$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1f4baa3-7fef-4bbc-8462-7fe13d7a165a.roa File: b1f4baa3-7fef-4bbc-8462-7fe13d7a165a.roa (raw, json) Hash identifier: LTMs0qVjcVPte00Dq+nsgueWJy6kUlme6hpapQRcjkE= Subject key identifier: BD:CB:BD:9F:9B:D4:E0:30:F7:83:47:F0:88:C8:3E:0E:2E:BC:8E:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C33096D0C4D80AABE3F6F1A12E07FCBE37954FC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1f4baa3-7fef-4bbc-8462-7fe13d7a165a.roa Signing time: Thu 03 Oct 2024 00:00:00 +0000 ROA not before: Thu 03 Oct 2024 00:00:00 +0000 ROA not after: Thu 07 Nov 2024 23:59:59 +0000 asID: 14618 IP address blocks: 5.60.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Oct 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:33:09:6d:0c:4d:80:aa:be:3f:6f:1a:12:e0:7f:cb:e3:79:54:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 3 00:00:00 2024 GMT Not After : Nov 7 23:59:59 2024 GMT Subject: serialNumber=b413475f8ae1d11d6eb7580c74ee4d5391554a5311e1ba3dd699bb8b8e07ca0f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cd:08:06:82:2e:aa:e9:b6:6b:0f:d9:a6:54: 9b:e6:15:93:0d:79:b0:b1:2e:9a:4b:26:fd:8f:47: f8:09:0a:c6:48:48:59:74:cc:ae:25:0e:e8:3b:a2: 0c:2e:e8:1f:ae:ae:73:13:da:9e:c7:3e:06:3d:c0: ee:4c:15:3f:1d:54:75:b2:a4:1b:29:0e:06:a0:34: d7:0e:79:0e:41:33:1a:d3:0b:ac:52:a3:c2:d2:5f: 1f:2c:ea:8e:17:b8:8f:89:0a:23:7f:5c:b3:2a:74: 10:8f:60:fe:02:6c:c6:93:55:8d:30:4f:aa:75:90: 92:77:36:1b:0c:ce:bc:e5:45:24:3b:82:5b:e8:66: 2b:af:d6:f2:cf:c3:74:e2:bb:e5:9b:94:0d:8d:21: 01:ac:d8:14:8b:6c:3c:27:38:57:5f:16:67:75:aa: 60:70:e0:2b:43:ab:9c:5e:85:79:81:5e:31:89:33: 20:4b:c7:23:7f:93:e6:9c:ca:d2:9c:ee:2e:26:dc: 30:b5:88:af:dc:11:63:b2:74:88:ee:fe:97:b7:d7: 4e:0a:16:09:8f:c9:cb:7b:70:34:7f:69:c7:16:03: e2:59:ac:64:9a:06:3d:e3:74:2a:7e:63:53:98:a6: 2e:7b:25:2c:cd:ed:95:ce:4e:dc:fe:63:64:f6:f7: f6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:CB:BD:9F:9B:D4:E0:30:F7:83:47:F0:88:C8:3E:0E:2E:BC:8E:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1f4baa3-7fef-4bbc-8462-7fe13d7a165a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.112.0/22 Signature Algorithm: sha256WithRSAEncryption 49:45:28:98:4b:d8:a6:ca:d1:fb:42:33:2a:99:85:a2:be:9b: e2:17:09:28:f8:e5:8f:4f:6c:f5:c7:e0:9d:4f:b0:86:10:15: 70:a9:5f:ee:05:10:66:f0:fa:2a:05:d3:7f:b7:c6:e3:94:eb: fd:9a:68:f9:88:44:7b:c1:be:4c:ae:80:7e:90:10:4a:5c:e4: 28:0e:c2:df:d8:e4:cb:5e:c4:7e:9b:25:20:ab:f4:1f:d5:41: 15:4b:ce:ca:e4:cc:4c:09:24:3a:4f:bb:02:d2:f4:1a:bf:63: 6a:83:d9:50:22:0e:22:23:18:25:3d:16:b3:06:e0:04:e6:76: d8:2d:3b:fe:75:2b:6f:5c:86:84:e1:0f:ed:10:e4:97:e3:b4: f0:e7:b7:0c:79:6d:24:19:e8:cd:45:32:cc:0d:1d:37:ae:74: 58:c9:d6:ae:31:5c:6e:46:7a:ed:81:a5:77:d5:e2:f1:14:06: 3f:3a:9f:18:a0:34:f2:52:2b:b4:b3:9f:01:f0:bb:bd:2d:20: 29:00:33:e6:af:41:af:cf:60:92:3c:c0:43:c0:c1:51:db:9c: b3:e8:d8:34:b8:be:d3:b9:37:d2:5a:60:24:bf:37:48:7a:32: f0:63:38:25:c2:2d:8d:f4:0e:74:78:5b:06:b8:0a:f6:6c:1c: f0:56:e9:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULDMJbQxNgKq+P28aEuB/y+N5VPwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDAzMDAwMDAwWhcNMjQxMTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDEzNDc1ZjhhZTFkMTFkNmViNzU4MGM3NGVlNGQ1Mzkx NTU0YTUzMTFlMWJhM2RkNjk5YmI4YjhlMDdjYTBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTzQgGgi6q6bZrD9mmVJvmFZMNebCxLppLJv2PR/gJCsZI SFl0zK4lDug7ogwu6B+urnMT2p7HPgY9wO5MFT8dVHWypBspDgagNNcOeQ5BMxrT C6xSo8LSXx8s6o4XuI+JCiN/XLMqdBCPYP4CbMaTVY0wT6p1kJJ3NhsMzrzlRSQ7 glvoZiuv1vLPw3Tiu+WblA2NIQGs2BSLbDwnOFdfFmd1qmBw4CtDq5xehXmBXjGJ MyBLxyN/k+acytKc7i4m3DC1iK/cEWOydIju/pe3104KFgmPyct7cDR/accWA+JZ rGSaBj3jdCp+Y1OYpi57JSzN7ZXOTtz+Y2T29/YBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvcu9n5vU4DD3g0fwiMg+Di68jrwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxZjRiYWEzLTdmZWYtNGJiYy04NDYyLTdmZTEzZDdhMTY1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIFPHAwDQYJKoZIhvcNAQELBQADggEBAElFKJhL2KbK0ftCMyqZhaK+m+IX CSj45Y9PbPXH4J1PsIYQFXCpX+4FEGbw+ioF03+3xuOU6/2aaPmIRHvBvkyugH6Q EEpc5CgOwt/Y5MtexH6bJSCr9B/VQRVLzsrkzEwJJDpPuwLS9Bq/Y2qD2VAiDiIj GCU9FrMG4ATmdtgtO/51K29choThD+0Q5JfjtPDntwx5bSQZ6M1FMswNHTeudFjJ 1q4xXG5Geu2BpXfV4vEUBj86nxigNPJSK7SznwHwu70tICkAM+avQa/PYJI8wEPA wVHbnLPo2DS4vtO5N9JaYCS/N0h6MvBjOCXCLY30DnR4Wwa4CvZsHPBW6bo= -----END CERTIFICATE-----Generated at Tue Oct 22 00:47:03 2024 by rpki-client on console-fra.rpki-client.org