$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbde9fa8-e544-4380-8496-afbf5c2fb855.roa File: dbde9fa8-e544-4380-8496-afbf5c2fb855.roa (raw, json) Hash identifier: Emp/Dfg1yoop9XeU+lto8xVit37AbbeoWGm1eD7k9DM= Subject key identifier: DA:71:45:80:F8:C8:88:02:B5:12:C5:F7:0A:EA:29:67:C6:BA:A5:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57C9A6A71880D5D6F29B09A922B48F8DA35CE77C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbde9fa8-e544-4380-8496-afbf5c2fb855.roa Signing time: Mon 07 Oct 2024 00:00:00 +0000 ROA not before: Mon 07 Oct 2024 00:00:00 +0000 ROA not after: Mon 11 Nov 2024 23:59:59 +0000 asID: 8987 IP address blocks: 188.230.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Oct 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:c9:a6:a7:18:80:d5:d6:f2:9b:09:a9:22:b4:8f:8d:a3:5c:e7:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 7 00:00:00 2024 GMT Not After : Nov 11 23:59:59 2024 GMT Subject: serialNumber=3e655ee7fdbc36df8a0a68710368856e7176117a019fefebf2157bb487fd266e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1f:49:54:0f:96:8b:e9:1b:ed:c7:f5:c0:5a: 8d:85:22:5b:ba:02:95:71:f9:04:49:f3:37:71:5c: e1:25:81:74:62:ac:fd:96:7c:b8:3d:ea:1f:7d:6a: 21:5f:65:a7:64:6e:2a:33:3d:72:8d:a2:bc:ab:2f: 79:ac:9f:69:ef:40:2a:3b:56:99:62:ce:c1:0f:0f: 91:0e:df:49:84:43:ab:1b:f6:ce:63:91:32:1e:5f: 6a:5f:20:12:80:cd:f7:2e:85:22:1e:11:20:05:42: 10:e5:41:8f:17:0c:f8:b3:6a:63:9a:65:92:77:94: a3:62:e6:f7:73:ec:c0:9d:03:9e:66:5d:02:52:4e: 22:a6:dc:ff:ad:a4:21:a6:cc:c1:ac:3c:d8:6d:57: 09:1e:02:6e:74:df:75:d3:e8:98:3e:e6:e3:f3:f1: 87:14:78:2d:11:39:b2:e7:84:06:d7:1f:92:11:67: d6:3c:4b:51:8e:bd:91:17:bc:dd:4e:2b:48:a2:58: fd:41:bb:76:e1:d9:69:14:b3:1e:96:ad:5b:4b:3e: 39:c0:e1:7a:ab:02:48:70:6c:49:ba:61:26:0c:e2: 54:3f:73:d8:b9:fa:e9:90:eb:77:84:2a:28:4a:b8: 56:37:7a:65:b5:f2:a1:8d:ac:f4:86:7f:82:c7:76: fb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:71:45:80:F8:C8:88:02:B5:12:C5:F7:0A:EA:29:67:C6:BA:A5:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbde9fa8-e544-4380-8496-afbf5c2fb855.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.230.0.0/17 Signature Algorithm: sha256WithRSAEncryption 6f:f7:ec:bb:6e:1f:26:5e:12:1a:5e:2c:76:ec:19:d7:77:b8: af:ed:06:10:89:8f:8b:4b:ad:15:dd:4c:96:81:45:e0:1b:b1: c8:54:67:57:c5:88:2c:01:f7:ba:b5:12:a4:9b:41:8d:68:d9: 23:a1:7b:9f:a8:45:8a:26:f4:f3:46:e6:d2:8f:25:40:9d:40: da:6f:6b:c4:a6:aa:b0:ae:f9:fc:5b:56:22:06:ca:80:f7:7f: 19:fd:19:e1:27:e4:80:f9:11:19:66:24:1f:dd:2f:2a:0c:fe: 41:e9:23:aa:48:84:71:eb:c6:07:07:98:f2:1e:b6:e6:e6:45: 30:3d:2f:a3:84:6e:93:aa:1f:1e:e7:5f:80:8a:5c:74:00:df: 7a:25:87:a9:bd:c3:8d:df:5c:8a:33:5f:80:b4:b3:d9:79:66: f0:e4:d2:32:36:a7:cb:0a:d4:8b:50:52:30:3f:cf:40:65:5e: b7:5f:88:f9:fe:d0:73:f5:79:98:af:f7:65:bd:3b:bc:45:b2: 1f:87:bd:5a:71:c5:73:d6:c3:dd:98:5a:08:7b:61:d9:25:58: 0a:b6:76:5d:5e:6b:70:1e:df:d0:4f:f0:8c:45:3f:24:76:55: fc:4e:34:95:47:d7:b5:69:29:dc:e8:34:20:61:c9:5d:25:aa: 98:95:f3:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV8mmpxiA1dbymwmpIrSPjaNc53wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDA3MDAwMDAwWhcNMjQxMTExMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTY1NWVlN2ZkYmMzNmRmOGEwYTY4NzEwMzY4ODU2ZTcx NzYxMTdhMDE5ZmVmZWJmMjE1N2JiNDg3ZmQyNjZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkH0lUD5aL6Rvtx/XAWo2FIlu6ApVx+QRJ8zdxXOElgXRi rP2WfLg96h99aiFfZadkbiozPXKNoryrL3msn2nvQCo7VplizsEPD5EO30mEQ6sb 9s5jkTIeX2pfIBKAzfcuhSIeESAFQhDlQY8XDPizamOaZZJ3lKNi5vdz7MCdA55m XQJSTiKm3P+tpCGmzMGsPNhtVwkeAm5033XT6Jg+5uPz8YcUeC0RObLnhAbXH5IR Z9Y8S1GOvZEXvN1OK0iiWP1Bu3bh2WkUsx6WrVtLPjnA4XqrAkhwbEm6YSYM4lQ/ c9i5+umQ63eEKihKuFY3emW18qGNrPSGf4LHdvspAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2nFFgPjIiAK1EsX3CuopZ8a6pQ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RiZGU5ZmE4LWU1NDQtNDM4MC04NDk2LWFmYmY1YzJmYjg1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAe85gAwDQYJKoZIhvcNAQELBQADggEBAG/37LtuHyZeEhpeLHbsGdd3uK/t BhCJj4tLrRXdTJaBReAbschUZ1fFiCwB97q1EqSbQY1o2SOhe5+oRYom9PNG5tKP JUCdQNpva8SmqrCu+fxbViIGyoD3fxn9GeEn5ID5ERlmJB/dLyoM/kHpI6pIhHHr xgcHmPIetubmRTA9L6OEbpOqHx7nX4CKXHQA33olh6m9w43fXIozX4C0s9l5ZvDk 0jI2p8sK1ItQUjA/z0BlXrdfiPn+0HP1eZiv92W9O7xFsh+HvVpxxXPWw92YWgh7 YdklWAq2dl1ea3Ae39BP8IxFPyR2VfxONJVH17VpKdzoNCBhyV0lqpiV84s= -----END CERTIFICATE-----Generated at Tue Oct 22 00:47:12 2024 by rpki-client on console-fra.rpki-client.org