$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c01e197-1c70-4d30-8eb0-5e820800b804.roa File: 6c01e197-1c70-4d30-8eb0-5e820800b804.roa (raw, json) Hash identifier: XmM0AaUX428yD43a3UiPgKbu4nqsXLpUMQPxUUKX1pU= Subject key identifier: 06:FE:F7:4F:9B:97:02:75:4E:B9:09:EC:2B:63:F9:0B:CD:9A:02:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E01F4DA6DFCC19C714A3A796B980B867921D7D2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c01e197-1c70-4d30-8eb0-5e820800b804.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:01:f4:da:6d:fc:c1:9c:71:4a:3a:79:6b:98:0b:86:79:21:d7:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=4e0f4e82c6aae86b0a7e9e2020ae944488677b249b4452ad696db4ca0de26e92, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:32:89:36:ac:99:d5:20:18:ff:9b:d4:be:c6: 2d:63:1c:39:b3:b4:48:8e:9b:4a:cc:63:23:6d:b2: 93:3d:0e:c8:04:c0:14:88:34:48:f2:fb:d4:60:d1: 93:0c:b3:e0:2b:09:46:d6:3f:de:3d:26:0b:62:c4: 03:9c:b9:12:2e:2d:dc:8a:a8:65:80:16:f8:c0:be: f0:39:ca:34:9a:59:48:53:8d:81:0a:0d:dd:9f:a2: 07:85:fa:ef:cb:6e:46:7f:ae:39:73:f0:b3:e6:71: fb:4e:57:9d:78:1c:cc:c8:53:85:bb:c8:f0:7c:5d: a3:39:04:8a:14:27:ba:1d:18:62:5f:3d:c6:7d:7b: 0f:77:0a:25:40:d6:64:37:c2:3a:86:78:42:ba:e9: fe:be:ad:20:f1:75:87:8f:a2:ea:67:52:85:a7:55: 99:ed:5c:d9:49:e6:46:0e:78:6e:5e:d2:16:0a:8e: 5e:67:a9:d5:25:be:2b:28:29:da:7a:89:4c:70:53: 62:37:b5:ce:02:ee:82:08:e1:07:4b:68:c0:d1:ea: 0f:ba:99:8f:75:4a:ae:35:82:ba:27:3b:8d:c8:fe: cb:67:73:1e:1d:ed:a6:c3:02:6a:fa:b0:78:ac:7b: f1:36:85:21:1e:24:c0:fa:f5:db:ee:59:e9:67:62: a7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:FE:F7:4F:9B:97:02:75:4E:B9:09:EC:2B:63:F9:0B:CD:9A:02:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c01e197-1c70-4d30-8eb0-5e820800b804.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:1000::/40 Signature Algorithm: sha256WithRSAEncryption 1c:b3:fd:a6:84:7f:70:c2:4c:58:85:16:25:c7:7d:6c:f5:bd: 7b:1d:af:78:43:6a:35:56:1d:8d:b2:d4:d4:8a:aa:78:cc:46: 1a:da:cf:04:9c:b4:15:c3:cd:1b:8e:74:c0:97:5c:67:41:eb: 41:e2:ba:a3:00:79:32:69:ab:d7:53:98:09:b2:14:7f:59:5c: 9e:97:a4:d4:e6:f2:13:92:dd:46:3e:d8:d4:f3:b2:5d:95:c7: 73:c5:f0:d9:2b:d4:e9:1c:00:a2:49:eb:26:79:b2:cd:a5:fe: 4b:e1:54:de:d0:b1:0c:eb:39:f2:6b:a3:73:48:53:2b:1d:99: 4f:80:af:01:f5:57:09:fd:5c:37:2f:bb:82:33:15:18:f9:44: 9c:ec:dc:2b:ea:b4:ab:52:d5:73:4d:81:5e:5b:31:c6:09:1e: 45:ae:32:da:11:d4:9f:e3:eb:70:ad:32:12:05:11:b5:75:21: a0:c8:dd:ed:ab:af:45:19:dd:66:21:f2:76:55:2d:70:e2:8a: a3:01:78:e4:35:8d:ca:77:fb:4f:8a:07:e0:e4:56:8b:96:d2: 71:61:f5:39:6f:56:7b:27:5b:54:02:a5:8a:d5:06:cd:55:cd: 8f:bd:57:6c:86:25:d6:fe:87:00:ce:fa:a9:5b:af:66:5f:18: c2:b2:d9:08 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbgH02m38wZxxSjp5a5gLhnkh19IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTBmNGU4MmM2YWFlODZiMGE3ZTllMjAyMGFlOTQ0NDg4 Njc3YjI0OWI0NDUyYWQ2OTZkYjRjYTBkZTI2ZTkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwMok2rJnVIBj/m9S+xi1jHDmztEiOm0rMYyNtspM9DsgE wBSINEjy+9Rg0ZMMs+ArCUbWP949JgtixAOcuRIuLdyKqGWAFvjAvvA5yjSaWUhT jYEKDd2fogeF+u/LbkZ/rjlz8LPmcftOV514HMzIU4W7yPB8XaM5BIoUJ7odGGJf PcZ9ew93CiVA1mQ3wjqGeEK66f6+rSDxdYePoupnUoWnVZntXNlJ5kYOeG5e0hYK jl5nqdUlvisoKdp6iUxwU2I3tc4C7oII4QdLaMDR6g+6mY91Sq41gronO43I/stn cx4d7abDAmr6sHise/E2hSEeJMD69dvuWelnYqdvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBv73T5uXAnVOuQnsK2P5C82aAtcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZjMDFlMTk3LTFjNzAtNGQzMC04ZWIwLTVlODIwODAwYjgwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8AEDANBgkqhkiG9w0BAQsFAAOCAQEAHLP9poR/cMJMWIUWJcd9bPW9 ex2veENqNVYdjbLU1IqqeMxGGtrPBJy0FcPNG450wJdcZ0HrQeK6owB5Mmmr11OY CbIUf1lcnpek1ObyE5LdRj7Y1POyXZXHc8Xw2SvU6RwAoknrJnmyzaX+S+FU3tCx DOs58mujc0hTKx2ZT4CvAfVXCf1cNy+7gjMVGPlEnOzcK+q0q1LVc02BXlsxxgke Ra4y2hHUn+PrcK0yEgURtXUhoMjd7auvRRndZiHydlUtcOKKowF45DWNynf7T4oH 4ORWi5bScWH1OW9WeydbVAKlitUGzVXNj71XbIYl1v6HAM76qVuvZl8YwrLZCA== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:08 2024 by rpki-client on console-ams.rpki-client.org