$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d687a7b8-a45c-4cbc-aa84-f470fdaaabd2.roa File: d687a7b8-a45c-4cbc-aa84-f470fdaaabd2.roa (raw, json) Hash identifier: cMjx63UMVc0Cb8Q7VqSx/nF4xhNS1ql8EYCVdUsQt/0= Subject key identifier: 28:88:59:B4:E9:C9:06:25:4C:FE:0E:AE:16:69:F0:03:F1:BA:2F:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E865011C4A00EC9C294E17A2E34031A4F7FD3A8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d687a7b8-a45c-4cbc-aa84-f470fdaaabd2.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 192.31.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:86:50:11:c4:a0:0e:c9:c2:94:e1:7a:2e:34:03:1a:4f:7f:d3:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=12b6ed4242dd5318f1f3abf6f8ec11a0c02208f32cb5bcd7ed4c7deda4f621d4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b4:dc:c8:c1:d1:30:c6:84:1f:cb:94:d2:a8: 8f:b4:4c:87:c6:45:b7:85:e6:9b:5a:04:41:24:53: b4:d7:20:57:a5:75:bb:76:68:85:1d:80:61:5e:83: 66:92:9e:47:0c:11:b8:86:e9:32:2c:de:a1:5c:22: 66:64:fb:11:c3:46:10:20:10:28:f0:1b:10:d1:f1: 01:8f:c8:31:1b:bc:09:a4:fd:14:1c:8a:3e:4b:81: c4:8e:9d:02:f7:23:6e:00:b1:96:b8:e5:84:08:a0: e8:13:ab:1a:2f:ba:e0:44:70:d0:3f:4e:11:b9:16: 34:6e:fd:09:d1:d4:13:48:c8:8b:2f:06:ed:57:e2: 50:35:10:68:cb:7a:49:8a:77:5b:7c:35:87:13:73: 24:c2:7a:3e:4d:c9:3d:78:3e:0d:b1:25:3a:68:75: 5d:d1:5b:37:89:ac:04:ab:15:b5:14:c3:51:55:68: 00:0b:4c:83:b3:1c:cd:78:7f:c7:64:df:42:d2:93: 78:da:68:13:9d:fe:ab:4a:b7:df:87:cf:74:98:3a: 9c:c6:9f:86:c2:72:06:43:b1:74:41:e5:24:8a:2f: 9b:f3:ea:e1:02:e7:e1:a6:04:97:b9:c0:5d:5b:43: 9f:f1:2f:a2:90:47:1c:9b:a3:3d:47:4a:8f:9c:44: 6e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:88:59:B4:E9:C9:06:25:4C:FE:0E:AE:16:69:F0:03:F1:BA:2F:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d687a7b8-a45c-4cbc-aa84-f470fdaaabd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.31.212.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:8d:b6:07:cb:8d:f4:6f:ef:5b:a3:9a:a3:17:93:29:ef:4a: 29:ab:e7:03:fe:64:4d:b5:fe:bf:d6:35:df:85:ae:15:1e:d8: 54:ee:73:70:d2:0a:f5:75:6b:a6:4b:6e:64:89:a6:e0:57:9e: e2:36:12:42:d1:70:b9:30:27:79:2f:8a:3e:5c:64:20:2c:15: 6d:57:2e:2d:84:64:80:69:18:7f:84:f3:09:46:03:5b:8c:9d: 0e:13:13:44:83:31:f1:84:b2:49:23:f2:77:76:e4:bb:4d:52: ef:92:31:0f:f9:b8:c0:ba:1d:34:7e:86:d4:b9:63:cf:10:96: 70:e7:a4:98:32:9a:b9:d1:00:75:af:07:47:a0:2b:b4:a6:6e: 2f:8e:1c:e9:c2:84:7a:90:70:13:4f:0f:51:92:45:23:a1:a1: 7b:61:4a:99:56:30:cd:48:47:8c:e4:e5:f8:2c:ed:91:f5:61: 06:64:f8:23:b6:5c:ba:d7:3b:04:13:f7:61:0a:3d:d7:89:b5: 9f:91:6b:fb:5e:98:78:13:89:9c:1a:2c:a5:a0:a7:ea:60:27: 99:6e:28:b5:e9:ed:fd:43:48:4c:68:eb:4a:80:73:7e:74:9a: d3:99:f0:a5:b1:fb:16:3b:53:7b:ae:3f:11:4d:cc:2f:8c:22: 68:fa:38:4d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPoZQEcSgDsnClOF6LjQDGk9/06gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMmI2ZWQ0MjQyZGQ1MzE4ZjFmM2FiZjZmOGVjMTFhMGMw MjIwOGYzMmNiNWJjZDdlZDRjN2RlZGE0ZjYyMWQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjtNzIwdEwxoQfy5TSqI+0TIfGRbeF5ptaBEEkU7TXIFel dbt2aIUdgGFeg2aSnkcMEbiG6TIs3qFcImZk+xHDRhAgECjwGxDR8QGPyDEbvAmk /RQcij5LgcSOnQL3I24AsZa45YQIoOgTqxovuuBEcNA/ThG5FjRu/QnR1BNIyIsv Bu1X4lA1EGjLekmKd1t8NYcTcyTCej5NyT14Pg2xJTpodV3RWzeJrASrFbUUw1FV aAALTIOzHM14f8dk30LSk3jaaBOd/qtKt9+Hz3SYOpzGn4bCcgZDsXRB5SSKL5vz 6uEC5+GmBJe5wF1bQ5/xL6KQRxyboz1HSo+cRG5jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKIhZtOnJBiVM/g6uFmnwA/G6L0UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2ODdhN2I4LWE0NWMtNGNiYy1hYTg0LWY0NzBmZGFhYWJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAH9QwDQYJKoZIhvcNAQELBQADggEBAGyNtgfLjfRv71ujmqMXkynvSimr 5wP+ZE21/r/WNd+FrhUe2FTuc3DSCvV1a6ZLbmSJpuBXnuI2EkLRcLkwJ3kvij5c ZCAsFW1XLi2EZIBpGH+E8wlGA1uMnQ4TE0SDMfGEskkj8nd25LtNUu+SMQ/5uMC6 HTR+htS5Y88QlnDnpJgymrnRAHWvB0egK7Smbi+OHOnChHqQcBNPD1GSRSOhoXth SplWMM1IR4zk5fgs7ZH1YQZk+CO2XLrXOwQT92EKPdeJtZ+Ra/temHgTiZwaLKWg p+pgJ5luKLXp7f1DSExo60qAc350mtOZ8KWx+xY7U3uuPxFNzC+MImj6OE0= -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:36 2024 by rpki-client on console-ams.rpki-client.org