$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa File: c519af15-33bf-4884-a6c5-459c9023ad53.roa (raw, json) Hash identifier: QYtku4ps0vUuahaazOe1lRkhGeUZR59jJUNWfSVlgSM= Subject key identifier: FE:DB:77:EB:2E:F8:71:9B:EE:68:E8:D6:15:AC:61:E2:3E:37:6E:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 452BD3D2C87CFA79927964BEF908871BEAC3029C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa Signing time: Tue 20 Aug 2024 00:00:00 +0000 ROA not before: Tue 20 Aug 2024 00:00:00 +0000 ROA not after: Tue 24 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 199.61.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Sep 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:2b:d3:d2:c8:7c:fa:79:92:79:64:be:f9:08:87:1b:ea:c3:02:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 20 00:00:00 2024 GMT Not After : Sep 24 23:59:59 2024 GMT Subject: serialNumber=f3643704aac26141b9677b6cf32e330702cb8214940eebf432e2941c689ef0ef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d4:37:75:31:96:ca:20:70:74:76:aa:55:18: bd:9d:74:01:01:7a:9a:ab:61:9d:7b:8b:71:00:b8: f8:93:c3:d5:0b:f9:33:8e:fa:ab:ce:2d:3c:8a:8a: bb:0a:54:13:76:16:23:30:c6:5e:a7:dd:5e:10:ff: ed:57:19:8d:d6:35:a6:c4:5f:81:dd:57:71:d3:86: cc:01:40:63:4e:a7:85:ed:44:a9:d2:ef:c7:ea:3a: 4a:61:48:57:7c:ed:69:23:c7:c6:98:be:df:cc:66: 40:7e:a2:4b:b0:06:0e:02:f3:f6:79:3f:ef:de:d1: b9:6d:1f:78:a7:c4:77:e1:b3:ef:d3:d6:75:02:25: 1c:5d:e1:e5:d3:a3:40:14:66:d3:f3:a3:1c:da:bd: 65:cf:40:f1:3d:90:54:c2:3d:b0:4f:c0:78:a4:ba: 1b:16:91:bf:90:a4:a4:07:e9:93:72:3b:86:13:33: 31:14:56:d8:e6:b2:62:55:c5:fc:f3:e0:0f:0d:5b: 01:fb:5b:5f:31:f7:b2:1a:ce:46:11:9f:4f:e9:6e: c6:a6:a2:09:1b:59:98:d6:4a:b9:af:98:4c:a3:5b: db:f5:d2:2e:0c:5a:83:70:68:42:03:b7:cb:e3:87: ea:54:cb:7d:8a:80:fc:c6:cd:4b:5b:1f:fb:90:c3: aa:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:DB:77:EB:2E:F8:71:9B:EE:68:E8:D6:15:AC:61:E2:3E:37:6E:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.61.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:33:b9:d0:eb:cd:33:2e:81:88:65:ae:23:d5:0d:68:07:66: 1e:e4:db:94:07:72:e1:1a:8b:32:3f:b6:69:cc:fd:ad:77:bd: 64:9b:0c:a4:5f:92:09:6a:bd:48:20:4d:21:a3:d2:2c:c9:41: 5b:b1:54:a4:e7:e8:f6:d2:08:f8:da:fb:e1:34:10:d5:93:0d: b6:a3:6a:64:ef:72:d6:63:40:8f:cb:31:47:a0:a3:61:9b:93: 9a:50:64:ac:13:9a:e4:6d:b4:d4:bf:fc:95:28:1d:b8:6b:ee: 53:78:54:b3:ec:89:5e:bb:39:0d:c1:51:00:e0:c6:a4:b9:db: ef:36:2c:cc:e8:34:0c:2f:db:68:23:23:75:d1:51:0b:94:c0: eb:a9:ab:fb:d6:7c:59:f3:ae:e4:8d:e5:3b:ef:f8:ad:ac:33: 25:68:62:dc:c2:55:d9:f3:04:bc:6d:7f:41:54:4a:10:49:49: a2:ea:be:ff:60:8d:2c:4a:be:a9:41:f3:1b:b2:8f:a2:8f:2f: 93:fc:04:f6:72:68:b9:3b:4a:7a:71:ad:e5:a0:a4:35:c0:75: 21:dd:44:64:ec:29:67:73:f6:f1:e9:68:9f:c7:76:dd:ad:43: 38:69:d7:b3:2d:b7:37:43:a9:c6:25:e5:6c:ae:c9:56:49:5d: 39:ef:34:6d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURSvT0sh8+nmSeWS++QiHG+rDApwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwODIwMDAwMDAwWhcNMjQwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzY0MzcwNGFhYzI2MTQxYjk2NzdiNmNmMzJlMzMwNzAy Y2I4MjE0OTQwZWViZjQzMmUyOTQxYzY4OWVmMGVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA1Dd1MZbKIHB0dqpVGL2ddAEBepqrYZ17i3EAuPiTw9UL +TOO+qvOLTyKirsKVBN2FiMwxl6n3V4Q/+1XGY3WNabEX4HdV3HThswBQGNOp4Xt RKnS78fqOkphSFd87Wkjx8aYvt/MZkB+okuwBg4C8/Z5P+/e0bltH3inxHfhs+/T 1nUCJRxd4eXTo0AUZtPzoxzavWXPQPE9kFTCPbBPwHikuhsWkb+QpKQH6ZNyO4YT MzEUVtjmsmJVxfzz4A8NWwH7W18x97IazkYRn0/pbsamogkbWZjWSrmvmEyjW9v1 0i4MWoNwaEIDt8vjh+pUy32KgPzGzUtbH/uQw6oHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/tt36y74cZvuaOjWFaxh4j43bqkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1MTlhZjE1LTMzYmYtNDg4NC1hNmM1LTQ1OWM5MDIzYWQ1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDHPTANBgkqhkiG9w0BAQsFAAOCAQEAADO50OvNMy6BiGWuI9UNaAdmHuTb lAdy4RqLMj+2acz9rXe9ZJsMpF+SCWq9SCBNIaPSLMlBW7FUpOfo9tII+Nr74TQQ 1ZMNtqNqZO9y1mNAj8sxR6CjYZuTmlBkrBOa5G201L/8lSgduGvuU3hUs+yJXrs5 DcFRAODGpLnb7zYszOg0DC/baCMjddFRC5TA66mr+9Z8WfOu5I3lO+/4rawzJWhi 3MJV2fMEvG1/QVRKEElJouq+/2CNLEq+qUHzG7KPoo8vk/wE9nJouTtKenGt5aCk NcB1Id1EZOwpZ3P28elon8d23a1DOGnXsy23N0OpxiXlbK7JVkldOe80bQ== -----END CERTIFICATE-----Generated at Sat Sep 7 02:13:34 2024 by rpki-client on console-fra.rpki-client.org