$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1a1d6e8-c146-4e26-8d57-ae253d406330.roa File: c1a1d6e8-c146-4e26-8d57-ae253d406330.roa (raw, json) Hash identifier: /M3Uo/W0BYb6Zp445uUp9L5M/KHnYW4ihfQO/nU8DvM= Subject key identifier: C5:52:71:19:71:41:54:F6:AB:6E:33:0C:84:E9:F0:32:39:82:48:4D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CBEB0472C5E0CEC622A5FDE97F0C1902C710596 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1a1d6e8-c146-4e26-8d57-ae253d406330.roa Signing time: Wed 02 Oct 2024 00:00:00 +0000 ROA not before: Wed 02 Oct 2024 00:00:00 +0000 ROA not after: Wed 06 Nov 2024 23:59:59 +0000 asID: 14618 IP address blocks: 5.60.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Oct 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:be:b0:47:2c:5e:0c:ec:62:2a:5f:de:97:f0:c1:90:2c:71:05:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 2 00:00:00 2024 GMT Not After : Nov 6 23:59:59 2024 GMT Subject: serialNumber=fc6433844847f3cd0608e49528ba384f3c080a909cabe29ff697516d4ad5ae0f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:cb:80:e7:f6:e1:51:2b:99:2b:85:34:9d:4b: 80:73:7b:53:97:cb:39:7c:a0:87:da:ec:25:d3:ee: 70:1c:9c:66:ed:4a:4e:7d:73:11:47:17:96:fa:59: 41:40:51:89:60:ae:73:bc:9b:54:ca:55:0b:62:52: 37:df:3e:e8:b1:05:2e:3b:da:54:d2:66:bc:6d:9d: 41:6f:6e:a4:d3:3b:17:a3:72:48:fc:da:66:5d:7c: de:d0:09:5c:8b:cd:26:2c:eb:14:be:d9:2a:12:05: 9f:42:91:54:dc:72:5d:b6:df:f2:73:7a:58:ea:7f: 93:34:d9:ed:31:94:80:57:f3:85:e3:50:b9:0d:c9: c4:61:73:a2:15:53:65:a8:ef:66:52:b9:f8:a8:9b: c7:e4:36:60:51:7f:34:87:8b:b1:dc:14:ed:60:02: 7c:86:de:06:ff:25:91:59:ff:ac:97:b0:f8:dc:17: c6:08:46:23:b2:71:f4:00:34:55:67:5a:dd:49:73: 3d:ad:dc:31:d3:ea:cd:97:a6:e9:ca:77:96:c0:a8: c4:05:f3:91:1a:da:06:6f:ae:70:f3:1c:14:48:59: b9:d4:73:3a:16:dc:70:1e:27:59:7e:ba:3e:68:16: b0:53:bc:d5:35:56:65:0f:fc:32:6b:c0:06:5d:bf: a5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:52:71:19:71:41:54:F6:AB:6E:33:0C:84:E9:F0:32:39:82:48:4D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1a1d6e8-c146-4e26-8d57-ae253d406330.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.40.0/22 Signature Algorithm: sha256WithRSAEncryption c4:1c:0d:6d:40:a9:4e:d7:58:75:e4:a0:38:06:65:b5:e3:de: 3d:97:2d:c3:fd:84:65:7d:f4:3a:5a:83:38:dd:8c:1e:f7:fb: 48:56:59:dc:09:fe:01:21:7e:46:f5:f0:f0:1f:a5:e6:b1:f4: 08:bf:92:1e:2f:b8:fc:6d:ca:00:6d:65:69:fe:37:03:32:0e: 6b:83:03:58:67:9a:f3:62:26:55:57:b2:2f:c0:b5:66:d3:74: 36:64:c8:e3:68:71:0b:ad:c4:03:24:71:1c:d1:20:de:82:c7: 08:39:66:f5:3a:21:67:34:ef:10:da:01:88:49:87:14:b5:90: 29:c0:d5:e1:91:1d:c4:c4:eb:6f:50:98:0a:25:50:ef:8e:b1: 7a:45:72:ff:20:b1:41:9f:cc:55:c0:f5:de:3a:ee:77:9e:36: e6:44:1f:e6:54:5d:1e:86:16:7a:d4:1a:31:4c:85:19:2f:42: 4f:d5:d7:7e:5a:42:05:93:7a:7c:34:d9:98:da:19:29:dc:25: d0:1c:15:40:9b:82:5c:06:4c:64:cc:ee:1b:96:83:6b:db:b8: 9e:42:54:7c:8f:00:bd:a5:3d:e3:c5:ce:03:38:d9:41:38:42: e3:75:73:08:50:8e:6a:1d:97:c0:3e:c6:59:59:3c:7b:b9:9a: 9c:5c:d9:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULL6wRyxeDOxiKl/el/DBkCxxBZYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDAyMDAwMDAwWhcNMjQxMTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYzY0MzM4NDQ4NDdmM2NkMDYwOGU0OTUyOGJhMzg0ZjNj MDgwYTkwOWNhYmUyOWZmNjk3NTE2ZDRhZDVhZTBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcy4Dn9uFRK5krhTSdS4Bze1OXyzl8oIfa7CXT7nAcnGbt Sk59cxFHF5b6WUFAUYlgrnO8m1TKVQtiUjffPuixBS472lTSZrxtnUFvbqTTOxej ckj82mZdfN7QCVyLzSYs6xS+2SoSBZ9CkVTccl223/Jzeljqf5M02e0xlIBX84Xj ULkNycRhc6IVU2Wo72ZSufiom8fkNmBRfzSHi7HcFO1gAnyG3gb/JZFZ/6yXsPjc F8YIRiOycfQANFVnWt1Jcz2t3DHT6s2XpunKd5bAqMQF85Ea2gZvrnDzHBRIWbnU czoW3HAeJ1l+uj5oFrBTvNU1VmUP/DJrwAZdv6WlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxVJxGXFBVParbjMMhOnwMjmCSE0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxYTFkNmU4LWMxNDYtNGUyNi04ZDU3LWFlMjUzZDQwNjMzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIFPCgwDQYJKoZIhvcNAQELBQADggEBAMQcDW1AqU7XWHXkoDgGZbXj3j2X LcP9hGV99DpagzjdjB73+0hWWdwJ/gEhfkb18PAfpeax9Ai/kh4vuPxtygBtZWn+ NwMyDmuDA1hnmvNiJlVXsi/AtWbTdDZkyONocQutxAMkcRzRIN6Cxwg5ZvU6IWc0 7xDaAYhJhxS1kCnA1eGRHcTE629QmAolUO+OsXpFcv8gsUGfzFXA9d467neeNuZE H+ZUXR6GFnrUGjFMhRkvQk/V135aQgWTenw02ZjaGSncJdAcFUCbglwGTGTM7huW g2vbuJ5CVHyPAL2lPePFzgM42UE4QuN1cwhQjmodl8A+xllZPHu5mpxc2a4= -----END CERTIFICATE-----Generated at Tue Oct 22 00:47:07 2024 by rpki-client on console-fra.rpki-client.org