$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e068ccb-938a-469b-acfa-b7ef7943ad51.roa File: 8e068ccb-938a-469b-acfa-b7ef7943ad51.roa (raw, json) Hash identifier: CF7Y7G7+Gh/bXO7JXu1jgc8x/viFnZLinKGyerQORsc= Subject key identifier: 1C:DC:31:B0:9A:48:40:44:9F:DA:2E:FD:A4:68:9A:05:16:0C:B5:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36352AE946A55652CD5D4105ED332528F65A202F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e068ccb-938a-469b-acfa-b7ef7943ad51.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.198.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:35:2a:e9:46:a5:56:52:cd:5d:41:05:ed:33:25:28:f6:5a:20:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=3d0966fd37e7e1ac1aea541acedc287e9763a4aa7d088b93eb0b6404bad963eb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ca:32:be:d8:4c:29:f7:34:d0:cf:ba:d6:99: 56:b5:e1:94:78:d5:05:dd:c5:c1:45:4e:c1:0f:63: 6e:a5:8d:f8:85:17:40:9b:e7:a9:05:76:57:e2:a1: 41:43:8e:7c:2d:63:97:bb:a1:eb:bc:ab:3d:1d:4b: 42:8a:96:cb:97:af:b5:71:fe:ee:34:fe:4a:0b:8a: b6:a5:ab:25:c7:6c:52:bf:52:63:c1:44:99:4e:86: 8a:49:eb:be:6c:c6:20:23:8e:91:c2:5b:18:16:b7: af:bc:44:15:d7:29:0c:01:b9:21:c6:d1:39:a5:b0: 45:46:56:c2:ee:53:c9:47:65:19:5a:7b:95:76:11: 60:8d:05:17:76:91:78:a2:02:af:0f:5d:e1:4e:4d: d7:c3:ec:3c:e2:22:d8:c4:10:f9:61:9f:b6:27:30: 69:6b:a9:bb:c4:00:c6:5f:4c:cf:25:b2:47:14:b7: 81:ec:96:77:25:8a:3b:c1:47:37:77:4a:14:83:4b: 6b:31:b0:40:5f:a8:a8:9d:9a:08:1f:6b:d7:46:83: 47:57:c6:22:12:79:a3:83:85:f1:2c:59:1f:da:fc: bd:49:ee:dc:ab:82:99:9b:17:4d:18:85:09:e0:c2: 2d:6a:6d:b3:d4:5d:ce:47:ad:6f:6d:cd:c6:b8:c0: 38:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:DC:31:B0:9A:48:40:44:9F:DA:2E:FD:A4:68:9A:05:16:0C:B5:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e068ccb-938a-469b-acfa-b7ef7943ad51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.198.0.0/16 Signature Algorithm: sha256WithRSAEncryption 46:d2:22:eb:45:31:0f:cb:49:a1:d1:5a:38:fd:56:06:2d:29: 78:5d:60:d6:81:a4:52:37:86:15:c4:e0:80:d5:ec:82:dc:d3: c5:d5:b5:cf:8a:0a:c8:01:6a:32:b9:e6:67:f5:79:08:0b:49: b7:4e:59:a1:5c:84:97:10:55:57:26:a7:5e:75:2d:81:d3:b9: 21:c2:f1:f6:28:43:a2:ed:94:0f:f9:a3:64:f7:fd:ba:9c:b8: d2:9d:c2:e5:40:5b:8f:3a:99:32:c3:96:27:c0:ee:a5:a1:b8: bf:73:8d:5d:73:be:83:5f:43:dc:24:83:ed:ab:81:64:76:f4: 51:55:ca:a0:12:42:70:1c:36:76:73:90:12:13:4d:94:19:52: 9e:22:83:66:b0:f8:a4:4d:02:89:b0:34:3d:91:36:a2:df:70: 52:0f:d0:0f:a7:98:c1:fe:83:91:9f:9a:61:b7:d4:0f:af:f3: 27:47:7d:40:03:ab:ff:69:89:1d:05:7a:73:01:9b:47:0d:bf: 96:be:53:6a:74:b7:33:2f:5f:50:65:92:67:c1:b5:1b:c6:9c: ae:80:25:c2:fb:28:12:d0:d8:8c:14:db:12:bb:90:b9:b2:f0: 53:80:a3:9b:6d:04:dd:57:d4:c8:09:98:1b:34:56:53:e6:8c: 26:c1:aa:39 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNjUq6UalVlLNXUEF7TMlKPZaIC8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDA5NjZmZDM3ZTdlMWFjMWFlYTU0MWFjZWRjMjg3ZTk3 NjNhNGFhN2QwODhiOTNlYjBiNjQwNGJhZDk2M2ViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkyjK+2Ewp9zTQz7rWmVa14ZR41QXdxcFFTsEPY26ljfiF F0Cb56kFdlfioUFDjnwtY5e7oeu8qz0dS0KKlsuXr7Vx/u40/koLiralqyXHbFK/ UmPBRJlOhopJ675sxiAjjpHCWxgWt6+8RBXXKQwBuSHG0TmlsEVGVsLuU8lHZRla e5V2EWCNBRd2kXiiAq8PXeFOTdfD7DziItjEEPlhn7YnMGlrqbvEAMZfTM8lskcU t4HslnclijvBRzd3ShSDS2sxsEBfqKidmggfa9dGg0dXxiISeaODhfEsWR/a/L1J 7tyrgpmbF00YhQngwi1qbbPUXc5HrW9tzca4wDhJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHNwxsJpIQESf2i79pGiaBRYMtWQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlMDY4Y2NiLTkzOGEtNDY5Yi1hY2ZhLWI3ZWY3OTQzYWQ1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQxjANBgkqhkiG9w0BAQsFAAOCAQEARtIi60UxD8tJodFaOP1WBi0peF1g 1oGkUjeGFcTggNXsgtzTxdW1z4oKyAFqMrnmZ/V5CAtJt05ZoVyElxBVVyanXnUt gdO5IcLx9ihDou2UD/mjZPf9upy40p3C5UBbjzqZMsOWJ8DupaG4v3ONXXO+g19D 3CSD7auBZHb0UVXKoBJCcBw2dnOQEhNNlBlSniKDZrD4pE0CibA0PZE2ot9wUg/Q D6eYwf6DkZ+aYbfUD6/zJ0d9QAOr/2mJHQV6cwGbRw2/lr5TanS3My9fUGWSZ8G1 G8acroAlwvsoEtDYjBTbEruQubLwU4Cjm20E3VfUyAmYGzRWU+aMJsGqOQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:15 2024 by rpki-client on console-fra.rpki-client.org