$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f1a410b-4fcb-46b7-92eb-4e2730e01468.roa File: 8f1a410b-4fcb-46b7-92eb-4e2730e01468.roa (raw, json) Hash identifier: 7Y/tRkFBR9FsnEdeS9BeVx1JuEywaG8whCA8+8fgOmI= Subject key identifier: 21:91:7E:B9:E5:79:59:35:13:CD:44:89:E9:32:4C:C4:44:CE:F7:26 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 785AA89D6ADC2D6E43C1712D55997C30724F7088 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f1a410b-4fcb-46b7-92eb-4e2730e01468.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 204.126.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:5a:a8:9d:6a:dc:2d:6e:43:c1:71:2d:55:99:7c:30:72:4f:70:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=ee86986cc55255f9b0544c9627a462ac96bf155153b25f87d5b1a7b415384a63, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5c:0a:41:d8:9f:36:a7:a9:53:53:2a:c0:87: d2:76:c4:1a:af:d9:e0:9b:33:e8:f4:81:90:bc:97: 9e:66:1d:bc:c6:53:d5:a1:70:bc:b5:f2:bc:b3:d9: ac:07:8a:4d:0f:3e:87:96:a3:8d:4d:f9:01:40:70: 86:3f:81:22:50:70:40:fd:0f:7a:40:50:5d:7c:ea: 42:e5:74:b0:6c:75:be:e3:25:34:c1:20:44:18:1f: 86:4a:2b:49:1a:61:f0:82:7f:85:c8:ba:f0:78:d0: dd:d8:17:fe:5c:af:ba:17:97:4d:e3:e5:ca:99:11: 72:24:47:f4:38:f2:23:d1:0b:b7:65:1e:c4:82:0b: 6a:8e:16:68:39:3b:1d:4c:60:ba:ac:ea:2e:fd:29: 21:92:42:8d:41:80:5a:f8:89:3a:09:d4:7f:fe:5b: 56:f9:0b:7e:31:1e:d4:38:d1:c9:88:44:0d:8e:81: 1d:f1:65:cb:ee:25:ba:b0:db:bd:7d:10:b2:06:34: 2e:f9:c0:08:71:2b:5f:ad:99:79:e2:d2:10:74:ef: 57:17:d4:c6:9f:f5:ac:19:a8:38:1c:bf:a8:57:16: 53:3a:80:21:c3:1d:c1:c1:bc:c7:e4:6e:5f:42:dd: 4a:02:16:66:c2:8c:f5:0d:bc:c3:d8:43:bc:84:39: c0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:91:7E:B9:E5:79:59:35:13:CD:44:89:E9:32:4C:C4:44:CE:F7:26 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f1a410b-4fcb-46b7-92eb-4e2730e01468.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.126.25.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:1d:04:a9:e6:05:96:a6:0f:cc:f6:3c:78:94:61:1b:4d:cd: cd:ef:9a:ba:49:17:17:3e:3c:3a:f5:92:14:1f:e7:50:5c:e2: ea:52:e9:e0:cd:b4:7f:9f:05:68:e4:24:19:ad:fa:c7:14:87: b1:5e:4b:44:6f:2c:3c:36:83:70:4a:d6:40:fa:ff:75:02:bd: d9:4e:93:ce:16:1d:38:59:a4:95:7f:c4:06:2a:8b:01:df:f0: 0f:ae:7b:07:e8:55:77:eb:55:92:26:59:e3:cb:3c:b7:fe:2f: 26:96:58:53:2d:5b:8c:5b:40:7c:65:fa:8a:a1:69:b8:23:dd: 39:41:7e:16:92:19:41:84:b0:0d:de:ef:1f:9a:e1:36:6b:e1: 98:9f:2d:69:93:66:1a:0e:ec:2f:52:e8:3e:13:f7:b4:c1:ab: 38:f0:d4:16:ee:5c:1e:75:76:74:81:d2:47:97:d8:77:9c:fb: c1:96:ac:3d:a1:e5:0b:f4:9d:f2:d8:86:6f:9c:2f:54:36:0f: d0:84:26:c3:f0:49:80:18:32:f8:4b:37:6b:fc:f9:c6:4d:18: 68:6b:95:5c:8d:d4:cd:40:46:74:4c:35:32:c6:2f:ff:88:d5: c7:49:c3:a8:9a:7b:01:58:e7:11:77:c9:05:b4:76:73:05:eb: 17:8a:89:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeFqonWrcLW5DwXEtVZl8MHJPcIgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTg2OTg2Y2M1NTI1NWY5YjA1NDRjOTYyN2E0NjJhYzk2 YmYxNTUxNTNiMjVmODdkNWIxYTdiNDE1Mzg0YTYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsXApB2J82p6lTUyrAh9J2xBqv2eCbM+j0gZC8l55mHbzG U9WhcLy18ryz2awHik0PPoeWo41N+QFAcIY/gSJQcED9D3pAUF186kLldLBsdb7j JTTBIEQYH4ZKK0kaYfCCf4XIuvB40N3YF/5cr7oXl03j5cqZEXIkR/Q48iPRC7dl HsSCC2qOFmg5Ox1MYLqs6i79KSGSQo1BgFr4iToJ1H/+W1b5C34xHtQ40cmIRA2O gR3xZcvuJbqw2719ELIGNC75wAhxK1+tmXni0hB071cX1Maf9awZqDgcv6hXFlM6 gCHDHcHBvMfkbl9C3UoCFmbCjPUNvMPYQ7yEOcC5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIZF+ueV5WTUTzUSJ6TJMxETO9yYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmMWE0MTBiLTRmY2ItNDZiNy05MmViLTRlMjczMGUwMTQ2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADMfhkwDQYJKoZIhvcNAQELBQADggEBAJsdBKnmBZamD8z2PHiUYRtNzc3v mrpJFxc+PDr1khQf51Bc4upS6eDNtH+fBWjkJBmt+scUh7FeS0RvLDw2g3BK1kD6 /3UCvdlOk84WHThZpJV/xAYqiwHf8A+uewfoVXfrVZImWePLPLf+LyaWWFMtW4xb QHxl+oqhabgj3TlBfhaSGUGEsA3e7x+a4TZr4ZifLWmTZhoO7C9S6D4T97TBqzjw 1BbuXB51dnSB0keX2Hec+8GWrD2h5Qv0nfLYhm+cL1Q2D9CEJsPwSYAYMvhLN2v8 +cZNGGhrlVyN1M1ARnRMNTLGL/+I1cdJw6iaewFY5xF3yQW0dnMF6xeKiaE= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:15 2024 by rpki-client on console-fra.rpki-client.org