$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a75e66e8-22d7-423e-ace1-2067e009c37e.roa File: a75e66e8-22d7-423e-ace1-2067e009c37e.roa (raw, json) Hash identifier: HJ9NwWdVe1pIpqqLSp0lIjy0kqtdhzhwx9RBuzvLoDQ= Subject key identifier: F7:FE:59:D2:AF:EF:2A:38:B7:78:0D:B6:5D:ED:29:50:9B:8D:89:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FF484F6A8C6506BA5984D570E63DD420E672FA9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a75e66e8-22d7-423e-ace1-2067e009c37e.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 104.194.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:f4:84:f6:a8:c6:50:6b:a5:98:4d:57:0e:63:dd:42:0e:67:2f:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=87d5c4e4d7b4c121f94a09e6bda2fe2a3800d14493834268735fa95d5f984e40, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:01:a4:d7:26:b8:46:90:f1:7a:29:df:31:be: 47:c3:e5:da:f1:12:a1:7a:e5:46:f5:71:52:cd:18: 9f:db:b6:10:db:cd:4c:5e:79:19:f3:1c:be:78:12: a0:9f:47:62:ae:49:02:e6:05:7e:ad:08:30:97:95: cf:4c:19:81:8a:2a:df:f1:6b:66:ef:18:ce:3a:02: 5a:e2:ff:7c:98:70:ce:ac:c2:10:49:46:1d:55:3c: 8f:09:f4:c9:c2:4a:14:75:47:10:26:70:d7:21:c7: 94:17:3d:ce:b5:3a:4b:d6:75:73:92:c2:31:5d:2b: a0:8a:86:81:59:a1:8b:29:68:5c:a5:59:4d:22:13: 37:ee:2a:b3:6d:f9:58:c8:ff:5b:bc:cc:23:2a:4b: b7:40:a4:68:c1:3f:85:5e:a9:49:70:d6:be:b5:33: 95:6a:58:34:8a:8f:16:56:3d:ca:08:94:53:3e:77: 24:5a:5c:7a:b2:eb:9e:ae:48:fe:3c:79:1e:01:23: e5:fa:1f:ef:5f:ba:9a:8b:93:35:f1:d3:78:96:06: 43:dd:e4:f1:e3:5f:d7:ee:7c:2b:3e:a8:74:1b:c6: 08:bb:38:17:4f:75:12:5d:11:da:c5:f9:37:39:98: 97:61:3a:8a:04:f4:64:61:5a:fa:1f:2c:c0:16:67: 21:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:FE:59:D2:AF:EF:2A:38:B7:78:0D:B6:5D:ED:29:50:9B:8D:89:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a75e66e8-22d7-423e-ace1-2067e009c37e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.194.224.0/19 Signature Algorithm: sha256WithRSAEncryption 83:83:40:2e:67:0a:55:19:5f:4f:c7:07:6b:62:d5:18:8a:cb: 98:43:3f:16:95:54:35:28:d0:bd:2b:2b:fd:ca:04:04:41:9c: 3a:db:b9:90:86:de:a0:42:f9:6b:d5:0a:ca:e3:bc:5c:64:fa: 1f:6d:52:35:90:a5:f1:b5:5d:5d:23:4d:f8:f7:19:d8:45:24: 48:c4:a5:ed:eb:c0:3e:73:ed:65:fc:b7:cb:c2:1c:ef:d4:c6: 70:57:7a:c6:ba:47:99:02:11:ad:06:b6:56:91:35:43:b0:48: e8:a8:e0:76:32:d4:8f:48:17:59:9d:da:62:10:e6:ff:e0:c8: 2c:30:be:9a:c1:ce:98:d8:87:89:fd:74:19:c8:bb:03:cb:03: 3c:7e:63:22:77:f3:22:e9:dd:27:ed:07:54:c5:5a:38:b5:b3: 48:34:9c:b1:5f:5d:dc:5c:5e:8c:c0:6f:91:72:2b:95:09:7c: 08:2e:07:47:58:f0:90:6c:42:b1:27:49:1a:ba:c1:6b:29:e4: 69:97:7f:5d:40:86:85:a9:ed:d4:45:7f:34:be:06:f8:8c:f4: 09:7c:1f:11:25:26:5e:9f:fe:f4:45:a5:5e:24:b3:1d:36:7b: 2b:81:10:12:f6:b9:26:70:3c:2e:a2:5d:b4:47:51:89:94:d9: bf:01:3a:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT/SE9qjGUGulmE1XDmPdQg5nL6kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAyMDAwMDAwWhcNMjQxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4N2Q1YzRlNGQ3YjRjMTIxZjk0YTA5ZTZiZGEyZmUyYTM4 MDBkMTQ0OTM4MzQyNjg3MzVmYTk1ZDVmOTg0ZTQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmAaTXJrhGkPF6Kd8xvkfD5drxEqF65Ub1cVLNGJ/bthDb zUxeeRnzHL54EqCfR2KuSQLmBX6tCDCXlc9MGYGKKt/xa2bvGM46Alri/3yYcM6s whBJRh1VPI8J9MnCShR1RxAmcNchx5QXPc61OkvWdXOSwjFdK6CKhoFZoYspaFyl WU0iEzfuKrNt+VjI/1u8zCMqS7dApGjBP4VeqUlw1r61M5VqWDSKjxZWPcoIlFM+ dyRaXHqy656uSP48eR4BI+X6H+9fupqLkzXx03iWBkPd5PHjX9fufCs+qHQbxgi7 OBdPdRJdEdrF+Tc5mJdhOooE9GRhWvofLMAWZyEDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9/5Z0q/vKji3eA22Xe0pUJuNifkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3NWU2NmU4LTIyZDctNDIzZS1hY2UxLTIwNjdlMDA5YzM3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVowuAwDQYJKoZIhvcNAQELBQADggEBAIODQC5nClUZX0/HB2ti1RiKy5hD PxaVVDUo0L0rK/3KBARBnDrbuZCG3qBC+WvVCsrjvFxk+h9tUjWQpfG1XV0jTfj3 GdhFJEjEpe3rwD5z7WX8t8vCHO/UxnBXesa6R5kCEa0GtlaRNUOwSOio4HYy1I9I F1md2mIQ5v/gyCwwvprBzpjYh4n9dBnIuwPLAzx+YyJ38yLp3SftB1TFWji1s0g0 nLFfXdxcXozAb5FyK5UJfAguB0dY8JBsQrEnSRq6wWsp5GmXf11AhoWp7dRFfzS+ BviM9Al8HxElJl6f/vRFpV4ksx02eyuBEBL2uSZwPC6iXbRHUYmU2b8BOuI= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:22 2024 by rpki-client on console-fra.rpki-client.org