$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/baf81711-5572-45f8-a92c-90099fc5332f.roa File: baf81711-5572-45f8-a92c-90099fc5332f.roa (raw, json) Hash identifier: aA0P8BDLaieNgab/rZ1aEjZVj1eizWu6WDshhlp81oA= Subject key identifier: 0C:F0:2E:8F:85:87:BA:95:F7:62:FA:71:A8:E6:03:E6:D4:06:54:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A903C10856C66B4320F3C8E6F60E5E9F35A4A80 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/baf81711-5572-45f8-a92c-90099fc5332f.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 164.152.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:90:3c:10:85:6c:66:b4:32:0f:3c:8e:6f:60:e5:e9:f3:5a:4a:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=7ea14e53d6d47df6be56f488f5a940b0a626d78a8f2898305d7d4db3f3e345a9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f7:6e:96:0d:ae:5e:59:12:4a:0a:31:78:82: 19:17:b7:9d:a6:3d:53:d8:5f:b6:2f:88:b6:89:60: 27:03:38:24:1e:e6:fc:3f:0a:8f:f9:c1:98:ad:6c: 22:16:ee:64:0b:72:0e:8d:84:e3:c0:c9:75:67:be: e4:3d:e2:bc:d3:33:41:7f:9a:43:f6:17:2e:e0:a4: d2:35:2f:da:01:9b:8b:3c:3c:c1:0c:49:18:6c:7a: 45:fd:56:63:c6:f0:fc:a9:58:b0:28:c5:db:54:18: c5:f8:e7:3a:b3:11:03:7d:f8:14:99:61:b5:b1:94: fe:3e:64:82:80:1d:b4:f6:bc:54:c6:44:a9:92:bd: ae:2a:4a:41:c4:1a:b2:be:36:84:99:f6:cc:30:ed: b7:09:ab:83:96:5a:e3:d8:34:e4:dc:90:46:04:66: ca:9c:8d:b0:ea:be:bb:bc:d9:a2:2b:5e:23:63:52: 07:9f:0f:4a:23:f6:05:65:c7:26:e8:80:e6:22:1e: ec:ba:15:89:0e:3f:88:d1:24:14:b4:2f:4f:58:3e: 62:1b:2d:fa:ee:d1:2d:00:c4:9a:c9:e5:17:17:b4: 82:ce:d7:5d:21:fc:ea:db:91:bc:64:2d:37:ff:62: ae:52:47:87:b6:6d:ce:79:00:b9:41:dc:95:11:76: de:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F0:2E:8F:85:87:BA:95:F7:62:FA:71:A8:E6:03:E6:D4:06:54:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/baf81711-5572-45f8-a92c-90099fc5332f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.168.0/21 Signature Algorithm: sha256WithRSAEncryption 97:b2:f6:ee:80:02:c6:a8:cd:39:26:a7:ff:76:fb:65:f9:69: 31:72:a8:f4:19:8a:81:4f:e4:b9:ed:e7:d8:39:a1:0c:ce:64: 8b:66:4e:e7:e9:f6:79:18:fd:a1:e2:42:f5:41:dd:96:b6:a1: 74:28:b1:23:f7:df:ca:08:9e:2f:bc:85:ca:67:d3:de:cb:8e: 22:76:4e:f0:05:93:67:0f:bc:fb:55:98:57:71:16:2c:ab:b2: 8c:cb:32:a4:0a:66:e0:5c:a9:3c:26:92:9d:76:35:78:ce:ff: f7:84:db:35:18:27:fc:4b:eb:1b:24:01:82:25:de:a4:4f:23: 3e:54:3f:db:7f:04:a8:b4:e9:a8:09:d7:34:60:73:5a:44:b8: ee:34:98:9c:a2:66:2b:34:94:c3:bf:ac:df:d2:53:fd:4f:a2: d6:cf:a7:f7:67:4d:fe:66:fe:a2:14:0f:4d:58:5c:23:1c:8a: a7:6d:ac:d4:94:97:1b:44:e1:5b:4d:e2:ca:5f:b6:d8:1a:e8: 81:6f:2f:84:03:65:c3:c2:af:3d:d3:d1:f4:ef:49:f7:a7:62: 34:ac:2f:59:47:ad:dc:fa:84:33:c5:89:1d:83:38:99:32:44: 83:ee:4e:35:3d:c8:2b:7a:7a:06:fd:0e:ad:99:97:c9:91:63: 18:8b:d2:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGpA8EIVsZrQyDzyOb2Dl6fNaSoAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZWExNGU1M2Q2ZDQ3ZGY2YmU1NmY0ODhmNWE5NDBiMGE2 MjZkNzhhOGYyODk4MzA1ZDdkNGRiM2YzZTM0NWE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDr926WDa5eWRJKCjF4ghkXt52mPVPYX7YviLaJYCcDOCQe 5vw/Co/5wZitbCIW7mQLcg6NhOPAyXVnvuQ94rzTM0F/mkP2Fy7gpNI1L9oBm4s8 PMEMSRhsekX9VmPG8PypWLAoxdtUGMX45zqzEQN9+BSZYbWxlP4+ZIKAHbT2vFTG RKmSva4qSkHEGrK+NoSZ9sww7bcJq4OWWuPYNOTckEYEZsqcjbDqvru82aIrXiNj UgefD0oj9gVlxybogOYiHuy6FYkOP4jRJBS0L09YPmIbLfru0S0AxJrJ5RcXtILO 110h/OrbkbxkLTf/Yq5SR4e2bc55ALlB3JURdt6jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDPAuj4WHupX3YvpxqOYD5tQGVO4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhZjgxNzExLTU1NzItNDVmOC1hOTJjLTkwMDk5ZmM1MzMyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOkmKgwDQYJKoZIhvcNAQELBQADggEBAJey9u6AAsaozTkmp/92+2X5aTFy qPQZioFP5Lnt59g5oQzOZItmTufp9nkY/aHiQvVB3Za2oXQosSP338oIni+8hcpn 097LjiJ2TvAFk2cPvPtVmFdxFiyrsozLMqQKZuBcqTwmkp12NXjO//eE2zUYJ/xL 6xskAYIl3qRPIz5UP9t/BKi06agJ1zRgc1pEuO40mJyiZis0lMO/rN/SU/1PotbP p/dnTf5m/qIUD01YXCMciqdtrNSUlxtE4VtN4spfttga6IFvL4QDZcPCrz3T0fTv SfenYjSsL1lHrdz6hDPFiR2DOJkyRIPuTjU9yCt6egb9Dq2Zl8mRYxiL0tk= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:26 2024 by rpki-client on console-fra.rpki-client.org