$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa File: a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa (raw, json) Hash identifier: 5JwiG4X3SGUUrwxXPbziJmW1Hr0ryzFrH7NSzgfUDKg= Subject key identifier: 7E:20:75:71:C2:A4:87:D8:0A:B0:6D:02:A9:C0:5E:BA:F9:CF:0F:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 78E215FD33E835786B77E19A64FC24CD31BEBED2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8188::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:e2:15:fd:33:e8:35:78:6b:77:e1:9a:64:fc:24:cd:31:be:be:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=47d132c0e339a9fb6811d05dfa08695464cf17562e78c5c70e48ca5843388255, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8d:86:cc:ed:22:f8:f4:46:5a:f0:9c:00:12: 40:b5:7e:ba:a0:4d:19:d1:fb:25:c6:13:ba:d6:66: ac:55:43:7d:00:fd:c0:48:41:91:f5:6d:2e:f6:7d: 0b:d2:49:e6:88:89:7a:42:bd:e9:66:92:a4:dc:03: 31:f0:76:cc:2e:be:d8:2a:30:94:97:24:75:42:95: d5:09:0a:b3:36:41:ab:e1:31:db:14:d7:8a:c2:8c: 5c:98:6f:39:b1:dc:b0:4b:93:f3:e0:53:01:96:99: 4e:5b:f9:5f:67:b6:99:cc:3a:50:70:71:9e:ce:11: c8:67:28:d7:3f:7a:df:85:f0:ac:e1:9a:6c:86:06: d3:4e:60:8f:0a:96:6e:2c:a2:ab:63:97:7a:8a:8c: fb:06:03:c1:ed:fe:04:e1:e2:60:1b:df:dc:83:a1: 25:24:9a:13:ed:07:70:97:41:fd:d7:70:29:d4:47: 6c:f6:19:b5:87:7f:30:0f:b6:9f:2d:6a:e6:70:0b: 1d:2f:9e:a0:5c:ef:e1:68:bd:b3:2c:6a:f6:ec:df: 48:87:e3:1e:ed:c0:db:0a:69:7d:b9:09:ca:77:2f: 17:23:2c:80:7a:ed:5e:07:e3:ec:67:f6:6d:23:63: cd:f1:32:2f:74:ce:90:2b:00:06:01:2a:91:dd:94: db:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:20:75:71:C2:A4:87:D8:0A:B0:6D:02:A9:C0:5E:BA:F9:CF:0F:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8188::/48 Signature Algorithm: sha256WithRSAEncryption 10:b7:6a:56:10:34:26:f5:c4:12:60:53:61:dc:9f:34:01:5c: 79:7a:c7:26:8e:56:a7:da:8c:58:75:22:a4:c2:6f:d3:ce:a8: d3:61:1e:6e:9d:32:3f:8c:bd:9e:20:8d:92:34:63:f6:58:a8: 15:e7:9a:f5:5d:3b:18:d9:86:94:81:bb:04:82:67:ee:fe:5a: 30:63:95:d9:74:a1:62:29:9c:43:45:f7:7d:59:51:6e:1e:1a: 64:53:93:0f:f4:3c:dc:9f:b9:89:ad:66:4c:5f:f0:56:14:94: 9a:93:0a:43:f9:97:0e:37:44:c0:29:d2:dd:12:97:8d:ef:06: dc:f9:cf:34:3d:ef:16:1c:41:06:11:95:79:40:83:38:e8:35: 41:24:cb:c4:74:23:b6:6a:3b:31:92:83:0a:61:7c:ca:ed:36: c9:a8:30:bc:a7:a5:0f:77:11:bf:5a:08:4a:44:4d:d7:01:a6: 1f:9c:d3:5c:81:d7:5a:1c:bf:bb:18:8d:86:f5:13:12:d1:b7: da:57:a3:c8:15:ee:9c:d0:59:53:3f:a1:27:3d:0c:7c:fc:df: 68:37:77:de:dc:88:50:16:fc:0d:fa:9a:5c:56:69:12:5a:10: e2:b9:8a:a0:85:f2:24:64:b9:d3:23:df:a7:18:58:5e:1a:3c: 95:38:40:ae -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeOIV/TPoNXhrd+GaZPwkzTG+vtIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2QxMzJjMGUzMzlhOWZiNjgxMWQwNWRmYTA4Njk1NDY0 Y2YxNzU2MmU3OGM1YzcwZTQ4Y2E1ODQzMzg4MjU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUjYbM7SL49EZa8JwAEkC1frqgTRnR+yXGE7rWZqxVQ30A /cBIQZH1bS72fQvSSeaIiXpCvelmkqTcAzHwdswuvtgqMJSXJHVCldUJCrM2Qavh MdsU14rCjFyYbzmx3LBLk/PgUwGWmU5b+V9ntpnMOlBwcZ7OEchnKNc/et+F8Kzh mmyGBtNOYI8Klm4soqtjl3qKjPsGA8Ht/gTh4mAb39yDoSUkmhPtB3CXQf3XcCnU R2z2GbWHfzAPtp8tauZwCx0vnqBc7+FovbMsavbs30iH4x7twNsKaX25Ccp3Lxcj LIB67V4H4+xn9m0jY83xMi90zpArAAYBKpHdlNufAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfiB1ccKkh9gKsG0CqcBeuvnPD14wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyNDBkYzY0LTY1ZjAtNDYxYS1hZDZhLThjMTM3YjlkOGFiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gYgwDQYJKoZIhvcNAQELBQADggEBABC3alYQNCb1xBJgU2HcnzQB XHl6xyaOVqfajFh1IqTCb9POqNNhHm6dMj+MvZ4gjZI0Y/ZYqBXnmvVdOxjZhpSB uwSCZ+7+WjBjldl0oWIpnENF931ZUW4eGmRTkw/0PNyfuYmtZkxf8FYUlJqTCkP5 lw43RMAp0t0Sl43vBtz5zzQ97xYcQQYRlXlAgzjoNUEky8R0I7ZqOzGSgwphfMrt NsmoMLynpQ93Eb9aCEpETdcBph+c01yB11ocv7sYjYb1ExLRt9pXo8gV7pzQWVM/ oSc9DHz832g3d97ciFAW/A36mlxWaRJaEOK5iqCF8iRkudMj36cYWF4aPJU4QK4= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:21 2024 by rpki-client on console-fra.rpki-client.org