$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a943f07c-803a-494b-ac3a-c1da0a65f0d4.roa File: a943f07c-803a-494b-ac3a-c1da0a65f0d4.roa (raw, json) Hash identifier: L3Ynkect8nxBYVPEdqyFERfFG+yDucH2h/qPt537WbE= Subject key identifier: 66:49:A9:F7:48:53:1D:B8:46:9B:CA:C7:94:14:BB:65:08:F5:6E:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5879DBBC3881897B46B917E110AA0707F2A676F2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a943f07c-803a-494b-ac3a-c1da0a65f0d4.roa Signing time: Wed 13 Nov 2024 00:00:00 +0000 ROA not before: Wed 13 Nov 2024 00:00:00 +0000 ROA not after: Wed 18 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:79:db:bc:38:81:89:7b:46:b9:17:e1:10:aa:07:07:f2:a6:76:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 13 00:00:00 2024 GMT Not After : Dec 18 23:59:59 2024 GMT Subject: serialNumber=5b5dc566767de1fd653ab783a2a909226ed9931cd20abc0d56ccc01f5f61dfa7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:87:8c:dc:79:6a:95:2f:fb:94:ea:6d:ad:9e: a8:f5:c8:f1:52:57:89:01:6e:6f:e9:77:2b:12:fa: b1:ed:fc:da:15:92:18:f2:0f:72:b4:dd:f0:27:3c: 63:4c:26:4c:a4:70:40:1c:8c:f6:b2:15:04:b9:db: 20:5a:8e:8c:50:24:48:84:cb:44:f6:7e:ea:8c:b2: ba:01:c2:51:e7:fa:5d:10:48:d4:08:68:75:ce:c4: 43:c2:f6:5d:ca:8a:ac:2b:ba:29:9c:e9:b6:fa:a0: 90:9c:8e:9a:bb:03:2e:32:ab:68:c8:71:96:6c:27: 1d:4d:59:82:09:5a:1a:f5:14:48:7a:1f:6d:b9:6f: 5e:23:f8:be:35:9b:8f:b5:10:ba:8c:18:29:56:8e: 98:79:a4:08:58:b1:8d:ba:3b:0a:e6:39:c0:30:d3: 57:5c:75:24:56:7a:ac:2d:70:d2:6e:50:24:3b:e7: db:02:3f:18:cc:50:eb:60:7c:63:fc:ad:12:c5:c9: 8a:5e:96:e6:57:54:f1:17:3f:62:3a:18:8f:05:e3: 49:cb:eb:22:68:e0:62:82:8f:ec:e9:73:13:39:74: 6a:28:55:7f:6b:90:00:e6:87:f8:b2:ca:52:e3:55: 28:1e:69:87:10:4d:4b:cf:08:12:75:02:56:d7:b5: f6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:49:A9:F7:48:53:1D:B8:46:9B:CA:C7:94:14:BB:65:08:F5:6E:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a943f07c-803a-494b-ac3a-c1da0a65f0d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.71.0/24 Signature Algorithm: sha256WithRSAEncryption c9:cf:e3:55:14:6c:53:6a:00:88:92:ee:68:52:43:8e:b4:b0: a2:5f:1a:6f:26:bd:b6:64:1f:9d:61:25:15:49:5d:98:06:e4: 7c:95:be:b7:ea:45:c2:18:ca:f4:0c:7f:62:a3:94:f2:88:87: 5e:66:1b:47:72:68:28:37:0f:81:32:4d:1c:75:45:ec:5a:6a: c1:b9:a3:1d:d6:35:77:cc:72:95:e8:a6:4b:2a:0e:38:8f:8d: 92:5f:4b:d8:08:92:4f:b5:0d:02:91:2d:97:8c:5e:ca:6c:33: a7:c5:2a:f8:d4:5c:1e:82:5e:d1:51:a8:33:dd:56:51:6e:a8: fa:ec:e4:fd:d9:c1:75:55:b3:c3:fe:ea:96:05:25:a4:5f:41: f5:fb:9c:1d:48:89:76:55:ab:14:17:7d:8c:9e:51:6c:1f:73: 21:b6:93:6e:1d:0f:a2:fd:68:02:b2:df:bb:b7:34:99:24:74: 10:bb:5b:04:7c:df:23:a4:20:57:2d:bd:a8:43:cf:e1:72:77: 15:e0:16:68:f5:1a:71:48:da:0a:f9:97:15:b4:29:8b:5a:22: 9f:df:36:b9:a7:4e:67:ce:a2:39:5d:06:a3:5d:b7:e7:5c:2b: 30:16:23:73:07:96:54:93:1d:16:cc:c4:3a:85:50:38:83:7a: 33:ff:d1:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWHnbvDiBiXtGuRfhEKoHB/KmdvIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTEzMDAwMDAwWhcNMjQxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjVkYzU2Njc2N2RlMWZkNjUzYWI3ODNhMmE5MDkyMjZl ZDk5MzFjZDIwYWJjMGQ1NmNjYzAxZjVmNjFkZmE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSh4zceWqVL/uU6m2tnqj1yPFSV4kBbm/pdysS+rHt/NoV khjyD3K03fAnPGNMJkykcEAcjPayFQS52yBajoxQJEiEy0T2fuqMsroBwlHn+l0Q SNQIaHXOxEPC9l3Kiqwruimc6bb6oJCcjpq7Ay4yq2jIcZZsJx1NWYIJWhr1FEh6 H225b14j+L41m4+1ELqMGClWjph5pAhYsY26OwrmOcAw01dcdSRWeqwtcNJuUCQ7 59sCPxjMUOtgfGP8rRLFyYpeluZXVPEXP2I6GI8F40nL6yJo4GKCj+zpcxM5dGoo VX9rkADmh/iyylLjVSgeaYcQTUvPCBJ1AlbXtfb1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZkmp90hTHbhGm8rHlBS7ZQj1bo8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5NDNmMDdjLTgwM2EtNDk0Yi1hYzNhLWMxZGEwYTY1ZjBkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAQDEcwDQYJKoZIhvcNAQELBQADggEBAMnP41UUbFNqAIiS7mhSQ460sKJf Gm8mvbZkH51hJRVJXZgG5HyVvrfqRcIYyvQMf2KjlPKIh15mG0dyaCg3D4EyTRx1 RexaasG5ox3WNXfMcpXopksqDjiPjZJfS9gIkk+1DQKRLZeMXspsM6fFKvjUXB6C XtFRqDPdVlFuqPrs5P3ZwXVVs8P+6pYFJaRfQfX7nB1IiXZVqxQXfYyeUWwfcyG2 k24dD6L9aAKy37u3NJkkdBC7WwR83yOkIFctvahDz+FydxXgFmj1GnFI2gr5lxW0 KYtaIp/fNrmnTmfOojldBqNdt+dcKzAWI3MHllSTHRbMxDqFUDiDejP/0dg= -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:44 2024 by rpki-client on console-fra.rpki-client.org