$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6a318bc-f485-4225-bc95-983413d9b86e.roa File: a6a318bc-f485-4225-bc95-983413d9b86e.roa (raw, json) Hash identifier: denA5I8FrmtRefJsNUJzaz63/hi7BWK/IJz25QxHXZs= Subject key identifier: A1:A6:34:F3:09:9B:04:09:46:0C:89:5C:E9:2B:A4:D8:05:C5:4C:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D0AA29076BE4BC1FDB828B40E8FDE38B5328DDE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6a318bc-f485-4225-bc95-983413d9b86e.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 207.36.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:0a:a2:90:76:be:4b:c1:fd:b8:28:b4:0e:8f:de:38:b5:32:8d:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=848b3d86ca5b13c2d9fc711b236ecea514f09a3a1e1f374b27d117419c20f9ad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:da:0b:a5:1d:63:8e:5c:d0:0d:f6:8b:b4:28: 03:2f:e2:00:34:91:59:49:5c:3a:9e:de:fc:0a:af: fa:1a:b7:67:27:7b:66:de:39:ab:81:fc:2e:4a:f1: 7c:3c:30:d6:7a:94:99:ad:ed:28:a9:31:a4:66:eb: ea:47:46:57:89:af:ae:6b:3c:d8:84:37:f1:71:8a: ef:56:0e:53:11:3d:8a:9f:db:c9:b3:36:44:2b:84: e2:a2:a8:b9:d4:26:8e:5b:3d:66:fd:1e:4e:ca:b0: dd:d3:5c:a2:84:da:19:9c:8e:ab:c3:b1:76:11:f8: 70:eb:8b:5d:3a:d9:93:46:9a:df:22:4d:cf:28:b7: f0:7a:0d:99:70:30:5d:6b:79:90:29:d5:cd:a3:1e: e4:f7:2d:84:83:82:29:75:a3:ff:47:6e:6e:77:67: 49:17:ed:ce:eb:47:19:b2:95:32:5b:fe:68:dc:c4: ff:bd:44:2f:56:bd:c0:d2:f1:d3:ec:08:17:da:df: 23:d2:5d:06:54:5b:45:df:09:fa:e6:cc:06:bb:84: 7c:4e:85:3e:cf:61:09:07:0a:b4:d6:4b:3e:45:fe: 21:37:2e:6e:5a:f5:0a:34:5d:f3:6f:48:58:1e:23: 4c:aa:c2:16:b4:7b:a3:bc:65:61:c7:4c:e1:e1:b1: 2e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A6:34:F3:09:9B:04:09:46:0C:89:5C:E9:2B:A4:D8:05:C5:4C:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6a318bc-f485-4225-bc95-983413d9b86e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.36.0.0/16 Signature Algorithm: sha256WithRSAEncryption 80:b3:85:de:af:ff:50:cf:f6:a1:78:80:f3:2d:5d:28:77:99: fc:48:7b:d7:0b:ba:01:70:cf:b5:cd:ad:1f:26:8a:63:0c:e3: f8:b2:b5:19:14:3b:18:18:0d:67:51:8e:00:a2:9d:48:08:1b: ee:30:15:09:2d:14:f9:a3:72:4f:50:c4:d8:2b:66:0a:e7:e1: 47:c4:5e:77:2f:49:b5:c1:3f:1f:e6:03:45:0f:79:b9:8a:4c: cd:2c:1d:9d:32:ce:56:27:bf:04:e9:fa:21:06:cd:25:8e:da: 15:8a:bb:73:80:e8:a0:f2:b4:cd:fd:2c:83:29:f8:6b:de:b0: 26:f0:f3:49:6c:32:2d:8b:25:e8:ad:20:4a:2b:5c:8b:99:76: c2:63:f4:86:bc:75:b3:dc:29:e7:9e:43:94:ba:c5:3a:5b:c9: ce:89:cc:c0:4a:d6:a6:ea:2c:97:49:20:c3:cc:49:5c:4e:a8: ee:c6:e2:cc:9d:92:c3:bd:a2:47:d7:fc:2e:fc:c8:a4:e0:bf: 22:5a:5a:2b:8c:e0:6b:9d:50:ea:0b:ce:71:68:45:1c:a7:58: ab:5b:b7:26:76:aa:b9:77:f8:f1:0a:9c:7a:1c:34:07:3c:bf: 73:89:08:75:e1:1e:16:9c:de:5c:a9:85:d5:b2:91:28:60:1c: 40:2f:c1:f7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULQqikHa+S8H9uCi0Do/eOLUyjd4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE4MDAwMDAwWhcNMjQxMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDhiM2Q4NmNhNWIxM2MyZDlmYzcxMWIyMzZlY2VhNTE0 ZjA5YTNhMWUxZjM3NGIyN2QxMTc0MTljMjBmOWFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK2gulHWOOXNAN9ou0KAMv4gA0kVlJXDqe3vwKr/oat2cn e2beOauB/C5K8Xw8MNZ6lJmt7SipMaRm6+pHRleJr65rPNiEN/Fxiu9WDlMRPYqf 28mzNkQrhOKiqLnUJo5bPWb9Hk7KsN3TXKKE2hmcjqvDsXYR+HDri1062ZNGmt8i Tc8ot/B6DZlwMF1reZAp1c2jHuT3LYSDgil1o/9Hbm53Z0kX7c7rRxmylTJb/mjc xP+9RC9WvcDS8dPsCBfa3yPSXQZUW0XfCfrmzAa7hHxOhT7PYQkHCrTWSz5F/iE3 Lm5a9Qo0XfNvSFgeI0yqwha0e6O8ZWHHTOHhsS4rAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUoaY08wmbBAlGDIlc6Suk2AXFTG0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2YTMxOGJjLWY0ODUtNDIyNS1iYzk1LTk4MzQxM2Q5Yjg2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDPJDANBgkqhkiG9w0BAQsFAAOCAQEAgLOF3q//UM/2oXiA8y1dKHeZ/Eh7 1wu6AXDPtc2tHyaKYwzj+LK1GRQ7GBgNZ1GOAKKdSAgb7jAVCS0U+aNyT1DE2Ctm CufhR8Redy9JtcE/H+YDRQ95uYpMzSwdnTLOVie/BOn6IQbNJY7aFYq7c4DooPK0 zf0sgyn4a96wJvDzSWwyLYsl6K0gSitci5l2wmP0hrx1s9wp555DlLrFOlvJzonM wErWpuosl0kgw8xJXE6o7sbizJ2Sw72iR9f8LvzIpOC/IlpaK4zga51Q6gvOcWhF HKdYq1u3JnaquXf48Qqcehw0Bzy/c4kIdeEeFpzeXKmF1bKRKGAcQC/B9w== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:22 2024 by rpki-client on console-fra.rpki-client.org