$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba621db-d295-4f28-9765-ac207449dddc.roa File: 6ba621db-d295-4f28-9765-ac207449dddc.roa (raw, json) Hash identifier: jaPPvNmzUcvkNOCp/PzfLt46vOoP+lhWm8qFXJWbGd8= Subject key identifier: CE:E8:09:F0:8A:9D:66:FE:94:82:43:CB:0D:88:E9:DC:56:22:FF:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B876BB44C438E8DD9FAAA5E7952187D64FF4221 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba621db-d295-4f28-9765-ac207449dddc.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 35.128.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:87:6b:b4:4c:43:8e:8d:d9:fa:aa:5e:79:52:18:7d:64:ff:42:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=bf319ee9a7a57d6cd76ef6fc0d22d70959565a551264f1796728b55b88908fe9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:52:f4:2e:71:9f:78:09:9e:bc:04:72:e8:19: 8e:e7:b9:00:70:62:f7:32:5b:ac:78:5d:f7:ab:38: 81:19:3b:07:ce:26:83:4e:a8:79:5b:52:1d:3b:bb: c9:ba:42:29:2a:5e:f0:35:0f:02:d2:35:04:15:54: d3:28:94:c5:f9:6c:5c:37:6b:25:24:11:92:de:e1: 1b:e1:5e:d1:60:e2:e2:1d:df:91:b8:13:61:36:b2: 18:8e:8f:db:0a:e0:68:93:24:99:10:ac:28:ec:67: 8b:f7:5f:e1:e4:97:16:7e:de:3e:6a:6f:bd:ed:b8: 3c:16:40:89:91:77:53:b2:aa:1c:d1:64:73:54:0e: 7f:83:5d:9e:75:df:02:f0:9c:e9:02:9e:9a:f9:68: 8f:67:b9:19:48:6d:97:20:5f:97:7c:a1:a2:11:dc: e6:cc:01:2f:c1:0f:81:2b:ca:04:63:4d:d1:1f:9f: ce:b6:31:f9:f2:8d:45:aa:83:74:c8:21:aa:f1:c5: 7b:58:f9:5c:88:2b:23:86:ec:ea:83:70:de:e1:5f: ca:10:e9:b7:fc:a6:b3:12:81:82:fc:22:eb:d6:8a: ea:51:49:b5:e1:89:01:4a:a6:cc:59:c4:b5:c2:b5: 42:db:51:72:bf:3f:27:77:28:5e:d0:55:b5:4c:92: db:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E8:09:F0:8A:9D:66:FE:94:82:43:CB:0D:88:E9:DC:56:22:FF:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba621db-d295-4f28-9765-ac207449dddc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.128.128.0/18 Signature Algorithm: sha256WithRSAEncryption 4c:68:29:9c:3a:5d:4e:03:5f:3b:c5:94:c2:ab:2d:f5:b7:fe: dc:5e:21:72:7b:85:08:db:fc:25:95:0f:9c:c6:db:8b:f1:c6: 63:2d:14:98:d2:89:f9:82:ff:57:bf:cc:f8:55:1f:7a:36:d2: bb:d4:fb:b9:76:a6:42:61:f9:42:69:50:7e:cc:b0:b7:bf:82: 59:bd:cc:3a:f8:b8:0c:fe:71:3f:72:90:ea:56:25:46:2b:f9: b8:01:20:d3:04:3e:a9:fb:f9:82:90:33:7a:d9:fb:9d:3f:70: df:dd:4a:57:f7:6f:91:f5:d1:7b:3b:52:e8:ff:4d:ab:94:4f: 72:39:0c:08:e0:57:46:44:cd:a0:00:32:d9:e1:61:d7:bc:e3: 05:92:a9:84:d3:1f:03:da:3a:8f:3c:e0:95:fd:3b:6a:02:95: f2:c1:2e:3a:27:a4:d2:fc:33:9f:82:6c:e7:86:a1:c7:17:86: 44:59:38:73:c0:d5:9a:0e:eb:b6:22:9c:3e:11:89:2a:cb:61: b1:8b:08:fa:3c:29:3d:1c:bb:6b:bf:b7:e2:2c:02:48:80:e3: c5:75:f5:b9:43:4b:ad:bb:90:64:6f:93:e5:f3:81:04:bc:79: 29:ba:3f:c9:fb:c8:dc:93:ca:65:a3:01:ed:bd:5e:ee:aa:d7: ef:c4:7b:25 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC4drtExDjo3Z+qpeeVIYfWT/QiEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjMxOWVlOWE3YTU3ZDZjZDc2ZWY2ZmMwZDIyZDcwOTU5 NTY1YTU1MTI2NGYxNzk2NzI4YjU1Yjg4OTA4ZmU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcUvQucZ94CZ68BHLoGY7nuQBwYvcyW6x4XferOIEZOwfO JoNOqHlbUh07u8m6QikqXvA1DwLSNQQVVNMolMX5bFw3ayUkEZLe4RvhXtFg4uId 35G4E2E2shiOj9sK4GiTJJkQrCjsZ4v3X+HklxZ+3j5qb73tuDwWQImRd1OyqhzR ZHNUDn+DXZ513wLwnOkCnpr5aI9nuRlIbZcgX5d8oaIR3ObMAS/BD4ErygRjTdEf n862MfnyjUWqg3TIIarxxXtY+VyIKyOG7OqDcN7hX8oQ6bf8prMSgYL8IuvWiupR SbXhiQFKpsxZxLXCtULbUXK/Pyd3KF7QVbVMktuVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzugJ8IqdZv6UgkPLDYjp3FYi/z8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiYTYyMWRiLWQyOTUtNGYyOC05NzY1LWFjMjA3NDQ5ZGRkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYjgIAwDQYJKoZIhvcNAQELBQADggEBAExoKZw6XU4DXzvFlMKrLfW3/txe IXJ7hQjb/CWVD5zG24vxxmMtFJjSifmC/1e/zPhVH3o20rvU+7l2pkJh+UJpUH7M sLe/glm9zDr4uAz+cT9ykOpWJUYr+bgBINMEPqn7+YKQM3rZ+50/cN/dSlf3b5H1 0Xs7Uuj/TauUT3I5DAjgV0ZEzaAAMtnhYde84wWSqYTTHwPaOo884JX9O2oClfLB LjonpNL8M5+CbOeGoccXhkRZOHPA1ZoO67YinD4RiSrLYbGLCPo8KT0cu2u/t+Is AkiA48V19blDS627kGRvk+XzgQS8eSm6P8n7yNyTymWjAe29Xu6q1+/EeyU= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:07 2024 by rpki-client on console-fra.rpki-client.org