$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30dac66-d744-4833-a6b1-9217baa97d19.roa File: b30dac66-d744-4833-a6b1-9217baa97d19.roa (raw, json) Hash identifier: rjuVspIr2ADCixEimAQc/4cWR8twCKd5OPUa8OyjNtw= Subject key identifier: 34:9A:C5:D2:33:A8:1D:6B:09:29:7F:F8:57:B7:84:D8:65:80:34:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70FCA1B43AFF8FABC6CCE11F9A7ACDC2ED74E26E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30dac66-d744-4833-a6b1-9217baa97d19.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff9:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:fc:a1:b4:3a:ff:8f:ab:c6:cc:e1:1f:9a:7a:cd:c2:ed:74:e2:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=36314839472907d4ec2848fd8f113907483e003cb554e7544eb66e64e11370d5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:88:75:ea:da:33:ac:9b:44:75:12:bd:89:bc: f5:23:50:67:74:6f:04:71:4e:09:fa:e9:b8:82:11: ee:9f:5f:be:91:52:4a:21:66:fb:d9:72:de:0b:73: a2:72:15:1c:21:23:7a:4a:48:ad:2d:83:4b:b9:ef: cc:5b:65:e6:46:e3:5c:08:5b:36:e6:4f:90:05:00: bb:d8:6e:52:52:ae:d1:2f:19:48:32:27:98:79:9b: a5:65:61:1a:e7:cb:e4:68:be:77:f8:61:e6:ce:0c: 48:ea:08:f9:07:64:f4:ab:79:e3:75:12:42:7b:d4: 7e:07:6a:88:52:95:ba:03:ac:77:db:11:db:48:e6: e6:b8:ed:f3:bc:e6:7f:e2:cf:10:cc:ed:82:78:3e: 41:93:19:42:07:5c:e1:c1:89:cf:62:7d:51:c2:3a: e3:94:dc:b3:71:5a:b9:1a:d7:5e:4b:90:d1:d3:bc: e5:d6:7b:d7:16:89:6e:ab:9b:15:bb:a5:86:e5:52: b8:90:c3:1a:53:d1:5b:bd:08:26:4c:4a:fe:cb:a2: fc:f3:ce:2a:d0:c1:f2:f5:6e:3d:7d:f7:d8:10:6a: f1:10:da:11:c8:d7:4c:5b:ca:83:53:15:84:81:3a: c0:1d:7a:e9:ff:28:6b:90:b1:c8:54:91:49:1e:01: 19:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:9A:C5:D2:33:A8:1D:6B:09:29:7F:F8:57:B7:84:D8:65:80:34:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30dac66-d744-4833-a6b1-9217baa97d19.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff9:7400::/40 Signature Algorithm: sha256WithRSAEncryption d2:9b:ba:b2:b6:6a:1f:32:ab:fe:36:fe:68:45:5f:f8:3b:d6: c0:e4:09:ea:13:64:e4:96:49:6b:73:41:67:98:99:c2:fd:16: b4:6e:b6:f8:0f:39:e9:4e:cc:24:30:73:2a:08:4f:51:0c:c8: f4:ba:97:ff:0a:cc:20:f0:08:04:38:ec:55:89:a7:6e:4c:0c: 65:8f:c7:11:4a:1b:b1:33:7c:f4:2c:94:13:e8:bc:e5:15:81: 7e:2b:7b:74:c7:72:3c:92:26:7a:99:00:d4:68:de:76:92:6d: bb:38:e9:c8:83:fd:40:13:be:a4:6c:86:64:00:f2:98:4f:3b: 1a:37:a6:19:8c:dc:bf:0d:a3:37:cd:db:3c:72:39:3b:5f:c4: e4:12:f5:28:e5:8a:ef:8c:68:84:a3:97:81:c2:f4:b7:03:da: 73:15:46:09:98:af:dc:8b:17:2e:8b:a9:d5:3b:0f:a0:3f:85: 0d:09:16:2b:31:8f:20:b0:8a:cc:95:bb:f8:45:ef:e7:4e:20: d8:68:91:bd:da:5a:7e:89:c0:a9:61:d8:07:a7:64:bd:72:4e: 65:85:68:f4:39:f6:29:29:89:45:e2:50:19:44:ec:fe:eb:4d: 99:c7:55:cd:b5:da:e5:af:f8:c9:b1:eb:63:c1:26:24:30:b4: 9f:ac:2e:6c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcPyhtDr/j6vGzOEfmnrNwu104m4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjMxNDgzOTQ3MjkwN2Q0ZWMyODQ4ZmQ4ZjExMzkwNzQ4 M2UwMDNjYjU1NGU3NTQ0ZWI2NmU2NGUxMTM3MGQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJiHXq2jOsm0R1Er2JvPUjUGd0bwRxTgn66biCEe6fX76R UkohZvvZct4Lc6JyFRwhI3pKSK0tg0u578xbZeZG41wIWzbmT5AFALvYblJSrtEv GUgyJ5h5m6VlYRrny+Rovnf4YebODEjqCPkHZPSreeN1EkJ71H4HaohSlboDrHfb EdtI5ua47fO85n/izxDM7YJ4PkGTGUIHXOHBic9ifVHCOuOU3LNxWrka115LkNHT vOXWe9cWiW6rmxW7pYblUriQwxpT0Vu9CCZMSv7LovzzzirQwfL1bj1999gQavEQ 2hHI10xbyoNTFYSBOsAdeun/KGuQschUkUkeARmDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUNJrF0jOoHWsJKX/4V7eE2GWANDIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzMGRhYzY2LWQ3NDQtNDgzMy1hNmIxLTkyMTdiYWE5N2QxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/5dDANBgkqhkiG9w0BAQsFAAOCAQEA0pu6srZqHzKr/jb+aEVf+DvW wOQJ6hNk5JZJa3NBZ5iZwv0WtG62+A856U7MJDBzKghPUQzI9LqX/wrMIPAIBDjs VYmnbkwMZY/HEUobsTN89CyUE+i85RWBfit7dMdyPJImepkA1GjedpJtuzjpyIP9 QBO+pGyGZADymE87GjemGYzcvw2jN83bPHI5O1/E5BL1KOWK74xohKOXgcL0twPa cxVGCZiv3IsXLoup1TsPoD+FDQkWKzGPILCKzJW7+EXv504g2GiRvdpafonAqWHY B6dkvXJOZYVo9Dn2KSmJReJQGUTs/utNmcdVzbXa5a/4ybHrY8EmJDC0n6wubA== -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:46 2024 by rpki-client on console-fra.rpki-client.org