$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af9fa9ce-3247-481e-903a-9fd3ee1a9be8.roa File: af9fa9ce-3247-481e-903a-9fd3ee1a9be8.roa (raw, json) Hash identifier: L6rQAkndlHNCzfeSVfzrLeMf+0nsVKfX+gY1OTD6EDQ= Subject key identifier: 0B:EC:65:DC:02:7F:43:0D:6E:40:44:6A:7B:AE:23:2B:63:79:A9:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32A8408BF7797C662870433C10D46BC6861ED529 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af9fa9ce-3247-481e-903a-9fd3ee1a9be8.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 199.183.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:a8:40:8b:f7:79:7c:66:28:70:43:3c:10:d4:6b:c6:86:1e:d5:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=5a0cc1a38d24bb1c2c648aa2425abf217e8db9a5f958c6a159a9d259cbda8485, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:34:f5:69:58:2c:b4:4b:41:d8:05:96:d4:52: a0:2e:0b:19:78:25:40:fb:03:d9:48:81:f7:61:fa: 35:a0:af:7a:b1:de:a7:56:52:44:a4:df:f8:25:ca: 71:03:23:39:34:2b:1f:a6:29:72:dc:b6:28:52:f7: bb:72:3a:0c:49:ab:cd:7f:96:67:ca:7a:e3:b1:8d: b4:83:0f:e9:77:39:0f:89:57:0f:5d:b0:90:2b:50: 52:1f:56:d3:16:f9:ed:04:44:5c:29:ea:88:8b:cf: b2:71:42:b6:ff:53:bb:69:6c:fa:62:ee:78:d3:00: 76:1d:1b:75:2f:92:6e:30:2b:fc:d0:94:30:76:fd: 79:86:66:73:b2:c1:4d:9f:9f:bc:52:b2:0d:d6:2a: e1:1d:55:fa:0f:45:7a:98:ca:5b:e2:0e:8a:e0:b7: 3c:5c:a0:36:3f:e0:46:95:5a:72:74:1e:54:20:b3: 0d:48:32:49:56:d5:0d:08:d5:8f:c1:63:67:df:8c: 6c:07:da:0c:93:02:1c:e4:0e:01:c5:40:35:44:ce: e2:a1:d0:fa:0a:5b:88:0e:6b:4b:af:1a:58:03:05: fa:6a:d2:78:20:b9:7c:17:4e:d5:fe:07:10:34:7a: 82:b7:b1:d9:fc:ba:fe:a0:0a:66:99:5f:c4:f3:ca: 35:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EC:65:DC:02:7F:43:0D:6E:40:44:6A:7B:AE:23:2B:63:79:A9:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af9fa9ce-3247-481e-903a-9fd3ee1a9be8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.183.0.0/20 Signature Algorithm: sha256WithRSAEncryption 79:3d:99:23:b0:81:f7:f3:67:27:e0:f0:9d:25:59:63:12:cd: a8:90:e1:a2:a6:ec:08:77:fc:ac:73:c2:9a:c8:23:9b:56:40: 04:9f:3c:21:af:f3:0f:f7:ca:03:89:ed:d7:58:6d:98:ec:9c: 4b:88:d9:2f:07:ca:86:d2:d6:03:68:63:20:98:72:34:8c:9c: 77:09:f9:b5:b5:1b:65:aa:66:da:de:b1:d4:89:ec:e9:d5:b2: 6d:92:52:26:6f:fd:52:96:61:e7:4c:06:79:58:57:32:a6:ae: bb:9c:8c:63:a8:59:ce:da:90:d8:43:a1:a4:14:a4:4c:1f:c6: 07:9f:22:92:62:2e:b9:d4:bd:03:c2:d4:87:70:17:1c:9c:3f: 1c:3f:52:f2:21:fe:17:24:2b:b4:c0:6e:00:cf:72:93:94:76: 13:fd:0e:0e:9c:36:22:a3:e0:86:ba:fe:eb:d2:2f:79:ac:4b: 01:6e:3b:a2:d0:bf:5e:47:7a:1c:43:c3:21:31:e1:e6:8c:fd: 09:aa:56:00:75:d4:8a:31:d5:02:12:ac:4c:ee:73:c5:53:aa: a7:1f:58:01:07:af:5b:a4:00:2f:1d:d3:f0:a6:f6:b1:3f:7d: fd:17:b9:a3:b5:dc:43:f3:db:5c:54:4b:20:fa:84:23:cb:e8: c9:9c:1a:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMqhAi/d5fGYocEM8ENRrxoYe1SkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTBjYzFhMzhkMjRiYjFjMmM2NDhhYTI0MjVhYmYyMTdl OGRiOWE1Zjk1OGM2YTE1OWE5ZDI1OWNiZGE4NDg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFNPVpWCy0S0HYBZbUUqAuCxl4JUD7A9lIgfdh+jWgr3qx 3qdWUkSk3/glynEDIzk0Kx+mKXLctihS97tyOgxJq81/lmfKeuOxjbSDD+l3OQ+J Vw9dsJArUFIfVtMW+e0ERFwp6oiLz7JxQrb/U7tpbPpi7njTAHYdG3Uvkm4wK/zQ lDB2/XmGZnOywU2fn7xSsg3WKuEdVfoPRXqYylviDorgtzxcoDY/4EaVWnJ0HlQg sw1IMklW1Q0I1Y/BY2ffjGwH2gyTAhzkDgHFQDVEzuKh0PoKW4gOa0uvGlgDBfpq 0ngguXwXTtX+BxA0eoK3sdn8uv6gCmaZX8TzyjUJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUC+xl3AJ/Qw1uQERqe64jK2N5qbwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmOWZhOWNlLTMyNDctNDgxZS05MDNhLTlmZDNlZTFhOWJlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATHtwAwDQYJKoZIhvcNAQELBQADggEBAHk9mSOwgffzZyfg8J0lWWMSzaiQ 4aKm7Ah3/KxzwprII5tWQASfPCGv8w/3ygOJ7ddYbZjsnEuI2S8HyobS1gNoYyCY cjSMnHcJ+bW1G2WqZtresdSJ7OnVsm2SUiZv/VKWYedMBnlYVzKmrrucjGOoWc7a kNhDoaQUpEwfxgefIpJiLrnUvQPC1IdwFxycPxw/UvIh/hckK7TAbgDPcpOUdhP9 Dg6cNiKj4Ia6/uvSL3msSwFuO6LQv15HehxDwyEx4eaM/QmqVgB11Iox1QISrEzu c8VTqqcfWAEHr1ukAC8d0/Cm9rE/ff0XuaO13EPz21xUSyD6hCPL6MmcGu8= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:23 2024 by rpki-client on console-fra.rpki-client.org