$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6400270-eac3-4460-9a68-74d60d530637.roa File: d6400270-eac3-4460-9a68-74d60d530637.roa (raw, json) Hash identifier: mlQR/oa7CU+WC7HaR2PRWfrCXwAKr5bZHLVBFa6zx44= Subject key identifier: 7C:D2:B1:5D:77:52:C5:6C:E6:8D:B7:2E:99:A0:20:E6:D9:46:DC:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DAA16AEB142C5EFDDDB4F343EE865CA558D0DA7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6400270-eac3-4460-9a68-74d60d530637.roa Signing time: Tue 29 Oct 2024 00:00:00 +0000 ROA not before: Tue 29 Oct 2024 00:00:00 +0000 ROA not after: Tue 03 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.107.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:aa:16:ae:b1:42:c5:ef:dd:db:4f:34:3e:e8:65:ca:55:8d:0d:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 29 00:00:00 2024 GMT Not After : Dec 3 23:59:59 2024 GMT Subject: serialNumber=139ba4be29a4669d0ee822170e4dd1a4b62bfbc30f128587b612005d25f9dac7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f1:6c:8a:4d:07:f0:10:66:c4:ee:c3:38:81: cd:01:a8:5e:45:53:2a:a2:cf:b9:e2:93:8a:44:0f: 92:09:44:49:78:07:1a:02:8a:23:35:4f:4d:c2:6c: 0a:6f:b3:d0:de:e2:3a:47:71:f3:5a:81:78:93:46: d4:cb:25:f2:3f:b8:63:f7:0b:d3:10:ce:e5:41:06: 92:c3:4d:5b:f4:b6:2b:25:29:4a:bd:cd:a3:81:16: 5a:bb:26:3d:cf:c3:9c:c6:51:69:ce:03:31:76:35: 60:64:19:73:1b:ee:a4:0d:24:48:07:bf:e2:4f:3c: 22:75:da:39:55:a4:41:b6:f3:2d:d8:06:b7:a9:32: c6:41:fa:58:ee:ec:ba:63:c5:e0:d1:21:bd:97:86: c6:d8:05:4b:c6:91:f6:7a:23:71:db:bc:a5:a4:42: 59:67:a9:f1:9a:de:5f:6b:17:52:41:ec:5e:3a:e0: 54:f2:e5:43:0a:4c:d6:3c:45:f7:54:16:5d:2e:94: 43:7a:99:a9:65:23:c2:02:34:1c:6d:75:8b:d9:a8: 9c:f6:23:cc:cc:d0:12:90:d2:b0:5d:6b:8a:f6:25: 9b:47:c6:2e:92:06:02:3a:39:3d:3e:6a:5e:f3:b4: 57:c2:e3:79:61:b3:4a:4d:07:b2:2f:96:65:68:ae: 47:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D2:B1:5D:77:52:C5:6C:E6:8D:B7:2E:99:A0:20:E6:D9:46:DC:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6400270-eac3-4460-9a68-74d60d530637.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.107.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2f:f2:dd:0a:f5:a8:76:cb:bc:60:5c:de:b8:af:ef:0b:98:26: ed:3f:f5:23:de:b6:34:3d:f7:7a:7a:ad:5f:be:5f:e2:3f:ba: a7:1f:eb:da:b2:b2:7b:af:9b:89:54:0a:f9:e8:bf:2c:b4:e9: ca:88:32:57:a6:e3:81:f3:32:19:6d:10:5a:53:64:e7:af:18: 97:41:2a:24:93:be:33:3f:b8:5d:9e:8e:5a:a0:f2:bf:e4:c5: 63:2f:47:b9:c4:86:2c:20:03:d8:72:11:30:93:5c:aa:e6:20: cf:d6:f0:e7:6d:54:8f:bc:28:82:d8:f2:95:8e:f1:10:71:68: d2:7f:eb:1f:37:00:18:3d:ea:37:9c:e9:62:8c:d9:56:b4:9c: 2f:de:f6:b7:5d:e8:69:2d:60:f6:a2:89:2d:9e:47:a7:a4:e9: 54:5f:b8:1b:ae:3c:6c:ff:ba:bd:60:99:31:56:69:93:13:5f: c1:6d:dc:a9:e7:12:bd:ec:63:3a:91:ec:cf:9a:e6:e6:bc:07: 72:00:a8:1a:18:98:85:6f:bd:d3:20:1f:ef:b0:b5:db:c4:15: a2:44:9e:8a:39:41:de:b1:f5:84:5e:66:9b:36:18:99:1f:b9: 3e:bd:c1:64:ae:be:d5:4f:77:7e:e9:fd:d9:13:de:8e:bc:18: ef:2c:e4:3b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXaoWrrFCxe/d2080PuhlylWNDacwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDI5MDAwMDAwWhcNMjQxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzliYTRiZTI5YTQ2NjlkMGVlODIyMTcwZTRkZDFhNGI2 MmJmYmMzMGYxMjg1ODdiNjEyMDA1ZDI1ZjlkYWM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz8WyKTQfwEGbE7sM4gc0BqF5FUyqiz7nik4pED5IJREl4 BxoCiiM1T03CbApvs9De4jpHcfNagXiTRtTLJfI/uGP3C9MQzuVBBpLDTVv0tisl KUq9zaOBFlq7Jj3Pw5zGUWnOAzF2NWBkGXMb7qQNJEgHv+JPPCJ12jlVpEG28y3Y BrepMsZB+lju7LpjxeDRIb2XhsbYBUvGkfZ6I3HbvKWkQllnqfGa3l9rF1JB7F46 4FTy5UMKTNY8RfdUFl0ulEN6mallI8ICNBxtdYvZqJz2I8zM0BKQ0rBda4r2JZtH xi6SBgI6OT0+al7ztFfC43lhs0pNB7IvlmVorkfPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfNKxXXdSxWzmjbcumaAg5tlG3LcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2NDAwMjcwLWVhYzMtNDQ2MC05YTY4LTc0ZDYwZDUzMDYzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQazANBgkqhkiG9w0BAQsFAAOCAQEAL/LdCvWodsu8YFzeuK/vC5gm7T/1 I962ND33enqtX75f4j+6px/r2rKye6+biVQK+ei/LLTpyogyV6bjgfMyGW0QWlNk 568Yl0EqJJO+Mz+4XZ6OWqDyv+TFYy9HucSGLCAD2HIRMJNcquYgz9bw521Uj7wo gtjylY7xEHFo0n/rHzcAGD3qN5zpYozZVrScL972t13oaS1g9qKJLZ5Hp6TpVF+4 G648bP+6vWCZMVZpkxNfwW3cqecSvexjOpHsz5rm5rwHcgCoGhiYhW+90yAf77C1 28QVokSeijlB3rH1hF5mmzYYmR+5Pr3BZK6+1U93fun92RPejrwY7yzkOw== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:33 2024 by rpki-client on console-fra.rpki-client.org