$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cde0b60f-013f-4194-82b6-b09974b3149a.roa File: cde0b60f-013f-4194-82b6-b09974b3149a.roa (raw, json) Hash identifier: 1psu80ets0axo3EhvpH+dFf4rnGpGilryphEAZnbD0U= Subject key identifier: 54:41:53:27:1E:50:37:B0:92:A4:4A:1A:12:DE:1D:E5:C6:7C:03:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3212DF947BB3A94C60925293BB9D1971452FA41B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cde0b60f-013f-4194-82b6-b09974b3149a.roa Signing time: Wed 06 Nov 2024 00:00:00 +0000 ROA not before: Wed 06 Nov 2024 00:00:00 +0000 ROA not after: Wed 11 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 65.37.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:12:df:94:7b:b3:a9:4c:60:92:52:93:bb:9d:19:71:45:2f:a4:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 6 00:00:00 2024 GMT Not After : Dec 11 23:59:59 2024 GMT Subject: serialNumber=6eecb1d0a070faf9fe69684ac8ea4a98c8eef5f620f6e11f6dba5c77edddab4f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:a7:42:7e:01:cf:1b:74:e7:08:f1:70:bb:88: 70:9a:53:f1:17:61:80:55:00:df:30:a0:d9:6e:d9: 5d:47:32:17:f5:62:04:15:5b:44:95:db:d7:58:83: b0:e6:7b:64:38:57:6e:0e:a4:4b:bb:a5:70:9f:e0: 0b:79:be:44:69:d4:da:93:b6:15:01:54:70:f6:31: 32:ed:9a:68:31:6f:f9:71:23:04:a1:52:12:9e:4f: 24:f9:de:a3:18:c4:e4:a1:23:6e:97:e9:72:23:4b: 9e:a2:68:61:ee:34:3e:e2:9e:f1:27:ac:88:a3:b3: 10:dc:88:3b:ae:3c:ea:29:54:dd:b3:56:3f:3f:72: 2e:fe:53:46:21:2c:61:a4:9f:37:9c:d4:41:4c:14: 95:90:fc:25:92:79:b8:eb:e1:c4:81:64:f8:8e:31: 3c:95:52:1b:31:6a:8a:3a:07:fc:02:37:94:01:8f: e6:b0:d9:be:9d:77:58:54:29:d3:e9:62:b8:10:3d: 95:0d:9a:07:5d:7d:7a:bc:15:e0:4c:62:84:f4:4e: b1:44:42:db:9c:62:d4:d7:49:01:70:ec:2b:de:59: 64:e1:37:6a:7f:94:e5:8e:d5:38:7a:f9:37:a1:f4: 9c:35:79:d7:89:88:5d:35:fc:b3:10:b5:5a:fe:ab: a0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:41:53:27:1E:50:37:B0:92:A4:4A:1A:12:DE:1D:E5:C6:7C:03:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cde0b60f-013f-4194-82b6-b09974b3149a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.37.128.0/18 Signature Algorithm: sha256WithRSAEncryption 4e:c4:74:42:79:7c:95:ef:87:53:b8:87:c9:56:ef:bf:ad:56: e1:fa:9b:cf:01:26:ea:77:bb:01:3d:e0:3d:2f:3c:80:db:f9: 66:ff:bf:a8:95:ab:20:53:00:71:09:54:cd:df:6f:75:b6:b5: de:c8:59:a0:53:e8:2a:b8:b4:29:be:45:af:e5:ab:e0:7b:a0: 69:28:80:f3:70:95:c0:63:58:38:0a:35:8a:c5:a4:19:bd:c4: 86:18:89:43:62:4d:58:c3:19:33:26:67:04:d8:ea:37:b9:18: fe:21:7e:51:8c:5f:d6:19:97:b4:90:a6:c4:ee:47:8a:04:83: 1b:fb:b5:8f:26:43:b7:9a:2a:09:da:34:85:df:43:e5:ad:3e: 6d:3a:24:be:bb:ee:5f:7e:fb:02:da:96:24:51:9f:cd:32:4f: 1c:8d:74:32:da:eb:37:88:85:15:2c:a2:10:ca:bb:01:d7:b3: 32:1e:5f:02:98:f2:c0:75:19:b8:60:32:3f:64:cf:44:15:37: 78:3e:fe:fe:6a:93:1f:ef:d7:b6:79:3b:6a:82:dc:75:f5:8a: 61:4b:6c:d7:5c:5e:9a:37:a1:9a:7b:b9:30:75:2b:ca:00:8b: 5e:20:83:fc:2e:20:de:34:ae:bb:ba:7a:72:39:3f:bb:c3:34: 21:10:de:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMhLflHuzqUxgklKTu50ZcUUvpBswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA2MDAwMDAwWhcNMjQxMjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZWVjYjFkMGEwNzBmYWY5ZmU2OTY4NGFjOGVhNGE5OGM4 ZWVmNWY2MjBmNmUxMWY2ZGJhNWM3N2VkZGRhYjRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPp0J+Ac8bdOcI8XC7iHCaU/EXYYBVAN8woNlu2V1HMhf1 YgQVW0SV29dYg7Dme2Q4V24OpEu7pXCf4At5vkRp1NqTthUBVHD2MTLtmmgxb/lx IwShUhKeTyT53qMYxOShI26X6XIjS56iaGHuND7invEnrIijsxDciDuuPOopVN2z Vj8/ci7+U0YhLGGknzec1EFMFJWQ/CWSebjr4cSBZPiOMTyVUhsxaoo6B/wCN5QB j+aw2b6dd1hUKdPpYrgQPZUNmgddfXq8FeBMYoT0TrFEQtucYtTXSQFw7CveWWTh N2p/lOWO1Th6+Teh9Jw1edeJiF01/LMQtVr+q6C5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVEFTJx5QN7CSpEoaEt4d5cZ8A6IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkZTBiNjBmLTAxM2YtNDE5NC04MmI2LWIwOTk3NGIzMTQ5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZBJYAwDQYJKoZIhvcNAQELBQADggEBAE7EdEJ5fJXvh1O4h8lW77+tVuH6 m88BJup3uwE94D0vPIDb+Wb/v6iVqyBTAHEJVM3fb3W2td7IWaBT6Cq4tCm+Ra/l q+B7oGkogPNwlcBjWDgKNYrFpBm9xIYYiUNiTVjDGTMmZwTY6je5GP4hflGMX9YZ l7SQpsTuR4oEgxv7tY8mQ7eaKgnaNIXfQ+WtPm06JL677l9++wLaliRRn80yTxyN dDLa6zeIhRUsohDKuwHXszIeXwKY8sB1GbhgMj9kz0QVN3g+/v5qkx/v17Z5O2qC 3HX1imFLbNdcXpo3oZp7uTB1K8oAi14gg/wuIN40rru6enI5P7vDNCEQ3lk= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:31 2024 by rpki-client on console-fra.rpki-client.org