$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92999fc-83b7-48b5-9736-ddde1110743e.roa File: d92999fc-83b7-48b5-9736-ddde1110743e.roa (raw, json) Hash identifier: PwvIcM4RQYfGXyhWbg+D+Ss5r1ZI5MwK93np8TVMjwY= Subject key identifier: C0:41:6F:9B:07:91:5C:3B:06:CF:10:37:47:F3:00:94:C7:0D:A2:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CEBDBFF463C72734D75285076A1FB355DF46647 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92999fc-83b7-48b5-9736-ddde1110743e.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 20.129.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:eb:db:ff:46:3c:72:73:4d:75:28:50:76:a1:fb:35:5d:f4:66:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=c2bce86637ddee2e692b48eea99aa1a20315a84cd627323fe731c87f64d1e31e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ac:7e:17:4a:b6:8e:5e:33:16:cc:84:39:69: 50:1f:df:bc:17:9c:d0:5a:12:c5:39:41:c5:14:9d: d0:ef:e9:60:c8:3b:c9:e0:b7:02:46:0e:82:d4:ef: 6d:eb:2e:eb:b9:fa:70:0b:3f:3c:09:33:c1:c4:72: d3:62:c7:26:b8:93:7b:f6:14:c5:cc:a6:89:57:5c: 8e:d4:d6:23:94:60:6c:14:f8:9a:76:d2:8e:98:87: 9c:d0:0a:99:27:99:ef:5c:cb:4e:29:37:2e:77:b1: e4:00:7b:7f:40:1f:ce:f0:00:b2:47:b4:0a:dc:5d: c2:ac:5c:d1:db:75:78:5f:a8:a0:6f:52:8a:8e:be: c7:c4:52:66:47:b2:dc:48:59:34:49:6b:50:0f:b4: ce:6e:3b:8f:a4:bb:71:7a:a8:3d:e1:56:29:70:35: 73:fc:28:01:89:ed:8c:2b:b1:29:65:92:0e:9a:c7: 71:f9:c1:f6:a4:52:b8:ce:10:91:dd:1e:8e:07:8c: bf:6d:b0:c9:e1:61:fd:18:49:05:60:9c:4f:7d:33: 77:60:31:1b:eb:c7:c1:59:2e:ec:56:e6:8e:c7:83: a5:f7:84:d4:89:21:73:86:bf:21:f1:ee:29:d5:fd: 80:07:12:a2:d2:92:f3:c3:e4:cc:85:7e:0c:73:03: a6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:41:6F:9B:07:91:5C:3B:06:CF:10:37:47:F3:00:94:C7:0D:A2:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92999fc-83b7-48b5-9736-ddde1110743e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 20.129.0.0/16 Signature Algorithm: sha256WithRSAEncryption 05:21:96:50:c0:f1:f9:1b:b3:f3:c1:2e:53:a6:7d:8f:f0:18: a0:1f:ef:37:1d:34:1b:6b:44:8e:00:8d:7a:01:54:67:2d:aa: ae:fd:6c:f2:4a:54:ab:d8:13:67:10:68:72:86:49:b5:1b:fd: c3:dd:c4:87:8f:3b:0e:e0:7f:d9:e7:11:c5:aa:21:58:85:56: cb:57:7b:27:fc:bf:ef:83:94:7d:97:38:ee:10:45:1d:8c:15: 1f:39:59:5a:27:2b:25:65:c8:87:0c:7a:bb:9f:61:90:39:ee: c6:21:df:be:02:61:7c:34:a7:a4:20:5d:81:b4:33:87:a7:8c: 57:81:d7:00:28:0d:89:bc:51:11:6d:c3:cb:02:11:3e:71:d4: a2:75:9a:76:b4:75:48:76:93:92:f0:73:e8:fa:ad:8f:7d:24: 1f:b9:a2:19:f2:f0:31:73:a6:b2:55:e6:86:95:36:89:05:9c: 4a:64:10:74:c1:72:a7:3f:b0:b2:b2:b9:27:2d:53:92:c1:70: 48:38:dd:36:15:9d:3e:89:0c:54:1a:7d:ec:fc:ab:78:64:61: 8a:9c:59:af:34:19:25:7c:e0:17:e1:e9:6b:47:fb:8f:27:c0: c0:ed:4f:d2:23:3b:95:cc:0a:ae:4f:48:4d:e3:25:ad:7f:e1: 10:14:d6:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbOvb/0Y8cnNNdShQdqH7NV30ZkcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMmJjZTg2NjM3ZGRlZTJlNjkyYjQ4ZWVhOTlhYTFhMjAz MTVhODRjZDYyNzMyM2ZlNzMxYzg3ZjY0ZDFlMzFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCurH4XSraOXjMWzIQ5aVAf37wXnNBaEsU5QcUUndDv6WDI O8ngtwJGDoLU723rLuu5+nALPzwJM8HEctNixya4k3v2FMXMpolXXI7U1iOUYGwU +Jp20o6Yh5zQCpknme9cy04pNy53seQAe39AH87wALJHtArcXcKsXNHbdXhfqKBv UoqOvsfEUmZHstxIWTRJa1APtM5uO4+ku3F6qD3hVilwNXP8KAGJ7YwrsSllkg6a x3H5wfakUrjOEJHdHo4HjL9tsMnhYf0YSQVgnE99M3dgMRvrx8FZLuxW5o7Hg6X3 hNSJIXOGvyHx7inV/YAHEqLSkvPD5MyFfgxzA6b3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwEFvmweRXDsGzxA3R/MAlMcNooowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5Mjk5OWZjLTgzYjctNDhiNS05NzM2LWRkZGUxMTEwNzQzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAUgTANBgkqhkiG9w0BAQsFAAOCAQEABSGWUMDx+Ruz88EuU6Z9j/AYoB/v Nx00G2tEjgCNegFUZy2qrv1s8kpUq9gTZxBocoZJtRv9w93Eh487DuB/2ecRxaoh WIVWy1d7J/y/74OUfZc47hBFHYwVHzlZWicrJWXIhwx6u59hkDnuxiHfvgJhfDSn pCBdgbQzh6eMV4HXACgNibxREW3DywIRPnHUonWadrR1SHaTkvBz6Pqtj30kH7mi GfLwMXOmslXmhpU2iQWcSmQQdMFypz+wsrK5Jy1TksFwSDjdNhWdPokMVBp97Pyr eGRhipxZrzQZJXzgF+Hpa0f7jyfAwO1P0iM7lcwKrk9ITeMlrX/hEBTWmA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:34 2024 by rpki-client on console-fra.rpki-client.org