$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bdcf269d-d387-404f-84a3-a8fdb2d5a919.roa File: bdcf269d-d387-404f-84a3-a8fdb2d5a919.roa (raw, json) Hash identifier: wwOORkAa8zz6vSpigVtf3RuKUi45bfJjKak7lOxWpew= Subject key identifier: 67:AA:4F:4D:F7:03:3D:1B:2A:A8:4A:34:A9:F3:AC:26:CC:16:6E:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F34FF0FE2075D04C90A34A2DB85CACDBF52C7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bdcf269d-d387-404f-84a3-a8fdb2d5a919.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 162.61.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:34:ff:0f:e2:07:5d:04:c9:0a:34:a2:db:85:ca:cd:bf:52:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=137ecba158164260e149926cb9d7a785e9b35f0bd0143fc83021baf3c02504fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d5:4f:db:41:e5:6f:ca:4e:ef:e0:4d:46:b0: 65:2f:e7:5a:0d:4f:23:f0:8d:15:b4:78:76:68:aa: d6:8d:86:30:01:3f:19:7c:48:48:db:cd:19:7a:70: 94:9e:57:cb:fc:3a:b5:62:78:45:27:4f:e7:73:73: 35:0b:78:56:88:0b:67:1f:66:1f:b0:cc:3c:1d:4d: 1e:e1:e6:2a:c6:e9:28:c2:e5:8b:54:5b:d9:26:00: 71:dc:68:46:47:89:b7:38:23:8c:9f:10:7d:55:cc: 9d:a2:8c:86:51:85:1f:8d:80:df:ed:f8:9f:56:2a: 19:46:0e:05:f6:38:53:63:0b:5f:5e:fd:57:d2:b7: 37:14:a9:c4:95:80:b2:64:75:14:b7:ca:87:ab:a1: 38:2c:ef:24:00:55:40:2e:4f:03:b0:17:3b:42:ec: 7f:81:99:d8:29:51:92:aa:09:05:2a:bc:b4:53:ac: f8:70:11:cc:ae:5d:45:27:99:c3:45:a7:94:19:06: 94:ee:5b:1b:ef:3f:6c:5d:01:db:3c:68:a7:a9:3a: 04:71:fb:ae:b1:a7:8e:c3:2c:49:ac:76:48:15:60: c1:f5:d5:4c:3c:ea:57:2c:11:8e:6b:68:51:81:be: 43:df:38:0d:cb:5f:46:96:1c:63:2d:13:d4:b8:e8: 57:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AA:4F:4D:F7:03:3D:1B:2A:A8:4A:34:A9:F3:AC:26:CC:16:6E:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bdcf269d-d387-404f-84a3-a8fdb2d5a919.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.61.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1e:a9:8a:be:2c:70:cf:eb:a8:29:ef:e1:b1:9a:9b:6a:63:fb: cb:f2:d9:79:f9:cd:65:5e:c5:02:3d:e6:38:68:b7:e3:73:26: c3:47:9b:57:61:bd:eb:37:43:97:1e:68:13:e5:90:76:10:60: 67:06:53:5a:0d:b3:59:b1:09:7a:f9:9e:97:57:29:14:2d:2c: b4:6e:f2:5a:ed:60:36:69:0e:65:29:8e:48:30:f5:fc:5a:28: bd:97:fe:6c:31:66:7b:be:4a:dd:5a:ee:cb:b5:db:a7:9b:a4: d6:e4:b9:34:77:1a:2f:c8:5e:e6:e3:c9:ca:41:cb:e4:04:57: 31:db:cf:71:b4:c3:60:75:ff:86:14:5a:1f:6f:50:4e:aa:ab: ee:06:60:cc:53:2c:aa:62:de:c7:c9:7a:b2:ca:e1:7d:c5:74: 04:55:1f:07:7e:f5:29:56:a9:f6:07:31:ed:59:27:45:fb:78: f2:18:e8:15:28:17:7a:c6:b5:ce:91:ba:66:64:0e:1c:04:f6: 4f:ff:8e:35:d5:3b:78:e4:89:3c:3d:42:7f:04:b8:fc:62:f0: 9b:72:41:2f:eb:30:e1:ac:a3:4c:fa:e0:59:1d:9a:99:f3:6b: 3f:c6:35:5a:54:ba:66:9f:48:ad:77:fa:4e:8f:6a:75:e7:b9: 8d:e6:da:97 -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITPzT/D+IHXQTJCjSi24XKzb9SxzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDExMTEwMDAwMDBaFw0yNDEyMTYyMzU5NTla MHoxSTBHBgNVBAUTQDEzN2VjYmExNTgxNjQyNjBlMTQ5OTI2Y2I5ZDdhNzg1ZTli MzVmMGJkMDE0M2ZjODMwMjFiYWYzYzAyNTA0ZmUxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAK7VT9tB5W/KTu/gTUawZS/nWg1PI/CNFbR4dmiq1o2GMAE/ GXxISNvNGXpwlJ5Xy/w6tWJ4RSdP53NzNQt4VogLZx9mH7DMPB1NHuHmKsbpKMLl i1Rb2SYAcdxoRkeJtzgjjJ8QfVXMnaKMhlGFH42A3+34n1YqGUYOBfY4U2MLX179 V9K3NxSpxJWAsmR1FLfKh6uhOCzvJABVQC5PA7AXO0Lsf4GZ2ClRkqoJBSq8tFOs +HARzK5dRSeZw0WnlBkGlO5bG+8/bF0B2zxop6k6BHH7rrGnjsMsSax2SBVgwfXV TDzqVywRjmtoUYG+Q984DctfRpYcYy0T1LjoV7MCAwEAAaOCArAwggKsMB0GA1Ud DgQWBBRnqk9N9wM9GyqoSjSp86wmzBZuZTAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvYmRjZjI2OWQtZDM4Ny00MDRmLTg0YTMtYThmZGIyZDVhOTE5LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAKI9MA0GCSqGSIb3DQEBCwUAA4IBAQAeqYq+LHDP66gp7+GxmptqY/vL8tl5 +c1lXsUCPeY4aLfjcybDR5tXYb3rN0OXHmgT5ZB2EGBnBlNaDbNZsQl6+Z6XVykU LSy0bvJa7WA2aQ5lKY5IMPX8Wii9l/5sMWZ7vkrdWu7Ltdunm6TW5Lk0dxovyF7m 48nKQcvkBFcx289xtMNgdf+GFFofb1BOqqvuBmDMUyyqYt7HyXqyyuF9xXQEVR8H fvUpVqn2BzHtWSdF+3jyGOgVKBd6xrXOkbpmZA4cBPZP/4411Tt45Ik8PUJ/BLj8 YvCbckEv6zDhrKNM+uBZHZqZ82s/xjVaVLpmn0itd/pOj2p157mN5tqX -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:26 2024 by rpki-client on console-fra.rpki-client.org