$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3720b08-99f6-4690-a4ae-55aae1b75988.roa File: d3720b08-99f6-4690-a4ae-55aae1b75988.roa (raw, json) Hash identifier: kiddNX7aG4HGInxuDp1EWjPL9N6PRKyvEQMFmN+XTNg= Subject key identifier: 9E:1C:53:50:79:73:B4:AB:02:9F:A9:54:DC:2A:BC:6A:F0:7E:7A:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 081815B91ACAA6130F8EA9263FC1D25549858FDE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3720b08-99f6-4690-a4ae-55aae1b75988.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff5:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:18:15:b9:1a:ca:a6:13:0f:8e:a9:26:3f:c1:d2:55:49:85:8f:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=50286954bc6460c08e3cfe90663257a59c65a36f3c875b133fbca3a389b679d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:35:1f:57:d3:a5:cb:81:ca:ec:78:6e:f8:81: ac:a0:0d:ad:31:a1:7a:92:07:99:1f:d4:4d:fc:13: c6:18:97:f9:9e:94:60:db:5c:87:bd:8f:09:f5:8f: 97:eb:8f:0b:e8:ae:71:91:e1:71:e1:62:89:19:2e: 3d:6a:9b:fb:75:24:6c:62:65:72:72:54:a6:18:33: 48:f5:00:be:c9:87:d5:69:89:f0:e8:78:30:7c:4a: 12:0b:db:1a:ac:70:57:b8:df:6a:06:21:e8:7c:00: 0c:1e:dd:be:4f:ba:4b:61:c8:49:3b:24:de:17:27: 8e:ab:38:8f:4b:65:9d:e3:a2:39:e4:f1:1a:87:c9: dc:04:e1:6e:b9:f9:19:49:93:e0:1b:0a:d4:0e:5f: d2:2f:fe:b8:65:94:9f:d6:90:d1:28:cd:cf:35:c3: 43:ba:bd:90:c0:8a:57:b0:16:5d:7d:64:26:43:91: 6f:2b:16:3f:ea:b7:8b:38:7b:66:8c:0f:22:40:80: 63:55:18:4e:2f:ad:a5:0f:1c:f0:72:b3:03:6f:52: 0e:90:c9:14:c9:19:da:4d:48:66:f9:fa:9e:ff:08: 48:ce:75:be:d8:14:39:19:67:37:28:37:32:97:2f: 1b:ac:fb:94:81:33:41:e9:20:5c:b1:c5:89:a1:34: 8b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:1C:53:50:79:73:B4:AB:02:9F:A9:54:DC:2A:BC:6A:F0:7E:7A:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3720b08-99f6-4690-a4ae-55aae1b75988.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff5:6000::/40 Signature Algorithm: sha256WithRSAEncryption 0d:04:32:6e:0d:89:9b:07:20:75:00:05:f7:9f:02:88:26:f5: 18:b6:17:1f:51:16:3d:1c:60:0f:56:ad:2f:e8:1b:2e:a4:fe: c1:26:da:8a:6b:6e:e4:b0:22:ea:05:f3:84:01:fe:b0:be:55: 12:56:4f:ab:63:a4:a1:c4:d7:ac:ac:0d:01:6b:ec:63:f4:25: fd:c5:0d:25:5d:da:2c:21:bb:fd:26:ad:18:4d:8e:76:fc:6e: 88:82:28:3b:f2:2d:3e:fe:14:60:08:0d:90:c6:aa:f4:d4:17: c7:e3:69:5d:f3:2d:20:d3:9b:3d:a8:94:62:af:3c:c4:00:fe: 68:67:73:60:bc:db:af:e9:d8:86:c6:fa:21:cd:54:33:81:89: 02:c1:bd:f3:b4:b2:4e:0d:3d:94:fe:2f:e5:d1:8e:24:b0:dd: 6a:9f:60:b3:9f:09:5f:00:20:8e:35:a7:1a:5f:88:6c:45:e8: 6e:a2:81:cb:8a:84:b7:a3:aa:e7:21:50:5f:21:40:f2:0c:af: 39:c3:db:3d:81:72:65:94:ef:5e:f3:ba:1b:d9:9c:7f:58:57: f3:59:15:f1:90:cd:a6:16:3f:5a:e8:c8:63:fe:62:8d:ab:19: 01:9e:ef:6c:92:88:eb:41:62:e1:12:74:7e:71:00:91:90:de: 0c:1f:13:f9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCBgVuRrKphMPjqkmP8HSVUmFj94wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MDI4Njk1NGJjNjQ2MGMwOGUzY2ZlOTA2NjMyNTdhNTlj NjVhMzZmM2M4NzViMTMzZmJjYTNhMzg5YjY3OWQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaNR9X06XLgcrseG74gaygDa0xoXqSB5kf1E38E8YYl/me lGDbXIe9jwn1j5frjwvornGR4XHhYokZLj1qm/t1JGxiZXJyVKYYM0j1AL7Jh9Vp ifDoeDB8ShIL2xqscFe432oGIeh8AAwe3b5PukthyEk7JN4XJ46rOI9LZZ3jojnk 8RqHydwE4W65+RlJk+AbCtQOX9Iv/rhllJ/WkNEozc81w0O6vZDAilewFl19ZCZD kW8rFj/qt4s4e2aMDyJAgGNVGE4vraUPHPByswNvUg6QyRTJGdpNSGb5+p7/CEjO db7YFDkZZzcoNzKXLxus+5SBM0HpIFyxxYmhNIuhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnhxTUHlztKsCn6lU3Cq8avB+en0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzNzIwYjA4LTk5ZjYtNDY5MC1hNGFlLTU1YWFlMWI3NTk4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/1YDANBgkqhkiG9w0BAQsFAAOCAQEADQQybg2JmwcgdQAF958CiCb1 GLYXH1EWPRxgD1atL+gbLqT+wSbaimtu5LAi6gXzhAH+sL5VElZPq2OkocTXrKwN AWvsY/Ql/cUNJV3aLCG7/SatGE2OdvxuiIIoO/ItPv4UYAgNkMaq9NQXx+NpXfMt INObPaiUYq88xAD+aGdzYLzbr+nYhsb6Ic1UM4GJAsG987SyTg09lP4v5dGOJLDd ap9gs58JXwAgjjWnGl+IbEXobqKBy4qEt6Oq5yFQXyFA8gyvOcPbPYFyZZTvXvO6 G9mcf1hX81kV8ZDNphY/WujIY/5ijasZAZ7vbJKI60Fi4RJ0fnEAkZDeDB8T+Q== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:32 2024 by rpki-client on console-ams.rpki-client.org