$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6f7e63b-2d4c-4efa-b76b-8bf81eb02bb2.roa File: a6f7e63b-2d4c-4efa-b76b-8bf81eb02bb2.roa (raw, json) Hash identifier: v5RFWUDTg57Q1R2aWJci6ThLzMjM+AOc9UKhYTPaW9c= Subject key identifier: 76:52:5E:6F:0B:1D:97:01:C2:65:88:04:23:9E:4E:89:9A:AE:C9:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14C45A6DEA89F0BF005B185DD1BD6686F798E0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6f7e63b-2d4c-4efa-b76b-8bf81eb02bb2.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c4:5a:6d:ea:89:f0:bf:00:5b:18:5d:d1:bd:66:86:f7:98:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=89246634ff50c127020c2afdacd5cde40eb878c29c62644a1dad995251fd7151, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:26:38:b7:0e:e2:d7:c7:6d:cb:d9:b0:49:18: f0:38:a7:31:53:45:d4:d3:ff:7f:7f:0c:e9:6b:41: 6d:2e:9d:e2:f3:01:21:42:f5:a9:53:05:81:5e:7f: 76:dd:2d:1e:63:cb:9b:b1:28:eb:9e:eb:72:cc:a5: 41:13:14:44:57:12:7b:75:a9:f3:88:cc:8e:7a:e3: 27:47:0f:7f:d8:6f:ce:9d:68:87:ec:94:43:11:24: 1d:a3:a7:6b:da:01:97:e0:ba:f7:99:64:89:b6:20: 34:53:8f:6a:87:a5:61:7f:e1:32:5a:a5:79:e0:69: 77:d7:6a:02:ea:b4:7a:71:ff:84:51:92:b9:23:6e: 2a:36:e3:f2:05:9e:71:38:3c:a6:31:d8:5a:ec:a2: f4:6e:23:31:72:61:cf:f9:95:82:c4:33:bd:71:9d: 2f:60:af:a2:c0:b3:14:49:16:ff:39:4c:11:c3:85: 76:41:f7:e2:61:27:4a:09:76:8b:fb:ee:16:29:6f: 40:68:7e:44:ad:af:69:63:4f:76:d5:97:25:ba:6f: 2d:56:82:eb:97:11:fb:a6:e7:72:88:88:f6:d1:d9: 7a:9a:27:fb:85:56:2f:96:ba:ed:53:7f:27:80:b1: 86:36:e0:50:04:9a:ba:58:b7:81:ec:52:ac:71:a6: 90:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:52:5E:6F:0B:1D:97:01:C2:65:88:04:23:9E:4E:89:9A:AE:C9:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6f7e63b-2d4c-4efa-b76b-8bf81eb02bb2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption c3:e1:ee:e3:36:83:10:76:54:61:56:93:b8:5c:ea:e5:f0:c1: 86:51:fe:3c:a1:e7:55:0d:c6:3f:a0:22:49:62:80:e5:76:71: ef:4b:17:93:e9:5e:3b:07:b6:68:4c:e6:cb:b4:80:58:5b:1d: 1d:ae:f5:00:7a:85:af:fc:fd:fd:bc:06:c5:06:cc:c5:a3:2c: fb:9c:01:19:f2:b0:95:b1:46:9d:f0:18:f5:88:e2:6d:33:7b: 0c:5e:f0:9a:b9:a9:3c:71:da:be:98:43:38:73:d6:d2:d5:9a: 1c:9f:8a:dc:ff:71:e0:6a:da:74:22:be:e7:d5:41:7f:93:9d: b1:dd:9a:c9:6c:bb:62:8b:42:2f:a4:c6:10:7f:4c:fc:fb:b3: 6c:2e:93:17:58:ca:2a:75:bc:07:c1:4b:4b:44:55:0d:a8:3f: 3a:3b:89:47:d4:fb:3e:ad:11:80:5a:67:7d:20:1f:6a:0f:e4: bc:ab:b4:23:31:07:36:41:35:8a:46:20:69:16:2c:28:fb:98: 44:f4:41:8f:8a:21:28:8e:0d:d2:22:02:8e:e7:d1:d6:e9:3f: f7:62:37:ea:cc:84:81:a4:bd:1a:3e:3e:31:fa:5d:e6:df:89: 5d:ed:a4:b6:e5:95:10:96:10:8b:e0:80:d0:b1:46:4e:5b:ed: da:7f:8c:d6 -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITFMRabeqJ8L8AWxhd0b1mhveY4DANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDExMDUwMDAwMDBaFw0yNDEyMTAyMzU5NTla MHoxSTBHBgNVBAUTQDg5MjQ2NjM0ZmY1MGMxMjcwMjBjMmFmZGFjZDVjZGU0MGVi ODc4YzI5YzYyNjQ0YTFkYWQ5OTUyNTFmZDcxNTExLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAL8mOLcO4tfHbcvZsEkY8DinMVNF1NP/f38M6WtBbS6d4vMB IUL1qVMFgV5/dt0tHmPLm7Eo657rcsylQRMURFcSe3Wp84jMjnrjJ0cPf9hvzp1o h+yUQxEkHaOna9oBl+C695lkibYgNFOPaoelYX/hMlqleeBpd9dqAuq0enH/hFGS uSNuKjbj8gWecTg8pjHYWuyi9G4jMXJhz/mVgsQzvXGdL2CvosCzFEkW/zlMEcOF dkH34mEnSgl2i/vuFilvQGh+RK2vaWNPdtWXJbpvLVaC65cR+6bncoiI9tHZepon +4VWL5a67VN/J4CxhjbgUASauli3gexSrHGmkNcCAwEAAaOCArAwggKsMB0GA1Ud DgQWBBR2Ul5vCx2XAcJliAQjnk6Jmq7J9DAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvYTZmN2U2M2ItMmQ0Yy00ZWZhLWI3NmItOGJmODFlYjAyYmIyLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDABC8MA0GCSqGSIb3DQEBCwUAA4IBAQDD4e7jNoMQdlRhVpO4XOrl8MGGUf48 oedVDcY/oCJJYoDldnHvSxeT6V47B7ZoTObLtIBYWx0drvUAeoWv/P39vAbFBszF oyz7nAEZ8rCVsUad8Bj1iOJtM3sMXvCauak8cdq+mEM4c9bS1Zocn4rc/3Hgatp0 Ir7n1UF/k52x3ZrJbLtii0IvpMYQf0z8+7NsLpMXWMoqdbwHwUtLRFUNqD86O4lH 1Ps+rRGAWmd9IB9qD+S8q7QjMQc2QTWKRiBpFiwo+5hE9EGPiiEojg3SIgKO59HW 6T/3YjfqzISBpL0aPj4x+l3m34ld7aS25ZUQlhCL4IDQsUZOW+3af4zW -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:22 2024 by rpki-client on console-fra.rpki-client.org