$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa File: aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa (raw, json) Hash identifier: Cb6yR3pT6lNPkKYZX44YHWo6GU7Fss+V0RDUZ7SCWDs= Subject key identifier: 12:41:73:97:E9:9E:A2:D5:D2:6C:A7:B9:62:3E:D6:A5:E4:0F:84:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FB5439B9F421EA98D6DF71CBE78AE29B9BBC9DC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f23:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:b5:43:9b:9f:42:1e:a9:8d:6d:f7:1c:be:78:ae:29:b9:bb:c9:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=7adcdc2564c1301eefbf31711a72a8a70a8da8a4531dc9dc64cc57b0853b9f49, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d4:b8:02:68:07:6b:5c:25:48:f9:f9:d6:33: b7:87:bf:54:ba:ad:4c:3f:ab:09:d0:83:23:b9:bc: dc:66:1b:a1:40:a1:a2:e0:09:eb:b8:01:02:e0:47: 51:19:ff:33:29:53:d9:6b:cb:79:57:5f:20:0b:a2: 1e:a0:2e:89:0e:7a:98:fd:ce:90:9e:4e:68:c8:f5: eb:a3:47:04:db:fa:30:e0:47:17:81:4a:2e:83:a2: d2:60:03:4a:20:06:1a:c1:94:c7:da:5a:d1:8d:38: 5a:8d:f5:dd:a7:f0:b4:8e:d7:ab:b8:51:ad:44:67: 95:0b:29:2c:79:df:4f:25:57:4a:8c:2d:04:9e:a2: ec:7e:3d:07:bf:cf:1c:21:c8:68:27:77:37:4e:ce: 6a:af:f1:81:54:2b:fa:5c:2b:a9:23:77:7e:f2:a3: 0c:7e:b5:82:ed:fc:b5:ef:15:77:2e:9e:6e:45:65: 70:d6:5f:37:4a:c8:88:7d:a8:62:34:ae:f3:f6:1f: 0f:fa:47:1f:af:88:24:46:92:48:53:29:18:1c:be: 13:5c:75:5b:7e:7a:7e:cc:c7:b9:57:6f:14:57:08: 94:a8:39:63:af:ac:ea:df:55:fa:a6:49:b9:c8:a9: 7b:40:fd:7d:1a:15:5b:88:ca:c8:4a:54:cd:35:7e: 88:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:41:73:97:E9:9E:A2:D5:D2:6C:A7:B9:62:3E:D6:A5:E4:0F:84:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f23:8000::/36 Signature Algorithm: sha256WithRSAEncryption 1a:91:f9:7c:2e:c8:6a:c5:c6:e8:3b:92:c8:0e:f9:70:3c:41: 3b:a9:17:b9:ca:b9:69:a4:57:19:bd:0d:0f:84:71:30:f3:e7: d8:2d:1f:8d:52:d1:b8:6b:ee:98:6f:83:f4:46:64:e2:dd:b2: 44:7c:b7:a4:c8:66:e4:12:8f:2e:71:a8:df:fc:8c:e8:92:96: 04:ef:d8:9e:70:63:eb:18:3b:fe:22:13:3e:69:1e:83:de:ed: 2a:48:11:42:27:be:d0:01:6d:d0:07:85:56:6d:2b:04:b5:f2: 28:24:24:8b:90:c4:91:d4:33:fd:17:45:81:86:a8:fb:83:90: 2c:fa:db:3e:66:12:e1:71:ad:95:20:7f:b4:61:eb:84:87:61: 5d:6f:c1:66:cc:89:94:ca:48:fb:1a:99:83:cb:09:c6:ff:72: 2b:06:3d:d0:79:1a:d9:8c:fd:0d:ff:69:2c:27:52:45:ed:9f: 02:5c:aa:0f:b1:da:cd:34:b2:46:7b:2c:0a:f2:93:c5:86:90: 2e:f3:3b:dc:e8:20:45:57:c3:68:50:11:42:b5:0b:2e:04:94: 98:e2:76:93:c0:bb:50:42:d2:03:cf:20:15:b7:14:3b:b8:d4: eb:62:75:19:cb:d4:ad:78:ac:d1:32:15:1d:f8:9e:4b:b7:41: c9:d0:ea:cc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUT7VDm59CHqmNbfccvniuKbm7ydwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWRjZGMyNTY0YzEzMDFlZWZiZjMxNzExYTcyYThhNzBh OGRhOGE0NTMxZGM5ZGM2NGNjNTdiMDg1M2I5ZjQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw1LgCaAdrXCVI+fnWM7eHv1S6rUw/qwnQgyO5vNxmG6FA oaLgCeu4AQLgR1EZ/zMpU9lry3lXXyALoh6gLokOepj9zpCeTmjI9eujRwTb+jDg RxeBSi6DotJgA0ogBhrBlMfaWtGNOFqN9d2n8LSO16u4Ua1EZ5ULKSx5308lV0qM LQSeoux+PQe/zxwhyGgndzdOzmqv8YFUK/pcK6kjd37yowx+tYLt/LXvFXcunm5F ZXDWXzdKyIh9qGI0rvP2Hw/6Rx+viCRGkkhTKRgcvhNcdVt+en7Mx7lXbxRXCJSo OWOvrOrfVfqmSbnIqXtA/X0aFVuIyshKVM01foj9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUEkFzl+meotXSbKe5Yj7WpeQPhOAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlYTFhOGM0LTk2MjMtNDgyZS1iYWM4LTdmNDdhYjJlNjExNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8jgDANBgkqhkiG9w0BAQsFAAOCAQEAGpH5fC7IasXG6DuSyA75cDxB O6kXucq5aaRXGb0ND4RxMPPn2C0fjVLRuGvumG+D9EZk4t2yRHy3pMhm5BKPLnGo 3/yM6JKWBO/YnnBj6xg7/iITPmkeg97tKkgRQie+0AFt0AeFVm0rBLXyKCQki5DE kdQz/RdFgYao+4OQLPrbPmYS4XGtlSB/tGHrhIdhXW/BZsyJlMpI+xqZg8sJxv9y KwY90Hka2Yz9Df9pLCdSRe2fAlyqD7HazTSyRnssCvKTxYaQLvM73OggRVfDaFAR QrULLgSUmOJ2k8C7UELSA88gFbcUO7jU62J1GcvUrXis0TIVHfieS7dBydDqzA== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:25 2024 by rpki-client on console-ams.rpki-client.org