$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a8ef92-370f-4832-9f4b-0f1111d0bfe1.roa File: b9a8ef92-370f-4832-9f4b-0f1111d0bfe1.roa (raw, json) Hash identifier: ktTclxqxnyrMaixAJ7ONiSrOK3DIiD+5U4YXs/Q686o= Subject key identifier: C1:B8:07:72:95:62:3C:31:0A:62:52:DF:C3:86:98:E1:86:E5:1B:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D8FC453D657480B41B8E39925F48556CD95A37A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a8ef92-370f-4832-9f4b-0f1111d0bfe1.roa Signing time: Mon 28 Oct 2024 00:00:00 +0000 ROA not before: Mon 28 Oct 2024 00:00:00 +0000 ROA not after: Mon 02 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1f:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:8f:c4:53:d6:57:48:0b:41:b8:e3:99:25:f4:85:56:cd:95:a3:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 28 00:00:00 2024 GMT Not After : Dec 2 23:59:59 2024 GMT Subject: serialNumber=240ec04c3f97729184861b5af8b1b31db8690ed14914cdd6f4f23d981216ede9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f7:13:21:74:22:31:e7:19:d0:d8:7f:4f:9b: 20:7e:bd:a9:9b:8d:bb:90:e1:e1:f4:31:92:aa:ee: 06:c6:33:6a:82:90:52:07:5a:2e:27:86:11:16:ec: a3:76:1b:a9:d6:bd:97:70:bd:21:27:57:29:d9:56: 00:c6:ab:1e:d3:70:1a:c9:00:b8:34:5e:fc:2b:19: 13:85:c2:f0:ee:76:53:42:fd:7a:16:f9:76:15:b8: ef:47:16:22:12:ca:91:e8:4e:0f:d7:70:8b:11:40: 13:a3:1b:0a:86:eb:9c:22:8c:c0:e3:70:06:4e:1f: 89:28:a6:1e:91:80:ac:9a:2c:84:e1:a8:a2:e4:e3: aa:00:13:f3:00:c8:10:77:3c:00:f4:f0:33:3d:7f: ea:7f:ee:cc:ba:bc:a1:e7:c7:db:91:c4:fc:9a:4f: a1:7a:09:0d:4e:ee:99:9a:16:92:ff:ad:49:0f:d6: ed:2c:d1:f4:5a:a8:e9:c4:da:9d:e9:3b:e6:ac:88: 6d:87:ca:61:a8:66:12:be:d9:2a:eb:ea:46:5c:30: b3:20:01:33:2b:61:e4:8d:f2:83:9b:37:ed:e7:57: bc:8d:f4:f1:ac:f9:81:d4:fc:73:9a:00:76:6e:cf: 73:67:6a:25:dc:2e:06:a0:6e:ec:3b:95:16:ac:63: 10:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:B8:07:72:95:62:3C:31:0A:62:52:DF:C3:86:98:E1:86:E5:1B:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a8ef92-370f-4832-9f4b-0f1111d0bfe1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1f:4000::/36 Signature Algorithm: sha256WithRSAEncryption 40:0c:8a:c6:41:8f:57:79:93:85:d3:01:59:70:61:92:62:94: 7b:74:a0:9f:56:99:b6:5e:83:f1:78:2d:3c:d3:bb:05:90:91: 39:c6:62:df:a2:2e:0d:2f:d2:90:93:a1:12:34:f7:06:46:a1: d4:f6:1a:99:0c:1d:7a:37:54:93:24:aa:b6:71:42:db:6d:7b: 48:22:1c:59:3a:a3:b6:95:ef:64:34:44:bd:84:96:15:77:32: cf:12:f7:89:89:47:6a:5d:bd:a5:fe:8b:4e:90:6b:1c:5d:09: a5:11:11:e4:06:ef:a4:d4:de:a3:3d:a6:ce:5a:23:d3:2b:c6: 85:e4:20:8f:13:5d:03:0b:64:fc:85:fd:36:93:ce:b8:ed:e2: 80:ec:7f:51:e4:3d:d5:e8:1a:51:c8:d0:9e:46:31:e6:3a:3c: 2d:e7:e4:9f:fa:1a:34:b7:31:70:7b:86:a9:5e:0e:ba:f4:29: 73:9d:2b:5f:0d:9b:60:28:2e:a1:7f:7b:d3:52:c1:09:27:fb: f5:01:08:86:0b:e0:d8:58:b1:6f:af:48:1e:48:21:b3:6a:b3: 2f:f0:73:9c:44:b0:46:0f:94:81:27:18:0b:90:0a:20:7b:c9: 1e:ca:6a:1e:89:f2:10:f1:f1:36:a5:63:80:be:af:5d:02:09: 47:98:3a:3a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPY/EU9ZXSAtBuOOZJfSFVs2Vo3owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDI4MDAwMDAwWhcNMjQxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDBlYzA0YzNmOTc3MjkxODQ4NjFiNWFmOGIxYjMxZGI4 NjkwZWQxNDkxNGNkZDZmNGYyM2Q5ODEyMTZlZGU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC59xMhdCIx5xnQ2H9PmyB+vambjbuQ4eH0MZKq7gbGM2qC kFIHWi4nhhEW7KN2G6nWvZdwvSEnVynZVgDGqx7TcBrJALg0XvwrGROFwvDudlNC /XoW+XYVuO9HFiISypHoTg/XcIsRQBOjGwqG65wijMDjcAZOH4koph6RgKyaLITh qKLk46oAE/MAyBB3PAD08DM9f+p/7sy6vKHnx9uRxPyaT6F6CQ1O7pmaFpL/rUkP 1u0s0fRaqOnE2p3pO+asiG2HymGoZhK+2Srr6kZcMLMgATMrYeSN8oObN+3nV7yN 9PGs+YHU/HOaAHZuz3NnaiXcLgagbuw7lRasYxD5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUwbgHcpViPDEKYlLfw4aY4YblG3owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5YThlZjkyLTM3MGYtNDgzMi05ZjRiLTBmMTExMWQwYmZlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8fQDANBgkqhkiG9w0BAQsFAAOCAQEAQAyKxkGPV3mThdMBWXBhkmKU e3Sgn1aZtl6D8XgtPNO7BZCROcZi36IuDS/SkJOhEjT3Bkah1PYamQwdejdUkySq tnFC2217SCIcWTqjtpXvZDREvYSWFXcyzxL3iYlHal29pf6LTpBrHF0JpRER5Abv pNTeoz2mzloj0yvGheQgjxNdAwtk/IX9NpPOuO3igOx/UeQ91egaUcjQnkYx5jo8 Lefkn/oaNLcxcHuGqV4OuvQpc50rXw2bYCguoX9701LBCSf79QEIhgvg2Fixb69I Hkghs2qzL/BznESwRg+UgScYC5AKIHvJHspqHonyEPHxNqVjgL6vXQIJR5g6Og== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:25 2024 by rpki-client on console-fra.rpki-client.org