$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a3584f7-041e-49fc-bc83-59d995bec280.roa File: 8a3584f7-041e-49fc-bc83-59d995bec280.roa (raw, json) Hash identifier: jVXqlHU8/+Ar/AFQwVCh6/jGjp/HQTXRAshrFD3GVhw= Subject key identifier: 64:86:9A:CB:89:DC:24:AD:DE:41:09:17:46:0B:3E:57:AD:22:84:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6ED01BC1AB527152BEABBDD8D26A9A2BD8D2E1E7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a3584f7-041e-49fc-bc83-59d995bec280.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff7:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:d0:1b:c1:ab:52:71:52:be:ab:bd:d8:d2:6a:9a:2b:d8:d2:e1:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=aa68a8dbdd8b108d1019e0a18f890b560814cf03cd8282e3345c412755ad209a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:46:62:16:04:bd:eb:fc:09:ab:dd:c5:3c:e8: 58:0e:dd:48:e3:53:8d:8e:ea:09:41:88:91:ea:4c: 15:8d:e7:a9:e7:55:c7:4e:06:10:c7:7f:38:04:05: 12:84:01:5c:e2:ed:a5:3d:30:d7:b2:67:06:a1:70: 69:00:78:10:42:80:10:c5:05:49:69:b8:0c:85:b7: d8:92:30:e1:64:6a:14:7e:7e:20:b0:4f:5c:3e:6f: 6e:59:cc:ec:5f:9c:95:94:7e:28:4d:1c:d8:29:35: 7c:3e:07:cc:25:6e:cd:e4:e5:be:e4:a5:fa:00:aa: a7:bd:7e:04:d4:95:62:71:55:ec:d1:2d:0b:c6:30: 4d:ac:5d:5c:d4:84:7a:47:2f:7a:d0:1c:a4:5a:3d: 21:b6:2d:2c:bd:91:27:94:aa:ba:29:88:c8:23:ce: c7:d4:63:a2:2d:7d:10:43:8d:d0:31:5a:7c:08:01: 9b:dd:06:d8:5b:1a:76:f8:25:a4:8a:52:96:34:b8: 9d:d6:55:47:8c:4a:81:ff:d7:cf:42:d4:ce:20:d8: 1e:3a:62:e2:c1:0f:36:b7:12:98:14:23:7e:5a:3b: a3:0a:2b:be:c5:45:13:a4:ad:95:58:56:bc:48:7d: bb:57:b2:33:df:96:44:1a:ae:07:a5:84:bd:7e:05: ef:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:86:9A:CB:89:DC:24:AD:DE:41:09:17:46:0B:3E:57:AD:22:84:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a3584f7-041e-49fc-bc83-59d995bec280.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:2000::/40 Signature Algorithm: sha256WithRSAEncryption a4:05:8b:f2:7c:24:50:9f:cb:40:5a:04:32:27:66:36:45:1b: d8:cd:2a:76:c9:de:d5:2b:05:fe:e3:a3:43:3c:49:ac:dc:f5: 92:6d:78:0e:01:48:55:8e:9a:c1:40:14:82:4d:d0:41:cc:bd: d9:52:0d:1a:cf:70:90:75:16:27:72:85:f3:90:d8:97:9f:f5: 00:de:55:3a:8d:ed:f6:f8:76:83:99:33:db:62:7e:a8:10:2d: d2:c0:ac:dd:70:9c:40:e2:2c:d9:9e:1d:72:44:aa:e0:0a:67: a8:28:5f:cd:9d:52:ab:b2:1e:bb:b9:58:39:c4:82:c5:ae:38: ee:d5:75:c0:22:2e:89:ac:ae:91:75:83:53:f3:95:e3:e3:ad: f1:e5:5d:81:d0:40:2a:8d:3d:1c:8e:0a:6e:1e:93:4b:8b:59: 05:1f:de:6d:da:3e:d9:d1:53:c6:85:3d:8f:f5:fe:82:4f:16: be:24:b7:27:f6:d4:02:c4:47:9c:89:77:0c:16:40:55:5a:d6: 0a:5a:bd:e5:00:50:4f:27:06:be:3c:04:34:4c:f4:7d:08:f0: c9:95:7e:2c:de:83:1f:b3:97:7a:ed:94:ff:06:8d:9b:49:35: 4a:85:6b:f0:4e:d6:2d:bc:74:09:25:5d:5d:3d:43:f8:f8:41: 61:12:47:46 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbtAbwatScVK+q73Y0mqaK9jS4ecwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTY4YThkYmRkOGIxMDhkMTAxOWUwYTE4Zjg5MGI1NjA4 MTRjZjAzY2Q4MjgyZTMzNDVjNDEyNzU1YWQyMDlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBRmIWBL3r/Amr3cU86FgO3UjjU42O6glBiJHqTBWN56nn VcdOBhDHfzgEBRKEAVzi7aU9MNeyZwahcGkAeBBCgBDFBUlpuAyFt9iSMOFkahR+ fiCwT1w+b25ZzOxfnJWUfihNHNgpNXw+B8wlbs3k5b7kpfoAqqe9fgTUlWJxVezR LQvGME2sXVzUhHpHL3rQHKRaPSG2LSy9kSeUqropiMgjzsfUY6ItfRBDjdAxWnwI AZvdBthbGnb4JaSKUpY0uJ3WVUeMSoH/189C1M4g2B46YuLBDza3EpgUI35aO6MK K77FRROkrZVYVrxIfbtXsjPflkQargelhL1+Be8hAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUZIaay4ncJK3eQQkXRgs+V60ihLgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhMzU4NGY3LTA0MWUtNDlmYy1iYzgzLTU5ZDk5NWJlYzI4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/3IDANBgkqhkiG9w0BAQsFAAOCAQEApAWL8nwkUJ/LQFoEMidmNkUb 2M0qdsne1SsF/uOjQzxJrNz1km14DgFIVY6awUAUgk3QQcy92VINGs9wkHUWJ3KF 85DYl5/1AN5VOo3t9vh2g5kz22J+qBAt0sCs3XCcQOIs2Z4dckSq4ApnqChfzZ1S q7Ieu7lYOcSCxa447tV1wCIuiayukXWDU/OV4+Ot8eVdgdBAKo09HI4Kbh6TS4tZ BR/ebdo+2dFTxoU9j/X+gk8WviS3J/bUAsRHnIl3DBZAVVrWClq95QBQTycGvjwE NEz0fQjwyZV+LN6DH7OXeu2U/waNm0k1SoVr8E7WLbx0CSVdXT1D+PhBYRJHRg== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:14 2024 by rpki-client on console-fra.rpki-client.org