$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa File: d2526c3a-77ad-4669-af27-f2171d468d2d.roa (raw, json) Hash identifier: vlnSApINdyiUMSOtlQ6DAD7KRfSezpXy0AFrpJ/+BXQ= Subject key identifier: EE:25:22:58:55:86:1C:3D:AC:62:6A:2F:E6:95:30:76:D5:E8:1F:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 64010DAA87E4A0589102928E7BAAE9CD159A8BA1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 63.246.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:01:0d:aa:87:e4:a0:58:91:02:92:8e:7b:aa:e9:cd:15:9a:8b:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=4cab133ea54313e60302648fe1e5c955ac308b173d365210e9d693c4da2dad7b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d1:fd:35:21:ff:db:70:cc:a0:77:30:c6:ce: e2:7c:4f:30:5e:a5:4b:1c:3f:e0:cd:3f:c2:9c:2d: b7:d8:19:21:05:f3:ef:c1:73:e4:17:65:52:fe:08: b2:95:aa:15:7c:5a:8f:04:1b:0e:7a:57:e6:9d:0a: d9:38:89:77:bc:f5:9d:bd:46:e8:be:eb:e7:58:8d: 82:05:b7:a5:5f:8e:7d:b8:3f:a9:f6:b3:5e:25:25: e2:ff:b4:4f:d5:2e:47:94:a4:55:45:4d:cc:0c:47: c7:8e:3c:5a:e4:44:04:02:3b:e8:4c:da:30:d7:56: 7d:df:8d:36:a8:cc:c4:d5:fb:47:30:23:3e:19:c5: 4f:20:8b:b2:ac:44:3e:e3:45:fc:6e:3d:1c:05:66: 23:1e:54:cd:bc:b1:bb:11:cc:4d:fa:d0:0d:76:23: 14:64:a9:d1:c2:fe:6a:5a:2c:8d:ba:33:29:fc:bf: c3:23:72:cc:3e:90:0a:f7:66:ea:1f:05:db:98:2b: 62:e3:4c:95:d6:9b:b5:11:13:7d:d4:6e:b6:87:94: 37:3e:fe:1a:88:da:c0:17:c6:c3:15:4f:4a:ae:02: 84:21:44:17:46:90:ba:44:c7:90:5c:0e:18:2d:e0: af:0f:2a:8d:03:20:e4:b2:03:a7:4b:15:3c:0c:8d: 7a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:25:22:58:55:86:1C:3D:AC:62:6A:2F:E6:95:30:76:D5:E8:1F:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.116.0/24 Signature Algorithm: sha256WithRSAEncryption 11:cb:0f:2e:f3:c3:eb:c8:60:7b:fb:e6:b4:4f:b6:b5:60:c5: 47:34:4b:d8:78:93:01:e1:6f:6b:65:bc:9a:8f:c7:85:58:f4: 58:1c:52:95:0c:8e:96:7c:0e:2f:d8:5f:6c:34:ba:6a:7b:e7: 8d:e7:05:16:83:18:fa:98:ca:09:8e:7c:8e:dd:f3:a5:64:c5: 4f:5d:e0:46:b9:fe:57:62:4e:3d:08:49:10:4d:25:67:f5:1a: 1d:35:40:1f:f9:52:7d:60:39:bf:b4:cf:d4:69:a8:c4:d8:28: f3:78:07:a5:a3:10:da:b5:bb:5d:5c:bd:25:a9:63:da:c9:6f: 7a:44:eb:51:32:9a:26:77:92:82:50:2b:d6:05:d5:02:de:f4: fb:17:c7:cb:f2:cf:f3:18:ca:b4:be:f8:3f:45:58:79:9c:24: 20:2d:55:f7:98:f5:c7:08:ec:41:5d:db:64:26:23:0b:2b:93: fc:66:5d:36:6d:47:49:d2:ad:b5:23:93:85:38:94:d5:c4:2a: b3:f9:53:02:45:72:57:00:ff:03:b8:26:f4:1f:ee:cc:c5:00: 36:5e:8c:3b:db:b0:b5:59:1e:66:f0:68:1e:6c:b8:e5:e4:e9: f6:49:5b:01:da:63:c6:0f:de:9f:62:f9:fd:f7:71:31:55:56: 11:9c:41:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZAENqofkoFiRApKOe6rpzRWai6EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2FiMTMzZWE1NDMxM2U2MDMwMjY0OGZlMWU1Yzk1NWFj MzA4YjE3M2QzNjUyMTBlOWQ2OTNjNGRhMmRhZDdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy0f01If/bcMygdzDGzuJ8TzBepUscP+DNP8KcLbfYGSEF 8+/Bc+QXZVL+CLKVqhV8Wo8EGw56V+adCtk4iXe89Z29Rui+6+dYjYIFt6Vfjn24 P6n2s14lJeL/tE/VLkeUpFVFTcwMR8eOPFrkRAQCO+hM2jDXVn3fjTaozMTV+0cw Iz4ZxU8gi7KsRD7jRfxuPRwFZiMeVM28sbsRzE360A12IxRkqdHC/mpaLI26Myn8 v8Mjcsw+kAr3ZuofBduYK2LjTJXWm7URE33UbraHlDc+/hqI2sAXxsMVT0quAoQh RBdGkLpEx5BcDhgt4K8PKo0DIOSyA6dLFTwMjXqHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7iUiWFWGHD2sYmov5pUwdtXoHzcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyNTI2YzNhLTc3YWQtNDY2OS1hZjI3LWYyMTcxZDQ2OGQyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA/9nQwDQYJKoZIhvcNAQELBQADggEBABHLDy7zw+vIYHv75rRPtrVgxUc0 S9h4kwHhb2tlvJqPx4VY9FgcUpUMjpZ8Di/YX2w0ump7543nBRaDGPqYygmOfI7d 86VkxU9d4Ea5/ldiTj0ISRBNJWf1Gh01QB/5Un1gOb+0z9RpqMTYKPN4B6WjENq1 u11cvSWpY9rJb3pE61EymiZ3koJQK9YF1QLe9PsXx8vyz/MYyrS++D9FWHmcJCAt VfeY9ccI7EFd22QmIwsrk/xmXTZtR0nSrbUjk4U4lNXEKrP5UwJFclcA/wO4JvQf 7szFADZejDvbsLVZHmbwaB5suOXk6fZJWwHaY8YP3p9i+f33cTFVVhGcQTQ= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:32 2024 by rpki-client on console-ams.rpki-client.org