$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa File: c8f71b7e-9974-4779-8c24-e352d24c707e.roa (raw, json) Hash identifier: e/wpOxeaAfc2HphJqjIpnW/t2s80lLw1JGXNGeFey+U= Subject key identifier: B7:E8:CD:08:CA:15:36:06:21:7F:DD:8D:D1:E7:2A:DB:DF:BE:85:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04EA2A411B18C9A04F48824F9DF41EFB891BBBC8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:ea:2a:41:1b:18:c9:a0:4f:48:82:4f:9d:f4:1e:fb:89:1b:bb:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=6901b7a405743dc7fac8f36f72b5dd73453b3f8bd97fc4bddeacfd8165d5c89c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ca:eb:71:ff:61:42:d5:ef:78:c8:44:c1:e1: f6:16:8a:ad:7d:60:ae:b4:25:02:79:8b:8b:6d:4c: 62:8b:80:0b:c6:c9:36:62:b5:3f:d5:f2:08:3e:d2: 85:88:24:55:b1:25:4e:3a:1e:39:ec:d0:9d:6a:0e: 93:66:80:b8:0b:94:62:3f:4f:6d:8d:45:07:50:ef: 24:7c:77:ec:61:47:9e:70:bf:16:ca:c9:d4:7a:fe: 30:10:4e:47:44:65:09:2f:a7:84:e7:70:ff:47:bf: 62:b0:f9:96:9b:d1:f5:6d:cc:bc:2f:c0:73:30:e4: c7:ad:f4:a0:05:e4:57:82:4d:25:45:fd:a1:6e:09: 0a:01:82:2b:c4:27:3b:0a:92:d2:59:7d:e0:00:07: e2:eb:1c:2c:75:8c:5d:f0:6f:d5:8f:47:87:0d:34: 62:f0:d3:d7:7f:c7:fe:77:94:ca:1c:83:c2:30:3e: cb:f5:38:fa:9d:79:72:de:b5:a3:04:3e:bf:62:58: 39:6c:ac:15:d2:11:a3:ca:9d:92:ce:5c:c2:4c:e1: 87:36:29:35:04:66:2f:bd:72:c8:a0:dc:23:9a:1a: ec:94:3b:8c:59:ed:84:65:55:b1:65:36:0a:82:0b: 6b:98:ba:a6:f4:97:69:59:eb:3e:64:cd:c8:57:0f: 39:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E8:CD:08:CA:15:36:06:21:7F:DD:8D:D1:E7:2A:DB:DF:BE:85:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:5000::/36 Signature Algorithm: sha256WithRSAEncryption 20:dc:3f:dc:15:c2:76:92:27:67:45:53:2d:24:50:4e:e9:16: d3:14:49:60:4a:1d:4e:e8:54:f5:fd:21:d3:b3:bf:eb:ca:de: b5:ec:05:13:9a:f3:92:e4:7b:36:f9:62:5a:27:9f:14:56:19: a2:2c:1c:6b:ee:8b:56:a0:6c:58:0b:d8:52:41:07:f9:cf:52: c3:ff:96:e4:5a:a2:b6:14:88:fe:3e:00:4f:7d:a1:12:b0:74: c7:04:0b:85:5c:47:58:a8:88:ef:f3:5b:d5:93:e7:4a:a4:91: d5:31:24:19:c9:ab:8e:dd:6e:a1:39:e6:b7:a7:ff:9e:ae:82: 0f:86:a0:a2:10:6b:23:17:3a:f9:16:af:4d:18:73:8a:6b:d1: b6:47:d6:dc:13:1a:30:58:c1:d7:3d:47:88:89:be:44:36:86: 30:e3:cd:ed:c0:e6:53:d0:c5:1f:f9:70:98:91:67:0b:0f:25: 2a:55:f5:85:42:cb:7a:de:40:d0:80:e7:dd:e1:df:86:b9:6a: ed:ef:95:8c:65:87:03:d9:2b:0d:81:85:af:3f:c7:8a:71:8f: 4d:ac:16:98:9e:71:fc:a2:8c:df:e1:cb:52:ea:39:2f:be:7c: b9:c9:fd:22:18:a8:0b:0a:07:37:a0:38:8d:6d:61:6f:15:6c: a9:83:fc:c8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBOoqQRsYyaBPSIJPnfQe+4kbu8gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTAxYjdhNDA1NzQzZGM3ZmFjOGYzNmY3MmI1ZGQ3MzQ1 M2IzZjhiZDk3ZmM0YmRkZWFjZmQ4MTY1ZDVjODljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5yutx/2FC1e94yETB4fYWiq19YK60JQJ5i4ttTGKLgAvG yTZitT/V8gg+0oWIJFWxJU46Hjns0J1qDpNmgLgLlGI/T22NRQdQ7yR8d+xhR55w vxbKydR6/jAQTkdEZQkvp4TncP9Hv2Kw+Zab0fVtzLwvwHMw5Met9KAF5FeCTSVF /aFuCQoBgivEJzsKktJZfeAAB+LrHCx1jF3wb9WPR4cNNGLw09d/x/53lMocg8Iw Psv1OPqdeXLetaMEPr9iWDlsrBXSEaPKnZLOXMJM4Yc2KTUEZi+9csig3COaGuyU O4xZ7YRlVbFlNgqCC2uYuqb0l2lZ6z5kzchXDznNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUt+jNCMoVNgYhf92N0ecq29++hQQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4ZjcxYjdlLTk5NzQtNDc3OS04YzI0LWUzNTJkMjRjNzA3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB/4UDANBgkqhkiG9w0BAQsFAAOCAQEAINw/3BXCdpInZ0VTLSRQTukW 0xRJYEodTuhU9f0h07O/68retewFE5rzkuR7NvliWiefFFYZoiwca+6LVqBsWAvY UkEH+c9Sw/+W5FqithSI/j4AT32hErB0xwQLhVxHWKiI7/Nb1ZPnSqSR1TEkGcmr jt1uoTnmt6f/nq6CD4agohBrIxc6+RavTRhzimvRtkfW3BMaMFjB1z1HiIm+RDaG MOPN7cDmU9DFH/lwmJFnCw8lKlX1hULLet5A0IDn3eHfhrlq7e+VjGWHA9krDYGF rz/HinGPTawWmJ5x/KKM3+HLUuo5L758ucn9IhioCwoHN6A4jW1hbxVsqYP8yA== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:30 2024 by rpki-client on console-ams.rpki-client.org