$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78d2f628-64c4-4bca-be50-addae52fd6d8.roa File: 78d2f628-64c4-4bca-be50-addae52fd6d8.roa (raw, json) Hash identifier: 2rw9y+7PQ+TLMJSdYbgqjwieBqNY41+Tx6T4aJ/hP4w= Subject key identifier: 83:84:A2:D5:CB:F8:A3:57:9C:76:E6:D2:1E:97:CB:50:2E:85:99:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 363EDFB2024A359BAEBF4979AC51000B84D009AE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78d2f628-64c4-4bca-be50-addae52fd6d8.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 130.171.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:3e:df:b2:02:4a:35:9b:ae:bf:49:79:ac:51:00:0b:84:d0:09:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=7ee0feb976a0a021c958b0581b832defa196dc3b383c4ca416cfd92775fa5cf3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:46:86:55:59:76:8a:46:72:bb:e5:f6:8e:94: a5:74:59:ab:d0:88:9a:33:d5:7f:1b:31:32:ca:0c: 17:3b:c3:5f:b8:7c:25:ae:7d:97:db:26:4d:de:a4: 07:02:fc:ac:28:c1:f5:47:aa:8c:d6:c8:b3:02:ed: ff:27:f7:93:02:f5:a0:3e:b9:75:b3:0e:d6:bf:9a: 19:09:c1:45:e3:62:e3:3e:53:4e:dd:ed:12:4b:ba: b7:92:ba:8e:f4:42:63:6e:34:72:05:ad:a4:8a:7d: 96:e0:40:b5:b3:7b:ba:ba:50:52:39:52:80:b0:ae: a7:d9:41:87:b8:9a:d7:d5:15:68:31:cd:61:98:8a: f6:c2:82:6d:a5:77:b7:08:64:4c:2a:66:5d:18:20: 37:5c:8d:87:02:79:78:aa:3f:ef:33:32:9a:0d:cc: d9:65:ac:ff:2a:31:0c:96:25:a6:f5:75:8d:1b:40: 59:c8:c8:58:4a:48:91:d6:c5:06:f0:95:84:9d:58: ea:91:be:37:53:22:55:07:35:ab:1a:5d:dc:85:69: c4:6f:37:d3:45:62:f2:0a:96:ef:68:14:b5:d0:94: 3e:5c:f9:91:2d:a4:60:f4:00:dc:51:ed:2e:ad:9a: bf:07:b5:28:f4:dd:e6:c6:0c:52:c6:87:57:32:07: f2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:84:A2:D5:CB:F8:A3:57:9C:76:E6:D2:1E:97:CB:50:2E:85:99:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78d2f628-64c4-4bca-be50-addae52fd6d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.171.0.0/24 Signature Algorithm: sha256WithRSAEncryption 90:64:28:7c:c5:98:95:ac:7c:39:31:0a:af:ff:2f:57:b0:6b: 28:ab:0e:2a:e3:f7:02:fd:2c:13:0b:a1:b8:35:49:82:ea:cd: be:38:6d:23:cc:49:8a:0a:f3:a4:13:1e:03:20:e7:a6:15:73: cd:9d:9c:5c:8e:07:aa:52:61:0f:bf:91:74:9b:ee:a1:54:b7: 62:89:92:cb:09:e9:f6:27:07:7c:a9:c8:24:9c:08:71:af:11: b7:dd:a8:21:91:4b:12:89:5c:80:5f:76:5d:90:f2:fe:25:7f: 6e:28:a7:99:26:c6:a0:64:9e:fb:02:20:0a:f4:4e:39:97:bc: 4e:40:51:a5:ca:aa:45:5c:7b:e2:8b:0c:95:db:8b:87:8a:71: c3:b7:ae:ba:73:24:27:48:88:b4:6a:65:15:5a:00:89:2f:38: ae:0c:db:81:9b:28:f5:95:df:0a:f5:0f:2c:dd:06:f6:bb:d0: 00:8c:76:37:9c:f2:27:c7:9b:8e:55:dd:e3:85:7d:a1:5d:08: 77:2c:7a:57:69:9c:bf:59:d8:c4:29:6a:b3:dc:a4:b2:9f:b7: b1:dd:12:84:ca:07:c9:86:99:db:57:ab:15:e5:55:c6:8e:c5: 7d:f4:e0:5d:54:f2:e7:55:61:bd:89:4d:fd:3c:95:fa:be:f6: b1:d3:d7:da -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNj7fsgJKNZuuv0l5rFEAC4TQCa4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZWUwZmViOTc2YTBhMDIxYzk1OGIwNTgxYjgzMmRlZmEx OTZkYzNiMzgzYzRjYTQxNmNmZDkyNzc1ZmE1Y2YzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPRoZVWXaKRnK75faOlKV0WavQiJoz1X8bMTLKDBc7w1+4 fCWufZfbJk3epAcC/KwowfVHqozWyLMC7f8n95MC9aA+uXWzDta/mhkJwUXjYuM+ U07d7RJLureSuo70QmNuNHIFraSKfZbgQLWze7q6UFI5UoCwrqfZQYe4mtfVFWgx zWGYivbCgm2ld7cIZEwqZl0YIDdcjYcCeXiqP+8zMpoNzNllrP8qMQyWJab1dY0b QFnIyFhKSJHWxQbwlYSdWOqRvjdTIlUHNasaXdyFacRvN9NFYvIKlu9oFLXQlD5c +ZEtpGD0ANxR7S6tmr8HtSj03ebGDFLGh1cyB/KdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg4Si1cv4o1ecdubSHpfLUC6FmZIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4ZDJmNjI4LTY0YzQtNGJjYS1iZTUwLWFkZGFlNTJmZDZkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCqwAwDQYJKoZIhvcNAQELBQADggEBAJBkKHzFmJWsfDkxCq//L1ewayir Dirj9wL9LBMLobg1SYLqzb44bSPMSYoK86QTHgMg56YVc82dnFyOB6pSYQ+/kXSb 7qFUt2KJkssJ6fYnB3ypyCScCHGvEbfdqCGRSxKJXIBfdl2Q8v4lf24op5kmxqBk nvsCIAr0TjmXvE5AUaXKqkVce+KLDJXbi4eKccO3rrpzJCdIiLRqZRVaAIkvOK4M 24GbKPWV3wr1DyzdBva70ACMdjec8ifHm45V3eOFfaFdCHcseldpnL9Z2MQparPc pLKft7HdEoTKB8mGmdtXqxXlVcaOxX304F1U8udVYb2JTf08lfq+9rHT19o= -----END CERTIFICATE-----Generated at Mon Nov 25 02:57:46 2024 by rpki-client on console-fra.rpki-client.org