$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb637bd0-8dcc-4c7e-ac0b-eb2f77bbf474.roa File: bb637bd0-8dcc-4c7e-ac0b-eb2f77bbf474.roa (raw, json) Hash identifier: CHlRmoimWNSg/VyeT0OgsRCW4HU9wLK5SKbmqO7fd7o= Subject key identifier: 4A:3F:DD:B5:3F:F7:F8:B0:99:D9:95:BA:8D:B5:BD:DC:3D:3B:AB:4D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 37E1421BF65447E51AC784513EF58138EE1AB79E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb637bd0-8dcc-4c7e-ac0b-eb2f77bbf474.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 167.2.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e1:42:1b:f6:54:47:e5:1a:c7:84:51:3e:f5:81:38:ee:1a:b7:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=fb2fb63fdbbbafd8f49ca733afe374d4a8e113b47dd7a64bbd29415c96baab7c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ef:83:52:04:27:e5:5a:dc:36:d1:6e:67:03: f4:11:ab:89:44:27:da:25:44:c0:dc:02:e4:36:4c: c6:d5:78:7c:83:fb:25:36:e5:17:1d:ad:66:60:65: e5:8d:bb:9a:7b:46:22:8b:ae:5f:13:8a:15:be:53: 0a:48:a2:50:92:99:70:09:2f:76:d2:b1:ae:12:50: e7:0f:39:b6:1c:24:de:ce:31:50:90:eb:7e:cc:42: b8:99:01:cc:d7:a7:5d:00:df:3b:f5:84:17:59:94: 14:b7:53:27:7c:33:8a:ee:70:2e:08:13:0a:6a:2c: 82:ac:6f:c3:a0:59:b8:4e:0f:26:e9:88:16:66:f5: 45:c5:15:3d:7c:0b:6c:85:cd:f9:45:2a:f4:4b:99: 6f:61:52:00:97:b4:d7:be:eb:8d:20:3f:5c:e1:52: db:c8:d1:ac:8a:31:54:c6:7e:f4:ff:f2:58:05:81: 60:c7:36:66:9b:72:c7:e0:ea:33:f8:20:72:84:f1: c6:03:2d:ad:04:05:ed:99:f4:dd:89:db:92:39:19: 69:ac:2f:70:2b:26:cb:ad:1c:52:28:94:a0:d2:0d: ba:6b:8e:cb:29:99:2e:ac:60:a6:d1:49:7a:47:e9: 80:83:70:10:80:26:24:d1:3c:fd:79:f1:74:1a:17: ce:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3F:DD:B5:3F:F7:F8:B0:99:D9:95:BA:8D:B5:BD:DC:3D:3B:AB:4D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb637bd0-8dcc-4c7e-ac0b-eb2f77bbf474.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.2.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1e:d1:eb:7d:4f:68:35:44:0b:77:61:87:cf:11:51:df:32:b1: 61:bd:ca:2a:5a:9b:52:d5:9d:74:50:52:15:f3:ab:49:66:5f: 30:44:c3:3a:ca:01:f2:20:19:63:7d:b7:0e:9e:cf:70:06:1f: a8:8b:6a:6d:5c:31:a4:23:b0:35:a7:f9:da:e5:0e:67:7e:61: 94:ad:97:e0:c1:9e:33:7e:f9:ab:c2:ac:24:fc:1e:9d:a1:1d: 1d:0a:93:a5:6f:a8:ce:12:53:89:af:91:92:d0:22:dd:e0:9c: df:55:8d:4a:16:4a:bc:62:d0:43:9e:93:b2:20:5a:28:63:81: b7:8c:7b:ee:2a:e5:b8:56:5b:a4:b5:9e:29:df:f3:17:4b:88: 57:15:a3:f3:99:00:28:4e:3a:47:46:b4:4f:81:75:00:05:f3: b0:2e:77:09:ba:65:64:e5:7d:98:6a:86:4c:4c:30:0e:ad:71: f3:76:f5:6f:8e:1c:76:1d:f2:70:29:00:5c:7a:2c:2c:ff:fb: 17:93:52:43:c7:28:4b:8b:f8:36:31:d8:62:2f:e2:0c:50:8c: 3e:66:9b:ab:6b:6f:06:00:ab:6f:98:11:62:61:bd:e4:63:a8: 7a:06:0f:87:c2:6b:da:f5:ae:74:56:2c:31:a8:0a:54:b9:7d: a0:1f:81:29 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUN+FCG/ZUR+Uax4RRPvWBOO4at54wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjJmYjYzZmRiYmJhZmQ4ZjQ5Y2E3MzNhZmUzNzRkNGE4 ZTExM2I0N2RkN2E2NGJiZDI5NDE1Yzk2YmFhYjdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDq74NSBCflWtw20W5nA/QRq4lEJ9olRMDcAuQ2TMbVeHyD +yU25RcdrWZgZeWNu5p7RiKLrl8TihW+UwpIolCSmXAJL3bSsa4SUOcPObYcJN7O MVCQ637MQriZAczXp10A3zv1hBdZlBS3Uyd8M4rucC4IEwpqLIKsb8OgWbhODybp iBZm9UXFFT18C2yFzflFKvRLmW9hUgCXtNe+640gP1zhUtvI0ayKMVTGfvT/8lgF gWDHNmabcsfg6jP4IHKE8cYDLa0EBe2Z9N2J25I5GWmsL3ArJsutHFIolKDSDbpr jsspmS6sYKbRSXpH6YCDcBCAJiTRPP158XQaF871AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSj/dtT/3+LCZ2ZW6jbW93D07q00wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JiNjM3YmQwLThkY2MtNGM3ZS1hYzBiLWViMmY3N2JiZjQ3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCnAjANBgkqhkiG9w0BAQsFAAOCAQEAHtHrfU9oNUQLd2GHzxFR3zKxYb3K KlqbUtWddFBSFfOrSWZfMETDOsoB8iAZY323Dp7PcAYfqItqbVwxpCOwNaf52uUO Z35hlK2X4MGeM375q8KsJPwenaEdHQqTpW+ozhJTia+RktAi3eCc31WNShZKvGLQ Q56TsiBaKGOBt4x77irluFZbpLWeKd/zF0uIVxWj85kAKE46R0a0T4F1AAXzsC53 CbplZOV9mGqGTEwwDq1x83b1b44cdh3ycCkAXHosLP/7F5NSQ8coS4v4NjHYYi/i DFCMPmabq2tvBgCrb5gRYmG95GOoegYPh8Jr2vWudFYsMagKVLl9oB+BKQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:26 2024 by rpki-client on console-fra.rpki-client.org