$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fcd84a1-3134-4005-9224-b48d476c9564.roa File: 6fcd84a1-3134-4005-9224-b48d476c9564.roa (raw, json) Hash identifier: vDLcBY8+o/9EVTtCqtTRHXttVXe/88B0OxSZ+HlwpZo= Subject key identifier: D5:D4:2A:D7:38:F9:79:29:C2:7A:48:6E:7A:0B:2A:2D:7C:9C:42:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7034087D9AE26802D24C5D4B037EE3266E8BBD20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fcd84a1-3134-4005-9224-b48d476c9564.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:34:08:7d:9a:e2:68:02:d2:4c:5d:4b:03:7e:e3:26:6e:8b:bd:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=570f922abd0e5dfc5f256e7dd3ec9be717481e3829cb8e3120bd90c1a9b9f133, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:66:2a:b5:21:a8:58:95:10:34:47:d9:b2:26: 7f:e4:81:4a:bd:64:aa:f0:bd:8e:ae:38:d4:36:65: e6:2d:6a:c9:cb:af:5e:54:dd:cd:34:88:f5:1c:42: 67:bb:4e:cd:9e:05:1f:1a:4f:9f:37:43:fc:83:a5: 81:75:f9:53:21:a5:78:52:4f:13:53:ab:31:3c:07: 34:23:ad:c1:08:2e:bc:99:88:d9:8a:df:85:06:ea: 56:94:85:44:54:06:80:46:31:24:ce:30:4c:2d:25: 0d:42:11:27:ef:f3:3d:69:2c:f0:2a:31:92:86:14: 0a:46:f3:7e:6c:5d:89:23:2d:b2:cd:be:cd:3f:2c: 6f:f4:19:44:e1:70:42:d4:24:03:ea:c8:e3:26:a1: 3b:e9:c9:51:b9:9c:e7:8e:18:3e:e0:de:59:06:5e: 6b:65:e6:f7:92:a0:28:a5:cc:63:fb:f8:63:a9:be: d1:89:21:ea:66:ac:21:48:f8:36:8e:71:ea:54:fb: 3d:22:96:8b:ef:d5:2d:17:96:af:28:59:5f:5a:6f: 79:86:56:1b:86:ac:9a:c2:6c:23:6e:20:ff:4e:56: cf:09:5a:14:a0:ce:ed:55:39:dc:f7:cb:4d:aa:2e: ef:ab:a2:5c:68:f8:f7:21:73:71:d6:7f:51:58:f7: 51:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D4:2A:D7:38:F9:79:29:C2:7A:48:6E:7A:0B:2A:2D:7C:9C:42:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fcd84a1-3134-4005-9224-b48d476c9564.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.113.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:87:ee:e4:3b:4e:89:e6:f8:5f:6a:f5:c0:f1:40:20:f8:19: 6f:d7:3a:b6:05:8c:49:fa:48:77:18:2f:f1:19:3c:15:ad:c4: ca:99:56:54:a5:5a:ae:90:64:1f:06:73:be:05:bc:13:f6:7e: 22:ff:44:b5:50:ff:d3:6f:7a:d3:89:e9:58:44:0a:31:f8:67: 8f:39:93:ba:47:12:cf:9e:0a:b4:e6:b6:46:aa:9d:05:c4:77: c1:92:6c:44:c4:97:57:fa:7f:e3:3f:e7:de:6f:6b:81:cb:c7: 68:85:a9:25:53:df:a8:13:af:bd:49:d6:c6:09:fa:68:95:1e: 25:bf:2a:8c:06:d9:0a:de:94:28:82:a0:7b:c8:4c:8e:8b:4f: 0c:4c:7a:c5:00:ca:39:47:73:a5:76:37:e6:25:0d:38:84:ff: e0:c3:b4:95:62:7e:f8:73:d9:51:60:78:ff:b8:16:6c:b0:fb: 55:4e:4e:44:54:3c:6d:6a:8e:6d:b0:ae:35:68:c7:dc:d7:9b: 7f:2a:be:05:ec:60:3b:30:bd:07:8e:4b:c1:7d:18:ec:ee:29: cb:01:0d:36:05:e5:b1:d1:18:1c:f6:cf:81:8a:2d:05:5a:7e: 99:c3:d2:40:2a:9a:2f:f6:1b:d3:77:5e:04:b8:4d:22:8c:3f: e7:86:8f:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcDQIfZriaALSTF1LA37jJm6LvSAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzBmOTIyYWJkMGU1ZGZjNWYyNTZlN2RkM2VjOWJlNzE3 NDgxZTM4MjljYjhlMzEyMGJkOTBjMWE5YjlmMTMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwZiq1IahYlRA0R9myJn/kgUq9ZKrwvY6uONQ2ZeYtasnL r15U3c00iPUcQme7Ts2eBR8aT583Q/yDpYF1+VMhpXhSTxNTqzE8BzQjrcEILryZ iNmK34UG6laUhURUBoBGMSTOMEwtJQ1CESfv8z1pLPAqMZKGFApG835sXYkjLbLN vs0/LG/0GUThcELUJAPqyOMmoTvpyVG5nOeOGD7g3lkGXmtl5veSoCilzGP7+GOp vtGJIepmrCFI+DaOcepU+z0ilovv1S0Xlq8oWV9ab3mGVhuGrJrCbCNuIP9OVs8J WhSgzu1VOdz3y02qLu+rolxo+Pchc3HWf1FY91GjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1dQq1zj5eSnCekhuegsqLXycQqIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmY2Q4NGExLTMxMzQtNDAwNS05MjI0LWI0OGQ0NzZjOTU2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HEwDQYJKoZIhvcNAQELBQADggEBAC6H7uQ7Tonm+F9q9cDxQCD4GW/X OrYFjEn6SHcYL/EZPBWtxMqZVlSlWq6QZB8Gc74FvBP2fiL/RLVQ/9NvetOJ6VhE CjH4Z485k7pHEs+eCrTmtkaqnQXEd8GSbETEl1f6f+M/595va4HLx2iFqSVT36gT r71J1sYJ+miVHiW/KowG2QrelCiCoHvITI6LTwxMesUAyjlHc6V2N+YlDTiE/+DD tJVifvhz2VFgeP+4Fmyw+1VOTkRUPG1qjm2wrjVox9zXm38qvgXsYDswvQeOS8F9 GOzuKcsBDTYF5bHRGBz2z4GKLQVafpnD0kAqmi/2G9N3XgS4TSKMP+eGj3c= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:08 2024 by rpki-client on console-fra.rpki-client.org