$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa File: 86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa (raw, json) Hash identifier: FtioYpoWLfSWpFgs8BFNujjdMkMhld9fVbK00Ty4PwQ= Subject key identifier: 2C:1F:E4:D5:73:7E:CE:CD:36:1E:9D:91:A6:DC:94:F1:32:B4:4D:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67E8693759006473D161823BE35C8202184674AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f60:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:e8:69:37:59:00:64:73:d1:61:82:3b:e3:5c:82:02:18:46:74:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=e76eaa139befa87696c91e401bde2f6e5857803597704b90079d9bba67270ff1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:02:5d:91:a1:10:a7:cf:dc:ed:5a:4d:b7: cc:47:cf:9c:c7:92:ef:20:d5:13:74:03:dd:bd:99: f9:91:fb:bf:e9:f4:8e:d0:0f:a5:db:1c:15:ab:b5: 85:67:a9:e8:a9:71:b5:19:06:19:ba:bc:09:db:a2: b2:e8:46:15:6f:df:10:01:7f:c9:79:17:9b:9e:05: bf:fa:e9:7f:e1:1a:ff:b2:80:66:94:f1:d9:e4:c9: ae:23:2f:f6:3d:14:92:41:98:65:a9:21:b5:47:48: 1b:96:ec:35:ea:b0:6d:6c:9e:98:62:b7:b1:e5:bc: b0:89:8d:00:17:46:2a:1a:d4:b4:ee:d1:96:31:fe: 04:cc:05:13:2d:cb:5c:6a:1a:92:d2:9e:58:9c:53: 4a:a1:bd:9c:1d:20:aa:dc:4f:b8:81:a6:99:15:14: 16:82:ad:7d:df:9f:46:d7:49:4b:09:ca:a3:39:44: 5b:b6:df:cf:b3:5f:87:b6:43:8c:4d:ec:07:c3:a3: 48:0f:05:df:e9:f5:4e:71:aa:d2:de:93:c3:9a:85: 57:fa:32:d8:56:d1:bc:5f:df:d1:ca:07:97:ca:59: b7:e1:09:c1:86:ed:4c:5a:29:e8:05:cd:06:33:2d: 64:40:71:5a:70:35:61:83:eb:b5:5c:47:35:46:c7: 3b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1F:E4:D5:73:7E:CE:CD:36:1E:9D:91:A6:DC:94:F1:32:B4:4D:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86c15cc4-15de-4fc4-80fd-a97ace5c7e52.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:4000::/40 Signature Algorithm: sha256WithRSAEncryption 39:2e:9b:99:62:aa:e8:5d:9a:67:33:98:02:37:e1:a8:10:e3: bc:94:5e:67:73:63:d5:04:2b:a2:3c:e2:8c:96:6a:a3:1a:a6: 15:dd:54:26:61:22:2a:ee:b4:0f:9f:84:9a:92:ee:14:69:b9: 32:f9:5b:72:d9:53:ab:99:b1:50:da:31:ea:d2:92:3e:48:52: bd:e6:88:4d:e7:c7:e3:b1:bf:68:6d:fd:b6:70:cd:c5:8b:db: 5b:44:05:b6:04:32:28:d7:ad:01:0d:ad:8d:e8:03:bc:6a:9e: c3:b7:fe:a1:4e:ab:b2:c8:69:11:7c:cd:1d:a5:a4:5e:3e:60: be:bc:aa:eb:a5:ac:1c:cc:b6:26:3b:f4:70:e5:db:fc:bc:34: a3:ca:dd:b6:51:f9:53:42:55:14:6a:e6:c7:fa:f7:76:c5:7a: f6:66:70:4e:da:be:8f:a8:9f:fb:48:db:0c:5a:62:aa:68:6c: 1e:4a:f2:e4:1b:24:47:d4:50:d0:6d:df:c5:78:68:0f:cb:02: 4b:f3:99:cd:36:9b:3e:45:6a:70:59:b7:f7:92:b3:5b:b0:fe: f8:27:75:c8:0e:d9:23:76:70:9d:03:24:30:be:ac:66:a9:0d: 56:96:30:29:1d:40:4b:04:be:94:c7:2e:94:01:77:02:bc:83: 80:67:2c:06 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZ+hpN1kAZHPRYYI741yCAhhGdKowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzZlYWExMzliZWZhODc2OTZjOTFlNDAxYmRlMmY2ZTU4 NTc4MDM1OTc3MDRiOTAwNzlkOWJiYTY3MjcwZmYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4MQJdkaEQp8/c7VpNt8xHz5zHku8g1RN0A929mfmR+7/p 9I7QD6XbHBWrtYVnqeipcbUZBhm6vAnborLoRhVv3xABf8l5F5ueBb/66X/hGv+y gGaU8dnkya4jL/Y9FJJBmGWpIbVHSBuW7DXqsG1snphit7HlvLCJjQAXRioa1LTu 0ZYx/gTMBRMty1xqGpLSnlicU0qhvZwdIKrcT7iBppkVFBaCrX3fn0bXSUsJyqM5 RFu238+zX4e2Q4xN7AfDo0gPBd/p9U5xqtLek8OahVf6MthW0bxf39HKB5fKWbfh CcGG7UxaKegFzQYzLWRAcVpwNWGD67VcRzVGxzs7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULB/k1XN+zs02Hp2RptyU8TK0TQgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg2YzE1Y2M0LTE1ZGUtNGZjNC04MGZkLWE5N2FjZTVjN2U1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gQDANBgkqhkiG9w0BAQsFAAOCAQEAOS6bmWKq6F2aZzOYAjfhqBDj vJReZ3Nj1QQrojzijJZqoxqmFd1UJmEiKu60D5+EmpLuFGm5MvlbctlTq5mxUNox 6tKSPkhSveaITefH47G/aG39tnDNxYvbW0QFtgQyKNetAQ2tjegDvGqew7f+oU6r sshpEXzNHaWkXj5gvryq66WsHMy2Jjv0cOXb/Lw0o8rdtlH5U0JVFGrmx/r3dsV6 9mZwTtq+j6if+0jbDFpiqmhsHkry5BskR9RQ0G3fxXhoD8sCS/OZzTabPkVqcFm3 95KzW7D++Cd1yA7ZI3ZwnQMkML6sZqkNVpYwKR1ASwS+lMculAF3AryDgGcsBg== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:15 2024 by rpki-client on console-ams.rpki-client.org