$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c08a872f-947c-45f1-871e-4f3f0a6f9ac8.roa File: c08a872f-947c-45f1-871e-4f3f0a6f9ac8.roa (raw, json) Hash identifier: gV0Fgmre6nB/ogTW9PFf3+cJ1BBaAOnuJQIImNHMhhA= Subject key identifier: D0:A2:CC:64:2E:D2:F5:65:4D:C4:AA:3C:2B:E5:89:C6:5E:93:7D:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 13E030C41C28AD21F9E07B586DBE6515FF4B0B5D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c08a872f-947c-45f1-871e-4f3f0a6f9ac8.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 40.45.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:e0:30:c4:1c:28:ad:21:f9:e0:7b:58:6d:be:65:15:ff:4b:0b:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=b2a399386c92b34e1a977f4dd9f6fe10e6369bb1c2c00ed1b6a4ac1600077aad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:36:ca:18:66:09:a1:b5:05:69:fd:7a:10:27: b0:75:4c:46:b0:51:07:8d:38:fe:e7:aa:56:ff:49: 4a:4e:ac:dd:e4:e9:5e:70:a0:51:65:66:ce:45:11: 33:d2:00:74:9f:7d:59:52:33:bc:3a:07:69:37:7a: 9b:b0:6a:c2:3c:2b:70:53:b8:1f:0e:41:72:01:d3: 53:45:32:23:fe:d3:0b:bc:98:83:72:27:76:f4:e7: 8e:af:c3:41:20:d6:ba:78:c7:b0:8d:75:04:d2:bb: 96:59:1e:c5:f1:61:6f:07:d7:45:1b:df:88:e6:a9: f2:01:5c:1c:83:36:b2:96:ce:a1:a7:d0:c0:20:c9: ae:c2:9a:b9:2d:a2:a7:96:a8:5f:0c:62:34:45:bd: 95:2d:ce:7f:a1:e4:4f:87:db:39:a2:c9:7a:1b:0a: 20:66:26:55:d2:01:dd:0f:f1:5f:aa:6a:b5:07:9e: a2:43:79:e9:ae:ab:d0:7d:c9:a7:48:56:ef:2e:18: f2:ef:1f:e4:d1:0f:e7:9b:03:f6:e0:02:66:9b:a6: d4:78:8d:92:2e:c0:44:4b:6b:0a:17:d4:bf:92:05: bd:60:a4:32:4e:bc:da:25:a9:b2:26:f8:ce:65:5e: ff:6e:a7:54:b8:0d:f3:b6:9c:fc:73:06:3b:21:45: 9a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:A2:CC:64:2E:D2:F5:65:4D:C4:AA:3C:2B:E5:89:C6:5E:93:7D:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c08a872f-947c-45f1-871e-4f3f0a6f9ac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.45.0.0/16 Signature Algorithm: sha256WithRSAEncryption bb:cd:3e:ee:1b:99:a2:b6:b8:0c:88:57:01:c9:d2:13:17:d2: 69:0d:dc:9a:ef:18:13:96:ae:8e:6f:4f:ad:2c:39:3e:11:cd: b5:9b:c2:9d:4e:01:78:e2:8d:72:b6:4a:0a:aa:24:c6:72:20: 2a:95:65:86:fd:4d:32:43:70:8a:31:d6:ea:97:6a:3e:a2:a8: 55:1a:de:ed:5f:fc:fe:90:4a:06:2d:28:c4:23:7c:9b:ff:bb: 30:97:c8:22:9d:2c:12:2c:1e:11:b2:cb:90:8b:9a:d5:64:8a: 63:16:53:2e:93:c4:12:f5:45:77:f6:41:f1:59:3b:07:30:56: 0c:e8:9a:5a:29:de:55:30:70:a5:cd:5b:a4:e2:2f:88:eb:4b: 66:7e:f6:8f:04:d9:41:45:d9:6d:cb:09:69:83:82:0a:83:82: 1d:bd:50:34:cc:4d:46:da:0c:a6:2c:f5:67:b2:43:a7:cb:41: 5d:f5:c2:d9:5b:df:4b:d1:00:62:00:6f:f3:92:69:ef:d2:6f: f6:42:1b:35:74:2d:40:ac:0c:27:d9:68:ca:49:94:b6:90:39: 0c:52:c6:09:b0:0d:1c:47:e1:ca:9b:c8:0d:7b:f4:d2:5e:d7: a4:1d:a8:64:34:06:c0:d9:24:13:16:b7:4d:cd:8c:14:33:a5: a4:d6:49:60 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUE+AwxBworSH54HtYbb5lFf9LC10wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMmEzOTkzODZjOTJiMzRlMWE5NzdmNGRkOWY2ZmUxMGU2 MzY5YmIxYzJjMDBlZDFiNmE0YWMxNjAwMDc3YWFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsNsoYZgmhtQVp/XoQJ7B1TEawUQeNOP7nqlb/SUpOrN3k 6V5woFFlZs5FETPSAHSffVlSM7w6B2k3epuwasI8K3BTuB8OQXIB01NFMiP+0wu8 mINyJ3b0546vw0Eg1rp4x7CNdQTSu5ZZHsXxYW8H10Ub34jmqfIBXByDNrKWzqGn 0MAgya7CmrktoqeWqF8MYjRFvZUtzn+h5E+H2zmiyXobCiBmJlXSAd0P8V+qarUH nqJDeemuq9B9yadIVu8uGPLvH+TRD+ebA/bgAmabptR4jZIuwERLawoX1L+SBb1g pDJOvNolqbIm+M5lXv9up1S4DfO2nPxzBjshRZqFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0KLMZC7S9WVNxKo8K+WJxl6TfQQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwOGE4NzJmLTk0N2MtNDVmMS04NzFlLTRmM2YwYTZmOWFjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoLTANBgkqhkiG9w0BAQsFAAOCAQEAu80+7huZora4DIhXAcnSExfSaQ3c mu8YE5aujm9PrSw5PhHNtZvCnU4BeOKNcrZKCqokxnIgKpVlhv1NMkNwijHW6pdq PqKoVRre7V/8/pBKBi0oxCN8m/+7MJfIIp0sEiweEbLLkIua1WSKYxZTLpPEEvVF d/ZB8Vk7BzBWDOiaWineVTBwpc1bpOIviOtLZn72jwTZQUXZbcsJaYOCCoOCHb1Q NMxNRtoMpiz1Z7JDp8tBXfXC2VvfS9EAYgBv85Jp79Jv9kIbNXQtQKwMJ9loykmU tpA5DFLGCbANHEfhypvIDXv00l7XpB2oZDQGwNkkExa3Tc2MFDOlpNZJYA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:27 2024 by rpki-client on console-fra.rpki-client.org