$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a26f7ba1-8b57-4c5a-a7d8-2a6526a1bcca.roa File: a26f7ba1-8b57-4c5a-a7d8-2a6526a1bcca.roa (raw, json) Hash identifier: YkASPrxyeNFqyzRrGbomTq6uJqVu1baL4nuhP7NO/e0= Subject key identifier: 72:A8:EE:8F:62:BA:F9:D7:30:26:7D:E0:30:47:28:AC:16:3D:18:FC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72D2E8F4AF93828F5546B4E844E0705EE71F1728 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a26f7ba1-8b57-4c5a-a7d8-2a6526a1bcca.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 40.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:d2:e8:f4:af:93:82:8f:55:46:b4:e8:44:e0:70:5e:e7:1f:17:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=1a1a39f6d75294ffe1e2ecf37f6047cff2541b7b4505cb3ac8550d941123bdd5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d2:c4:92:b1:3b:c0:d5:a0:b6:f3:d8:4f:f4: 45:59:cc:fe:62:c5:47:49:8a:67:6f:7b:fd:f3:6a: 8b:2b:4d:32:31:f9:3d:05:42:b7:b5:8b:1a:83:a0: c6:55:f4:be:e1:01:5d:9b:ab:33:61:22:58:ff:77: a3:18:8e:6d:f6:41:b6:2b:cc:fb:40:c4:f6:4f:ee: e5:f4:d7:47:54:c7:9e:44:8a:a2:f1:06:b8:29:5c: 00:48:25:3f:f1:7c:c4:a3:a4:4b:64:20:04:38:e1: d6:f6:36:19:8a:50:17:2a:a8:43:7d:db:73:d2:67: cb:5e:41:c2:55:ad:fc:19:4e:55:d2:32:2f:cd:d3: 85:46:4a:05:79:f2:83:2a:64:f9:68:69:af:ef:29: b7:16:30:f8:5e:bd:44:40:db:c8:4f:c2:ed:3d:03: 59:21:de:cc:05:c0:1b:9b:1d:f4:c7:da:bd:0d:43: 00:55:d1:bf:83:4c:cd:9d:0a:dd:8e:21:05:54:da: 57:fc:ef:3a:3a:0f:91:fc:c6:73:50:42:30:c4:3b: f4:eb:8f:64:5a:ba:81:bd:35:07:17:a5:ba:41:a7: da:a3:7c:a3:bd:95:b4:73:42:80:20:62:7c:63:91: 72:0d:45:e9:93:fa:9c:2d:1b:2c:bb:57:f8:a5:65: 59:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A8:EE:8F:62:BA:F9:D7:30:26:7D:E0:30:47:28:AC:16:3D:18:FC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a26f7ba1-8b57-4c5a-a7d8-2a6526a1bcca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption a8:ea:c1:10:45:f4:67:56:64:8c:1f:d8:67:47:e3:f1:20:7c: cb:3f:4a:f1:5e:8e:5d:41:dd:67:47:02:74:27:42:42:47:2c: 31:c5:17:a1:37:e1:da:e0:22:bc:c4:33:38:14:3d:b4:ae:54: 84:5f:6a:d3:d1:fa:22:9a:fa:dd:96:59:34:e3:c7:e7:ac:a9: da:d7:2b:ef:bb:c0:79:3f:8c:48:fa:17:7c:0c:d9:c5:6d:86: 9a:ed:cb:9d:35:b7:e1:8f:25:26:5c:a0:85:6b:11:0e:83:36: d2:c8:42:56:d4:bb:3e:fc:28:2f:d1:00:8a:a4:4e:a8:4b:aa: 40:fd:e8:26:45:06:ea:43:44:2e:7c:79:e3:d8:d0:99:31:fe: 8f:31:17:61:0a:ae:b2:ab:8a:e6:b4:35:20:06:11:7e:87:28: 84:f8:01:3c:36:fe:30:9f:16:d0:b4:e2:4b:2f:ed:75:b5:ac: 9c:fd:61:06:91:39:ff:71:44:61:45:65:ba:5c:34:ae:c3:45: 78:67:f5:51:7d:48:fb:1a:a6:d5:35:ed:22:15:ce:18:99:07: 05:4b:e7:84:15:6c:e7:66:18:dd:28:f6:c1:a8:2d:44:74:e1: f6:07:13:49:95:2b:ee:b9:e4:f3:c1:f3:a7:f7:99:68:66:e0: 29:01:fa:9a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUctLo9K+Tgo9VRrToROBwXucfFygwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTFhMzlmNmQ3NTI5NGZmZTFlMmVjZjM3ZjYwNDdjZmYy NTQxYjdiNDUwNWNiM2FjODU1MGQ5NDExMjNiZGQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH0sSSsTvA1aC289hP9EVZzP5ixUdJimdve/3zaosrTTIx +T0FQre1ixqDoMZV9L7hAV2bqzNhIlj/d6MYjm32QbYrzPtAxPZP7uX010dUx55E iqLxBrgpXABIJT/xfMSjpEtkIAQ44db2NhmKUBcqqEN923PSZ8teQcJVrfwZTlXS Mi/N04VGSgV58oMqZPloaa/vKbcWMPhevURA28hPwu09A1kh3swFwBubHfTH2r0N QwBV0b+DTM2dCt2OIQVU2lf87zo6D5H8xnNQQjDEO/Trj2RauoG9NQcXpbpBp9qj fKO9lbRzQoAgYnxjkXINRemT+pwtGyy7V/ilZVn3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcqjuj2K6+dcwJn3gMEcorBY9GPwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyNmY3YmExLThiNTctNGM1YS1hN2Q4LTJhNjUyNmExYmNjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAovDANBgkqhkiG9w0BAQsFAAOCAQEAqOrBEEX0Z1ZkjB/YZ0fj8SB8yz9K 8V6OXUHdZ0cCdCdCQkcsMcUXoTfh2uAivMQzOBQ9tK5UhF9q09H6Ipr63ZZZNOPH 56yp2tcr77vAeT+MSPoXfAzZxW2Gmu3LnTW34Y8lJlyghWsRDoM20shCVtS7Pvwo L9EAiqROqEuqQP3oJkUG6kNELnx549jQmTH+jzEXYQqusquK5rQ1IAYRfocohPgB PDb+MJ8W0LTiSy/tdbWsnP1hBpE5/3FEYUVlulw0rsNFeGf1UX1I+xqm1TXtIhXO GJkHBUvnhBVs52YY3Sj2wagtRHTh9gcTSZUr7rnk88Hzp/eZaGbgKQH6mg== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:21 2024 by rpki-client on console-fra.rpki-client.org