$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b81060e5-f65f-44ba-8885-bfb33a08f8ed.roa File: b81060e5-f65f-44ba-8885-bfb33a08f8ed.roa (raw, json) Hash identifier: sA8Zya1PZYQK/sV98UnU26lvLlLbkTra7tuVB56mCIo= Subject key identifier: 85:0F:F2:3B:60:97:8F:F7:7B:3A:BC:2C:17:66:E4:D1:6D:4D:51:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3485B6B48419BAC3A31A70A07C3D25A861E0ED06 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b81060e5-f65f-44ba-8885-bfb33a08f8ed.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 66.221.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:85:b6:b4:84:19:ba:c3:a3:1a:70:a0:7c:3d:25:a8:61:e0:ed:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=54efd5476493ba9e86dddfe6dab2572ab4cb0b6470136eec557c9ca60df3dd1e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:60:3c:91:3b:54:39:d5:d3:d5:47:de:40:3c: 1a:f2:6c:a4:72:85:ac:dc:2b:e0:4a:3c:f5:84:a2: f2:87:ac:d3:66:86:d7:a8:7d:9a:e6:b5:bd:c0:ca: ad:57:d1:e6:11:33:81:6a:a0:fe:02:e4:ad:63:7b: 73:95:ec:d2:e7:ab:35:68:7a:15:3b:b9:eb:fc:2c: 39:2d:bb:9e:18:9d:be:91:a3:10:9c:db:ce:0e:5d: f2:b3:8e:b1:91:07:2e:b5:86:41:ee:2f:d0:a4:26: 35:7e:42:7b:b1:d6:b2:f0:e9:e0:a5:1e:6d:a4:91: 0a:60:55:4a:04:d8:5c:84:2b:c4:4f:87:3f:06:26: 3b:82:8f:b2:d6:1b:f5:05:9d:99:30:92:1d:d8:5a: 39:a7:14:1f:31:8e:f9:a6:80:2a:1a:67:39:d9:65: 8e:12:7c:c2:37:79:df:09:6d:30:92:cb:88:97:2f: 65:40:07:52:ab:81:15:ea:1f:dd:62:11:ef:37:2d: ce:6e:42:8f:97:9e:56:03:2b:55:3d:65:6c:a1:e6: 0a:d8:20:e1:0b:9f:04:03:62:ff:61:97:79:69:bc: 02:74:ef:bc:f1:a2:3b:d8:ff:9b:ba:d3:e7:3a:79: da:1f:3c:b7:c9:29:92:83:60:41:e7:fc:83:c9:f5: ad:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:0F:F2:3B:60:97:8F:F7:7B:3A:BC:2C:17:66:E4:D1:6D:4D:51:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b81060e5-f65f-44ba-8885-bfb33a08f8ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.221.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:b5:61:37:13:45:ef:ea:a1:2b:e0:ff:5d:5c:42:b9:a7:74: e9:90:c0:af:65:f5:9b:2c:ac:a2:f2:2e:25:3a:78:6c:b8:ec: 31:a8:ca:c0:6a:00:c1:49:f8:d6:10:a9:33:18:bd:fd:85:d6: 18:bb:10:fb:3d:6a:3d:2e:49:05:ba:d8:49:0f:98:3e:72:f0: 7f:f0:27:24:c6:9e:6c:fa:71:15:28:f8:10:9e:a5:15:ad:47: 71:70:25:e7:75:23:61:eb:0d:8f:23:af:8d:e7:4c:76:3c:a7: 6b:bd:98:3b:4d:b6:a2:51:e6:9f:09:d6:d0:ce:53:6f:96:c0: b3:bd:00:a7:62:55:8e:86:f1:99:6a:cc:ca:8a:62:75:38:06: 7a:01:0e:65:62:a3:76:f0:5e:0a:b9:64:cb:64:68:87:14:bc: 61:49:2b:a6:5f:73:6b:0b:77:6a:8f:c9:4c:4a:12:b8:e2:11: e8:13:98:9d:f7:98:4a:8c:5c:28:83:49:e2:c0:fe:59:26:09: 52:54:f0:b5:e1:9a:48:61:d8:41:c2:b9:a4:4b:05:b7:9c:70: d5:2a:0c:4f:f8:e0:31:b6:a3:fd:09:30:e1:ad:9b:4f:39:89: f6:8a:96:e4:ad:9d:94:2f:7a:8b:93:53:31:d7:17:4f:c8:a0: 4c:cd:d5:4c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNIW2tIQZusOjGnCgfD0lqGHg7QYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGVmZDU0NzY0OTNiYTllODZkZGRmZTZkYWIyNTcyYWI0 Y2IwYjY0NzAxMzZlZWM1NTdjOWNhNjBkZjNkZDFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsYDyRO1Q51dPVR95APBrybKRyhazcK+BKPPWEovKHrNNm hteofZrmtb3Ayq1X0eYRM4FqoP4C5K1je3OV7NLnqzVoehU7uev8LDktu54Ynb6R oxCc284OXfKzjrGRBy61hkHuL9CkJjV+Qnux1rLw6eClHm2kkQpgVUoE2FyEK8RP hz8GJjuCj7LWG/UFnZkwkh3YWjmnFB8xjvmmgCoaZznZZY4SfMI3ed8JbTCSy4iX L2VAB1KrgRXqH91iEe83Lc5uQo+XnlYDK1U9ZWyh5grYIOELnwQDYv9hl3lpvAJ0 77zxojvY/5u60+c6edofPLfJKZKDYEHn/IPJ9a1NAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhQ/yO2CXj/d7OrwsF2bk0W1NUYQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4MTA2MGU1LWY2NWYtNDRiYS04ODg1LWJmYjMzYTA4ZjhlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBC3TANBgkqhkiG9w0BAQsFAAOCAQEAKbVhNxNF7+qhK+D/XVxCuad06ZDA r2X1myysovIuJTp4bLjsMajKwGoAwUn41hCpMxi9/YXWGLsQ+z1qPS5JBbrYSQ+Y PnLwf/AnJMaebPpxFSj4EJ6lFa1HcXAl53UjYesNjyOvjedMdjyna72YO022olHm nwnW0M5Tb5bAs70Ap2JVjobxmWrMyopidTgGegEOZWKjdvBeCrlky2RohxS8YUkr pl9zawt3ao/JTEoSuOIR6BOYnfeYSoxcKINJ4sD+WSYJUlTwteGaSGHYQcK5pEsF t5xw1SoMT/jgMbaj/Qkw4a2bTzmJ9oqW5K2dlC96i5NTMdcXT8igTM3VTA== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:25 2024 by rpki-client on console-ams.rpki-client.org