$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7affe5fc-3c66-4843-b69f-e5a95d517a06.roa File: 7affe5fc-3c66-4843-b69f-e5a95d517a06.roa (raw, json) Hash identifier: hWUu2nOyGHSNAXrwrp+VUKQCoUxKDKpGDBxu2CK1+vw= Subject key identifier: D2:84:91:58:AA:1D:35:56:E0:C7:E6:A4:B7:F7:4F:34:0E:AD:CC:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 713C9D283312F418C99C10F4518956CDB194CC9A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7affe5fc-3c66-4843-b69f-e5a95d517a06.roa Signing time: Mon 28 Oct 2024 00:00:00 +0000 ROA not before: Mon 28 Oct 2024 00:00:00 +0000 ROA not after: Mon 02 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.252.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:3c:9d:28:33:12:f4:18:c9:9c:10:f4:51:89:56:cd:b1:94:cc:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 28 00:00:00 2024 GMT Not After : Dec 2 23:59:59 2024 GMT Subject: serialNumber=78fa018c4f47efb4966f9b6666a3985d3ad211e469509496a45672394b9f491d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:45:aa:66:8e:f7:8a:49:fe:d0:aa:41:2d:fe: 8f:2c:bc:52:f4:42:fd:35:05:fb:72:b4:fa:a0:d0: 53:1b:b8:8a:4f:d5:d8:80:b1:7f:8c:25:9e:f4:71: 00:4d:63:0d:6b:bb:4f:f0:38:82:73:94:eb:57:a0: 2a:1b:5f:64:e0:50:f9:00:42:2a:6a:5f:ab:8a:74: 56:ed:28:ce:79:15:27:f8:ff:1c:33:cb:52:1b:20: ef:93:6b:fe:83:45:ad:5e:b9:9a:ad:d0:fd:41:0c: c8:b2:a5:5c:9d:10:73:5b:6f:d5:db:e4:23:ce:e8: 30:d6:6e:6c:ce:4a:cb:a6:4a:7f:c4:c1:f9:b3:7c: 1e:b9:10:50:f8:f9:91:d8:8b:df:32:b0:dc:f9:2d: 4f:87:7c:be:e7:74:be:ae:5a:79:5f:a4:8c:72:3e: e0:a5:97:94:06:b5:0a:c4:3f:35:65:b8:09:22:bb: 77:4b:63:a7:e1:de:98:61:8a:a1:ec:43:32:77:56: 2c:19:39:d3:0b:45:43:ed:1f:f6:10:34:4a:a9:eb: fc:a3:75:19:5c:1f:04:6f:a9:49:2c:0f:fe:01:64: a4:0d:07:72:27:77:f7:e9:d2:69:15:af:eb:6b:50: 3d:54:5c:48:74:b5:b2:10:ab:84:81:f1:10:f9:38: 54:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:84:91:58:AA:1D:35:56:E0:C7:E6:A4:B7:F7:4F:34:0E:AD:CC:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7affe5fc-3c66-4843-b69f-e5a95d517a06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.252.0.0/16 Signature Algorithm: sha256WithRSAEncryption 05:83:21:08:59:81:e3:87:6c:3c:b2:ad:8a:72:df:09:c9:51: 24:a7:7c:6e:49:af:2c:22:ba:c5:3b:c6:9d:08:f5:e0:31:e5: 42:4f:ae:34:7c:66:c7:01:9c:bd:e6:02:1b:34:83:a0:2d:5d: 16:7f:ae:51:f5:61:e8:16:13:6b:3f:c9:89:08:d9:cf:55:0d: ab:df:2b:48:5f:77:d9:b9:5a:0f:9f:4d:9d:a3:b8:14:68:8e: e3:d8:07:46:0a:b8:ba:dd:13:f1:b9:5f:ee:03:3a:b4:b6:97: 1a:e7:15:3a:c2:5a:06:d5:0e:91:1f:bb:f9:76:66:a0:34:aa: cf:47:bf:99:f1:00:95:12:a8:5a:89:8c:df:c6:47:5e:e8:eb: 64:01:a4:5c:e3:0c:c7:34:7f:eb:95:a6:63:2f:1d:2e:71:83: 5c:3f:4d:35:84:89:d0:19:30:49:db:9e:6e:78:4c:da:56:7a: 92:4f:97:dd:ff:fe:85:28:35:d8:8b:e5:ad:50:02:02:0d:1d: 07:ba:8e:53:73:10:7b:fe:b4:ca:bd:09:9e:32:fd:b4:c3:63: aa:c8:0a:2a:41:ac:96:14:80:22:4c:a0:21:9b:02:af:40:e1: 84:04:2f:b5:84:8e:d4:dc:ea:92:39:64:41:21:cc:79:8a:11: ce:4f:fd:15 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcTydKDMS9BjJnBD0UYlWzbGUzJowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDI4MDAwMDAwWhcNMjQxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OGZhMDE4YzRmNDdlZmI0OTY2ZjliNjY2NmEzOTg1ZDNh ZDIxMWU0Njk1MDk0OTZhNDU2NzIzOTRiOWY0OTFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuRapmjveKSf7QqkEt/o8svFL0Qv01BftytPqg0FMbuIpP 1diAsX+MJZ70cQBNYw1ru0/wOIJzlOtXoCobX2TgUPkAQipqX6uKdFbtKM55FSf4 /xwzy1IbIO+Ta/6DRa1euZqt0P1BDMiypVydEHNbb9Xb5CPO6DDWbmzOSsumSn/E wfmzfB65EFD4+ZHYi98ysNz5LU+HfL7ndL6uWnlfpIxyPuCll5QGtQrEPzVluAki u3dLY6fh3phhiqHsQzJ3ViwZOdMLRUPtH/YQNEqp6/yjdRlcHwRvqUksD/4BZKQN B3Ind/fp0mkVr+trUD1UXEh0tbIQq4SB8RD5OFT5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0oSRWKodNVbgx+akt/dPNA6tzBkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhZmZlNWZjLTNjNjYtNDg0My1iNjlmLWU1YTk1ZDUxN2EwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4/DANBgkqhkiG9w0BAQsFAAOCAQEABYMhCFmB44dsPLKtinLfCclRJKd8 bkmvLCK6xTvGnQj14DHlQk+uNHxmxwGcveYCGzSDoC1dFn+uUfVh6BYTaz/JiQjZ z1UNq98rSF932blaD59NnaO4FGiO49gHRgq4ut0T8blf7gM6tLaXGucVOsJaBtUO kR+7+XZmoDSqz0e/mfEAlRKoWomM38ZHXujrZAGkXOMMxzR/65WmYy8dLnGDXD9N NYSJ0BkwSduebnhM2lZ6kk+X3f/+hSg12IvlrVACAg0dB7qOU3MQe/60yr0JnjL9 tMNjqsgKKkGslhSAIkygIZsCr0DhhAQvtYSO1NzqkjlkQSHMeYoRzk/9FQ== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:46 2024 by rpki-client on console-ams.rpki-client.org