$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7361c174-22c7-4bfc-be42-06a7601b59bd.roa File: 7361c174-22c7-4bfc-be42-06a7601b59bd.roa (raw, json) Hash identifier: d9BwPb4Wc12U5W/TbObGrojkXg/5JvXetadA8j6I3a8= Subject key identifier: 9B:B5:CF:85:8E:F4:95:27:EF:FD:2B:2C:03:75:DA:91:D0:B5:BE:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43881966B1BB757B089B3FAD6A010C913D640977 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7361c174-22c7-4bfc-be42-06a7601b59bd.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 99.151.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:88:19:66:b1:bb:75:7b:08:9b:3f:ad:6a:01:0c:91:3d:64:09:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=1b8e385f4768e3a00ea03cdbb34cef3f5102bfe067ac064f1e1f363128b6c69f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e2:58:41:4f:40:aa:97:c1:c8:d1:49:a7:1e: bc:f3:11:73:e3:2c:42:e2:33:98:71:6f:6c:6e:14: bc:ef:f9:f3:de:ae:84:97:06:09:24:b6:ee:b6:72: 6f:0b:14:73:ed:58:e9:8c:62:cb:c3:7b:77:1b:68: 0d:93:a1:7a:e1:6e:22:ad:62:24:8c:a2:8a:01:8b: 44:5b:b7:64:b2:37:31:14:3b:bc:0f:a8:be:9a:be: 21:95:e6:7b:0c:bd:dc:21:00:b8:0d:f9:d5:e8:c9: 99:04:6f:fc:c7:bd:b8:ec:e0:0e:dc:6d:d2:6f:e0: 8f:87:29:23:0f:69:fe:ed:54:9d:e4:77:e3:4a:a1: d2:d6:c8:b1:c7:5b:a6:78:60:7a:c9:73:b7:ee:ff: 16:52:dc:59:18:d9:0d:5a:50:9b:a5:01:55:09:3e: 7e:ce:09:9c:16:f4:4a:98:21:fe:1e:22:1d:f3:9d: a4:8d:2a:20:7d:8b:c4:94:06:a5:5f:a0:43:91:77: b9:04:95:e1:db:76:19:89:45:bf:4d:07:2c:06:5f: 56:96:9e:13:00:66:d6:80:c5:c2:92:54:2c:7a:e1: a4:ac:26:93:24:f4:31:74:00:d3:e8:1a:cf:ee:ab: f3:ed:f1:d8:af:68:99:99:ca:89:7d:7b:df:1b:b7: cf:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B5:CF:85:8E:F4:95:27:EF:FD:2B:2C:03:75:DA:91:D0:B5:BE:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7361c174-22c7-4bfc-be42-06a7601b59bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.96.0/21 Signature Algorithm: sha256WithRSAEncryption ba:3c:7b:52:d5:32:8d:ee:bc:67:d1:d7:80:23:bc:c4:1d:22: 07:d6:12:c1:1d:85:ad:c6:1e:e6:42:6a:91:90:95:41:c5:a3: 14:ad:c6:15:50:da:55:55:00:3c:cb:9d:09:aa:d0:8e:46:55: 10:e7:21:48:2c:00:3e:44:b4:b7:87:b0:fe:a1:23:84:7e:d1: 26:8a:21:d3:c5:75:2c:e2:ac:2b:83:36:37:40:a4:97:72:ec: 6c:74:d9:34:2c:06:fb:32:f0:dc:e3:7c:a1:c2:ac:3a:84:42: 79:28:6b:fe:c8:19:9a:03:20:83:98:ee:2f:94:2c:92:1c:04: de:b7:30:f4:b9:d3:80:d2:b1:48:fa:5f:e0:89:20:d5:fa:e1: 08:8d:83:16:17:8b:a5:44:55:20:45:37:91:65:1a:fb:17:3d: 2d:ef:0f:a1:de:1b:6d:f8:15:0f:1d:b1:57:63:8d:6f:3d:29: c2:82:5c:31:07:53:5f:a6:fc:b8:b9:a0:c8:56:36:53:ee:ce: f0:3a:c1:18:e4:eb:3a:0f:a9:65:a5:c7:10:91:40:02:8c:0c: 7d:0e:ef:93:fa:b1:92:ee:d7:6e:f1:41:bf:0c:ef:1d:25:4e: 85:49:8b:84:b2:7b:2e:c3:33:c3:d7:ad:5e:c3:08:5f:9a:ed: 7b:9a:d3:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ4gZZrG7dXsImz+tagEMkT1kCXcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjhlMzg1ZjQ3NjhlM2EwMGVhMDNjZGJiMzRjZWYzZjUx MDJiZmUwNjdhYzA2NGYxZTFmMzYzMTI4YjZjNjlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu4lhBT0Cql8HI0UmnHrzzEXPjLELiM5hxb2xuFLzv+fPe roSXBgkktu62cm8LFHPtWOmMYsvDe3cbaA2ToXrhbiKtYiSMoooBi0Rbt2SyNzEU O7wPqL6aviGV5nsMvdwhALgN+dXoyZkEb/zHvbjs4A7cbdJv4I+HKSMPaf7tVJ3k d+NKodLWyLHHW6Z4YHrJc7fu/xZS3FkY2Q1aUJulAVUJPn7OCZwW9EqYIf4eIh3z naSNKiB9i8SUBqVfoEORd7kEleHbdhmJRb9NBywGX1aWnhMAZtaAxcKSVCx64aSs JpMk9DF0ANPoGs/uq/Pt8divaJmZyol9e98bt8+3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm7XPhY70lSfv/SssA3XakdC1vicwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzczNjFjMTc0LTIyYzctNGJmYy1iZTQyLTA2YTc2MDFiNTliZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl2AwDQYJKoZIhvcNAQELBQADggEBALo8e1LVMo3uvGfR14AjvMQdIgfW EsEdha3GHuZCapGQlUHFoxStxhVQ2lVVADzLnQmq0I5GVRDnIUgsAD5EtLeHsP6h I4R+0SaKIdPFdSzirCuDNjdApJdy7Gx02TQsBvsy8NzjfKHCrDqEQnkoa/7IGZoD IIOY7i+ULJIcBN63MPS504DSsUj6X+CJINX64QiNgxYXi6VEVSBFN5FlGvsXPS3v D6HeG234FQ8dsVdjjW89KcKCXDEHU1+m/Li5oMhWNlPuzvA6wRjk6zoPqWWlxxCR QAKMDH0O75P6sZLu127xQb8M7x0lToVJi4Syey7DM8PXrV7DCF+a7Xua04o= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:09 2024 by rpki-client on console-fra.rpki-client.org