$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa File: c519af15-33bf-4884-a6c5-459c9023ad53.roa (raw, json) Hash identifier: k8wVGTblU/hwOEGZvXDuB6G1sGgdxVF66E/oeBZ6eWI= Subject key identifier: C5:33:0E:B3:FC:49:46:6D:3C:F9:01:72:85:4A:95:63:D6:79:29:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01D768AC377141D37532077E0A84027BF682091D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 199.61.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:d7:68:ac:37:71:41:d3:75:32:07:7e:0a:84:02:7b:f6:82:09:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=102a8e2e35e8d04e9f6c43a746d78a3d7e4a058cb557b382b35dd9a78d439b29, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:81:4a:08:aa:8f:88:65:48:f1:a1:99:90:74: a7:62:af:5d:db:e6:84:3e:13:cc:49:ee:01:25:66: cc:74:d8:d6:9c:d7:58:5f:e1:66:24:40:7b:db:20: b3:00:a6:d8:63:8d:e6:1d:e9:79:e6:2f:40:98:94: e3:c1:de:c4:cb:2b:07:1a:3d:2c:ac:39:3e:5b:98: ac:c1:14:ba:7d:92:0f:bb:2d:5c:c0:50:d4:c9:34: b1:03:52:33:d0:92:a6:87:e0:28:68:02:9c:ac:f1: da:b0:a0:cf:3f:10:e2:82:05:45:cf:b1:d2:2f:56: 27:41:0b:4b:f9:62:19:17:c4:0d:ac:af:6b:8a:36: 56:db:b9:9c:21:5c:e2:9b:4b:02:a2:8d:50:d4:28: 69:0e:57:45:f7:3b:47:31:ba:75:88:62:75:5a:37: 43:64:65:20:bd:3e:be:00:80:9e:01:62:44:9f:01: 50:c0:4b:3a:71:11:8f:8c:7f:c7:13:c9:bb:cb:04: dc:16:f1:5c:ae:3a:05:83:2d:b1:f2:6b:33:a1:35: 86:e5:6e:c3:6b:e6:50:53:45:29:58:28:84:e3:c8: 4d:85:34:f9:7f:3d:f9:2f:87:90:ba:06:71:2a:35: 27:ec:62:02:fc:73:f5:4b:9c:15:dd:6c:bc:a0:31: b3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:33:0E:B3:FC:49:46:6D:3C:F9:01:72:85:4A:95:63:D6:79:29:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.61.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3b:7c:3c:dd:62:1d:d7:f0:d9:53:74:8c:b4:6f:be:bd:a7:fa: c2:1a:65:3e:58:a0:d9:12:a5:54:f4:4e:db:95:07:7b:6e:27: af:57:39:bc:fe:d2:70:24:ec:1c:3c:9c:7e:f0:fc:a7:b7:46: d1:52:ac:77:7f:4d:89:08:90:89:e7:90:a6:3a:de:26:d7:a1: 5c:87:07:ef:39:06:f0:07:d6:5d:b1:31:b5:e9:34:2f:d7:dd: b9:79:53:28:ac:6d:79:31:cd:8e:3f:f0:df:fd:1e:d5:d4:c9: 64:dd:4f:0b:f4:28:5f:ff:14:80:fe:d5:4c:89:7f:ab:1a:e7: 3d:bf:2c:55:9d:c0:45:92:88:1a:d9:d0:fc:a9:e7:e4:ed:07: b2:82:66:71:43:c8:b7:88:e4:99:6b:12:d2:cc:27:20:e4:6e: fe:5d:5b:2d:d0:c8:ee:bb:5c:ec:6e:9f:37:a2:9d:5d:aa:e0: 83:dc:58:fa:79:66:82:5b:ad:12:5c:d2:34:e5:54:9d:c0:1c: 5a:75:bb:99:ec:a5:62:e9:d1:56:6e:78:5c:1b:5f:0e:f4:aa: 95:84:63:3c:b6:a2:f7:7b:21:cf:00:3e:01:86:9a:50:3d:ab: 95:bb:99:c8:4c:9f:56:00:ae:21:bc:ba:59:d7:da:23:ac:32: c4:a8:bd:f4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAddorDdxQdN1Mgd+CoQCe/aCCR0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDJhOGUyZTM1ZThkMDRlOWY2YzQzYTc0NmQ3OGEzZDdl NGEwNThjYjU1N2IzODJiMzVkZDlhNzhkNDM5YjI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1gUoIqo+IZUjxoZmQdKdir13b5oQ+E8xJ7gElZsx02Nac 11hf4WYkQHvbILMApthjjeYd6XnmL0CYlOPB3sTLKwcaPSysOT5bmKzBFLp9kg+7 LVzAUNTJNLEDUjPQkqaH4ChoApys8dqwoM8/EOKCBUXPsdIvVidBC0v5YhkXxA2s r2uKNlbbuZwhXOKbSwKijVDUKGkOV0X3O0cxunWIYnVaN0NkZSC9Pr4AgJ4BYkSf AVDASzpxEY+Mf8cTybvLBNwW8VyuOgWDLbHyazOhNYblbsNr5lBTRSlYKITjyE2F NPl/Pfkvh5C6BnEqNSfsYgL8c/VLnBXdbLygMbMNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxTMOs/xJRm08+QFyhUqVY9Z5KeMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1MTlhZjE1LTMzYmYtNDg4NC1hNmM1LTQ1OWM5MDIzYWQ1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDHPTANBgkqhkiG9w0BAQsFAAOCAQEAO3w83WId1/DZU3SMtG++vaf6whpl Plig2RKlVPRO25UHe24nr1c5vP7ScCTsHDycfvD8p7dG0VKsd39NiQiQieeQpjre JtehXIcH7zkG8AfWXbExtek0L9fduXlTKKxteTHNjj/w3/0e1dTJZN1PC/QoX/8U gP7VTIl/qxrnPb8sVZ3ARZKIGtnQ/Knn5O0HsoJmcUPIt4jkmWsS0swnIORu/l1b LdDI7rtc7G6fN6KdXargg9xY+nlmglutElzSNOVUncAcWnW7meylYunRVm54XBtf DvSqlYRjPLai93shzwA+AYaaUD2rlbuZyEyfVgCuIby6WdfaI6wyxKi99A== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:28 2024 by rpki-client on console-fra.rpki-client.org