$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b5be703-5092-4b56-aefa-f3fd683a3354.roa File: 8b5be703-5092-4b56-aefa-f3fd683a3354.roa (raw, json) Hash identifier: G6PhitwJ7ZSpBlnf9l979asKcJi8xs3QYLZKB7EkA9U= Subject key identifier: 8B:25:32:DE:1F:CA:2F:6A:F0:37:9F:77:13:AE:DD:CC:BB:40:63:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 231AEE75330BB4ABE652AA0C1847B8E160755B39 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b5be703-5092-4b56-aefa-f3fd683a3354.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 15.216.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:1a:ee:75:33:0b:b4:ab:e6:52:aa:0c:18:47:b8:e1:60:75:5b:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=d1d720f42bd05dca50024457eb509280725dece1add22a65bc6077d7184174ae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:59:23:de:99:a5:17:4e:5f:3c:c5:71:26:af: 69:4a:48:84:e8:60:25:fe:68:f9:9c:ac:80:c3:40: a6:02:d2:52:88:f6:8f:c5:89:64:1f:25:c9:72:92: 02:23:d1:92:1e:e0:e4:97:49:bd:b7:a3:0a:a3:0c: b8:95:5f:84:4f:e2:bf:8f:37:f1:0d:1c:c0:03:14: f5:b7:39:d5:54:2a:3b:dd:07:f6:aa:94:c8:ce:11: 40:c2:0b:07:f5:eb:bb:d1:df:4b:0c:3d:6d:bc:a2: e4:31:19:96:17:3b:78:40:cd:f5:94:ff:b8:77:48: b9:e8:34:c2:1b:87:2c:cb:a4:57:7a:85:21:79:15: 5d:4d:c1:ee:2f:bd:4d:c7:b1:41:d3:fa:25:3d:47: 80:05:2d:35:93:12:4c:6c:94:d1:b6:b6:6f:ec:9d: e0:e8:bb:61:ec:98:07:5e:e9:f4:5f:a9:f7:b3:a4: 76:95:e4:82:78:a2:ba:be:60:41:32:c0:99:e3:aa: 17:31:5c:d0:6f:b6:97:3a:e7:e2:69:66:a6:b4:13: d9:d2:16:57:6e:86:a0:63:44:e3:38:de:d2:c9:4c: a3:d2:44:f1:82:8f:78:80:a4:b7:e0:84:47:90:a4: b2:1d:31:9e:5c:36:87:5b:5f:64:d0:84:9f:43:53: e9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:25:32:DE:1F:CA:2F:6A:F0:37:9F:77:13:AE:DD:CC:BB:40:63:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b5be703-5092-4b56-aefa-f3fd683a3354.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.216.0.0/16 Signature Algorithm: sha256WithRSAEncryption c5:37:7e:66:5a:98:c0:92:7f:e4:5a:cb:80:fa:3a:94:06:5a: 0e:90:49:25:4b:57:5f:b7:79:aa:df:40:ff:ce:19:fe:ae:2c: 3f:00:37:a9:1e:f5:90:7e:8a:4c:19:36:c3:c7:f8:6e:fe:f5: f1:bd:c0:b2:0c:16:ca:ca:0d:47:b6:45:85:a7:93:35:a0:3f: d7:dd:4c:3f:65:dc:c5:53:32:32:77:60:14:da:48:80:c2:78: a9:c9:01:7c:8b:a3:07:d6:3a:28:05:8e:32:a1:b2:32:e4:d7: 95:cf:93:db:f5:18:d0:6b:54:33:de:25:b9:71:a4:ae:d8:a7: 59:6d:91:81:62:82:a2:e7:59:6a:75:91:ea:57:2a:c5:b4:39: fa:c5:eb:d6:f0:05:e9:20:9e:4f:26:7a:4f:45:23:1a:ad:ed: 02:ef:19:ed:b5:9b:52:09:58:43:63:6f:7b:cc:fb:47:e3:2c: 66:25:8b:2f:5e:66:9a:8b:5d:5b:e0:17:6d:dd:0f:de:a7:67: 48:bd:ca:ae:84:3d:2d:12:14:f6:15:dc:51:ff:ea:48:44:4e: 91:a5:43:5e:6a:8f:a4:dd:44:88:50:25:33:c7:16:c0:56:9a: a2:0c:c5:35:73:58:63:57:0f:04:a3:09:a0:53:37:67:6c:0a: ee:dc:3a:25 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIxrudTMLtKvmUqoMGEe44WB1WzkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWQ3MjBmNDJiZDA1ZGNhNTAwMjQ0NTdlYjUwOTI4MDcy NWRlY2UxYWRkMjJhNjViYzYwNzdkNzE4NDE3NGFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmWSPemaUXTl88xXEmr2lKSIToYCX+aPmcrIDDQKYC0lKI 9o/FiWQfJclykgIj0ZIe4OSXSb23owqjDLiVX4RP4r+PN/ENHMADFPW3OdVUKjvd B/aqlMjOEUDCCwf167vR30sMPW28ouQxGZYXO3hAzfWU/7h3SLnoNMIbhyzLpFd6 hSF5FV1Nwe4vvU3HsUHT+iU9R4AFLTWTEkxslNG2tm/sneDou2HsmAde6fRfqfez pHaV5IJ4orq+YEEywJnjqhcxXNBvtpc65+JpZqa0E9nSFlduhqBjROM43tLJTKPS RPGCj3iApLfghEeQpLIdMZ5cNodbX2TQhJ9DU+n9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUiyUy3h/KL2rwN593E67dzLtAY30wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiNWJlNzAzLTUwOTItNGI1Ni1hZWZhLWYzZmQ2ODNhMzM1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP2DANBgkqhkiG9w0BAQsFAAOCAQEAxTd+ZlqYwJJ/5FrLgPo6lAZaDpBJ JUtXX7d5qt9A/84Z/q4sPwA3qR71kH6KTBk2w8f4bv718b3AsgwWysoNR7ZFhaeT NaA/191MP2XcxVMyMndgFNpIgMJ4qckBfIujB9Y6KAWOMqGyMuTXlc+T2/UY0GtU M94luXGkrtinWW2RgWKCoudZanWR6lcqxbQ5+sXr1vAF6SCeTyZ6T0UjGq3tAu8Z 7bWbUglYQ2Nve8z7R+MsZiWLL15mmotdW+AXbd0P3qdnSL3KroQ9LRIU9hXcUf/q SEROkaVDXmqPpN1EiFAlM8cWwFaaogzFNXNYY1cPBKMJoFM3Z2wK7tw6JQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:14 2024 by rpki-client on console-fra.rpki-client.org