$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8aebb1d2-ddaa-47cb-8eaa-613a08df9735.roa File: 8aebb1d2-ddaa-47cb-8eaa-613a08df9735.roa (raw, json) Hash identifier: 5DiUlxyRwXsR1tG8uDF+1rbYZkhAF8+ybBcB7/DxkKo= Subject key identifier: BF:53:BE:FD:EC:56:6A:D3:40:85:C5:FD:B2:A2:85:05:80:B5:AD:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FE7B43623C62D72BAD6F6143FC47D13518A9589 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8aebb1d2-ddaa-47cb-8eaa-613a08df9735.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 129.224.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:e7:b4:36:23:c6:2d:72:ba:d6:f6:14:3f:c4:7d:13:51:8a:95:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=22d5b9876cfc58723c2721660df5c565934cd54aad31d4a675da55ad5cc31901, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:64:81:a2:ed:aa:ab:da:b2:25:96:b6:52:0b: c0:96:ba:b5:31:ba:8f:45:ac:7b:fe:f5:6a:eb:20: 46:5e:dc:17:87:7f:61:ec:96:52:92:4d:3f:7e:b0: f9:e5:88:73:06:bb:3d:e1:06:30:42:e7:c4:57:39: 91:a1:c3:4f:db:2c:e8:01:b2:da:46:dd:b7:f5:fe: d6:76:f4:06:22:4b:f6:53:fd:de:8f:36:41:ea:0d: dc:3a:b9:a0:35:de:74:a0:1a:cc:aa:1d:fd:f9:4d: f9:a9:c4:47:f4:af:5a:5d:a9:41:95:d8:11:47:e6: 77:d9:c3:09:12:24:79:6b:f1:da:e8:e2:17:43:fb: d3:4b:65:3c:86:3c:30:32:6d:bc:32:0a:64:49:c5: 39:1a:10:06:bc:c7:d9:45:18:c8:2f:37:da:ed:8e: 25:8d:c7:80:b0:08:c7:09:13:79:52:81:62:b6:52: 0b:66:85:d4:82:05:31:3d:aa:81:8d:b5:9d:2f:bd: 14:9a:5f:a2:d7:c2:ef:f6:7a:54:ba:5d:35:fb:4e: 05:df:2b:fd:09:ff:fc:b9:a4:53:35:dc:8d:57:06: 36:c5:2a:df:f1:35:9e:d1:13:ab:96:29:f0:6c:86: d3:f5:93:c7:f7:a3:94:e7:e5:99:21:31:e9:a4:f7: 08:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:53:BE:FD:EC:56:6A:D3:40:85:C5:FD:B2:A2:85:05:80:B5:AD:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8aebb1d2-ddaa-47cb-8eaa-613a08df9735.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.224.128.0/18 Signature Algorithm: sha256WithRSAEncryption 6e:7b:c5:ee:08:87:82:9f:e4:f7:4e:eb:d3:50:f9:b5:33:05: e6:6e:4c:6c:96:91:c4:a7:12:ce:64:23:2b:50:cf:b0:bf:11: ff:aa:94:f8:51:49:b0:1f:3f:a8:67:de:21:ef:b1:4f:1c:bc: 2b:66:f4:39:30:4c:fb:38:b2:5d:09:8c:3c:78:64:0d:66:4d: 67:25:c5:62:de:ce:56:0a:94:e3:e2:b8:ee:a6:29:9e:35:3b: b7:fe:51:ee:36:01:fd:9b:42:20:87:e6:47:72:41:7b:ce:99: 1f:de:4d:ac:0f:b7:7f:4e:3e:9e:30:d0:50:50:c7:90:62:56: 28:1d:12:01:82:ec:e6:a4:22:a1:cc:74:4e:86:c4:1b:9d:e9: 1c:d4:50:34:14:c0:82:12:ee:c4:35:dc:ed:b6:43:f5:91:0f: d2:5f:23:bd:df:f7:69:40:f4:2a:ba:34:f0:c5:72:14:5d:d4: b2:33:4d:69:4b:e9:cf:6e:1d:a7:92:ca:6a:fc:d4:cb:a5:82: d5:dd:e8:79:c5:e5:7a:c5:63:85:ff:3f:71:51:8b:fc:66:91: ce:27:a7:f2:03:0f:db:e1:55:2b:7b:ec:a9:12:79:48:7a:0e: b3:4b:9e:ac:04:82:6c:c9:d1:17:ad:50:76:72:9d:0b:0d:61: a7:fb:7c:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD+e0NiPGLXK61vYUP8R9E1GKlYkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAyMDAwMDAwWhcNMjQxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmQ1Yjk4NzZjZmM1ODcyM2MyNzIxNjYwZGY1YzU2NTkz NGNkNTRhYWQzMWQ0YTY3NWRhNTVhZDVjYzMxOTAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAZIGi7aqr2rIllrZSC8CWurUxuo9FrHv+9WrrIEZe3BeH f2HsllKSTT9+sPnliHMGuz3hBjBC58RXOZGhw0/bLOgBstpG3bf1/tZ29AYiS/ZT /d6PNkHqDdw6uaA13nSgGsyqHf35TfmpxEf0r1pdqUGV2BFH5nfZwwkSJHlr8dro 4hdD+9NLZTyGPDAybbwyCmRJxTkaEAa8x9lFGMgvN9rtjiWNx4CwCMcJE3lSgWK2 UgtmhdSCBTE9qoGNtZ0vvRSaX6LXwu/2elS6XTX7TgXfK/0J//y5pFM13I1XBjbF Kt/xNZ7RE6uWKfBshtP1k8f3o5Tn5ZkhMemk9whvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUv1O+/exWatNAhcX9sqKFBYC1rTcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhZWJiMWQyLWRkYWEtNDdjYi04ZWFhLTYxM2EwOGRmOTczNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaB4IAwDQYJKoZIhvcNAQELBQADggEBAG57xe4Ih4Kf5PdO69NQ+bUzBeZu TGyWkcSnEs5kIytQz7C/Ef+qlPhRSbAfP6hn3iHvsU8cvCtm9DkwTPs4sl0JjDx4 ZA1mTWclxWLezlYKlOPiuO6mKZ41O7f+Ue42Af2bQiCH5kdyQXvOmR/eTawPt39O Pp4w0FBQx5BiVigdEgGC7OakIqHMdE6GxBud6RzUUDQUwIIS7sQ13O22Q/WRD9Jf I73f92lA9Cq6NPDFchRd1LIzTWlL6c9uHaeSymr81MulgtXd6HnF5XrFY4X/P3FR i/xmkc4np/IDD9vhVSt77KkSeUh6DrNLnqwEgmzJ0RetUHZynQsNYaf7fLI= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:14 2024 by rpki-client on console-fra.rpki-client.org