$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa File: ab98bfdb-9af4-412f-87c6-d3448c52456d.roa (raw, json) Hash identifier: UBt0yAtDzAznvot+Dlm/pl58CY3hbeku/sIDmedSaS8= Subject key identifier: F2:6A:F8:1A:4E:C4:FA:CD:74:3A:37:04:A2:E0:C9:00:3B:C8:99:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C93BA494A30362FDB1147C2E061F9090B1EB427 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa Signing time: Wed 06 Nov 2024 00:00:00 +0000 ROA not before: Wed 06 Nov 2024 00:00:00 +0000 ROA not after: Wed 11 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8143::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:93:ba:49:4a:30:36:2f:db:11:47:c2:e0:61:f9:09:0b:1e:b4:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 6 00:00:00 2024 GMT Not After : Dec 11 23:59:59 2024 GMT Subject: serialNumber=60d764f6bb3402f77776f18bc71978662c9c91ef9bf0d8bda9dedd346e07095c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:23:ce:a6:0c:db:bb:d5:66:5d:50:49:4f: 7e:2e:71:ae:39:a4:ab:3c:0b:f0:dd:a2:e6:6e:f8: 04:5f:da:a0:2c:39:28:a1:52:31:28:eb:8a:6d:a0: ec:e9:c0:78:f2:b5:20:54:a5:1c:5f:b1:78:2f:98: e0:bc:c2:47:9c:fc:32:92:40:d5:73:30:53:c8:bd: 06:3f:83:41:98:48:c0:01:ce:96:5b:fb:04:f8:73: dc:5a:56:05:5e:fd:08:da:e0:9e:3f:96:30:18:ca: c1:94:66:3c:12:a1:65:20:52:a1:c3:40:bb:9b:24: 88:e8:76:73:5b:91:24:4f:6a:fb:9e:e1:18:05:6c: 83:3e:cc:60:95:c6:a8:2a:ff:ee:d0:9f:8e:56:1b: 65:3a:e7:15:d3:b6:dc:8b:f5:50:cc:67:8a:45:14: 69:d7:01:09:e7:d7:dd:a4:9f:ab:3e:fc:1b:5b:30: a1:d0:3c:45:9a:3f:59:b0:15:4f:83:f7:ef:95:98: dd:0e:e9:95:09:d0:2e:f6:2a:2e:46:b9:bb:c7:c5: 81:5a:25:ce:18:96:e5:a1:fc:c5:67:dc:61:43:b5: 12:c0:12:36:8b:c5:ec:72:f1:f5:6f:53:37:64:ee: ea:06:53:57:c0:af:b5:ed:14:09:82:03:e2:3f:4f: de:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:6A:F8:1A:4E:C4:FA:CD:74:3A:37:04:A2:E0:C9:00:3B:C8:99:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8143::/48 Signature Algorithm: sha256WithRSAEncryption 6b:95:7d:fc:a0:5b:d0:45:f4:ac:ba:5a:af:96:23:d1:0e:f9: a9:c0:e4:70:72:61:93:3b:2e:b6:55:65:b5:34:df:22:0f:5f: fd:08:2b:77:0b:b9:3e:e8:2a:d3:5b:2e:29:d0:87:05:2e:6b: 04:94:f0:8f:42:ed:2f:e8:26:af:4d:a5:38:82:58:c3:ef:95: 3a:7e:68:bd:c8:22:16:38:d9:42:c2:bc:91:fb:67:c8:73:ca: 3e:7d:78:bd:8e:70:35:9e:18:8d:7f:a8:e6:65:7c:21:4c:12: cb:37:07:6c:18:0f:f3:cd:9a:cd:5e:74:6d:28:ce:01:0f:79: 77:8f:46:3f:57:10:3e:b9:5e:f8:9e:c0:50:4c:a1:ee:3e:a8: af:af:93:69:7b:fb:85:5b:54:1a:a9:7a:87:dd:e3:4f:2e:4c: 94:74:dc:a9:7c:a9:03:ae:df:1f:3f:42:1d:48:7b:a8:7e:05: 7a:f4:2a:38:fb:a1:52:86:8f:bd:69:51:63:52:38:30:83:69: cf:ad:ac:28:44:78:46:4e:a6:7f:e2:12:f2:8f:f0:5f:c3:59: 8f:4e:dc:41:1f:ca:0d:25:dd:15:9e:c4:58:2d:1b:7a:eb:39: b5:89:84:48:3d:9c:be:0d:82:8f:68:d4:e1:93:b6:6c:3b:30: cd:89:a1:11 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTJO6SUowNi/bEUfC4GH5CQsetCcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA2MDAwMDAwWhcNMjQxMjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MGQ3NjRmNmJiMzQwMmY3Nzc3NmYxOGJjNzE5Nzg2NjJj OWM5MWVmOWJmMGQ4YmRhOWRlZGQzNDZlMDcwOTVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/uyPOpgzbu9VmXVBJT34uca45pKs8C/DdouZu+ARf2qAs OSihUjEo64ptoOzpwHjytSBUpRxfsXgvmOC8wkec/DKSQNVzMFPIvQY/g0GYSMAB zpZb+wT4c9xaVgVe/Qja4J4/ljAYysGUZjwSoWUgUqHDQLubJIjodnNbkSRPavue 4RgFbIM+zGCVxqgq/+7Qn45WG2U65xXTttyL9VDMZ4pFFGnXAQnn192kn6s+/Btb MKHQPEWaP1mwFU+D9++VmN0O6ZUJ0C72Ki5GubvHxYFaJc4YluWh/MVn3GFDtRLA EjaLxexy8fVvUzdk7uoGU1fAr7XtFAmCA+I/T97vAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8mr4Gk7E+s10OjcEouDJADvImYowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiOThiZmRiLTlhZjQtNDEyZi04N2M2LWQzNDQ4YzUyNDU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gUMwDQYJKoZIhvcNAQELBQADggEBAGuVffygW9BF9Ky6Wq+WI9EO +anA5HByYZM7LrZVZbU03yIPX/0IK3cLuT7oKtNbLinQhwUuawSU8I9C7S/oJq9N pTiCWMPvlTp+aL3IIhY42ULCvJH7Z8hzyj59eL2OcDWeGI1/qOZlfCFMEss3B2wY D/PNms1edG0ozgEPeXePRj9XED65XviewFBMoe4+qK+vk2l7+4VbVBqpeofd408u TJR03Kl8qQOu3x8/Qh1Ie6h+BXr0Kjj7oVKGj71pUWNSODCDac+trChEeEZOpn/i EvKP8F/DWY9O3EEfyg0l3RWexFgtG3rrObWJhEg9nL4Ngo9o1OGTtmw7MM2JoRE= -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:25 2024 by rpki-client on console-ams.rpki-client.org