$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa File: b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa (raw, json) Hash identifier: hL0BF0ORrboFP4hPRwqemAP5ZQtTj/xgvIA1ue4crKo= Subject key identifier: B4:9C:CB:5C:B2:86:7F:FA:8B:2C:E4:EF:C0:0D:3A:A4:01:2E:22:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C079C9333DD1DCE7DCFB490FDF7CF35C99E6F8C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:07:9c:93:33:dd:1d:ce:7d:cf:b4:90:fd:f7:cf:35:c9:9e:6f:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=363439291e4fc1d97a9feb3c936ab98ff04b4ab9094c2aec4bba1875cb001078, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:89:ab:f1:22:4d:9e:55:b2:23:1d:f1:71:64: 81:76:1f:44:ab:ba:e5:d7:1d:7a:08:d4:48:84:1a: 15:53:75:3a:b4:6d:8a:ca:ae:b3:bb:57:0e:64:a4: e5:8e:4d:b1:35:a7:55:7e:66:ea:57:77:b8:b0:32: c4:f2:4f:6b:f9:40:64:25:02:ca:8b:06:1f:19:e9: 19:19:17:6f:d8:b5:96:13:bf:71:79:7f:ff:03:61: 92:fb:2f:bd:ba:95:9d:5d:1f:67:5b:2b:46:30:46: 49:45:37:c0:76:8b:30:60:8f:bc:8d:66:41:0f:0c: 25:cb:0d:3d:e7:e2:cb:14:9a:ef:06:0f:ce:ef:e1: 33:43:f0:8b:ea:81:d7:86:ea:ef:34:0e:d0:e4:80: 00:20:bf:10:eb:96:d3:a5:1d:18:16:0b:e4:fa:c9: a1:80:47:b4:e7:c0:93:35:95:15:e0:e0:d3:8a:ee: 95:ad:e7:f7:36:63:b5:2a:2c:ea:89:8f:21:9b:c8: 39:dd:62:ba:50:93:53:1c:03:90:57:2f:88:ad:e4: 92:74:8b:39:93:a6:ba:8d:e1:d1:2a:f8:c1:e5:1f: 90:bf:40:5f:c5:46:2e:2d:6a:4f:7b:47:da:7d:4d: de:4d:85:be:02:6f:91:20:b8:aa:a4:16:38:d6:17: e2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:9C:CB:5C:B2:86:7F:FA:8B:2C:E4:EF:C0:0D:3A:A4:01:2E:22:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:a7:76:a0:4e:aa:5b:a0:76:c6:da:ff:e0:e0:c1:fd:61:b5: de:f8:0d:4c:f0:a5:37:cf:56:b3:a8:e6:0c:99:7d:91:a2:22: 17:31:c7:f7:4e:a1:93:52:29:6d:92:01:38:4b:94:36:1d:52: 33:42:e9:c1:c1:8b:33:7b:53:a1:b6:d4:a7:92:64:dc:d3:a4: 8f:ff:88:b7:45:1e:8d:3d:bb:1b:75:d5:b2:70:4c:89:05:ee: 8e:f8:9a:f9:00:6b:81:07:98:1d:e9:dd:bf:9e:cc:a3:17:d2: de:91:2e:3a:23:26:88:e6:67:95:17:d7:cd:17:77:2e:61:ca: e1:2e:88:8f:8e:c4:11:08:19:85:52:c9:ef:e9:15:36:e4:d9: f3:68:c5:05:dc:0c:73:d6:e0:27:43:26:ec:a2:89:20:0f:f0: 24:02:d1:b1:28:51:80:77:1b:99:0d:6e:a0:4d:49:7a:f7:2e: ab:54:24:78:72:a7:66:25:e2:a3:0b:44:33:89:2a:22:04:1d: b6:aa:18:27:d3:52:96:c5:9d:43:da:ec:99:77:7d:50:55:47: b2:79:ba:f2:c1:d9:93:8b:11:a3:9d:8c:98:47:09:98:d4:d0: 56:33:c2:8f:f2:73:ac:c5:a2:6b:89:da:1f:eb:b7:3b:4b:03: 6e:01:9e:ac -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfAeckzPdHc59z7SQ/ffPNcmeb4wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjM0MzkyOTFlNGZjMWQ5N2E5ZmViM2M5MzZhYjk4ZmYw NGI0YWI5MDk0YzJhZWM0YmJhMTg3NWNiMDAxMDc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPiavxIk2eVbIjHfFxZIF2H0SruuXXHXoI1EiEGhVTdTq0 bYrKrrO7Vw5kpOWOTbE1p1V+ZupXd7iwMsTyT2v5QGQlAsqLBh8Z6RkZF2/YtZYT v3F5f/8DYZL7L726lZ1dH2dbK0YwRklFN8B2izBgj7yNZkEPDCXLDT3n4ssUmu8G D87v4TND8IvqgdeG6u80DtDkgAAgvxDrltOlHRgWC+T6yaGAR7TnwJM1lRXg4NOK 7pWt5/c2Y7UqLOqJjyGbyDndYrpQk1McA5BXL4it5JJ0izmTprqN4dEq+MHlH5C/ QF/FRi4tak97R9p9Td5Nhb4Cb5EguKqkFjjWF+JdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtJzLXLKGf/qLLOTvwA06pAEuIlkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4ZTg2N2YzLTk0MzAtNGVjMi04YmUxLWM3NDA2YjEzN2UyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4UjANBgkqhkiG9w0BAQsFAAOCAQEAPad2oE6qW6B2xtr/4ODB/WG13vgN TPClN89Ws6jmDJl9kaIiFzHH906hk1IpbZIBOEuUNh1SM0LpwcGLM3tTobbUp5Jk 3NOkj/+It0UejT27G3XVsnBMiQXujvia+QBrgQeYHendv57MoxfS3pEuOiMmiOZn lRfXzRd3LmHK4S6Ij47EEQgZhVLJ7+kVNuTZ82jFBdwMc9bgJ0Mm7KKJIA/wJALR sShRgHcbmQ1uoE1Jevcuq1QkeHKnZiXiowtEM4kqIgQdtqoYJ9NSlsWdQ9rsmXd9 UFVHsnm68sHZk4sRo52MmEcJmNTQVjPCj/JzrMWia4naH+u3O0sDbgGerA== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:28 2024 by rpki-client on console-ams.rpki-client.org