$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811b057a-b7d8-480e-a87f-4479c3441f45.roa File: 811b057a-b7d8-480e-a87f-4479c3441f45.roa (raw, json) Hash identifier: LQCJ/L+cblw6696Sw46+wT/A8iynVQic97QFJ2DiCvs= Subject key identifier: C7:1A:95:83:EC:92:E3:38:D0:32:74:B7:C4:E7:0D:1F:6D:AC:BD:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09113697CF377F9240BA7DECA6863A1401576CA7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811b057a-b7d8-480e-a87f-4479c3441f45.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 199.61.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:11:36:97:cf:37:7f:92:40:ba:7d:ec:a6:86:3a:14:01:57:6c:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=6d7087f6e4e2c2ac23e3e4d3b86d1dc613a969eaca4d6ba82989d30720b8e491, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:b0:0b:60:98:d0:da:df:01:e0:7e:df:e1:a0: c9:5b:14:c0:35:7b:78:17:5e:53:6f:e0:38:8c:c7: 4b:99:e0:15:28:03:39:a9:a1:8a:0e:d1:fa:c2:02: 10:dc:49:95:4c:b2:1d:e1:cd:c8:65:8d:f0:be:d2: d6:cd:55:5a:03:32:59:ef:20:ef:7d:5a:da:2b:b3: cb:e3:2b:67:10:6c:ea:49:72:08:cd:16:4b:fe:9f: fb:f3:b4:b7:c4:11:70:fb:c1:19:64:0b:da:82:7f: eb:2b:56:e2:0a:61:5a:fc:56:da:b7:d8:7a:5e:5c: 40:b7:7c:2e:20:21:47:b2:f2:c0:13:58:5c:65:03: 30:9c:a6:ae:61:3a:79:ce:07:58:b7:db:98:3d:76: 4a:d1:84:7e:e2:18:b0:c8:2b:96:98:85:e0:4d:fb: 3c:75:b8:6a:24:64:f3:9d:7e:a4:29:d8:aa:ae:e8: ed:68:94:ab:d0:07:9a:48:d2:09:de:fe:7c:3a:6c: ff:f6:a9:82:31:1d:40:93:2b:82:81:5a:86:c9:1c: 6c:b7:64:ba:3e:52:cc:f5:b5:98:a7:45:7b:12:a6: 32:85:31:d1:cd:80:e2:4c:23:94:c7:ad:99:45:59: 51:66:34:99:a5:3e:88:4e:a6:f6:15:9d:d3:53:1c: 84:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:1A:95:83:EC:92:E3:38:D0:32:74:B7:C4:E7:0D:1F:6D:AC:BD:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811b057a-b7d8-480e-a87f-4479c3441f45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.61.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2b:c0:11:ab:6e:66:9e:7f:cb:e8:ab:c9:2d:f0:d0:7d:2d:30: 09:1d:bf:70:fc:08:61:63:ff:9a:0f:71:57:43:9c:57:13:cf: ac:5b:10:65:e0:ed:e4:73:dc:d9:2b:7f:ed:11:44:9e:4a:0d: 3b:7a:5e:ff:4a:3b:66:31:57:97:ce:17:7c:b9:92:97:9b:ba: 01:77:11:c3:12:83:5e:95:e7:a7:88:7d:04:cd:1f:44:f5:7e: e7:69:de:dd:7b:fc:69:df:f7:99:39:cc:9c:c8:15:6d:4a:80: 6f:48:0d:a6:9f:f0:1d:7f:e9:f0:61:e3:b7:57:75:87:f8:a0: a0:c2:94:fd:39:3c:5d:d8:86:95:b1:3e:53:b3:a5:8f:49:2e: 0e:8b:fc:7a:1b:7b:55:3d:4c:03:d9:45:17:0d:65:28:0a:ec: 93:2c:da:01:22:8f:5f:5c:cf:7f:0a:ed:11:3f:f4:03:c3:eb: 3c:ae:7a:31:0b:28:73:90:ed:e5:1f:23:8c:04:77:31:28:c2: e4:db:14:c8:bf:ad:6e:c7:b0:94:ea:84:3d:7b:b6:37:d8:1b: ef:3e:98:2b:b3:67:6a:0b:99:2e:db:a2:48:88:92:89:c3:42: 72:83:ae:db:a8:37:bd:40:04:a5:29:68:f0:97:08:5e:10:d2: 35:33:de:1b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCRE2l883f5JAun3spoY6FAFXbKcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDcwODdmNmU0ZTJjMmFjMjNlM2U0ZDNiODZkMWRjNjEz YTk2OWVhY2E0ZDZiYTgyOTg5ZDMwNzIwYjhlNDkxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMsAtgmNDa3wHgft/hoMlbFMA1e3gXXlNv4DiMx0uZ4BUo AzmpoYoO0frCAhDcSZVMsh3hzchljfC+0tbNVVoDMlnvIO99Wtors8vjK2cQbOpJ cgjNFkv+n/vztLfEEXD7wRlkC9qCf+srVuIKYVr8Vtq32HpeXEC3fC4gIUey8sAT WFxlAzCcpq5hOnnOB1i325g9dkrRhH7iGLDIK5aYheBN+zx1uGokZPOdfqQp2Kqu 6O1olKvQB5pI0gne/nw6bP/2qYIxHUCTK4KBWobJHGy3ZLo+Usz1tZinRXsSpjKF MdHNgOJMI5THrZlFWVFmNJmlPohOpvYVndNTHISPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxxqVg+yS4zjQMnS3xOcNH22svSswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxMWIwNTdhLWI3ZDgtNDgwZS1hODdmLTQ0NzljMzQ0MWY0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDHPTANBgkqhkiG9w0BAQsFAAOCAQEAK8ARq25mnn/L6KvJLfDQfS0wCR2/ cPwIYWP/mg9xV0OcVxPPrFsQZeDt5HPc2St/7RFEnkoNO3pe/0o7ZjFXl84XfLmS l5u6AXcRwxKDXpXnp4h9BM0fRPV+52ne3Xv8ad/3mTnMnMgVbUqAb0gNpp/wHX/p 8GHjt1d1h/igoMKU/Tk8XdiGlbE+U7Olj0kuDov8eht7VT1MA9lFFw1lKArskyza ASKPX1zPfwrtET/0A8PrPK56MQsoc5Dt5R8jjAR3MSjC5NsUyL+tbsewlOqEPXu2 N9gb7z6YK7NnaguZLtuiSIiSicNCcoOu26g3vUAEpSlo8JcIXhDSNTPeGw== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:12 2024 by rpki-client on console-fra.rpki-client.org