$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa File: 7f4aece0-320f-46a2-ae45-69cd23b5c314.roa (raw, json) Hash identifier: 2PY/m/+s9cBxdJLvWsN0Wa0xJTGT8xNf8O22zyQGpr4= Subject key identifier: 6E:52:2E:29:70:AC:94:9C:45:63:27:B6:3E:83:8A:E5:39:70:59:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3028804F30ADE70AE9AC20D10D778AB8B990E9C9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 149.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:28:80:4f:30:ad:e7:0a:e9:ac:20:d1:0d:77:8a:b8:b9:90:e9:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=9d1e47db2786d2b4c411d42fe16a9a87b6f24a4a840990c5a916507e2342339f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:03:85:52:dd:02:4b:de:1e:95:6e:5e:8c:03: 51:0e:fd:d8:a7:c8:09:30:b0:d7:28:fb:8f:78:53: 74:d3:f5:80:44:e6:93:ca:2a:01:73:53:ca:35:2d: 4a:77:a3:d5:cd:51:c0:e2:ab:6c:3a:58:88:4c:60: f4:5e:ce:39:f5:aa:e2:7a:be:0a:b3:b2:7e:10:e4: af:db:93:a1:0b:e9:e7:f8:85:fc:3b:31:ee:a4:38: ba:7c:59:5d:6c:e0:bd:83:05:66:b7:46:1f:d2:e9: f4:dc:7c:e9:47:8e:84:3d:a2:18:29:7a:44:f9:28: 52:50:60:e3:5f:88:9c:56:1c:69:fe:95:22:a4:a4: 4b:94:80:f8:8d:09:bd:3b:56:a8:c6:8b:95:f6:b1: 0e:35:96:f6:89:54:33:cb:dc:87:3b:53:54:d6:3a: 15:f1:b1:01:01:ba:27:7b:b5:41:ad:bc:07:b0:cc: da:7d:59:ee:62:6a:5d:de:1d:74:02:3c:fc:26:e7: 9b:39:f0:ce:2c:ba:e9:6f:dd:59:65:10:76:78:04: 1e:61:42:08:92:1f:05:51:5a:32:34:69:f1:4f:6e: eb:28:51:bd:2a:b6:08:c3:c9:2d:4a:96:99:42:81: 85:97:ca:93:fa:f4:d9:d8:36:fb:91:42:8e:26:72: 0e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:52:2E:29:70:AC:94:9C:45:63:27:B6:3E:83:8A:E5:39:70:59:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:ce:20:70:47:0a:c8:36:d8:bb:ff:af:c2:65:19:c9:ba:76: c9:e7:5c:72:d6:4d:f2:0a:b9:63:ac:3a:12:d4:02:64:93:d7: 8a:51:56:6b:7c:49:86:45:d9:dc:3d:21:12:43:94:6d:a3:98: 39:bd:3f:0b:8b:f5:1a:18:39:c3:47:e0:7a:04:4a:03:5a:28: e1:a7:50:85:ed:c7:68:9f:f2:8f:9e:4a:54:a7:e5:a6:c9:89: d0:33:26:8e:f8:1b:e3:53:8c:56:44:9c:96:9f:82:cc:81:a2: af:78:35:23:dd:cb:6f:8e:2c:88:aa:6f:a3:49:77:64:3b:5c: 18:05:29:ae:bb:17:1d:17:9f:8e:77:14:7e:ea:ba:cd:a8:0b: 69:04:7e:21:67:34:20:47:6a:d1:d1:24:94:81:8d:3f:3a:cf: ac:12:0e:1c:dd:fa:50:72:65:d2:da:a7:c7:68:04:d2:9c:2f: cb:55:9b:b2:d2:d7:ed:f1:4e:c3:13:e8:f4:3f:83:48:c0:44: 36:b8:b9:bc:db:d7:81:a3:c4:80:aa:74:44:58:fc:70:b3:bd: 49:e0:12:ef:b5:58:3b:06:6b:bf:c7:95:e5:68:ac:3c:df:e8: 29:1e:fc:fe:ed:0d:33:39:9e:37:2c:6a:40:f7:db:ec:1c:51: 6c:44:9a:f7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMCiATzCt5wrprCDRDXeKuLmQ6ckwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAyMDAwMDAwWhcNMjQxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDFlNDdkYjI3ODZkMmI0YzQxMWQ0MmZlMTZhOWE4N2I2 ZjI0YTRhODQwOTkwYzVhOTE2NTA3ZTIzNDIzMzlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7A4VS3QJL3h6Vbl6MA1EO/dinyAkwsNco+494U3TT9YBE 5pPKKgFzU8o1LUp3o9XNUcDiq2w6WIhMYPRezjn1quJ6vgqzsn4Q5K/bk6EL6ef4 hfw7Me6kOLp8WV1s4L2DBWa3Rh/S6fTcfOlHjoQ9ohgpekT5KFJQYONfiJxWHGn+ lSKkpEuUgPiNCb07VqjGi5X2sQ41lvaJVDPL3Ic7U1TWOhXxsQEBuid7tUGtvAew zNp9We5ial3eHXQCPPwm55s58M4suulv3VllEHZ4BB5hQgiSHwVRWjI0afFPbuso Ub0qtgjDyS1KlplCgYWXypP69NnYNvuRQo4mcg4lAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUblIuKXCslJxFYye2PoOK5TlwWd4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdmNGFlY2UwLTMyMGYtNDZhMi1hZTQ1LTY5Y2QyM2I1YzMxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVvDANBgkqhkiG9w0BAQsFAAOCAQEAHM4gcEcKyDbYu/+vwmUZybp2yedc ctZN8gq5Y6w6EtQCZJPXilFWa3xJhkXZ3D0hEkOUbaOYOb0/C4v1Ghg5w0fgegRK A1oo4adQhe3HaJ/yj55KVKflpsmJ0DMmjvgb41OMVkSclp+CzIGir3g1I93Lb44s iKpvo0l3ZDtcGAUprrsXHRefjncUfuq6zagLaQR+IWc0IEdq0dEklIGNPzrPrBIO HN36UHJl0tqnx2gE0pwvy1WbstLX7fFOwxPo9D+DSMBENri5vNvXgaPEgKp0RFj8 cLO9SeAS77VYOwZrv8eV5WisPN/oKR78/u0NMzmeNyxqQPfb7BxRbESa9w== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:14 2024 by rpki-client on console-ams.rpki-client.org