$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a0b22a0-ba9a-4be1-b539-8dc4983ff1e3.roa File: 9a0b22a0-ba9a-4be1-b539-8dc4983ff1e3.roa (raw, json) Hash identifier: 12jhxPp3/ZDJOd6THHvSQnXNG3I2RK3H/wIsFrvsI+A= Subject key identifier: 9C:39:44:88:6E:2A:41:02:2D:28:57:C5:11:66:73:C8:BC:2D:1E:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68D4DF2FFEF6C432475BB51BF0EA5AE0F987713E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a0b22a0-ba9a-4be1-b539-8dc4983ff1e3.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.135.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d4:df:2f:fe:f6:c4:32:47:5b:b5:1b:f0:ea:5a:e0:f9:87:71:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=44b241f90dd6a247d8a5d1a1372ebd9c6cd3e0c8576cf6bf63ffa33463f15834, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:61:6f:a7:b2:98:29:ae:f2:68:b7:98:be:ec: 1a:19:a6:97:d8:d4:73:c8:63:89:9a:5e:fb:37:e9: af:02:6a:18:cd:f2:a2:ea:5e:cc:9d:cf:17:36:f8: 0a:9c:b6:81:7a:c3:50:71:5f:bf:c5:05:31:2a:43: fc:db:c4:fb:e9:21:38:07:2d:ab:f6:9c:c8:9c:d2: ae:9e:9e:9f:5f:ba:de:a4:5a:1d:5a:15:ee:e5:f7: da:35:df:04:1f:17:4c:ca:57:07:fa:e1:9e:43:f5: a8:a7:7a:03:68:21:49:3c:b2:7b:49:d1:6f:18:7a: 08:17:65:53:62:53:67:d8:4e:c8:8c:43:32:a1:a9: e9:e9:b3:b2:4b:dc:24:33:71:94:9d:ee:41:9b:b4: 65:a1:f7:79:01:03:f8:d5:9a:1f:2d:91:9c:3f:bb: e5:94:e2:aa:b9:6a:18:b5:e1:90:7b:b0:58:0f:a8: 1a:2c:c7:15:13:8c:2c:ce:a5:13:db:42:42:5b:ed: 96:c1:49:74:bb:76:c1:ce:39:25:83:59:1f:c0:38: e1:3f:f0:d9:ac:69:29:60:60:0d:8e:f3:88:0c:8a: d3:56:ad:ea:fa:21:b7:68:de:dc:5b:65:8e:e9:50: 79:77:94:79:8b:58:d3:99:8d:d1:4b:bb:d5:12:89: 67:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:39:44:88:6E:2A:41:02:2D:28:57:C5:11:66:73:C8:BC:2D:1E:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a0b22a0-ba9a-4be1-b539-8dc4983ff1e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.135.0.0/16 Signature Algorithm: sha256WithRSAEncryption 08:da:e5:d6:78:f6:04:12:1b:38:0a:ea:fb:ed:6f:99:91:8e: 9d:5d:32:f9:be:0a:33:25:01:d5:91:f8:90:dc:16:51:89:e6: b4:fe:56:2d:32:1c:73:50:ff:94:88:4e:98:f6:c4:dd:04:39: 37:b1:56:86:49:51:8e:e7:f1:5b:16:7b:96:2e:38:3f:84:15: 19:55:88:a5:35:0b:ab:01:d1:a5:78:c9:46:3a:95:61:9b:7c: 49:ac:d7:1b:18:99:67:56:6f:92:c3:02:d2:27:53:9f:04:94: f2:92:00:3f:cb:99:5d:6a:14:07:7c:17:71:20:5d:5e:a2:97: 1d:ac:71:2b:54:e2:74:49:6a:ae:0b:19:06:3e:bc:ab:64:d2: 11:c4:43:18:d2:cc:70:ee:66:cd:ea:82:71:cb:cc:5e:9e:9a: 3b:35:e8:9d:bc:c8:06:04:1f:96:37:f7:66:7c:a8:e9:65:3c: e0:de:70:0b:19:55:0e:b9:fe:c3:b3:42:9d:ab:af:26:35:7c: e2:f4:c9:e7:00:5a:da:79:63:27:d9:ec:b1:5b:92:24:65:f1: 87:97:9f:d4:7e:b7:ac:71:94:6a:41:0d:07:2d:54:5e:b0:f2: a3:29:6e:71:33:7d:1f:b1:13:42:f9:6c:92:ee:76:af:29:76: 29:6a:48:dc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaNTfL/72xDJHW7Ub8Opa4PmHcT4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGIyNDFmOTBkZDZhMjQ3ZDhhNWQxYTEzNzJlYmQ5YzZj ZDNlMGM4NTc2Y2Y2YmY2M2ZmYTMzNDYzZjE1ODM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4YW+nspgprvJot5i+7BoZppfY1HPIY4maXvs36a8CahjN 8qLqXsydzxc2+AqctoF6w1BxX7/FBTEqQ/zbxPvpITgHLav2nMic0q6enp9fut6k Wh1aFe7l99o13wQfF0zKVwf64Z5D9ainegNoIUk8sntJ0W8YeggXZVNiU2fYTsiM QzKhqenps7JL3CQzcZSd7kGbtGWh93kBA/jVmh8tkZw/u+WU4qq5ahi14ZB7sFgP qBosxxUTjCzOpRPbQkJb7ZbBSXS7dsHOOSWDWR/AOOE/8NmsaSlgYA2O84gMitNW rer6Ibdo3txbZY7pUHl3lHmLWNOZjdFLu9USiWcDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnDlEiG4qQQItKFfFEWZzyLwtHuAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhMGIyMmEwLWJhOWEtNGJlMS1iNTM5LThkYzQ5ODNmZjFlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQhzANBgkqhkiG9w0BAQsFAAOCAQEACNrl1nj2BBIbOArq++1vmZGOnV0y +b4KMyUB1ZH4kNwWUYnmtP5WLTIcc1D/lIhOmPbE3QQ5N7FWhklRjufxWxZ7li44 P4QVGVWIpTULqwHRpXjJRjqVYZt8SazXGxiZZ1ZvksMC0idTnwSU8pIAP8uZXWoU B3wXcSBdXqKXHaxxK1TidElqrgsZBj68q2TSEcRDGNLMcO5mzeqCccvMXp6aOzXo nbzIBgQfljf3Znyo6WU84N5wCxlVDrn+w7NCnauvJjV84vTJ5wBa2nljJ9nssVuS JGXxh5ef1H63rHGUakENBy1UXrDyoylucTN9H7ETQvlsku52ryl2KWpI3A== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:18 2024 by rpki-client on console-fra.rpki-client.org