$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9906b42-5c34-487d-817e-6eea6796d971.roa File: d9906b42-5c34-487d-817e-6eea6796d971.roa (raw, json) Hash identifier: 4h/n5hgAEPEm74BJTeMAUQ4R3d6SvZ/W7NM/Y21wgt8= Subject key identifier: C3:A5:C1:7D:7D:0A:19:93:EB:A1:A6:7D:F1:E2:DE:E7:70:3A:91:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DA105FBB7143A15D315F9FD058A924014B19107 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9906b42-5c34-487d-817e-6eea6796d971.roa Signing time: Wed 06 Nov 2024 00:00:00 +0000 ROA not before: Wed 06 Nov 2024 00:00:00 +0000 ROA not after: Wed 11 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 216.73.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a1:05:fb:b7:14:3a:15:d3:15:f9:fd:05:8a:92:40:14:b1:91:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 6 00:00:00 2024 GMT Not After : Dec 11 23:59:59 2024 GMT Subject: serialNumber=b56b3979c2d31329520baac467ed85715756158dd4338f757b81acc595f8a632, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fa:2e:21:7c:98:97:99:03:45:9c:fe:46:ea: 89:8f:f2:f8:80:16:28:49:ee:4c:6c:87:09:30:30: 5c:eb:68:0f:e6:88:34:17:f3:f3:e2:35:62:2f:29: 81:10:a6:9e:9b:ef:6b:60:55:48:50:71:dd:07:c4: 96:57:bd:9e:75:02:5f:23:d3:4c:73:d4:a2:31:82: 91:ed:0c:78:fa:c0:3b:86:f1:db:22:6d:b2:12:c3: 1c:65:7c:e2:fd:a1:c2:0c:51:d4:23:4d:e6:88:65: 08:6d:2a:e7:1a:bf:8e:50:21:02:e7:3f:16:d9:b4: 61:32:f8:81:bd:43:ed:40:f3:5c:1c:60:48:68:73: cc:1e:92:eb:0b:d8:da:7a:9a:3c:5a:2d:87:27:2f: 3c:68:34:b8:62:8b:6e:70:07:8a:87:59:5c:6f:86: a0:1c:f8:d2:b8:c0:c9:4c:8b:7a:a8:02:92:65:ba: b3:9c:d6:a4:bc:0a:f4:fc:9b:c7:06:41:6e:23:b9: a0:78:ca:fa:0c:79:27:16:d1:c5:96:4d:53:7c:0c: e2:3c:07:0a:39:c2:5d:7b:09:31:48:55:33:34:aa: e5:79:1e:2f:48:6c:90:24:34:eb:39:35:0a:62:f9: 65:a4:71:1d:16:c3:e6:03:ab:f9:6b:4e:43:5b:bd: 96:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A5:C1:7D:7D:0A:19:93:EB:A1:A6:7D:F1:E2:DE:E7:70:3A:91:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9906b42-5c34-487d-817e-6eea6796d971.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.73.208.0/21 Signature Algorithm: sha256WithRSAEncryption c9:86:dc:91:d5:3b:76:88:64:be:06:ce:82:d0:75:fb:fe:15: bc:27:e1:d8:a5:d2:7f:75:2c:8e:a0:b6:c8:8c:26:d6:ed:90: 10:df:7a:52:23:3a:c7:f7:bf:ef:33:d6:d9:3c:c5:a6:0c:f8: 0c:9e:50:86:82:46:5c:01:42:e6:a0:54:3f:ae:c3:9e:67:31: 26:ac:b5:e9:8b:c4:90:3a:60:05:ba:89:ef:94:23:9d:4e:1a: f9:83:f3:74:c7:2b:bb:d6:87:80:6e:7d:5c:68:11:63:02:b6: 63:5c:9e:33:a3:f0:eb:48:47:06:a1:42:96:00:c7:14:79:eb: 6a:28:b2:9e:b4:6f:4e:59:e0:b8:b4:f1:19:e7:a5:df:9c:d4: 0e:49:e8:89:c9:94:1d:04:8a:6b:fc:ce:25:c0:18:c3:bc:ce: 1b:96:76:7b:c8:e4:f7:75:a5:de:9c:a3:d9:e0:16:f9:a8:87: 8a:24:1b:75:68:d3:7c:1a:59:c7:4d:fb:ae:bc:99:d6:77:4a: f0:41:9b:65:b3:58:c5:d0:bf:d5:ae:7f:08:69:8c:1f:5f:a0: 65:fa:3e:a6:49:7f:ac:82:ec:db:52:ba:bd:f9:c9:4e:4e:dd: f2:2b:a8:9c:fe:dd:d7:e8:72:cd:82:3a:64:e0:b1:ff:6a:24: ab:a8:f6:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTaEF+7cUOhXTFfn9BYqSQBSxkQcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA2MDAwMDAwWhcNMjQxMjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNTZiMzk3OWMyZDMxMzI5NTIwYmFhYzQ2N2VkODU3MTU3 NTYxNThkZDQzMzhmNzU3YjgxYWNjNTk1ZjhhNjMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP+i4hfJiXmQNFnP5G6omP8viAFihJ7kxshwkwMFzraA/m iDQX8/PiNWIvKYEQpp6b72tgVUhQcd0HxJZXvZ51Al8j00xz1KIxgpHtDHj6wDuG 8dsibbISwxxlfOL9ocIMUdQjTeaIZQhtKucav45QIQLnPxbZtGEy+IG9Q+1A81wc YEhoc8wekusL2Np6mjxaLYcnLzxoNLhii25wB4qHWVxvhqAc+NK4wMlMi3qoApJl urOc1qS8CvT8m8cGQW4juaB4yvoMeScW0cWWTVN8DOI8Bwo5wl17CTFIVTM0quV5 Hi9IbJAkNOs5NQpi+WWkcR0Ww+YDq/lrTkNbvZYtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUw6XBfX0KGZProaZ98eLe53A6kZ8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5OTA2YjQyLTVjMzQtNDg3ZC04MTdlLTZlZWE2Nzk2ZDk3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPYSdAwDQYJKoZIhvcNAQELBQADggEBAMmG3JHVO3aIZL4GzoLQdfv+Fbwn 4dil0n91LI6gtsiMJtbtkBDfelIjOsf3v+8z1tk8xaYM+AyeUIaCRlwBQuagVD+u w55nMSastemLxJA6YAW6ie+UI51OGvmD83THK7vWh4BufVxoEWMCtmNcnjOj8OtI RwahQpYAxxR562oosp60b05Z4Li08Rnnpd+c1A5J6InJlB0Eimv8ziXAGMO8zhuW dnvI5Pd1pd6co9ngFvmoh4okG3Vo03waWcdN+668mdZ3SvBBm2WzWMXQv9Wufwhp jB9foGX6PqZJf6yC7NtSur35yU5O3fIrqJz+3dfocs2COmTgsf9qJKuo9r0= -----END CERTIFICATE-----Generated at Mon Nov 25 02:58:10 2024 by rpki-client on console-fra.rpki-client.org