$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da8ed365-577c-4762-845a-c8539dcb95d5.roa File: da8ed365-577c-4762-845a-c8539dcb95d5.roa (raw, json) Hash identifier: UuMqI/KLFWcXlWFikN8LHPwWCqkFgxziEXIuI/bB1LM= Subject key identifier: 94:4B:E1:39:9C:A3:60:DF:6A:C8:4A:34:C8:79:77:DC:AD:A7:A3:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40B41A5D0506F21CE90E1D9886316F4DF936CEA6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da8ed365-577c-4762-845a-c8539dcb95d5.roa Signing time: Mon 07 Oct 2024 00:00:00 +0000 ROA not before: Mon 07 Oct 2024 00:00:00 +0000 ROA not after: Mon 11 Nov 2024 23:59:59 +0000 asID: 14618 IP address blocks: 77.123.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Oct 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:b4:1a:5d:05:06:f2:1c:e9:0e:1d:98:86:31:6f:4d:f9:36:ce:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 7 00:00:00 2024 GMT Not After : Nov 11 23:59:59 2024 GMT Subject: serialNumber=a64b596dcb23d325b526e35ea4cac4a5b7a0611d3bc69ba5376f4e40c7006f8a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:22:35:73:b2:04:f4:ee:0c:96:c2:e1:5b:9a: fe:96:5e:43:ac:fb:f5:2a:93:53:bf:5f:25:31:04: 7b:2e:a8:52:77:a4:95:2b:ed:ca:b2:55:57:fb:fa: ed:9c:3d:59:85:bd:18:b8:b9:9c:07:76:b9:4b:23: 56:b5:0c:2e:d7:36:9e:52:45:59:16:1a:1b:7f:17: 8e:b8:60:8e:09:e5:ef:08:ae:bf:00:e1:a4:43:bc: 4e:65:2a:83:b5:77:d7:40:25:a9:bb:1a:82:da:6f: bf:97:e1:3b:a7:cc:f1:83:81:4d:38:22:87:fb:e4: ed:fd:b9:01:38:8b:8b:1b:19:c1:27:a8:b9:3f:63: c2:3a:fb:b1:e8:b7:2d:5c:8c:21:cd:c2:be:73:4a: 83:80:df:32:40:fa:94:25:7b:be:48:87:4e:c5:2a: 04:de:0f:ea:31:e4:08:54:de:9f:e0:2c:e6:3a:da: 20:8d:7d:82:5a:f6:c2:bb:81:fd:07:24:4c:74:d9: 3c:7a:5f:aa:e2:74:42:c7:71:df:9e:0a:83:2c:c2: 68:2a:45:14:1b:10:45:0f:91:1d:8e:fd:c0:c9:2c: 7e:3c:9a:53:19:2e:23:5f:65:e5:ac:43:d0:12:0a: d7:35:f5:57:8f:f5:a8:11:0e:0d:be:e0:74:c3:a8: e1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:4B:E1:39:9C:A3:60:DF:6A:C8:4A:34:C8:79:77:DC:AD:A7:A3:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da8ed365-577c-4762-845a-c8539dcb95d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.123.0.0/17 Signature Algorithm: sha256WithRSAEncryption 96:9c:74:1f:83:1c:63:f5:88:3d:15:9d:82:74:9c:d5:a1:a3: 74:5d:75:f7:22:5e:46:45:93:81:5d:f3:12:3c:59:b3:1d:cc: 4b:85:b2:50:36:26:bb:28:b9:dc:9c:84:65:91:52:5e:a3:ac: 60:c0:3f:a6:6b:f0:d7:e9:5b:78:03:be:dd:7e:af:5c:a8:53: 94:c9:06:4c:78:11:8a:c4:65:bf:62:cf:a1:53:fd:42:dd:56: d2:82:01:51:66:37:a0:24:ca:f4:e8:80:99:b8:9d:64:9a:8a: 95:74:cc:9f:8d:38:f6:66:3e:cc:fa:89:cc:0b:bf:a9:72:5c: f2:63:1d:89:c1:e7:f1:87:dc:5a:1c:37:43:5f:22:ca:7b:47: 01:20:7f:62:81:00:14:3b:39:8d:e6:65:17:04:dc:f3:e2:1d: bc:f2:2e:05:50:29:58:99:4b:e1:8f:c1:f4:0f:ae:88:dd:21: c5:bd:26:67:f5:80:36:7d:7a:98:07:60:a0:96:35:57:4d:2b: b2:39:7e:62:11:f3:b6:66:76:fa:ee:11:0f:6e:38:24:6f:88: 7b:e4:8f:14:a9:f4:d6:6e:1c:92:ed:ba:15:5c:a5:38:d8:65: bb:f2:d5:aa:31:a5:e6:20:6e:c3:3a:81:eb:b3:29:ae:d2:ad: 60:c7:b6:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQLQaXQUG8hzpDh2YhjFvTfk2zqYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDA3MDAwMDAwWhcNMjQxMTExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjRiNTk2ZGNiMjNkMzI1YjUyNmUzNWVhNGNhYzRhNWI3 YTA2MTFkM2JjNjliYTUzNzZmNGU0MGM3MDA2ZjhhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTIjVzsgT07gyWwuFbmv6WXkOs+/Uqk1O/XyUxBHsuqFJ3 pJUr7cqyVVf7+u2cPVmFvRi4uZwHdrlLI1a1DC7XNp5SRVkWGht/F464YI4J5e8I rr8A4aRDvE5lKoO1d9dAJam7GoLab7+X4TunzPGDgU04Iof75O39uQE4i4sbGcEn qLk/Y8I6+7Hoty1cjCHNwr5zSoOA3zJA+pQle75Ih07FKgTeD+ox5AhU3p/gLOY6 2iCNfYJa9sK7gf0HJEx02Tx6X6ridELHcd+eCoMswmgqRRQbEEUPkR2O/cDJLH48 mlMZLiNfZeWsQ9ASCtc19VeP9agRDg2+4HTDqOGPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlEvhOZyjYN9qyEo0yHl33K2no3cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhOGVkMzY1LTU3N2MtNDc2Mi04NDVhLWM4NTM5ZGNiOTVkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdNewAwDQYJKoZIhvcNAQELBQADggEBAJacdB+DHGP1iD0VnYJ0nNWho3Rd dfciXkZFk4Fd8xI8WbMdzEuFslA2JrsoudychGWRUl6jrGDAP6Zr8NfpW3gDvt1+ r1yoU5TJBkx4EYrEZb9iz6FT/ULdVtKCAVFmN6AkyvTogJm4nWSaipV0zJ+NOPZm Psz6icwLv6lyXPJjHYnB5/GH3FocN0NfIsp7RwEgf2KBABQ7OY3mZRcE3PPiHbzy LgVQKViZS+GPwfQProjdIcW9Jmf1gDZ9epgHYKCWNVdNK7I5fmIR87ZmdvruEQ9u OCRviHvkjxSp9NZuHJLtuhVcpTjYZbvy1aoxpeYgbsM6geuzKa7SrWDHtkg= -----END CERTIFICATE-----Generated at Tue Oct 22 00:47:11 2024 by rpki-client on console-fra.rpki-client.org