$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/786f0c29-e2df-4478-b9cd-67444b292a06.roa File: 786f0c29-e2df-4478-b9cd-67444b292a06.roa (raw, json) Hash identifier: Vys0Cqsy+VrwPxAFAPEy1vnvvWghAActd6k6OvbUXpY= Subject key identifier: 7C:38:F2:9E:E1:84:1B:FC:27:77:E0:42:50:CD:F9:C0:C1:ED:76:B9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 063B6BB5263A11AEDD89A2DDCE97873D7256D0DE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/786f0c29-e2df-4478-b9cd-67444b292a06.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 208.78.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:3b:6b:b5:26:3a:11:ae:dd:89:a2:dd:ce:97:87:3d:72:56:d0:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=3fcfc04ab03b4b11b8ea9a8d40ee36bb64271b40464787d4baab4efa99e28d4a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:69:c0:2c:b8:6b:07:ea:2b:81:1a:2c:4d:95: a7:13:88:2f:a7:b1:a7:0d:33:ae:1b:09:eb:8e:e8: 91:57:13:1c:3b:49:7a:22:6a:d5:f4:34:1c:20:99: 25:b7:53:3d:20:3a:69:b5:f1:ce:33:4b:4f:11:59: 64:07:ab:74:0d:08:62:6f:69:b9:76:19:38:d4:bf: 67:f8:fd:f8:a0:6f:64:60:38:d3:89:9a:06:28:6b: 7d:bc:8c:97:73:0c:de:19:8e:09:fc:6e:dc:68:52: 0b:f4:29:03:6d:ee:89:4f:cd:35:59:2f:9a:77:80: ed:2f:9c:68:29:42:41:8e:fc:7b:b7:f3:71:79:33: 3e:9a:a9:a2:f2:26:56:02:53:3e:d1:bd:c1:05:7c: 28:98:a8:cd:8b:39:b1:3f:01:1c:02:a4:81:5e:27: ae:99:da:de:ca:ec:93:b6:5b:97:61:0c:71:c6:be: d2:34:be:8e:d4:88:9d:34:26:f4:4d:44:fc:4d:bd: 8d:d9:48:54:9d:cf:c9:c5:da:27:47:29:97:73:07: 2e:e2:a3:bb:f9:ce:03:df:b0:2b:a6:dc:cd:bd:76: bb:0c:9e:18:d2:ac:46:c3:f1:2e:34:21:b9:fb:40: 07:56:28:0d:7e:38:48:41:d6:35:0e:72:ff:7e:df: 27:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:38:F2:9E:E1:84:1B:FC:27:77:E0:42:50:CD:F9:C0:C1:ED:76:B9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/786f0c29-e2df-4478-b9cd-67444b292a06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.78.134.0/24 Signature Algorithm: sha256WithRSAEncryption a6:46:25:b6:fe:3e:5a:fe:1f:b3:97:19:5c:9a:f7:81:f4:e2: 0a:f6:6a:65:11:1a:39:fa:7b:51:2e:58:91:64:07:11:48:3a: 8b:39:e4:9d:9e:14:71:07:86:74:5c:02:06:7f:79:9c:ea:82: e9:79:73:96:81:26:65:7d:23:40:71:79:9c:43:18:cd:d1:49: ef:e7:3c:27:07:f4:c4:41:c4:1d:1f:35:6a:57:ee:05:a4:4c: b2:de:2d:f3:af:1b:a7:2a:01:f9:6d:f3:71:5a:60:1c:39:3f: 44:b8:0f:69:b3:ec:e5:6c:c1:4d:4e:39:5e:4e:f3:c5:ef:36: e8:c5:ad:b5:55:5d:b3:74:35:4c:0b:4e:a9:8d:08:7d:6e:13: e9:0d:02:22:b8:f6:61:4e:b5:4c:79:83:53:70:0f:18:e9:72: 83:5d:01:a7:71:49:86:09:01:94:92:a1:b4:ae:73:1b:59:dc: c4:d1:9b:3d:1a:e7:9a:6e:59:f9:9a:63:0e:39:22:72:5f:13: ba:9c:76:ac:07:55:90:5f:47:93:6b:22:9b:14:40:64:9b:69: c2:98:75:fd:32:99:83:58:3f:d5:75:8d:25:20:79:5e:52:07: 08:85:35:f0:8f:39:fc:68:e5:99:1e:ec:0c:39:f0:d4:b3:9b: f2:aa:4b:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBjtrtSY6Ea7diaLdzpeHPXJW0N4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZmNmYzA0YWIwM2I0YjExYjhlYTlhOGQ0MGVlMzZiYjY0 MjcxYjQwNDY0Nzg3ZDRiYWFiNGVmYTk5ZTI4ZDRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhacAsuGsH6iuBGixNlacTiC+nsacNM64bCeuO6JFXExw7 SXoiatX0NBwgmSW3Uz0gOmm18c4zS08RWWQHq3QNCGJvabl2GTjUv2f4/figb2Rg ONOJmgYoa328jJdzDN4Zjgn8btxoUgv0KQNt7olPzTVZL5p3gO0vnGgpQkGO/Hu3 83F5Mz6aqaLyJlYCUz7RvcEFfCiYqM2LObE/ARwCpIFeJ66Z2t7K7JO2W5dhDHHG vtI0vo7UiJ00JvRNRPxNvY3ZSFSdz8nF2idHKZdzBy7io7v5zgPfsCum3M29drsM nhjSrEbD8S40Ibn7QAdWKA1+OEhB1jUOcv9+3yedAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfDjynuGEG/wnd+BCUM35wMHtdrkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4NmYwYzI5LWUyZGYtNDQ3OC1iOWNkLTY3NDQ0YjI5MmEwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADQToYwDQYJKoZIhvcNAQELBQADggEBAKZGJbb+Plr+H7OXGVya94H04gr2 amURGjn6e1EuWJFkBxFIOos55J2eFHEHhnRcAgZ/eZzqgul5c5aBJmV9I0BxeZxD GM3RSe/nPCcH9MRBxB0fNWpX7gWkTLLeLfOvG6cqAflt83FaYBw5P0S4D2mz7OVs wU1OOV5O88XvNujFrbVVXbN0NUwLTqmNCH1uE+kNAiK49mFOtUx5g1NwDxjpcoNd AadxSYYJAZSSobSucxtZ3MTRmz0a55puWfmaYw45InJfE7qcdqwHVZBfR5NrIpsU QGSbacKYdf0ymYNYP9V1jSUgeV5SBwiFNfCPOfxo5Zke7Aw58NSzm/KqSxU= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:11 2024 by rpki-client on console-ams.rpki-client.org