$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a6afaf1-5d31-44a8-8f53-776be73e229a.roa File: 7a6afaf1-5d31-44a8-8f53-776be73e229a.roa (raw, json) Hash identifier: g4daZGeTobAatU+k/b86+zWLKkPcnbrVuCvmNLMHEhs= Subject key identifier: C3:0C:BB:40:26:34:6A:E6:34:52:D4:B4:71:52:6B:0A:A8:DC:AD:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 291EDCEF912DF600DB4B44B37F25708DA2156362 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a6afaf1-5d31-44a8-8f53-776be73e229a.roa Signing time: Wed 06 Nov 2024 00:00:00 +0000 ROA not before: Wed 06 Nov 2024 00:00:00 +0000 ROA not after: Wed 11 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.75.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:1e:dc:ef:91:2d:f6:00:db:4b:44:b3:7f:25:70:8d:a2:15:63:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 6 00:00:00 2024 GMT Not After : Dec 11 23:59:59 2024 GMT Subject: serialNumber=528e9e191e789a7b392769fa7ee7e689acffbab2887924c705888b650e9b1174, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5d:09:ea:fd:98:53:b6:f2:9c:2d:2b:16:ca: 52:e6:03:08:12:e8:58:60:10:87:31:e3:dc:6d:60: 66:46:91:92:88:cb:43:f3:3d:29:56:36:d3:fe:ae: b1:da:ec:21:47:02:69:f3:18:70:91:b3:c8:fe:1d: 8b:35:cb:9c:fa:0e:ef:8d:eb:b5:23:d8:e4:67:66: da:fb:7a:47:92:dd:b4:cd:e3:be:36:85:c6:e9:ad: 29:56:3d:e6:99:2a:0d:b7:e8:39:a8:dc:83:ea:68: 12:c2:f1:ae:20:75:86:d8:ea:70:0b:36:e2:af:cb: 4f:a7:6a:61:6f:0c:b3:3d:c2:76:6e:2e:80:af:04: 2b:3c:24:14:f9:fd:bb:e3:56:f6:b6:9b:a6:75:0a: c7:ed:2e:7e:00:e4:c8:94:22:dc:5f:36:e0:84:cd: 31:b7:32:31:b1:f7:1f:c5:07:b3:d4:bc:37:8a:03: f3:a8:6c:db:fd:25:67:2e:51:f6:35:3b:08:bd:33: 72:3c:f4:40:a7:fd:23:c4:a7:b4:00:5c:72:ab:72: b8:95:84:54:09:8c:c8:d1:69:e7:d3:64:2f:9a:bd: 04:4d:32:07:ad:64:18:44:52:7b:1c:f7:66:fd:ef: b8:9d:00:63:08:08:81:d7:35:e3:00:44:4b:a5:5d: 94:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:0C:BB:40:26:34:6A:E6:34:52:D4:B4:71:52:6B:0A:A8:DC:AD:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a6afaf1-5d31-44a8-8f53-776be73e229a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.75.0.0/16 Signature Algorithm: sha256WithRSAEncryption c4:85:e5:f7:33:64:90:76:65:36:14:d0:4a:29:79:6c:03:43: f4:1e:98:f6:fd:e6:47:8a:4c:6b:4e:32:61:95:2c:d8:85:e2: fa:b0:0d:e6:f5:06:fa:ee:a1:f0:3f:62:6a:43:b4:05:52:1d: 62:98:ce:76:9b:65:6a:d6:14:c5:2d:bc:20:e7:7a:99:5b:ce: 62:0c:a5:fd:0c:31:53:6a:33:6c:57:15:ba:9d:cc:65:ea:5a: 85:71:6b:d2:8f:fe:4c:16:dd:1d:f3:5f:89:58:2d:92:22:6b: 72:53:31:bc:5b:e5:e6:26:c5:58:fe:e7:6d:a5:27:d6:a1:dd: a9:f9:50:81:79:6c:b9:97:d1:33:b9:37:4d:15:ff:39:cb:43: cd:6f:e0:c7:1e:f8:4c:14:f0:f8:bf:9a:dd:71:97:de:64:f4: 0a:a8:a9:cf:e9:e5:c0:e5:fa:15:42:93:ad:02:84:91:74:55: 80:2b:97:90:fb:0f:30:da:9b:ab:f1:31:b8:32:ba:d6:56:44: 00:09:f7:3e:79:bd:d9:74:d6:fb:47:9e:27:b7:51:86:ab:73: 89:ab:c3:b7:3f:26:62:61:30:3e:ec:c1:94:2f:ee:45:42:a5: d1:62:7b:44:1a:eb:4e:1c:f0:5a:80:ff:f0:a0:7a:27:8c:77: e8:66:e9:14 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKR7c75Et9gDbS0SzfyVwjaIVY2IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA2MDAwMDAwWhcNMjQxMjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjhlOWUxOTFlNzg5YTdiMzkyNzY5ZmE3ZWU3ZTY4OWFj ZmZiYWIyODg3OTI0YzcwNTg4OGI2NTBlOWIxMTc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSXQnq/ZhTtvKcLSsWylLmAwgS6FhgEIcx49xtYGZGkZKI y0PzPSlWNtP+rrHa7CFHAmnzGHCRs8j+HYs1y5z6Du+N67Uj2ORnZtr7ekeS3bTN 4742hcbprSlWPeaZKg236Dmo3IPqaBLC8a4gdYbY6nALNuKvy0+namFvDLM9wnZu LoCvBCs8JBT5/bvjVva2m6Z1CsftLn4A5MiUItxfNuCEzTG3MjGx9x/FB7PUvDeK A/OobNv9JWcuUfY1Owi9M3I89ECn/SPEp7QAXHKrcriVhFQJjMjRaefTZC+avQRN MgetZBhEUnsc92b977idAGMICIHXNeMAREulXZS7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwwy7QCY0auY0UtS0cVJrCqjcrV8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhNmFmYWYxLTVkMzEtNDRhOC04ZjUzLTc3NmJlNzNlMjI5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQSzANBgkqhkiG9w0BAQsFAAOCAQEAxIXl9zNkkHZlNhTQSil5bAND9B6Y 9v3mR4pMa04yYZUs2IXi+rAN5vUG+u6h8D9iakO0BVIdYpjOdptlatYUxS28IOd6 mVvOYgyl/QwxU2ozbFcVup3MZepahXFr0o/+TBbdHfNfiVgtkiJrclMxvFvl5ibF WP7nbaUn1qHdqflQgXlsuZfRM7k3TRX/OctDzW/gxx74TBTw+L+a3XGX3mT0Cqip z+nlwOX6FUKTrQKEkXRVgCuXkPsPMNqbq/ExuDK61lZEAAn3Pnm92XTW+0eeJ7dR hqtziavDtz8mYmEwPuzBlC/uRUKl0WJ7RBrrThzwWoD/8KB6J4x36GbpFA== -----END CERTIFICATE-----Generated at Mon Nov 25 02:57:46 2024 by rpki-client on console-fra.rpki-client.org