$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7608b2e8-d5f7-4bd0-a175-c70a32e97950.roa File: 7608b2e8-d5f7-4bd0-a175-c70a32e97950.roa (raw, json) Hash identifier: yGNqdYz1pwFSM8ZpD+6gFHF5JSLlhN5JVy8Zn5f8szA= Subject key identifier: 3C:09:E8:D5:56:A1:38:BE:95:1C:89:2B:6C:73:8E:4A:E6:EE:BA:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EA017E109411DD016C4D641A264063F0715E27C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7608b2e8-d5f7-4bd0-a175-c70a32e97950.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 70.224.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:a0:17:e1:09:41:1d:d0:16:c4:d6:41:a2:64:06:3f:07:15:e2:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=9902d7bbb20f65a133d0a356ce3694d22e902beddc5a9222fe8d80e711094d05, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ea:dc:91:80:2c:7b:80:4f:01:67:45:fb:1a: cb:2f:a2:ab:a1:25:4d:5a:12:12:30:56:6f:11:91: ce:0f:3c:cd:77:04:14:3c:0f:ea:cc:34:0e:24:5c: aa:5d:eb:2b:4b:f1:a9:3a:c3:7c:94:1a:f3:a7:33: 18:f6:7e:cb:60:f4:3b:ca:9d:cb:83:47:28:ab:c8: 37:03:be:7a:c9:e2:1b:93:48:a1:d8:10:e7:ba:55: 29:bf:c4:af:c7:9c:2e:2e:19:ea:d1:8c:ab:3f:8a: ad:5a:3a:ca:2b:ba:c6:50:bd:2c:4e:da:bb:41:44: 4d:be:5a:08:e7:0f:34:52:92:cd:c1:56:d2:71:25: 44:38:ae:34:43:ef:23:0a:b3:7a:9e:36:5c:4a:0f: 09:21:55:a6:25:6a:11:cc:9a:54:f1:d2:71:0d:9e: e5:2b:a4:4b:1c:37:b4:7a:d2:97:be:e2:43:f6:be: 19:f4:71:5d:3f:35:b3:81:0a:12:83:ce:a1:37:0e: 8f:8b:64:9d:31:07:d5:29:16:88:1e:40:b3:1c:cd: 7b:2e:4e:ca:38:dc:6e:0f:e8:ce:d0:51:1b:e1:d8: c6:e3:34:9d:76:8e:82:87:d2:e2:9b:df:3b:0a:22: 22:20:9d:9d:0e:c9:ca:b9:07:41:38:fa:e3:e8:27: b7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:09:E8:D5:56:A1:38:BE:95:1C:89:2B:6C:73:8E:4A:E6:EE:BA:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7608b2e8-d5f7-4bd0-a175-c70a32e97950.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.224.192.0/18 Signature Algorithm: sha256WithRSAEncryption 03:bc:c5:d2:31:e1:62:b9:94:72:90:72:27:cc:60:67:ff:cd: 41:16:c1:b5:ee:3b:f8:5f:87:f0:8c:34:69:b0:4e:c2:00:8d: 9c:82:2b:b0:10:57:d6:e2:5f:41:72:49:9b:8e:d8:3a:be:b0: 6a:fd:ed:d1:0a:4c:38:08:06:1d:ce:5c:25:e3:47:0e:14:5c: fc:80:91:f7:07:5b:40:cc:14:42:d2:46:6e:94:28:a3:c4:cb: 20:2a:47:57:55:7c:6c:a7:9d:e1:c4:88:c0:da:5b:35:b1:5b: 19:e0:c4:74:77:b5:c5:a3:f0:17:68:d4:8e:81:9e:07:5b:6b: 6f:69:d0:a7:c9:dc:3c:78:14:61:b6:45:dd:76:18:3b:83:c0: c9:8f:18:a0:04:9c:b9:60:91:a3:4f:27:7a:c9:72:3a:d2:52: be:fb:0c:a5:d4:74:3b:da:dc:33:a6:7f:34:a4:bb:36:4a:93: ea:fb:1e:3b:56:f7:1c:f8:44:ce:9e:ae:20:73:a5:2f:6b:25: d9:01:fd:aa:87:82:82:13:02:44:2f:8b:e7:4e:ca:cb:87:01: 82:6c:46:6c:bf:42:14:01:15:df:0d:69:b7:a9:26:50:e6:fa: 26:6a:67:43:53:bf:ba:77:52:e9:56:8e:c8:cf:81:7f:d7:1c: b1:ab:b6:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPqAX4QlBHdAWxNZBomQGPwcV4nwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTAyZDdiYmIyMGY2NWExMzNkMGEzNTZjZTM2OTRkMjJl OTAyYmVkZGM1YTkyMjJmZThkODBlNzExMDk0ZDA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq6tyRgCx7gE8BZ0X7GssvoquhJU1aEhIwVm8Rkc4PPM13 BBQ8D+rMNA4kXKpd6ytL8ak6w3yUGvOnMxj2fstg9DvKncuDRyiryDcDvnrJ4huT SKHYEOe6VSm/xK/HnC4uGerRjKs/iq1aOsorusZQvSxO2rtBRE2+WgjnDzRSks3B VtJxJUQ4rjRD7yMKs3qeNlxKDwkhVaYlahHMmlTx0nENnuUrpEscN7R60pe+4kP2 vhn0cV0/NbOBChKDzqE3Do+LZJ0xB9UpFogeQLMczXsuTso43G4P6M7QURvh2Mbj NJ12joKH0uKb3zsKIiIgnZ0Oycq5B0E4+uPoJ7fdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPAno1VahOL6VHIkrbHOOSubuutkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc2MDhiMmU4LWQ1ZjctNGJkMC1hMTc1LWM3MGEzMmU5Nzk1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZG4MAwDQYJKoZIhvcNAQELBQADggEBAAO8xdIx4WK5lHKQcifMYGf/zUEW wbXuO/hfh/CMNGmwTsIAjZyCK7AQV9biX0FySZuO2Dq+sGr97dEKTDgIBh3OXCXj Rw4UXPyAkfcHW0DMFELSRm6UKKPEyyAqR1dVfGynneHEiMDaWzWxWxngxHR3tcWj 8Bdo1I6Bngdba29p0KfJ3Dx4FGG2Rd12GDuDwMmPGKAEnLlgkaNPJ3rJcjrSUr77 DKXUdDva3DOmfzSkuzZKk+r7HjtW9xz4RM6eriBzpS9rJdkB/aqHgoITAkQvi+dO ysuHAYJsRmy/QhQBFd8NabepJlDm+iZqZ0NTv7p3UulWjsjPgX/XHLGrtpI= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:09 2024 by rpki-client on console-fra.rpki-client.org