$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c50b49cc-cd90-4e6a-b140-0acc3010275e.roa File: c50b49cc-cd90-4e6a-b140-0acc3010275e.roa (raw, json) Hash identifier: JYIg793qwZ7i+8wm44dFRFDj1iLRwuW9wz28x2XH0U0= Subject key identifier: 95:C9:55:F9:81:08:E7:15:4A:0D:B2:AF:C4:3D:CC:F6:A3:C1:BA:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6EDC4EDF3146A27DF17AFBB844F4206FE476D6B5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c50b49cc-cd90-4e6a-b140-0acc3010275e.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 22394 IP address blocks: 204.126.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:dc:4e:df:31:46:a2:7d:f1:7a:fb:b8:44:f4:20:6f:e4:76:d6:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=81e9b7e40e7057c8d86b44bc39fa6944369c8187a283f31c68ef13192564e76c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:6f:4e:2b:97:3c:bd:52:67:46:89:45:a8:fe: e9:3a:42:9a:cf:f0:19:44:3b:f1:f0:85:e5:f8:9d: 6a:46:d4:63:fb:bb:e2:df:ff:1e:ec:aa:b0:c9:77: f6:a4:16:a5:cc:b8:70:76:f9:0a:15:db:9f:2a:77: c7:40:e2:9b:e2:8f:24:b0:65:46:50:2b:7d:da:f8: 5f:f8:d8:f7:36:a6:94:90:33:2b:5e:f6:1a:41:19: 59:29:4a:7b:05:e2:5a:81:d2:38:bc:d8:ae:c4:30: cd:0a:ad:8f:7f:62:2f:47:44:5a:f8:a7:f9:4c:23: ad:84:78:be:10:25:c1:c5:5e:b2:35:4c:b0:bf:e3: 16:a7:bf:04:74:cb:3d:9d:10:84:15:db:6b:40:f8: 39:25:d0:0f:eb:24:96:76:12:1b:3f:79:e2:5c:c8: 63:83:fb:20:e6:12:fc:93:68:5f:90:ee:74:68:e7: 44:da:f2:31:2d:60:f9:5e:1e:09:9f:0f:bb:a0:15: 9d:78:04:4f:c3:b1:83:9e:49:e4:4e:a3:cb:c6:86: c2:e1:1f:d2:7c:28:ac:04:73:7c:0f:19:94:c4:10: 08:e1:91:2f:8a:6d:be:35:5e:02:3f:7a:ba:82:4a: 4a:44:85:f2:bc:54:20:20:a3:51:7a:3d:d6:af:a3: 7d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C9:55:F9:81:08:E7:15:4A:0D:B2:AF:C4:3D:CC:F6:A3:C1:BA:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c50b49cc-cd90-4e6a-b140-0acc3010275e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.126.24.0/24 Signature Algorithm: sha256WithRSAEncryption d0:a1:0e:84:2b:22:b3:89:2e:91:99:1f:bc:50:0b:00:90:6e: 4c:28:58:f8:06:8c:1e:99:40:0d:63:23:6b:07:18:31:3e:02: 4a:e8:81:46:b6:37:88:5c:3c:33:ac:5b:f7:db:65:93:dc:7a: 5a:68:f5:6b:4a:7a:59:0c:6d:07:a9:62:6a:31:50:d9:cd:e6: be:74:3d:7b:9f:c5:4b:e8:ff:d1:02:59:c9:a0:c4:b2:db:87: 53:80:e7:de:fb:88:b2:d5:e4:d4:13:42:41:4d:61:9e:ad:84: 8d:b3:e5:d5:e4:14:84:68:b6:57:e8:a8:1f:53:ef:b8:60:95: d0:90:2d:95:a8:91:29:2e:eb:57:2f:23:33:1c:27:71:9c:15: f6:8a:d9:8d:c9:94:06:a5:e7:9e:b1:53:20:2d:2d:30:a2:5d: 87:fa:74:3f:8a:db:81:ce:8c:0b:1f:44:47:6d:d4:ff:d0:1d: d6:47:8e:d3:90:fe:53:34:fb:e9:f8:bd:2f:eb:06:4b:4c:82: 66:16:45:2b:6c:22:1c:48:a7:43:86:31:5f:d1:22:bc:87:f5: 0e:9e:c3:3a:1b:a1:62:86:ee:17:27:0e:5d:d1:2a:d4:f0:60: 3b:da:b9:57:9d:52:71:94:81:fd:96:0d:2b:a4:5d:e2:bb:ae: a2:5a:98:5b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbtxO3zFGon3xevu4RPQgb+R21rUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWU5YjdlNDBlNzA1N2M4ZDg2YjQ0YmMzOWZhNjk0NDM2 OWM4MTg3YTI4M2YzMWM2OGVmMTMxOTI1NjRlNzZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrb04rlzy9UmdGiUWo/uk6QprP8BlEO/HwheX4nWpG1GP7 u+Lf/x7sqrDJd/akFqXMuHB2+QoV258qd8dA4pvijySwZUZQK33a+F/42Pc2ppSQ Myte9hpBGVkpSnsF4lqB0ji82K7EMM0KrY9/Yi9HRFr4p/lMI62EeL4QJcHFXrI1 TLC/4xanvwR0yz2dEIQV22tA+Dkl0A/rJJZ2Ehs/eeJcyGOD+yDmEvyTaF+Q7nRo 50Ta8jEtYPleHgmfD7ugFZ14BE/DsYOeSeROo8vGhsLhH9J8KKwEc3wPGZTEEAjh kS+Kbb41XgI/erqCSkpEhfK8VCAgo1F6Pdavo323AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlclV+YEI5xVKDbKvxD3M9qPBupMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1MGI0OWNjLWNkOTAtNGU2YS1iMTQwLTBhY2MzMDEwMjc1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADMfhgwDQYJKoZIhvcNAQELBQADggEBANChDoQrIrOJLpGZH7xQCwCQbkwo WPgGjB6ZQA1jI2sHGDE+AkrogUa2N4hcPDOsW/fbZZPcelpo9WtKelkMbQepYmox UNnN5r50PXufxUvo/9ECWcmgxLLbh1OA5977iLLV5NQTQkFNYZ6thI2z5dXkFIRo tlfoqB9T77hgldCQLZWokSku61cvIzMcJ3GcFfaK2Y3JlAal556xUyAtLTCiXYf6 dD+K24HOjAsfREdt1P/QHdZHjtOQ/lM0++n4vS/rBktMgmYWRStsIhxIp0OGMV/R IryH9Q6ewzoboWKG7hcnDl3RKtTwYDvauVedUnGUgf2WDSukXeK7rqJamFs= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:28 2024 by rpki-client on console-fra.rpki-client.org