$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9dc7a9d3-462a-47b2-af33-030ad6ef4565.roa File: 9dc7a9d3-462a-47b2-af33-030ad6ef4565.roa (raw, json) Hash identifier: iNhn190tJcA+/o+ephaIYq/yjJwWvvIDlTQAq2c74Fk= Subject key identifier: F5:00:3E:8C:7E:D8:01:22:A4:86:E9:4C:84:7C:CE:98:15:11:02:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BF0D230F09C920B54F7898014992F26974E8FAD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9dc7a9d3-462a-47b2-af33-030ad6ef4565.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 23.250.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:f0:d2:30:f0:9c:92:0b:54:f7:89:80:14:99:2f:26:97:4e:8f:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=f1a18028ce3da4d2d27eb6f4d9aa58e45aa2da9db9d6b455cfcec5c1a071daf5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:15:b5:74:0c:19:31:9f:24:35:5a:27:3a:c1: 1b:5b:70:c6:54:29:1f:53:f9:48:a2:c8:86:a7:09: 59:61:0d:cf:69:f2:6e:ab:2d:58:e0:94:8c:be:55: 93:00:60:b1:e9:e5:1e:4e:84:7b:d5:96:2e:12:87: 4e:64:7c:7c:85:46:79:36:ab:b3:46:6c:9e:29:3d: 5f:cc:77:5e:9b:4c:72:1c:11:af:f2:82:66:a9:fe: 61:09:f6:fc:c7:9d:d1:aa:5b:67:2f:73:64:92:2e: ae:a5:b4:f1:63:02:d4:20:be:e6:18:61:1f:0b:1f: aa:f3:b2:d6:f5:8e:66:04:6e:5f:3a:58:06:f2:8a: 49:48:4b:b7:06:69:77:06:5d:45:99:54:11:46:a4: d2:23:8a:6e:f3:d3:26:1d:76:0b:d4:e3:98:b2:b9: ce:d5:cb:3f:e1:09:e2:e6:36:c4:14:8c:98:fb:a2: 3d:22:1c:ec:26:53:1b:a1:0e:33:a4:56:ec:78:6a: 36:fb:7f:21:c2:1d:ed:f3:d5:0b:ea:63:49:53:ee: 5c:33:73:1b:76:ad:9f:20:c9:30:e4:84:32:a9:c5: 49:6d:d1:d3:bb:92:2e:7d:6e:5d:d4:f9:66:b3:1f: c2:0a:49:2e:1f:8a:8f:be:3a:99:56:8f:69:ca:6b: de:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:00:3E:8C:7E:D8:01:22:A4:86:E9:4C:84:7C:CE:98:15:11:02:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9dc7a9d3-462a-47b2-af33-030ad6ef4565.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.250.0.0/17 Signature Algorithm: sha256WithRSAEncryption 02:ea:1d:48:3a:8c:af:3e:78:3c:f2:5b:71:e9:a2:b7:b1:80: 7d:88:4a:f0:a0:76:8e:88:ea:0c:c1:e6:f9:b1:83:77:be:f8: 5a:51:84:75:41:2a:4a:ba:83:48:ad:a1:eb:07:1c:37:6c:e3: 35:0f:86:c3:fd:48:d4:be:0e:5a:6c:cd:4b:57:b1:35:75:25: 58:79:d5:7f:a1:a2:be:55:a0:a9:11:2f:9a:de:a9:3c:9f:7b: ed:b4:34:d9:5a:c6:e8:0e:df:f8:29:f2:17:35:c3:4c:10:0b: f4:0b:36:3a:9f:fd:7a:38:f8:d5:e3:87:6a:8e:fd:07:d4:f2: 23:ef:28:16:4c:ac:ec:e9:35:94:df:a6:40:1e:07:ae:db:19: 69:79:ef:fe:a0:00:21:9b:a8:9b:7e:15:9c:61:19:66:12:8b: dd:7e:77:bf:8c:37:50:57:ea:83:0a:a0:f3:de:24:44:38:6a: 61:57:11:d9:56:0c:a4:2e:eb:34:9c:14:b8:14:3a:40:f5:50: ef:a2:92:86:0c:39:ff:f7:14:da:bf:bd:94:c2:57:07:43:a4: d9:3e:e9:b8:75:b4:92:de:7b:98:b6:df:04:cf:64:c0:ec:e4: 52:be:bd:50:a4:44:cf:09:7c:f2:4f:45:8e:b2:d6:e7:5a:ef: 9e:ca:4e:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe/DSMPCckgtU94mAFJkvJpdOj60wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWExODAyOGNlM2RhNGQyZDI3ZWI2ZjRkOWFhNThlNDVh YTJkYTlkYjlkNmI0NTVjZmNlYzVjMWEwNzFkYWY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoFbV0DBkxnyQ1Wic6wRtbcMZUKR9T+UiiyIanCVlhDc9p 8m6rLVjglIy+VZMAYLHp5R5OhHvVli4Sh05kfHyFRnk2q7NGbJ4pPV/Md16bTHIc Ea/ygmap/mEJ9vzHndGqW2cvc2SSLq6ltPFjAtQgvuYYYR8LH6rzstb1jmYEbl86 WAbyiklIS7cGaXcGXUWZVBFGpNIjim7z0yYddgvU45iyuc7Vyz/hCeLmNsQUjJj7 oj0iHOwmUxuhDjOkVux4ajb7fyHCHe3z1QvqY0lT7lwzcxt2rZ8gyTDkhDKpxUlt 0dO7ki59bl3U+WazH8IKSS4fio++OplWj2nKa96lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9QA+jH7YASKkhulMhHzOmBURAiQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkYzdhOWQzLTQ2MmEtNDdiMi1hZjMzLTAzMGFkNmVmNDU2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcX+gAwDQYJKoZIhvcNAQELBQADggEBAALqHUg6jK8+eDzyW3HporexgH2I SvCgdo6I6gzB5vmxg3e++FpRhHVBKkq6g0itoesHHDds4zUPhsP9SNS+DlpszUtX sTV1JVh51X+hor5VoKkRL5reqTyfe+20NNlaxugO3/gp8hc1w0wQC/QLNjqf/Xo4 +NXjh2qO/QfU8iPvKBZMrOzpNZTfpkAeB67bGWl57/6gACGbqJt+FZxhGWYSi91+ d7+MN1BX6oMKoPPeJEQ4amFXEdlWDKQu6zScFLgUOkD1UO+ikoYMOf/3FNq/vZTC VwdDpNk+6bh1tJLee5i23wTPZMDs5FK+vVCkRM8JfPJPRY6y1uda757KTgM= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:19 2024 by rpki-client on console-fra.rpki-client.org