$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e10e99-2370-4a73-b6e9-3f7b8428e71a.roa File: a7e10e99-2370-4a73-b6e9-3f7b8428e71a.roa (raw, json) Hash identifier: qtCX44yecRsvIhmzk4sVC2yV6jaNcmHpCzBwi62EoB8= Subject key identifier: B3:9A:7F:75:F6:F6:29:68:7D:4D:98:5E:77:C0:C1:76:CA:AE:AF:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D933503073727E86699FF31A967D4D4B49C4D64 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e10e99-2370-4a73-b6e9-3f7b8428e71a.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 136.9.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:93:35:03:07:37:27:e8:66:99:ff:31:a9:67:d4:d4:b4:9c:4d:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=d007856526c40c7f056298da07eaa1ae35d64e3c20dfa98bc767033c76daf2a1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:a2:3c:e9:b6:dc:d1:46:eb:66:45:71:b5:13: 5b:f3:a5:bb:b5:5d:b7:d5:43:d0:43:b6:bd:cc:84: 3e:c7:35:c1:91:c1:f8:70:95:1e:f0:c6:98:ae:45: 50:0f:0d:48:39:fd:e1:18:1e:8e:e9:1b:47:3b:c7: 36:c1:99:88:17:6b:07:0a:48:de:31:3a:73:30:56: 7d:67:91:b2:91:8b:92:41:b1:25:96:f4:98:67:53: 07:5d:ba:21:13:17:6b:ab:2d:21:90:61:e6:ce:72: bc:89:6b:58:ff:e6:84:95:8c:43:e5:55:bf:b1:b8: 10:5a:5c:5f:a9:a6:3e:a4:1f:0f:42:6c:0a:dc:5b: 7c:d7:bc:a8:6a:6c:fb:84:6e:2c:73:4c:2d:14:b7: a5:47:c6:be:f6:45:f4:d3:0c:62:11:7e:e7:26:94: 8a:ea:c3:28:38:8b:87:62:bc:6d:ec:1d:aa:aa:d2: dd:c0:83:0f:dd:f0:f0:ca:1b:be:78:b7:30:0b:52: 72:7c:6b:15:b7:c5:3b:76:25:8d:bd:4f:f0:07:fc: 89:ad:04:fd:f0:52:68:53:f7:7e:1e:50:51:db:56: c8:83:33:f0:59:0a:b9:fa:a6:41:24:e7:a4:0d:d6: 23:e6:9c:bf:f9:a4:69:9c:95:53:f9:92:99:5a:a2: ea:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:9A:7F:75:F6:F6:29:68:7D:4D:98:5E:77:C0:C1:76:CA:AE:AF:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e10e99-2370-4a73-b6e9-3f7b8428e71a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.9.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:80:fc:9c:07:5e:70:a0:80:1a:4c:93:5c:54:c6:32:07:80: 4f:63:cd:9a:08:4a:8a:db:ba:fe:3c:ce:7b:5a:41:9c:d7:f7: 59:91:bc:7c:dc:8d:ab:71:36:90:8e:e2:e5:fd:6e:69:27:13: 91:43:38:9e:66:4c:a5:dc:bd:8f:f0:38:fa:25:f1:0d:e0:b8: 6a:be:ef:a4:2c:e2:68:0b:1b:e0:3c:2d:3b:a8:7c:eb:c4:83: eb:86:45:b7:66:00:27:d6:12:15:7b:a4:ae:e8:e7:aa:ab:d4: d5:70:92:76:57:b5:e9:9f:22:70:c0:a4:14:1d:45:55:e1:9f: 58:2f:36:fd:7d:58:7f:32:e2:18:85:9d:46:2b:23:77:e1:87: af:b2:2c:ce:a1:ab:fb:a0:64:91:a4:2f:52:28:6b:87:34:06: 30:b6:ef:27:99:b3:aa:a4:19:1a:d5:0a:03:d3:84:63:23:44: 15:97:46:0c:67:56:8f:79:aa:0e:20:bb:ed:d1:f2:f7:c9:10: 2b:d6:8f:92:b6:ae:37:95:26:98:15:79:10:05:ce:62:ea:0a: 31:e4:0b:47:f0:b5:5c:0e:44:cd:be:68:52:d9:f6:ca:4f:a6: 33:15:8f:72:a0:26:09:8b:34:de:3a:af:d2:65:92:d1:94:94: ba:f5:ab:45 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDZM1Awc3J+hmmf8xqWfU1LScTWQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDA3ODU2NTI2YzQwYzdmMDU2Mjk4ZGEwN2VhYTFhZTM1 ZDY0ZTNjMjBkZmE5OGJjNzY3MDMzYzc2ZGFmMmExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXojzpttzRRutmRXG1E1vzpbu1XbfVQ9BDtr3MhD7HNcGR wfhwlR7wxpiuRVAPDUg5/eEYHo7pG0c7xzbBmYgXawcKSN4xOnMwVn1nkbKRi5JB sSWW9JhnUwdduiETF2urLSGQYebOcryJa1j/5oSVjEPlVb+xuBBaXF+ppj6kHw9C bArcW3zXvKhqbPuEbixzTC0Ut6VHxr72RfTTDGIRfucmlIrqwyg4i4divG3sHaqq 0t3Agw/d8PDKG754tzALUnJ8axW3xTt2JY29T/AH/ImtBP3wUmhT934eUFHbVsiD M/BZCrn6pkEk56QN1iPmnL/5pGmclVP5kplaouovAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUs5p/dfb2KWh9TZhed8DBdsqurxMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZTEwZTk5LTIzNzAtNGE3My1iNmU5LTNmN2I4NDI4ZTcxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCICTANBgkqhkiG9w0BAQsFAAOCAQEAfoD8nAdecKCAGkyTXFTGMgeAT2PN mghKitu6/jzOe1pBnNf3WZG8fNyNq3E2kI7i5f1uaScTkUM4nmZMpdy9j/A4+iXx DeC4ar7vpCziaAsb4DwtO6h868SD64ZFt2YAJ9YSFXukrujnqqvU1XCSdle16Z8i cMCkFB1FVeGfWC82/X1YfzLiGIWdRisjd+GHr7IszqGr+6BkkaQvUihrhzQGMLbv J5mzqqQZGtUKA9OEYyNEFZdGDGdWj3mqDiC77dHy98kQK9aPkrauN5UmmBV5EAXO YuoKMeQLR/C1XA5Ezb5oUtn2yk+mMxWPcqAmCYs03jqv0mWS0ZSUuvWrRQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:22 2024 by rpki-client on console-fra.rpki-client.org