$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa File: 76e74dd0-5733-4c2f-b500-2d75cab973be.roa (raw, json) Hash identifier: EfIaqCBXmMZ/V+xveuRN6gts0x3Pq1lM7LlPNUXvVtE= Subject key identifier: 6C:28:E0:5E:95:0F:B6:FD:5D:20:C0:8B:11:A7:F4:6C:60:B0:CC:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 703BA1DF0BEA91A5D253347259F24F0CE2A19119 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.44.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:3b:a1:df:0b:ea:91:a5:d2:53:34:72:59:f2:4f:0c:e2:a1:91:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=1177ac1ada163f04ca5ff160e323de4c1d46498349a69af917decb150a0f5c45, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:14:60:f2:b5:24:01:75:b8:72:53:0d:ac:95: 1c:59:4c:e9:a9:37:c4:f6:09:b3:62:80:86:a3:29: 42:58:cb:41:a5:82:c4:e5:13:2f:81:78:89:a5:57: d1:8f:f7:40:37:3b:cb:2a:f1:70:05:b0:9f:31:f7: 7a:95:d1:92:bd:cb:e3:34:70:28:b5:17:32:52:04: 14:74:67:b5:40:a5:26:df:2b:76:de:99:9d:5f:68: 73:b7:92:44:c3:48:1d:da:97:e2:94:57:25:47:65: 33:88:2f:8d:a9:82:bf:20:51:d7:d4:72:94:1d:07: b1:33:72:3e:9f:05:46:79:06:7f:af:6f:9b:d6:97: 32:c7:30:1f:26:56:60:5e:7c:b7:f3:63:dc:51:e4: 91:88:9a:0d:f3:51:b8:de:bc:22:23:de:21:72:7f: d8:cf:c0:d7:7d:99:17:9a:8d:61:54:8f:1d:06:ef: da:aa:a2:30:b9:e6:84:55:b9:c8:97:00:ee:28:02: 65:0c:98:69:a0:f6:fb:ba:4a:dd:3c:cd:6d:3c:3e: 5a:10:a5:1c:2e:ec:af:e6:df:ad:cf:1d:f0:e3:c2: 34:e3:ea:f5:78:49:f1:7a:d5:50:7f:82:5f:d5:2c: 49:a3:f0:d4:45:5e:14:03:77:bc:89:fb:87:a9:fd: 28:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:28:E0:5E:95:0F:B6:FD:5D:20:C0:8B:11:A7:F4:6C:60:B0:CC:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.44.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8c:c7:8a:a7:19:52:7c:4d:25:ec:ad:c0:28:c2:48:48:9a:ca: 47:4f:a6:59:6a:6b:ec:06:8b:70:ae:88:2b:90:aa:ad:50:a3: 34:68:3b:4b:a6:57:41:02:e0:78:84:50:8b:35:bd:d3:5d:20: 6f:b5:e7:eb:5d:a5:e0:cd:c2:48:43:8c:e3:55:54:11:8c:24: e5:07:89:74:49:bd:ce:23:1d:df:75:48:69:f2:f9:22:8d:bb: 12:ff:d1:7f:29:2b:c7:79:ef:bc:fa:02:ec:82:94:4a:f0:df: 88:29:29:2f:6f:70:fd:cd:f5:1d:c0:5a:99:c7:f6:f4:1e:24: 11:fb:bb:ac:b3:0a:de:46:74:e3:6b:91:61:ca:4a:49:d9:6e: 6e:3d:2f:73:2f:a2:cd:b9:08:47:85:2e:95:bd:af:ef:30:09: 5e:86:4d:fe:2c:1a:fa:6b:a2:7a:1c:78:46:d0:8c:39:12:ba: 2a:40:27:b0:f4:af:d3:60:1c:7f:23:63:c3:11:24:6b:9d:06: 4f:da:56:3c:d5:9c:c2:3e:12:0f:de:d8:e6:d0:b4:7b:9d:be: 53:9e:8d:f9:78:83:cc:5f:25:68:f9:80:25:72:d7:68:9b:cb: e2:17:b0:3e:64:de:55:36:87:6b:99:cb:9d:2e:16:d8:c8:ce: a0:8e:63:9e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcDuh3wvqkaXSUzRyWfJPDOKhkRkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTc3YWMxYWRhMTYzZjA0Y2E1ZmYxNjBlMzIzZGU0YzFk NDY0OTgzNDlhNjlhZjkxN2RlY2IxNTBhMGY1YzQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTFGDytSQBdbhyUw2slRxZTOmpN8T2CbNigIajKUJYy0Gl gsTlEy+BeImlV9GP90A3O8sq8XAFsJ8x93qV0ZK9y+M0cCi1FzJSBBR0Z7VApSbf K3bemZ1faHO3kkTDSB3al+KUVyVHZTOIL42pgr8gUdfUcpQdB7Ezcj6fBUZ5Bn+v b5vWlzLHMB8mVmBefLfzY9xR5JGImg3zUbjevCIj3iFyf9jPwNd9mReajWFUjx0G 79qqojC55oRVuciXAO4oAmUMmGmg9vu6St08zW08PloQpRwu7K/m363PHfDjwjTj 6vV4SfF61VB/gl/VLEmj8NRFXhQDd7yJ+4ep/Sh7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUbCjgXpUPtv1dIMCLEaf0bGCwzFswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc2ZTc0ZGQwLTU3MzMtNGMyZi1iNTAwLTJkNzVjYWI5NzNiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4LDANBgkqhkiG9w0BAQsFAAOCAQEAjMeKpxlSfE0l7K3AKMJISJrKR0+m WWpr7AaLcK6IK5CqrVCjNGg7S6ZXQQLgeIRQizW9010gb7Xn612l4M3CSEOM41VU EYwk5QeJdEm9ziMd33VIafL5Io27Ev/Rfykrx3nvvPoC7IKUSvDfiCkpL29w/c31 HcBamcf29B4kEfu7rLMK3kZ042uRYcpKSdlubj0vcy+izbkIR4Uulb2v7zAJXoZN /iwa+muiehx4RtCMORK6KkAnsPSv02AcfyNjwxEka50GT9pWPNWcwj4SD97Y5tC0 e52+U56N+XiDzF8laPmAJXLXaJvL4hewPmTeVTaHa5nLnS4W2MjOoI5jng== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:11 2024 by rpki-client on console-ams.rpki-client.org