 9a:47:0d:2d:f9:6d:e4:d6:dc:41:5c:8d:45:2d:7e:a2:9b:80: cc:fe:93:4b:88:68:6e:3b:fb:b0:99:98:ca:42:2e:86:29:e3: df:c3:42:16:1a:07:89:14:4e:a1:6c:9b:df:b8:95:f7:63:8a: 37:2f:4f:1f:62:ba:fa:86:12:29:95:77:03:28:3f:e5:75:16: 33:2e:bd:47:4f:68:35:1f:7f:70:f0:6a:8c:a6:ae:f7:8a:5d: 92:3f:c3:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURwmV0+TuEQ6/bhf5jYIcZs/ivVowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDI4MDAwMDAwWhcNMjQxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODMyYWJjOWY4ZTNhZTNkNWYzMWI5MWRiYWQ3MWE3OTQ1 ODNiMDhkYzE4MTdlNTA0M2Y4ZTQwOWUzN2JjNzVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWeDymZseDi7Z8GJKFrcuurxlRD2AXjsDo3VXWZoZN4Ru+ 5oZu0OpVegYRPBklePET8iFTjMEAeGDbRsbqQbQwg2ZZpE+9VBS+Zy8d1cCuXa6o o9rOwUVAcZbYCjFyMqNDYOiBY+LMLDzRFf1jH1MykCQF0CQ27wjUKDSKHtv3RN+6 7UD3Iy8ZJF0bv1+3Cfjoo0LXDhSUmb8DeT4kK245nmKd/8TdiETEJeu8H/kbLoqA KdqAcH6Gaz+DWPFGglZRVSHKeBuG5L5eT1OcMaCCHOJT7/dYQBg6C7ctY9N6qmaO XA5FUS4Tui45PLdlKz+6sMdAGQBWT8vnbhLp5yqXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6USmoChzT6IUhyrczbIweEMtuJgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4ZmI2NDU1LTIxYTQtNDA0NC05MjNiLTM3ZGRjOTk1MTMxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdPSYAwDQYJKoZIhvcNAQELBQADggEBAKKk0Xt+DNlyrJIWCJbyi+vP0pU+ tBjQ627l7VzL1hvQFjQp+/DevOLjB6ei0KmHrgszG3weYs5rCd5z2ptO93l6UdMa yq757fk6uC5lAKy56A6s+TaHz8jxPusHgZO6wjnws1NlrRXv0xcyq1IbbcK7iaFy oGkLvTBk8PhgJ7oFRSbrXmOOSeGtOcq+OxR9luEt252tuGwL8b5E6kSYIeya1JpH DS35beTW3EFcjUUtfqKbgMz+k0uIaG47+7CZmMpCLoYp49/DQhYaB4kUTqFsm9+4 lfdjijcvTx9iuvqGEimVdwMoP+V1FjMuvUdPaDUff3DwaoymrveKXZI/w2w= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:06 2024 by rpki-client on console-fra.rpki-client.org