$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c1b1e-0246-458d-a96e-56b6b29e333d.roa File: 696c1b1e-0246-458d-a96e-56b6b29e333d.roa (raw, json) Hash identifier: gwFKiJQCXiK+Cu/gjvMMz+EMeq8Ot0lboe7A287fzfs= Subject key identifier: 0A:D9:77:64:B4:00:32:A1:AA:B1:B6:23:23:53:B6:BB:42:CE:6E:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 319C8DC8D97933172DA60CEC3D74C8CAE0907A56 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c1b1e-0246-458d-a96e-56b6b29e333d.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.70.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:9c:8d:c8:d9:79:33:17:2d:a6:0c:ec:3d:74:c8:ca:e0:90:7a:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=3ad787141dd2b4ca063a2f3eae0e1d520ecef86a49b512a457bf558debc7847b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7c:c1:3d:cb:90:a7:c2:bc:14:6a:fe:1d:12: 82:a2:2f:1d:fd:ec:a8:fb:f6:64:ff:24:02:4e:a2: cf:06:e0:02:ac:61:65:ca:78:e3:ea:9a:e4:e5:9f: 74:5e:db:c2:be:ac:dd:02:f6:1a:c4:32:8d:04:0b: d0:3d:7e:de:53:eb:74:f2:61:9c:ad:dc:90:00:04: 37:d9:87:97:cd:46:9a:c2:1f:3e:56:87:ed:e7:17: bd:72:1b:05:89:a6:0d:4b:b2:36:a9:4f:78:4f:bb: 58:ea:75:79:0d:77:21:24:f5:55:e7:70:00:e9:e1: 7e:4b:9f:63:d8:f5:84:d1:ad:22:bb:90:33:9b:c6: a6:b3:df:46:23:54:d0:a3:1e:e2:31:fd:fa:eb:03: 6e:12:97:51:b9:49:db:20:47:d5:c2:2f:de:47:2f: b4:cb:a8:7b:36:0a:37:fa:f8:c3:5c:de:1f:ac:78: dc:e8:4c:47:12:6f:13:de:53:b6:4a:db:25:1a:cb: 6a:20:03:ed:ff:86:f5:aa:4c:5a:13:02:d1:39:d9: 5b:98:14:a2:58:7b:ea:5f:63:d8:7f:7e:38:69:3a: 1a:50:d3:a5:77:8d:0b:3d:35:b4:f5:1c:11:2d:38: 82:45:1a:7f:8d:5c:58:ee:01:2b:f8:4a:62:19:ad: 9c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:D9:77:64:B4:00:32:A1:AA:B1:B6:23:23:53:B6:BB:42:CE:6E:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c1b1e-0246-458d-a96e-56b6b29e333d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption ab:98:7c:e7:a8:dc:03:cd:c7:b9:99:ff:6d:48:d4:30:24:9e: f3:7f:e0:de:ea:68:a7:80:87:35:03:bc:ba:61:ab:30:4d:5d: 73:e3:7e:16:da:89:3d:ac:8b:5d:3b:c8:31:70:bb:c0:3e:74: fb:5d:4a:4d:57:f7:24:15:56:92:35:29:55:8f:c8:4b:1c:ec: fa:8a:a7:56:bb:3d:d0:41:3b:7f:82:51:cc:e6:42:5b:ab:b4: 40:df:00:3c:ad:96:91:29:11:a8:19:32:63:51:94:84:5c:a1: ea:12:b8:6c:1a:7f:7c:06:75:13:9a:ae:51:2a:75:fc:09:9b: 8e:18:82:08:48:39:a5:5d:d3:01:d8:4e:79:e6:65:03:d4:4d: 1d:42:13:6e:ce:2b:d6:6b:66:ca:98:34:9e:db:d3:6c:88:e1: ab:99:45:f5:53:5a:36:8e:b1:31:fa:3e:46:93:1c:35:83:e5: d2:79:46:19:13:49:fa:3f:74:49:a4:93:8c:7e:7f:96:4a:34: 7e:a6:04:30:5f:81:fe:d8:c4:93:27:76:c9:b2:b8:a0:02:d4: b7:4b:24:24:9c:e2:a7:6f:53:66:fd:da:98:7c:a3:ce:f2:ea: dc:fb:ac:80:61:59:f8:cd:9c:95:eb:d6:b9:c7:aa:11:a7:ff: 2b:ff:6e:8b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMZyNyNl5MxctpgzsPXTIyuCQelYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYWQ3ODcxNDFkZDJiNGNhMDYzYTJmM2VhZTBlMWQ1MjBl Y2VmODZhNDliNTEyYTQ1N2JmNTU4ZGViYzc4NDdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNfME9y5CnwrwUav4dEoKiLx397Kj79mT/JAJOos8G4AKs YWXKeOPqmuTln3Re28K+rN0C9hrEMo0EC9A9ft5T63TyYZyt3JAABDfZh5fNRprC Hz5Wh+3nF71yGwWJpg1LsjapT3hPu1jqdXkNdyEk9VXncADp4X5Ln2PY9YTRrSK7 kDObxqaz30YjVNCjHuIx/frrA24Sl1G5SdsgR9XCL95HL7TLqHs2Cjf6+MNc3h+s eNzoTEcSbxPeU7ZK2yUay2ogA+3/hvWqTFoTAtE52VuYFKJYe+pfY9h/fjhpOhpQ 06V3jQs9NbT1HBEtOIJFGn+NXFjuASv4SmIZrZzpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCtl3ZLQAMqGqsbYjI1O2u0LObnowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5NmMxYjFlLTAyNDYtNDU4ZC1hOTZlLTU2YjZiMjllMzMzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQRjANBgkqhkiG9w0BAQsFAAOCAQEAq5h856jcA83HuZn/bUjUMCSe83/g 3upop4CHNQO8umGrME1dc+N+FtqJPayLXTvIMXC7wD50+11KTVf3JBVWkjUpVY/I Sxzs+oqnVrs90EE7f4JRzOZCW6u0QN8APK2WkSkRqBkyY1GUhFyh6hK4bBp/fAZ1 E5quUSp1/AmbjhiCCEg5pV3TAdhOeeZlA9RNHUITbs4r1mtmypg0ntvTbIjhq5lF 9VNaNo6xMfo+RpMcNYPl0nlGGRNJ+j90SaSTjH5/lko0fqYEMF+B/tjEkyd2ybK4 oALUt0skJJzip29TZv3amHyjzvLq3PusgGFZ+M2clevWuceqEaf/K/9uiw== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:07 2024 by rpki-client on console-ams.rpki-client.org