$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/db1f2730-0f56-434b-aea7-5265e3cade65.roa File: db1f2730-0f56-434b-aea7-5265e3cade65.roa (raw, json) Hash identifier: 7l8DNGKAyktxC63vN9r+UbVFyb1mZM+5ZN7GeGjoZqQ= Subject key identifier: DA:48:46:10:EF:5F:7E:12:17:CC:67:7F:5D:95:39:87:D6:31:19:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BA77CA6BB4A1BC7D6ED804777130623900D5608 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/db1f2730-0f56-434b-aea7-5265e3cade65.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.144.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:a7:7c:a6:bb:4a:1b:c7:d6:ed:80:47:77:13:06:23:90:0d:56:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=2d8c29787052ce6e8fd61e2861d89254b8b3828d8a6ff5f7e4604418c12e8447, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:64:79:7a:c4:88:a9:ad:b5:d4:5c:1e:c4:3c: cf:7b:2c:8c:a9:73:4a:77:6d:2c:07:82:8a:42:2a: cc:a1:5c:5b:a2:a4:9f:cf:de:9f:c5:32:93:97:94: cd:2b:21:41:10:88:13:9a:cb:66:0c:23:37:9f:0a: 14:1b:ce:12:71:31:21:87:eb:99:97:be:5b:b1:8c: a2:38:c2:0e:8a:9d:54:81:55:ac:41:28:8f:ca:41: c7:af:67:96:7c:0f:82:4c:de:87:d3:c7:90:ad:02: 4e:bd:6c:ee:cf:26:9d:bd:d8:86:76:40:34:8e:1e: 23:d4:98:e6:d4:e7:24:de:fb:76:8e:46:4d:31:14: 63:ff:06:78:14:17:90:c3:a9:e9:43:a9:40:31:08: 26:b4:6c:8e:1a:f1:0b:22:02:fd:24:10:18:e6:8b: 36:bd:1e:3b:8f:bb:72:2b:e2:28:6a:d1:60:99:db: a8:78:cd:9b:e4:30:46:01:04:68:e7:c9:51:0c:5d: 89:81:4f:d4:c0:61:b3:b2:9d:89:6b:79:ad:9c:d1: 59:cd:17:5f:25:63:48:40:50:8c:df:69:23:59:3a: 14:51:6d:2d:10:8b:c4:b9:68:84:76:07:0a:fb:94: be:9b:25:24:3d:15:54:67:61:27:ce:da:6e:41:68: 78:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:48:46:10:EF:5F:7E:12:17:CC:67:7F:5D:95:39:87:D6:31:19:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/db1f2730-0f56-434b-aea7-5265e3cade65.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.144.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8e:1a:4b:28:02:3f:08:f1:2f:1d:02:f9:c0:59:f2:6d:bc:5f: fb:6f:41:5c:d6:c6:11:70:cf:b1:fa:38:25:9c:e1:c4:5d:cd: cf:93:c7:f3:35:70:a0:33:f0:21:a4:1f:63:c7:8b:04:51:8e: 04:f7:48:f8:d4:dc:79:1d:7e:a2:06:9a:ba:ef:65:e1:b8:a3: c3:fa:26:81:78:ed:af:47:57:48:49:64:c0:50:2c:ff:ee:a6: d7:c1:dd:ca:e2:f9:9b:1a:2e:fe:f5:83:5f:b2:58:b4:a0:43: 0d:ba:a5:c4:cc:eb:a2:05:c7:08:df:25:42:3f:82:2d:19:fd: 04:de:2e:5e:5f:6c:8a:3b:18:4a:85:26:89:a2:38:33:9c:86: 6a:b2:37:fb:c9:d2:7c:8d:48:11:a5:04:10:65:66:c1:1d:1f: 06:66:bc:d5:ad:1c:b4:5e:f6:0d:18:be:45:d5:e6:a8:92:c8: e4:f2:02:ec:b8:0f:19:81:a1:de:96:4b:00:fb:70:42:03:5c: 89:a9:8b:54:96:cd:ba:93:cc:60:21:b3:b3:cd:af:bf:67:16: ad:33:37:76:46:fc:cd:32:20:35:c3:5c:db:20:d4:a5:d0:5d: 91:36:69:c9:93:c9:13:01:43:72:b6:07:f9:66:69:db:41:27: aa:ea:65:ee -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUe6d8prtKG8fW7YBHdxMGI5ANVggwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDhjMjk3ODcwNTJjZTZlOGZkNjFlMjg2MWQ4OTI1NGI4 YjM4MjhkOGE2ZmY1ZjdlNDYwNDQxOGMxMmU4NDQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1ZHl6xIiprbXUXB7EPM97LIypc0p3bSwHgopCKsyhXFui pJ/P3p/FMpOXlM0rIUEQiBOay2YMIzefChQbzhJxMSGH65mXvluxjKI4wg6KnVSB VaxBKI/KQcevZ5Z8D4JM3ofTx5CtAk69bO7PJp292IZ2QDSOHiPUmObU5yTe+3aO Rk0xFGP/BngUF5DDqelDqUAxCCa0bI4a8QsiAv0kEBjmiza9HjuPu3Ir4ihq0WCZ 26h4zZvkMEYBBGjnyVEMXYmBT9TAYbOynYlrea2c0VnNF18lY0hAUIzfaSNZOhRR bS0Qi8S5aIR2Bwr7lL6bJSQ9FVRnYSfO2m5BaHglAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2khGEO9ffhIXzGd/XZU5h9YxGZYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RiMWYyNzMwLTBmNTYtNDM0Yi1hZWE3LTUyNjVlM2NhZGU2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQkDANBgkqhkiG9w0BAQsFAAOCAQEAjhpLKAI/CPEvHQL5wFnybbxf+29B XNbGEXDPsfo4JZzhxF3Nz5PH8zVwoDPwIaQfY8eLBFGOBPdI+NTceR1+ogaauu9l 4bijw/omgXjtr0dXSElkwFAs/+6m18HdyuL5mxou/vWDX7JYtKBDDbqlxMzrogXH CN8lQj+CLRn9BN4uXl9sijsYSoUmiaI4M5yGarI3+8nSfI1IEaUEEGVmwR0fBma8 1a0ctF72DRi+RdXmqJLI5PIC7LgPGYGh3pZLAPtwQgNciamLVJbNupPMYCGzs82v v2cWrTM3dkb8zTIgNcNc2yDUpdBdkTZpyZPJEwFDcrYH+WZp20Enqupl7g== -----END CERTIFICATE-----Generated at Mon Nov 25 02:58:10 2024 by rpki-client on console-fra.rpki-client.org