$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c21a03d2-c335-42e6-bd75-5dc8f46efae5.roa File: c21a03d2-c335-42e6-bd75-5dc8f46efae5.roa (raw, json) Hash identifier: 0h9yMtFqNbPTsySHZbTnwMri6Uz3qwZd8ZCww+zL9ps= Subject key identifier: 71:80:DD:9B:A9:B8:9E:F8:B9:DF:6C:88:7A:3D:BC:D9:C8:F9:40:66 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7116961B1676A3952134A386B852186F64271E99 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c21a03d2-c335-42e6-bd75-5dc8f46efae5.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 54.55.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:16:96:1b:16:76:a3:95:21:34:a3:86:b8:52:18:6f:64:27:1e:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=ecc2e1e94d05c610468b98ab5cd3cc66b4e80d2102d3e40317843e4b540869bd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:91:21:cb:a2:ac:80:47:c0:0b:10:ce:4a:7d: 87:0d:e8:73:64:b9:73:11:1f:22:ad:10:c6:e0:2e: c3:e2:18:25:3a:46:92:f7:66:15:30:fe:01:50:c3: b0:67:9b:d2:b8:43:27:8f:c7:4e:ae:2f:a6:0b:f8: 42:4b:0e:d4:3c:af:bc:ce:c0:81:01:d1:95:56:b9: 90:40:86:18:d6:bc:58:a4:cb:f0:9c:23:b6:58:f8: 0e:52:7c:2e:01:86:19:bb:8b:64:cb:88:16:4d:87: 9b:d4:c7:bc:9d:d3:ac:4d:45:b0:d3:87:0e:c4:e4: f8:00:49:6c:d4:24:8f:22:99:83:7e:80:26:63:d5: c8:13:9f:b6:5f:ea:92:4a:e4:b5:8a:e1:da:5e:c1: 47:e2:6c:be:06:eb:59:7c:05:28:5c:61:f0:c7:18: 34:4b:32:ad:7f:4e:2e:43:00:9e:2e:61:f3:27:34: cb:4c:3c:98:51:b4:4b:ed:f1:d9:0f:f3:8a:82:93: 31:ec:a3:6b:fc:fa:a1:c5:e9:1a:90:1c:c5:c1:c5: d3:ff:97:4a:5b:b0:ed:5d:55:77:4f:ce:4a:6d:b6: 3d:f0:77:f1:e5:ac:d7:5f:91:7c:08:87:f2:0b:33: 0c:5e:40:eb:b9:c2:2c:fa:59:87:f9:f8:6b:ed:3b: 0f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:80:DD:9B:A9:B8:9E:F8:B9:DF:6C:88:7A:3D:BC:D9:C8:F9:40:66 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c21a03d2-c335-42e6-bd75-5dc8f46efae5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.55.0.0/16 Signature Algorithm: sha256WithRSAEncryption c6:4d:85:da:2e:79:99:6f:52:42:d6:60:5b:ad:1e:c4:d9:16: 18:e7:1d:a8:a5:1f:c5:bb:5c:e1:19:4d:c0:3f:2b:5c:29:ce: f3:c0:e0:29:9a:e2:c1:ff:17:29:99:00:9c:98:f5:67:7c:1c: dc:bd:6d:a3:a1:28:3c:fc:5f:67:c0:f3:a2:58:0d:fa:96:05: b6:b1:6e:3c:13:ee:ca:1c:d2:26:33:ab:2f:6c:27:82:1d:8e: 71:e7:3a:05:3d:ba:f2:21:3f:ca:78:5a:36:9b:8c:b2:64:d3: 6f:b9:d5:ad:43:f3:ed:28:fb:cf:30:5c:87:07:d7:24:22:ae: 35:2e:d6:a1:f4:b8:ae:90:57:0a:ac:4c:00:ae:1b:08:c8:29: dc:bb:34:0e:58:66:c5:b2:ee:79:f1:a1:94:a9:b1:0e:90:59: fc:6f:74:c9:be:f4:a7:66:55:71:fe:40:f4:d2:31:82:06:d0: 34:50:86:3a:35:eb:f6:c2:e4:78:0c:91:de:b7:78:1b:6c:fa: 7a:42:84:08:4c:9c:1e:75:6c:76:a1:57:35:df:88:44:0b:54: b7:45:71:e1:70:6d:94:46:c7:57:ab:fe:3f:6f:44:12:f5:89: 60:e6:03:39:74:63:cf:40:10:96:49:1c:e7:a5:79:a9:01:39: bd:1d:3d:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcRaWGxZ2o5UhNKOGuFIYb2QnHpkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2MyZTFlOTRkMDVjNjEwNDY4Yjk4YWI1Y2QzY2M2NmI0 ZTgwZDIxMDJkM2U0MDMxNzg0M2U0YjU0MDg2OWJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUkSHLoqyAR8ALEM5KfYcN6HNkuXMRHyKtEMbgLsPiGCU6 RpL3ZhUw/gFQw7Bnm9K4QyePx06uL6YL+EJLDtQ8r7zOwIEB0ZVWuZBAhhjWvFik y/CcI7ZY+A5SfC4Bhhm7i2TLiBZNh5vUx7yd06xNRbDThw7E5PgASWzUJI8imYN+ gCZj1cgTn7Zf6pJK5LWK4dpewUfibL4G61l8BShcYfDHGDRLMq1/Ti5DAJ4uYfMn NMtMPJhRtEvt8dkP84qCkzHso2v8+qHF6RqQHMXBxdP/l0pbsO1dVXdPzkpttj3w d/HlrNdfkXwIh/ILMwxeQOu5wiz6WYf5+GvtOw8hAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcYDdm6m4nvi532yIej282cj5QGYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMWEwM2QyLWMzMzUtNDJlNi1iZDc1LTVkYzhmNDZlZmFlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2NzANBgkqhkiG9w0BAQsFAAOCAQEAxk2F2i55mW9SQtZgW60exNkWGOcd qKUfxbtc4RlNwD8rXCnO88DgKZriwf8XKZkAnJj1Z3wc3L1to6EoPPxfZ8DzolgN +pYFtrFuPBPuyhzSJjOrL2wngh2Ocec6BT268iE/ynhaNpuMsmTTb7nVrUPz7Sj7 zzBchwfXJCKuNS7WofS4rpBXCqxMAK4bCMgp3Ls0DlhmxbLuefGhlKmxDpBZ/G90 yb70p2ZVcf5A9NIxggbQNFCGOjXr9sLkeAyR3rd4G2z6ekKECEycHnVsdqFXNd+I RAtUt0Vx4XBtlEbHV6v+P29EEvWJYOYDOXRjz0AQlkkc56V5qQE5vR09aQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:27 2024 by rpki-client on console-fra.rpki-client.org