$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa7f7c79-40df-472e-a5db-14f0232f9460.roa File: aa7f7c79-40df-472e-a5db-14f0232f9460.roa (raw, json) Hash identifier: 5r1VXqniUbYEyVkm5ZBh4kU7FZDVwUvLaA51SnqNvvI= Subject key identifier: DA:2F:43:6F:1C:9E:F4:65:AB:BB:3A:98:CD:D6:F1:59:53:EF:C2:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56A25E89E70F014EB85417E3F4B56FA847532368 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa7f7c79-40df-472e-a5db-14f0232f9460.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 173.246.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:a2:5e:89:e7:0f:01:4e:b8:54:17:e3:f4:b5:6f:a8:47:53:23:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=5ca8fc19892def635ac7056c9223c1e6ea33226a9c867c485850b715e1e8a90f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:27:e6:85:20:83:92:ae:96:a9:a3:8f:e9:e2: 5c:89:28:ac:3b:35:da:05:3d:e4:ff:85:01:14:63: d1:57:0b:9c:35:eb:51:4e:6d:9f:93:51:12:99:81: 86:74:cc:c6:2f:fd:06:b1:62:2e:e4:0f:60:78:50: 58:e4:78:82:cc:65:fd:d2:99:ce:74:91:b6:b9:29: 28:2e:bd:88:2d:3c:41:f2:bc:53:82:06:b5:f0:e6: 3f:fa:08:87:dc:4a:52:c5:01:70:cf:2c:e9:bb:b0: ae:8e:78:8b:1c:1d:b0:56:8b:58:22:6b:a9:c8:06: f5:99:ea:4b:03:0c:ca:14:b4:57:e3:b2:aa:da:94: 50:59:f9:0f:d1:57:87:d8:ad:d3:57:b6:a4:ac:0c: 09:30:de:70:28:9e:72:89:72:42:7e:8c:45:3d:91: a6:08:d7:d0:02:89:59:cc:f5:d5:6b:81:e9:13:48: 6a:32:e5:5c:4d:59:52:9c:33:87:4a:38:e1:aa:5b: 12:5e:2f:99:78:8e:9a:43:e3:b8:88:ad:68:93:a9: 17:8d:80:16:d7:18:89:fd:27:e9:e0:b1:9b:fb:33: 2a:a0:0a:6e:05:30:49:f0:e1:f4:77:8d:7d:d4:7f: 02:13:fd:2b:66:5d:6d:25:15:52:f0:6f:f5:50:59: 0b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:2F:43:6F:1C:9E:F4:65:AB:BB:3A:98:CD:D6:F1:59:53:EF:C2:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa7f7c79-40df-472e-a5db-14f0232f9460.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.246.160.0/19 Signature Algorithm: sha256WithRSAEncryption 72:16:d7:68:4a:b5:4d:69:4e:23:74:cf:53:08:29:c3:af:ed: 6a:0d:3f:17:1a:1f:59:c4:c3:3c:ca:05:78:54:fd:36:dc:0d: e1:4e:8b:a4:a7:45:da:c3:fc:61:1a:71:0e:5f:43:b6:dc:7e: 08:df:f5:e7:5b:c5:29:05:f5:ee:a5:ca:53:ad:95:07:c7:06: 4d:9d:f6:3f:2d:a4:12:1c:07:21:43:59:68:82:75:9a:97:e0: b3:9f:de:da:3a:e4:fc:ad:da:81:9c:28:23:54:49:4c:15:5a: a9:da:c6:ca:bc:6b:3a:0f:da:b0:33:5b:1f:71:40:7e:c9:ea: d9:e9:31:0f:e4:8b:51:64:ed:a1:a4:2a:d5:bb:85:89:2d:14: d0:e0:a3:63:0b:53:c8:6f:4a:65:dd:ee:a4:23:23:a5:e5:f1: ca:88:28:f2:51:22:57:76:7b:d7:bd:1b:17:0e:8c:89:7d:d4: 1c:76:6a:da:a4:1a:cc:e0:f0:83:30:7e:21:a0:bf:a5:20:99: e2:32:e6:2c:ec:de:3f:b9:f5:47:38:e9:c8:49:4a:6b:24:8e: 08:a8:12:dc:3f:87:5a:1a:14:7c:77:4f:2c:99:a0:c0:ec:df: 25:e4:8b:55:27:7e:d3:84:b2:b0:57:17:b2:52:da:7c:f5:77: f7:c9:f0:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVqJeiecPAU64VBfj9LVvqEdTI2gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2E4ZmMxOTg5MmRlZjYzNWFjNzA1NmM5MjIzYzFlNmVh MzMyMjZhOWM4NjdjNDg1ODUwYjcxNWUxZThhOTBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgJ+aFIIOSrpapo4/p4lyJKKw7NdoFPeT/hQEUY9FXC5w1 61FObZ+TURKZgYZ0zMYv/QaxYi7kD2B4UFjkeILMZf3Smc50kba5KSguvYgtPEHy vFOCBrXw5j/6CIfcSlLFAXDPLOm7sK6OeIscHbBWi1gia6nIBvWZ6ksDDMoUtFfj sqralFBZ+Q/RV4fYrdNXtqSsDAkw3nAonnKJckJ+jEU9kaYI19ACiVnM9dVrgekT SGoy5VxNWVKcM4dKOOGqWxJeL5l4jppD47iIrWiTqReNgBbXGIn9J+ngsZv7Myqg Cm4FMEnw4fR3jX3UfwIT/StmXW0lFVLwb/VQWQsrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2i9Dbxye9GWruzqYzdbxWVPvwkUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhN2Y3Yzc5LTQwZGYtNDcyZS1hNWRiLTE0ZjAyMzJmOTQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWt9qAwDQYJKoZIhvcNAQELBQADggEBAHIW12hKtU1pTiN0z1MIKcOv7WoN PxcaH1nEwzzKBXhU/TbcDeFOi6SnRdrD/GEacQ5fQ7bcfgjf9edbxSkF9e6lylOt lQfHBk2d9j8tpBIcByFDWWiCdZqX4LOf3to65Pyt2oGcKCNUSUwVWqnaxsq8azoP 2rAzWx9xQH7J6tnpMQ/ki1Fk7aGkKtW7hYktFNDgo2MLU8hvSmXd7qQjI6Xl8cqI KPJRIld2e9e9GxcOjIl91Bx2atqkGszg8IMwfiGgv6UgmeIy5izs3j+59Uc46chJ SmskjgioEtw/h1oaFHx3TyyZoMDs3yXki1UnftOEsrBXF7JS2nz1d/fJ8C8= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:22 2024 by rpki-client on console-fra.rpki-client.org