$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b856ae51-66ec-4600-b64a-768473b00d4c.roa File: b856ae51-66ec-4600-b64a-768473b00d4c.roa (raw, json) Hash identifier: T1VDZOg30m25gxg8e03ZGKLCbMhyZtewOYjeZLZnhy4= Subject key identifier: 0C:65:79:DA:51:4B:9C:C3:FD:F7:E3:A0:FC:75:D7:28:4F:EC:0D:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 467AC563112D8944DBD4E15804896014DB43F3AD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b856ae51-66ec-4600-b64a-768473b00d4c.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:7a:c5:63:11:2d:89:44:db:d4:e1:58:04:89:60:14:db:43:f3:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=9cc7cfecd1a9c18528cfa439d5d4e9d176a34ad3a6d0b4d8d414c856242c000d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ef:b4:0e:fa:5b:25:57:f5:9d:9e:1c:6e:fb: c4:3f:87:e1:e5:0c:46:e2:90:03:29:92:e7:3c:63: dc:97:1e:87:2e:3c:15:e4:5b:a4:c4:17:db:7f:fc: a4:51:e2:85:b2:18:93:e8:e8:b8:b0:4f:c2:a7:e0: 97:3b:5f:43:f9:4d:ef:94:54:9a:b8:bd:c6:d2:e4: 20:c6:e3:3f:4e:87:4b:f9:c2:bf:f5:ac:87:c7:3b: 2f:45:7f:ec:7b:e8:0f:d4:a5:86:4f:19:25:df:29: df:e7:db:8e:69:8e:76:be:24:01:66:9d:dd:99:7c: bb:06:b4:c1:cd:f7:d6:87:05:41:59:0f:8f:f5:0e: 98:76:bf:27:de:cb:2b:a7:c0:c5:2a:af:b2:1e:4c: ab:49:3f:25:fc:46:6a:db:59:f2:60:5b:c5:dc:0c: 2f:1f:5e:85:42:47:c3:b2:15:cc:8c:d6:1a:87:39: 37:4e:b2:db:52:59:1d:65:3d:41:57:f3:c0:5e:5d: 5c:3f:24:48:de:56:6b:31:c9:30:67:95:e3:14:20: 45:46:92:ef:f1:90:1a:76:79:2b:87:f3:c0:2f:06: 6e:03:ea:31:b8:b1:6f:45:6a:32:62:01:36:52:d8: 5a:b4:61:2a:70:c9:c6:5e:c6:0f:4b:dd:52:bb:75: ec:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:65:79:DA:51:4B:9C:C3:FD:F7:E3:A0:FC:75:D7:28:4F:EC:0D:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b856ae51-66ec-4600-b64a-768473b00d4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.123.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:2e:87:dc:d3:70:9d:2e:c5:13:10:67:4a:75:c9:af:36:8f: ab:b4:cd:44:e9:ea:c1:a6:59:99:8c:ed:86:6f:29:9f:4c:6b: a5:a6:4f:79:00:76:37:b2:be:4f:a9:4b:d4:35:ce:bf:f0:09: 43:fc:f8:c5:28:f9:9e:38:dc:5c:9b:f3:15:a6:76:78:9b:23: 37:f3:39:ad:31:d7:03:79:ae:c1:55:13:3f:ce:a8:fd:ea:b7: 5e:3a:f2:29:7b:f2:61:89:60:3e:b7:62:b9:14:17:be:d1:3e: 3f:7f:85:f2:8d:35:17:60:3e:d4:d6:a2:da:08:b8:fd:3e:49: 40:de:32:fe:ee:f3:6a:6c:02:05:9e:76:4f:d8:af:62:43:31: ad:4d:72:c1:26:26:08:98:a6:43:9b:7a:21:6c:3a:20:38:7d: 96:50:5a:c6:63:86:3f:09:b7:b7:bb:3b:c9:9f:b6:22:9b:91: 1a:72:51:5b:26:b9:46:ca:9e:2b:da:ec:93:5a:06:98:ca:df: ce:6b:3a:a0:c2:18:10:a3:43:fc:cc:a3:81:7e:8a:af:56:bf: 21:41:05:25:19:32:07:ed:d8:91:48:15:2a:4d:51:e7:7e:e8: a8:00:64:86:c0:24:b4:fc:83:88:7d:9b:ea:13:2d:5e:df:4f: bc:34:89:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURnrFYxEtiUTb1OFYBIlgFNtD860wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5Y2M3Y2ZlY2QxYTljMTg1MjhjZmE0MzlkNWQ0ZTlkMTc2 YTM0YWQzYTZkMGI0ZDhkNDE0Yzg1NjI0MmMwMDBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDn77QO+lslV/Wdnhxu+8Q/h+HlDEbikAMpkuc8Y9yXHocu PBXkW6TEF9t//KRR4oWyGJPo6LiwT8Kn4Jc7X0P5Te+UVJq4vcbS5CDG4z9Oh0v5 wr/1rIfHOy9Ff+x76A/UpYZPGSXfKd/n245pjna+JAFmnd2ZfLsGtMHN99aHBUFZ D4/1Dph2vyfeyyunwMUqr7IeTKtJPyX8RmrbWfJgW8XcDC8fXoVCR8OyFcyM1hqH OTdOsttSWR1lPUFX88BeXVw/JEjeVmsxyTBnleMUIEVGku/xkBp2eSuH88AvBm4D 6jG4sW9FajJiATZS2Fq0YSpwycZexg9L3VK7dexxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDGV52lFLnMP99+Og/HXXKE/sDdowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4NTZhZTUxLTY2ZWMtNDYwMC1iNjRhLTc2ODQ3M2IwMGQ0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HswDQYJKoZIhvcNAQELBQADggEBAF0uh9zTcJ0uxRMQZ0p1ya82j6u0 zUTp6sGmWZmM7YZvKZ9Ma6WmT3kAdjeyvk+pS9Q1zr/wCUP8+MUo+Z443Fyb8xWm dnibIzfzOa0x1wN5rsFVEz/OqP3qt1468il78mGJYD63YrkUF77RPj9/hfKNNRdg PtTWotoIuP0+SUDeMv7u82psAgWedk/Yr2JDMa1NcsEmJgiYpkObeiFsOiA4fZZQ WsZjhj8Jt7e7O8mftiKbkRpyUVsmuUbKniva7JNaBpjK385rOqDCGBCjQ/zMo4F+ iq9WvyFBBSUZMgft2JFIFSpNUed+6KgAZIbAJLT8g4h9m+oTLV7fT7w0icE= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:25 2024 by rpki-client on console-fra.rpki-client.org