$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6110a89-0d32-4f4c-b83d-5860fc9480de.roa File: c6110a89-0d32-4f4c-b83d-5860fc9480de.roa (raw, json) Hash identifier: RvGLcSjbDRsHHO1aFcAXTfb92Y99gXa+dsdheHANDiI= Subject key identifier: 4E:F4:33:04:DA:47:64:FE:33:B2:59:0A:E0:8F:1C:42:8E:A8:ED:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 492A56498D137BFA7C2571152D6AEA445018C224 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6110a89-0d32-4f4c-b83d-5860fc9480de.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f00:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:2a:56:49:8d:13:7b:fa:7c:25:71:15:2d:6a:ea:44:50:18:c2:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=e796c6d4e17008d692d092939fb950ca27d03b994bfca8d0b1fd46c0302509e7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c3:c4:fb:e1:b6:7d:6b:3f:f9:02:4a:f3:bf: c7:cb:59:0b:aa:c0:62:2d:f1:5f:d2:84:c3:68:a0: 66:64:b9:8c:6b:a0:0b:12:f1:c4:b6:5e:b4:f5:0f: db:f7:19:c7:c8:b9:67:b3:f4:cf:02:0b:70:9a:13: 16:cc:32:21:9e:d5:4f:b3:8d:7d:bb:7d:94:cd:d6: 65:7c:45:5e:1a:a6:cb:5e:58:07:3f:f7:5b:46:86: 16:c2:b6:20:94:01:ef:5f:85:c0:74:00:c0:fa:ef: 6a:65:55:be:c7:52:da:33:09:d0:e5:59:fc:fa:ed: e2:52:03:95:b4:0d:c3:31:1b:26:d3:08:00:cc:ca: a7:5b:77:3e:c6:f4:cf:a8:26:57:03:ee:50:da:6f: 3c:05:5a:c0:aa:60:e6:d9:b7:08:8d:3c:76:52:80: 8b:2e:eb:e9:b0:7f:cc:0a:a2:83:f7:0f:4b:27:eb: 15:e3:85:21:06:1a:df:e7:bb:e3:1f:f5:35:d9:54: 79:9f:13:03:90:37:e9:a1:a8:e2:97:57:70:bc:69: da:00:82:4d:25:ce:03:f8:03:fc:44:41:3b:a2:ae: 09:75:be:68:ed:43:d7:7a:21:69:1b:90:79:f1:2a: d8:85:a2:e9:5d:7e:37:3d:e9:3f:39:28:da:e7:51: 9c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F4:33:04:DA:47:64:FE:33:B2:59:0A:E0:8F:1C:42:8E:A8:ED:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6110a89-0d32-4f4c-b83d-5860fc9480de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:5000::/40 Signature Algorithm: sha256WithRSAEncryption 05:c1:16:eb:86:77:09:94:9f:42:7b:dd:85:52:e5:bc:c3:a5: 37:1a:b7:95:15:e7:08:4c:89:51:b1:04:78:1f:35:49:9f:47: f1:ec:ea:3d:a4:e4:e2:66:aa:e0:40:c7:d7:8b:e0:37:26:62: cc:b2:e1:ba:c5:cf:ad:18:c8:26:f7:31:28:21:a3:c5:50:ca: e3:ec:e3:d4:b3:eb:24:90:8d:88:01:e6:9c:2d:33:55:1d:11: 3b:90:9b:d1:49:9b:37:16:ac:a3:cb:69:f3:da:17:3f:35:8b: 76:17:38:f4:b8:9e:af:0d:df:fa:00:02:13:52:d5:1d:e5:a1: b2:57:c0:6c:13:21:e3:60:3c:3e:50:68:a4:b9:dc:97:94:7f: 59:fc:fc:b2:e9:a3:a8:49:55:e8:46:28:ab:9b:6c:2e:d1:98: 89:b9:de:9c:3a:ed:71:81:4f:d9:0e:49:18:e5:54:06:57:2b: a6:1b:0c:27:b8:fd:50:2f:8f:d4:40:3d:1c:ba:64:38:06:70: ca:59:cb:75:53:f8:6b:a5:95:1c:79:8a:26:86:3c:65:d2:c0: 53:a4:73:08:4d:e7:0b:b2:21:e7:53:f0:ec:8f:60:4e:bb:de: c0:ed:e4:53:ee:40:9d:59:da:ee:83:91:7c:12:2b:c9:61:b8: 67:6b:7b:ef -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSSpWSY0Te/p8JXEVLWrqRFAYwiQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzk2YzZkNGUxNzAwOGQ2OTJkMDkyOTM5ZmI5NTBjYTI3 ZDAzYjk5NGJmY2E4ZDBiMWZkNDZjMDMwMjUwOWU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZw8T74bZ9az/5Akrzv8fLWQuqwGIt8V/ShMNooGZkuYxr oAsS8cS2XrT1D9v3GcfIuWez9M8CC3CaExbMMiGe1U+zjX27fZTN1mV8RV4apste WAc/91tGhhbCtiCUAe9fhcB0AMD672plVb7HUtozCdDlWfz67eJSA5W0DcMxGybT CADMyqdbdz7G9M+oJlcD7lDabzwFWsCqYObZtwiNPHZSgIsu6+mwf8wKooP3D0sn 6xXjhSEGGt/nu+Mf9TXZVHmfEwOQN+mhqOKXV3C8adoAgk0lzgP4A/xEQTuirgl1 vmjtQ9d6IWkbkHnxKtiFouldfjc96T85KNrnUZz9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUTvQzBNpHZP4zslkK4I8cQo6o7XEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M2MTEwYTg5LTBkMzItNGY0Yy1iODNkLTU4NjBmYzk0ODBkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8AUDANBgkqhkiG9w0BAQsFAAOCAQEABcEW64Z3CZSfQnvdhVLlvMOl Nxq3lRXnCEyJUbEEeB81SZ9H8ezqPaTk4maq4EDH14vgNyZizLLhusXPrRjIJvcx KCGjxVDK4+zj1LPrJJCNiAHmnC0zVR0RO5Cb0UmbNxaso8tp89oXPzWLdhc49Lie rw3f+gACE1LVHeWhslfAbBMh42A8PlBopLncl5R/Wfz8sumjqElV6EYoq5tsLtGY ibnenDrtcYFP2Q5JGOVUBlcrphsMJ7j9UC+P1EA9HLpkOAZwylnLdVP4a6WVHHmK JoY8ZdLAU6RzCE3nC7Ih51Pw7I9gTrvewO3kU+5AnVna7oORfBIryWG4Z2t77w== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:28 2024 by rpki-client on console-fra.rpki-client.org