$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac44a161-07d5-4395-a26c-092d6289d298.roa File: ac44a161-07d5-4395-a26c-092d6289d298.roa (raw, json) Hash identifier: jiSkxJbiZFlfLJ/41IexdzGFeFoYU8kFQShHxHDBsjA= Subject key identifier: 0C:A1:22:C4:5A:CE:C6:94:0D:F3:F6:39:A9:61:09:9C:97:C1:ED:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21390E2DF5F28968B2B5F985CCD8C548B0820A24 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac44a161-07d5-4395-a26c-092d6289d298.roa Signing time: Wed 06 Nov 2024 00:00:00 +0000 ROA not before: Wed 06 Nov 2024 00:00:00 +0000 ROA not after: Wed 11 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 216.83.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:39:0e:2d:f5:f2:89:68:b2:b5:f9:85:cc:d8:c5:48:b0:82:0a:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 6 00:00:00 2024 GMT Not After : Dec 11 23:59:59 2024 GMT Subject: serialNumber=973536e948486894f7a67e32b0c38f36a1b901e534d94a4753a7260b6e06059c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:78:db:07:36:20:35:26:95:8f:f8:d5:46:6f: 82:21:06:d3:fc:9d:08:e7:37:59:bc:b3:9c:2b:88: 7d:3c:f7:18:00:2a:8d:92:db:6a:da:b4:01:32:78: 7a:ca:a4:02:3e:eb:d3:dc:49:e9:b0:46:cf:03:5d: a0:c9:1c:ce:9c:9a:83:18:a7:a4:c5:ef:41:23:0e: ed:15:23:56:ac:17:8a:f1:10:d8:70:8f:68:c6:66: fc:08:fb:b0:46:c6:7e:3a:56:6e:75:d6:32:8d:a7: 22:ce:6b:3f:a1:57:e0:c5:df:80:ff:70:c6:25:5e: 88:8b:cd:01:ce:95:02:1d:0f:09:6d:27:a8:0d:68: 38:5d:0f:31:09:c4:5f:fb:95:e3:36:6a:0a:77:8a: 0d:cb:45:fd:57:4f:aa:9c:13:4c:8e:4d:49:9e:93: a9:57:6e:07:f6:7c:1a:52:47:bd:b3:eb:44:c5:30: ea:0c:ab:19:34:5c:c6:21:62:30:4d:b6:98:49:3a: e1:1e:22:1d:78:b4:c4:37:7f:5d:06:fc:ed:ce:55: bd:46:6a:6a:7c:8f:ae:af:90:75:e8:0b:c6:00:80: b7:11:41:ac:bb:74:c1:61:95:8c:d4:1b:ff:f5:e4: d5:0b:7f:40:35:f3:0d:13:da:ce:07:95:0e:e6:25: 27:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A1:22:C4:5A:CE:C6:94:0D:F3:F6:39:A9:61:09:9C:97:C1:ED:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac44a161-07d5-4395-a26c-092d6289d298.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.83.224.0/19 Signature Algorithm: sha256WithRSAEncryption 0b:86:43:38:48:1d:c7:b3:b4:23:8d:21:0c:c1:52:17:66:72: 72:df:11:09:e1:9c:1d:3d:01:60:ac:36:71:27:21:0c:b8:44: 5f:a1:94:ec:fd:52:ae:b3:1d:36:6a:a5:8a:a8:6e:06:07:1a: 08:53:54:75:46:4b:5c:43:5c:2d:fa:6c:32:b6:ab:23:71:79: a8:f0:bf:27:41:e6:6a:7a:3f:7f:42:6b:be:93:9c:42:a7:14: 90:04:9f:40:11:04:ed:63:d4:2b:dc:2d:c3:c0:8b:ed:09:2f: 35:3a:3b:ce:08:26:01:37:d0:00:fc:e4:f6:7b:fd:ba:c5:19: ca:ac:d9:77:08:b9:b5:ac:4d:fe:5c:b7:64:ac:c0:29:c4:5c: be:23:ef:11:38:70:9c:2a:3e:52:b3:85:e1:43:a8:98:69:56: 15:8d:89:53:40:b2:8a:55:55:94:dc:9c:39:fa:4e:4d:eb:d9: 4b:02:2f:a5:fa:b5:76:c5:38:dd:62:fd:ff:2f:52:89:ab:74: f4:19:1f:2f:8b:b9:aa:39:15:da:e4:28:e8:50:84:26:25:f0: f6:fe:39:ee:1f:c7:b4:e4:50:4b:1d:0a:14:bb:78:59:fc:df: b9:eb:78:56:06:0b:8a:a6:74:6e:53:f6:e2:0c:46:d8:c3:4f: 89:4a:87:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUITkOLfXyiWiytfmFzNjFSLCCCiQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA2MDAwMDAwWhcNMjQxMjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzM1MzZlOTQ4NDg2ODk0ZjdhNjdlMzJiMGMzOGYzNmEx YjkwMWU1MzRkOTRhNDc1M2E3MjYwYjZlMDYwNTljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoeNsHNiA1JpWP+NVGb4IhBtP8nQjnN1m8s5wriH089xgA Ko2S22ratAEyeHrKpAI+69PcSemwRs8DXaDJHM6cmoMYp6TF70EjDu0VI1asF4rx ENhwj2jGZvwI+7BGxn46Vm511jKNpyLOaz+hV+DF34D/cMYlXoiLzQHOlQIdDwlt J6gNaDhdDzEJxF/7leM2agp3ig3LRf1XT6qcE0yOTUmek6lXbgf2fBpSR72z60TF MOoMqxk0XMYhYjBNtphJOuEeIh14tMQ3f10G/O3OVb1Gamp8j66vkHXoC8YAgLcR Qay7dMFhlYzUG//15NULf0A18w0T2s4HlQ7mJSdpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDKEixFrOxpQN8/Y5qWEJnJfB7ZIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjNDRhMTYxLTA3ZDUtNDM5NS1hMjZjLTA5MmQ2Mjg5ZDI5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXYU+AwDQYJKoZIhvcNAQELBQADggEBAAuGQzhIHceztCONIQzBUhdmcnLf EQnhnB09AWCsNnEnIQy4RF+hlOz9Uq6zHTZqpYqobgYHGghTVHVGS1xDXC36bDK2 qyNxeajwvydB5mp6P39Ca76TnEKnFJAEn0ARBO1j1CvcLcPAi+0JLzU6O84IJgE3 0AD85PZ7/brFGcqs2XcIubWsTf5ct2SswCnEXL4j7xE4cJwqPlKzheFDqJhpVhWN iVNAsopVVZTcnDn6Tk3r2UsCL6X6tXbFON1i/f8vUomrdPQZHy+Luao5FdrkKOhQ hCYl8Pb+Oe4fx7TkUEsdChS7eFn837nreFYGC4qmdG5T9uIMRtjDT4lKh50= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:22 2024 by rpki-client on console-fra.rpki-client.org