$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91fcb15f-13b7-4590-8345-f94221d7046c.roa File: 91fcb15f-13b7-4590-8345-f94221d7046c.roa (raw, json) Hash identifier: al1zstPE19VsnnwuIYA78C7lzt0+5ngneGYIfhi+Z3U= Subject key identifier: 96:BC:4E:AA:6F:9E:13:CF:BC:1C:05:0B:1A:79:00:3B:7A:44:47:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50BD1A83B9FDDC51F7D75C907A17C3BB0E76A8B4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91fcb15f-13b7-4590-8345-f94221d7046c.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.156.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:bd:1a:83:b9:fd:dc:51:f7:d7:5c:90:7a:17:c3:bb:0e:76:a8:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=1e00fab00a6323dc6f4caebcda58a7c18fd7f14b05acd2a7d40ccac950541800, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:aa:57:d0:70:13:ae:33:2a:7c:57:95:22:01: 0f:dc:87:57:37:8b:cf:50:e5:4d:e3:71:9c:92:7c: af:09:ca:c4:9c:85:d2:b5:c9:c7:16:b1:c0:46:7c: b1:2a:4e:d7:7d:c2:31:14:40:da:3c:09:a8:7f:75: 93:99:b9:3f:af:22:70:6f:f9:93:b5:75:41:bd:08: 6c:20:26:1e:1e:67:2f:3a:39:47:5d:33:a2:45:9c: 48:1b:29:b4:3a:40:c5:84:53:54:82:61:74:88:45: cf:27:09:97:20:65:2d:91:07:bb:25:15:52:b1:7c: 63:04:4b:d5:cb:2f:bd:54:b2:b3:2a:93:2c:58:ad: 79:f5:ed:d2:25:10:f2:13:8f:40:c0:80:45:cf:60: 57:b5:07:33:f1:08:52:0f:a3:cf:ee:8b:f6:cc:9e: f2:f7:2a:70:b1:87:16:8b:bf:18:7f:28:6e:d9:e9: 27:81:3d:d6:ca:66:4d:2f:49:08:30:be:81:de:8c: bc:81:e5:71:56:e9:3d:96:b2:66:b7:50:62:bc:69: 96:f6:cc:fc:3e:c5:2a:71:e9:54:6f:21:49:c6:8b: 17:93:95:a2:72:2f:4d:f1:14:fb:09:5f:30:32:e1: 8c:32:96:56:19:87:d6:4d:5e:0c:60:01:ea:ec:31: e6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:BC:4E:AA:6F:9E:13:CF:BC:1C:05:0B:1A:79:00:3B:7A:44:47:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91fcb15f-13b7-4590-8345-f94221d7046c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.156.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:46:c0:45:ce:a7:d9:92:66:b9:9c:f8:bc:d6:66:ed:79:ad: 1b:26:2e:20:99:c9:59:6f:ab:c4:0f:12:09:6d:88:9c:d4:30: d2:2f:29:5b:1d:46:76:26:21:19:a5:b2:6a:a9:a1:c9:4f:5c: e8:0a:65:90:f7:65:1b:3d:a0:01:bd:73:0c:63:8f:61:ca:e8: f8:4f:99:67:37:a7:3b:c8:a9:a8:0a:bd:a6:b3:e6:ac:00:70: d0:ef:28:0b:6d:08:a9:37:86:c9:ff:0a:ab:67:ab:51:9c:18: 2d:80:b6:27:3f:a3:8b:bc:49:ee:ff:ba:3c:ad:0c:2f:0c:f1: 58:03:fa:16:3f:e0:2a:dc:5c:74:d7:64:db:37:eb:d2:24:6c: 7e:e5:a0:85:8a:85:c7:a1:b7:5f:ba:92:38:34:c9:12:0c:82: aa:fe:f0:18:fb:da:1b:00:75:a5:0c:6a:74:4c:d8:90:d9:d4: d8:4e:2b:aa:54:2f:f2:92:53:5b:97:8d:4b:05:30:4b:d6:fc: c9:9d:cd:d5:e0:d3:2e:05:a5:25:3f:2b:d2:54:dd:5a:2b:08: f0:21:85:da:3d:95:77:ce:66:35:69:b0:20:9f:09:4f:94:24: f4:74:e4:0a:1e:f3:8b:ed:9d:7d:12:a6:b3:42:e5:8f:0a:bc: 0a:7b:eb:d8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUL0ag7n93FH311yQehfDuw52qLQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTAwZmFiMDBhNjMyM2RjNmY0Y2FlYmNkYTU4YTdjMThm ZDdmMTRiMDVhY2QyYTdkNDBjY2FjOTUwNTQxODAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBqlfQcBOuMyp8V5UiAQ/ch1c3i89Q5U3jcZySfK8JysSc hdK1yccWscBGfLEqTtd9wjEUQNo8Cah/dZOZuT+vInBv+ZO1dUG9CGwgJh4eZy86 OUddM6JFnEgbKbQ6QMWEU1SCYXSIRc8nCZcgZS2RB7slFVKxfGMES9XLL71UsrMq kyxYrXn17dIlEPITj0DAgEXPYFe1BzPxCFIPo8/ui/bMnvL3KnCxhxaLvxh/KG7Z 6SeBPdbKZk0vSQgwvoHejLyB5XFW6T2Wsma3UGK8aZb2zPw+xSpx6VRvIUnGixeT laJyL03xFPsJXzAy4YwyllYZh9ZNXgxgAersMeZBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlrxOqm+eE8+8HAULGnkAO3pER28wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxZmNiMTVmLTEzYjctNDU5MC04MzQ1LWY5NDIyMWQ3MDQ2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4nDANBgkqhkiG9w0BAQsFAAOCAQEAQEbARc6n2ZJmuZz4vNZm7XmtGyYu IJnJWW+rxA8SCW2InNQw0i8pWx1GdiYhGaWyaqmhyU9c6AplkPdlGz2gAb1zDGOP Ycro+E+ZZzenO8ipqAq9prPmrABw0O8oC20IqTeGyf8Kq2erUZwYLYC2Jz+ji7xJ 7v+6PK0MLwzxWAP6Fj/gKtxcdNdk2zfr0iRsfuWghYqFx6G3X7qSODTJEgyCqv7w GPvaGwB1pQxqdEzYkNnU2E4rqlQv8pJTW5eNSwUwS9b8yZ3N1eDTLgWlJT8r0lTd WisI8CGF2j2Vd85mNWmwIJ8JT5Qk9HTkCh7zi+2dfRKms0Lljwq8Cnvr2A== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:16 2024 by rpki-client on console-fra.rpki-client.org