$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa File: 6e9ea69d-4b33-4a85-894c-5620e610e709.roa (raw, json) Hash identifier: nJP6k3E/mXWaPamYRxFM6b7RBCoQLNp6tXWUO3obOo8= Subject key identifier: 48:F9:EE:3F:EA:0E:31:75:73:F9:14:76:D6:A5:C1:F9:1C:DD:21:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 75F1A27A9224009F281479E039CE6E02A10592F3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:85e8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:f1:a2:7a:92:24:00:9f:28:14:79:e0:39:ce:6e:02:a1:05:92:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=be9f36ef9b0b368eeac3f9c9293a54242791b57313dee497b9c4c92284dec9f4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:87:a7:9d:c2:3e:75:ac:1f:56:b9:f2:b2:26: ae:c9:15:08:9a:51:08:47:7d:ce:1f:9b:c3:c3:b4: 01:bf:6f:5f:e6:16:12:0e:28:02:c2:f3:f5:7d:0d: d0:00:b4:9b:e0:0e:0c:92:93:15:50:85:01:ba:70: 4f:e5:1d:78:d3:bd:9f:3a:18:b7:16:f1:6b:38:18: 5f:1e:48:ad:be:7c:79:ee:e3:1e:f7:2d:53:da:9e: 0b:4d:76:a8:26:d8:7b:05:36:7e:2a:5a:c5:6f:66: 57:b4:ea:da:89:a2:92:88:8a:e1:af:f0:bb:fc:88: 66:a2:12:90:e1:f9:2f:39:ba:ca:8a:e0:33:89:88: 8e:f8:dc:85:a4:af:24:e3:c5:e3:41:6a:52:b7:67: 3f:64:7f:03:a5:9d:e4:b0:91:cf:14:1e:b1:df:0f: 6a:b3:0b:fe:34:88:3d:88:68:f4:9e:64:d8:50:1f: 44:31:aa:14:21:43:40:5c:f7:7b:47:be:85:a8:33: c4:f9:2f:a4:65:ac:a7:99:aa:53:d1:eb:b8:56:85: bc:79:45:96:fd:ca:a3:b7:93:57:91:b1:65:86:3e: e5:00:8a:9f:25:24:78:b4:7f:4b:5b:c7:36:e3:80: 58:5e:2d:c2:cc:19:a4:9e:8e:94:f6:23:7f:82:9d: 57:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:F9:EE:3F:EA:0E:31:75:73:F9:14:76:D6:A5:C1:F9:1C:DD:21:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:85e8::/48 Signature Algorithm: sha256WithRSAEncryption 1e:fc:43:0d:bd:af:05:2d:f2:e5:8f:b1:c0:01:73:0a:a7:a2: e5:07:2b:50:0b:1f:6e:c6:8c:9f:67:57:4a:07:10:6f:6b:ce: e3:f8:33:30:3b:aa:f9:b6:da:a0:b0:88:10:ff:c9:14:f2:b9: 6a:66:17:5c:20:ba:d2:39:70:9c:c8:ca:66:38:a1:05:a1:90: f7:25:83:98:1b:cb:d3:b4:4b:83:71:62:ae:df:f4:31:83:b8: a7:1b:52:62:7a:58:16:a7:49:b5:eb:5f:3a:f8:32:0d:c3:04: 86:e7:6e:0f:05:64:13:5d:09:51:57:77:72:5d:d8:c0:82:95: d2:77:a3:82:0b:c1:bc:77:6f:cf:5a:87:f9:c3:4c:bb:05:7c: a7:b6:8a:fa:51:c1:db:54:70:6b:bb:90:7d:4c:60:63:53:aa: d4:35:d4:ea:c3:b7:32:9f:e4:59:b1:ef:de:b5:5d:0a:6b:ae: aa:58:8f:5c:09:ba:f6:bb:7b:b9:e1:18:4c:6b:dd:ed:11:c9: 60:cd:48:6b:43:57:e6:34:8d:9f:1b:b5:fc:88:c8:6c:fe:ba: dd:28:fa:9c:d9:7e:93:59:d2:3c:55:55:73:f2:72:75:8c:c9: dd:91:a9:48:87:20:58:32:1d:24:58:df:bb:ad:77:a7:cc:c0: 35:5d:27:c6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdfGiepIkAJ8oFHngOc5uAqEFkvMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTlmMzZlZjliMGIzNjhlZWFjM2Y5YzkyOTNhNTQyNDI3 OTFiNTczMTNkZWU0OTdiOWM0YzkyMjg0ZGVjOWY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMh6edwj51rB9WufKyJq7JFQiaUQhHfc4fm8PDtAG/b1/m FhIOKALC8/V9DdAAtJvgDgySkxVQhQG6cE/lHXjTvZ86GLcW8Ws4GF8eSK2+fHnu 4x73LVPangtNdqgm2HsFNn4qWsVvZle06tqJopKIiuGv8Lv8iGaiEpDh+S85usqK 4DOJiI743IWkryTjxeNBalK3Zz9kfwOlneSwkc8UHrHfD2qzC/40iD2IaPSeZNhQ H0QxqhQhQ0Bc93tHvoWoM8T5L6RlrKeZqlPR67hWhbx5RZb9yqO3k1eRsWWGPuUA ip8lJHi0f0tbxzbjgFheLcLMGaSejpT2I3+CnVd5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSPnuP+oOMXVz+RR21qXB+RzdIX8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlOWVhNjlkLTRiMzMtNGE4NS04OTRjLTU2MjBlNjEwZTcwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9hegwDQYJKoZIhvcNAQELBQADggEBAB78Qw29rwUt8uWPscABcwqn ouUHK1ALH27GjJ9nV0oHEG9rzuP4MzA7qvm22qCwiBD/yRTyuWpmF1wgutI5cJzI ymY4oQWhkPclg5gby9O0S4NxYq7f9DGDuKcbUmJ6WBanSbXrXzr4Mg3DBIbnbg8F ZBNdCVFXd3Jd2MCCldJ3o4ILwbx3b89ah/nDTLsFfKe2ivpRwdtUcGu7kH1MYGNT qtQ11OrDtzKf5Fmx7961XQprrqpYj1wJuva7e7nhGExr3e0RyWDNSGtDV+Y0jZ8b tfyIyGz+ut0o+pzZfpNZ0jxVVXPycnWMyd2RqUiHIFgyHSRY37utd6fMwDVdJ8Y= -----END CERTIFICATE-----Generated at Mon Nov 25 02:57:44 2024 by rpki-client on console-fra.rpki-client.org