$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d16bf4ed-487f-4adc-954b-9b19669221a7.roa File: d16bf4ed-487f-4adc-954b-9b19669221a7.roa (raw, json) Hash identifier: XHexw9prxmoyseTOcGRJ9HpbaDX+ggY4+tD12+LPeDs= Subject key identifier: 5E:27:C3:58:D8:60:30:19:77:88:E7:67:87:91:32:49:E2:8A:3C:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 214E8B2850FC43D574F099AB853EC23133A3244C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d16bf4ed-487f-4adc-954b-9b19669221a7.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 20.142.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:4e:8b:28:50:fc:43:d5:74:f0:99:ab:85:3e:c2:31:33:a3:24:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=15f0eee44d92aa3a371bbab8c5dbe51778e080fed8a8fc0fe0a18fd85a0671b1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8a:77:a9:44:5a:33:17:45:a9:f6:66:b2:07: 65:2b:68:15:8b:2a:29:78:a1:b1:4e:0f:9d:da:eb: 8e:2a:91:19:db:56:8e:b3:e6:dc:94:8e:b5:ca:d5: 6f:45:30:31:70:34:99:05:2c:5d:b9:b5:28:bf:c7: e6:80:c6:9b:6f:b7:ae:17:88:80:88:25:ec:f6:1e: 73:08:00:77:63:5d:a5:6d:65:5d:46:1d:5b:9b:bf: e1:4e:61:89:e6:c6:07:cb:de:53:36:0f:8a:33:7e: d7:5b:e4:ff:34:be:d1:f6:cb:31:f4:bb:40:cf:a9: 69:85:f0:ab:35:06:2b:fa:68:8c:bc:d3:a6:9b:70: 43:07:ca:88:64:22:90:b1:df:09:3e:93:cd:d8:23: 87:38:e3:e6:47:de:cc:bc:be:11:77:33:e2:1c:d5: 53:d9:30:ab:f5:13:64:fa:1b:29:c1:92:56:cd:af: 6f:a7:4a:af:9c:69:0f:1d:19:5e:6b:39:63:59:d4: bd:6e:7f:ae:98:62:df:09:ba:d9:15:9a:61:d4:91: f4:6f:28:9b:39:9c:8c:ed:53:04:d9:e3:02:5e:ee: f0:0f:ea:36:0a:9f:83:d5:5f:5e:43:b9:bb:b9:5a: 35:7e:d0:2f:b8:40:ed:c3:d4:2d:b7:7b:5b:58:15: 77:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:27:C3:58:D8:60:30:19:77:88:E7:67:87:91:32:49:E2:8A:3C:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d16bf4ed-487f-4adc-954b-9b19669221a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 20.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 24:4c:9f:76:16:67:34:d1:d6:71:fa:99:ab:fa:4d:80:3d:a4: 0b:a5:8f:9f:0d:48:1a:ca:27:16:d7:b5:a8:d1:05:43:e0:90: 50:46:e9:0a:7e:74:66:05:5f:02:56:1a:45:b0:bd:80:53:37: d6:c5:7e:b5:e7:e9:ca:af:41:18:ff:0b:29:0b:c6:08:23:88: d8:27:03:f8:92:6d:48:64:94:b1:fe:2b:37:e3:26:6d:85:49: 66:47:cc:7e:8a:3e:5a:cf:7f:61:d4:72:e7:ca:bc:00:26:5c: fa:ea:cf:11:5e:2e:d7:e3:cd:14:61:73:1d:5f:7f:35:24:7e: b5:41:23:83:fc:c7:3a:be:05:17:46:86:98:00:b1:c1:46:c7: fc:49:22:87:b0:2d:ba:97:49:0c:06:d8:6f:8e:a7:ae:15:a7: 82:eb:1c:29:70:c8:ff:e3:c2:21:14:a2:31:99:98:4c:71:21: ea:cd:50:fb:2c:a3:e3:d5:6b:73:0d:16:7f:54:3b:f5:27:2b: be:5e:29:33:5a:45:39:7b:23:a0:68:a4:06:2c:15:e1:88:0d: 57:76:46:91:94:d9:ae:43:d7:02:3b:fa:7c:54:3f:0e:2b:d7: 60:e4:e5:90:39:3c:fc:4a:f0:f0:e1:47:b2:75:3f:bb:88:d0: 2b:ac:b9:58 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIU6LKFD8Q9V08JmrhT7CMTOjJEwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNWYwZWVlNDRkOTJhYTNhMzcxYmJhYjhjNWRiZTUxNzc4 ZTA4MGZlZDhhOGZjMGZlMGExOGZkODVhMDY3MWIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDinepRFozF0Wp9mayB2UraBWLKil4obFOD53a644qkRnb Vo6z5tyUjrXK1W9FMDFwNJkFLF25tSi/x+aAxptvt64XiICIJez2HnMIAHdjXaVt ZV1GHVubv+FOYYnmxgfL3lM2D4ozftdb5P80vtH2yzH0u0DPqWmF8Ks1Biv6aIy8 06abcEMHyohkIpCx3wk+k83YI4c44+ZH3sy8vhF3M+Ic1VPZMKv1E2T6GynBklbN r2+nSq+caQ8dGV5rOWNZ1L1uf66YYt8JutkVmmHUkfRvKJs5nIztUwTZ4wJe7vAP 6jYKn4PVX15Dubu5WjV+0C+4QO3D1C23e1tYFXeJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXifDWNhgMBl3iOdnh5EySeKKPFIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QxNmJmNGVkLTQ4N2YtNGFkYy05NTRiLTliMTk2NjkyMjFhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAUjjANBgkqhkiG9w0BAQsFAAOCAQEAJEyfdhZnNNHWcfqZq/pNgD2kC6WP nw1IGsonFte1qNEFQ+CQUEbpCn50ZgVfAlYaRbC9gFM31sV+tefpyq9BGP8LKQvG CCOI2CcD+JJtSGSUsf4rN+MmbYVJZkfMfoo+Ws9/YdRy58q8ACZc+urPEV4u1+PN FGFzHV9/NSR+tUEjg/zHOr4FF0aGmACxwUbH/Ekih7AtupdJDAbYb46nrhWngusc KXDI/+PCIRSiMZmYTHEh6s1Q+yyj49Vrcw0Wf1Q79Scrvl4pM1pFOXsjoGikBiwV 4YgNV3ZGkZTZrkPXAjv6fFQ/DivXYOTlkDk8/Erw8OFHsnU/u4jQK6y5WA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:32 2024 by rpki-client on console-fra.rpki-client.org