$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7f92332-54db-4d66-be7a-cf76fc42d00c.roa File: b7f92332-54db-4d66-be7a-cf76fc42d00c.roa (raw, json) Hash identifier: It0KPEykG8tVZh67V8WwST1OzH+U1P8n1WKVg5vZgVo= Subject key identifier: 61:E1:11:10:E7:A3:FD:B9:D4:24:E4:A6:83:D0:1A:5F:D0:12:59:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C64D83B06A54904F62452E09BAC178B4CCF587F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7f92332-54db-4d66-be7a-cf76fc42d00c.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.241.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:64:d8:3b:06:a5:49:04:f6:24:52:e0:9b:ac:17:8b:4c:cf:58:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=418b0542c4a047867d14c312de1e78961cd3858cb3f5af0125f95cab751049ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1f:a6:68:68:d3:55:f0:2c:5c:d5:dc:2f:b9: 75:33:85:8f:98:93:6f:0b:35:37:f7:88:25:c5:06: ce:e3:24:bd:36:c6:9c:95:36:b4:7f:b0:e4:99:28: 38:bb:5f:47:97:51:5e:9b:15:a9:3b:97:7f:4d:3c: d7:ea:01:a6:fa:b5:7c:c0:f3:19:8e:5b:bf:f7:c9: 4b:12:d7:01:06:05:8d:2c:44:3b:3f:ca:56:4f:aa: 57:b1:3e:49:cb:ee:22:a9:b0:e9:a3:44:f5:31:37: 2c:7f:b1:8f:50:e1:03:84:76:3e:20:f7:50:27:97: 38:d9:94:35:69:66:4f:22:1a:68:26:a4:9e:a3:87: 8b:db:9f:a2:77:63:c8:b9:dc:7d:7a:16:07:e0:45: c0:6e:45:c8:ca:30:35:b6:d8:1b:b5:ad:d2:98:9e: 84:9d:5b:8b:17:a3:65:d8:9e:36:35:94:b7:1d:51: 8f:49:ee:ff:55:76:32:30:83:5a:ee:71:d2:db:a7: d1:95:17:9c:f4:1b:ca:1f:d2:81:0d:11:be:70:5f: 20:9b:75:44:7b:f1:fe:bf:fb:ef:c5:d6:f4:2f:5a: 61:de:9d:09:07:14:2a:7a:86:ff:43:f0:36:91:20: 6e:c2:62:91:dc:7a:a0:f3:91:36:35:cc:d3:f7:8e: fd:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E1:11:10:E7:A3:FD:B9:D4:24:E4:A6:83:D0:1A:5F:D0:12:59:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7f92332-54db-4d66-be7a-cf76fc42d00c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.241.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:3d:55:20:bd:25:88:00:13:5b:a2:9d:c0:83:61:ec:9e:4c: 70:90:a7:da:67:1b:27:ed:7b:70:f0:0c:e8:94:7d:52:76:bc: ab:c6:d8:e4:d6:b5:45:c7:db:aa:1f:f5:d0:19:69:c2:c6:67: 73:38:4a:0b:69:e8:b8:a0:ea:d3:f4:4e:d1:ed:94:76:2e:3a: e2:42:70:25:d0:68:9b:47:b2:b8:2d:42:76:de:dd:52:6d:07: a6:58:cf:78:25:bb:c4:eb:f0:1a:10:21:f2:34:d2:4f:49:73: d1:a6:bb:8e:25:df:c7:f5:2d:38:31:05:e2:0f:6a:da:f7:47: b4:f9:18:ec:5f:ad:4b:5a:8a:0f:b9:01:bf:93:27:21:48:06: e7:c8:fe:27:ac:db:81:78:c1:59:3d:b5:4b:a8:79:04:d5:68: 82:c0:6c:06:9f:32:7d:0f:1b:e7:e1:09:e5:dc:01:98:d8:b8: 2d:70:9c:a7:92:b2:1b:20:79:62:81:0d:8d:89:00:c0:cd:c3: b6:55:84:75:72:5e:0f:c2:04:bd:13:84:3e:f3:61:1c:ba:78: 3a:c5:6a:da:70:6c:68:74:cf:10:c5:0e:49:50:bd:44:ec:be: ab:b4:32:8b:86:85:29:39:ca:0a:0b:95:fa:b3:6c:0c:c2:ff: b3:6f:6f:a8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDGTYOwalSQT2JFLgm6wXi0zPWH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MThiMDU0MmM0YTA0Nzg2N2QxNGMzMTJkZTFlNzg5NjFj ZDM4NThjYjNmNWFmMDEyNWY5NWNhYjc1MTA0OWNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIH6ZoaNNV8Cxc1dwvuXUzhY+Yk28LNTf3iCXFBs7jJL02 xpyVNrR/sOSZKDi7X0eXUV6bFak7l39NPNfqAab6tXzA8xmOW7/3yUsS1wEGBY0s RDs/ylZPqlexPknL7iKpsOmjRPUxNyx/sY9Q4QOEdj4g91AnlzjZlDVpZk8iGmgm pJ6jh4vbn6J3Y8i53H16FgfgRcBuRcjKMDW22Bu1rdKYnoSdW4sXo2XYnjY1lLcd UY9J7v9VdjIwg1rucdLbp9GVF5z0G8of0oENEb5wXyCbdUR78f6/++/F1vQvWmHe nQkHFCp6hv9D8DaRIG7CYpHceqDzkTY1zNP3jv0LAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYeEREOej/bnUJOSmg9AaX9ASWfowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I3ZjkyMzMyLTU0ZGItNGQ2Ni1iZTdhLWNmNzZmYzQyZDAwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA48TANBgkqhkiG9w0BAQsFAAOCAQEAeT1VIL0liAATW6KdwINh7J5McJCn 2mcbJ+17cPAM6JR9Una8q8bY5Na1Rcfbqh/10BlpwsZnczhKC2nouKDq0/RO0e2U di464kJwJdBom0eyuC1Cdt7dUm0HpljPeCW7xOvwGhAh8jTST0lz0aa7jiXfx/Ut ODEF4g9q2vdHtPkY7F+tS1qKD7kBv5MnIUgG58j+J6zbgXjBWT21S6h5BNVogsBs Bp8yfQ8b5+EJ5dwBmNi4LXCcp5KyGyB5YoENjYkAwM3DtlWEdXJeD8IEvROEPvNh HLp4OsVq2nBsaHTPEMUOSVC9ROy+q7Qyi4aFKTnKCguV+rNsDML/s29vqA== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:25 2024 by rpki-client on console-ams.rpki-client.org