$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa File: e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa (raw, json) Hash identifier: 1/742OeE1ge8yuEdkn6ARM9UYVVEjcAOwAR2aIGsL0I= Subject key identifier: 05:FF:F4:EA:93:4D:9D:CB:41:D1:96:31:3C:42:71:8C:71:FA:E2:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44996E94DB55ADA255699F503B29729D639279C2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa Signing time: Thu 17 Oct 2024 00:00:00 +0000 ROA not before: Thu 17 Oct 2024 00:00:00 +0000 ROA not after: Thu 21 Nov 2024 23:59:59 +0000 asID: 14618 IP address blocks: 64.252.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Oct 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:99:6e:94:db:55:ad:a2:55:69:9f:50:3b:29:72:9d:63:92:79:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 17 00:00:00 2024 GMT Not After : Nov 21 23:59:59 2024 GMT Subject: serialNumber=99f18514f15499369d29eee4cf243283558a03c5fc16e4f9e916237e66f2bc11, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b1:f4:97:b1:95:bb:bc:0f:a5:d5:79:36:a8: 4d:f3:c8:78:43:3b:d7:5b:f8:1e:a5:86:ed:2d:31: 6f:77:7a:05:b0:5b:6d:b5:e3:2f:da:2d:3e:f8:c1: e1:b9:84:9e:5b:0e:25:c5:9a:08:ae:4e:88:34:71: 4e:88:65:57:c8:04:e8:78:a9:33:61:44:fe:a2:36: eb:f1:73:d5:9b:19:45:e6:fa:f0:51:04:fd:93:5e: d8:64:1c:4c:b6:e1:db:cf:f5:6b:c3:d2:d0:ee:37: be:82:86:95:05:7f:fd:a0:a1:51:40:65:79:0b:55: 43:22:de:c4:91:1b:ed:01:43:e5:50:ee:9a:27:60: 92:6a:76:74:3d:da:58:ae:06:0a:c5:ea:ea:7b:51: 72:0b:4f:c4:fd:b6:17:32:4e:91:6e:08:fd:5c:93: 56:2e:2c:b7:04:98:bf:48:d7:6e:7e:bd:98:c4:87: 02:3a:9f:ff:10:68:b2:16:f8:2c:0d:cc:93:6b:85: 95:eb:38:ba:f9:56:00:45:3c:61:6d:2a:16:74:f3: 56:b8:43:38:d5:00:70:45:0d:c1:14:28:71:29:70: 78:18:f5:06:7e:af:81:7f:25:91:dd:08:a6:be:0f: bd:b6:29:46:5f:1c:56:29:eb:27:4d:a5:69:9a:a8: 69:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:FF:F4:EA:93:4D:9D:CB:41:D1:96:31:3C:42:71:8C:71:FA:E2:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0677c68-3681-4e3c-b63a-e2dfdd5e0779.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.125.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:5c:e5:71:0a:af:2e:5b:33:df:af:db:5b:56:11:31:d8:9f: da:9d:aa:1e:29:ca:04:7c:19:77:af:b5:15:77:9c:73:9c:d7: 7a:84:2a:e8:d1:3d:7c:9f:f9:ab:b0:c5:1c:81:19:f0:cf:65: b5:4d:c8:b0:b6:18:b4:96:89:67:8b:95:98:9f:22:09:8e:11: dc:d4:d2:d6:e1:9b:4b:00:38:43:ef:a5:92:0e:4e:35:56:7e: b2:08:d2:08:76:e2:a0:0d:ba:be:ca:ab:40:6f:b2:09:9a:cc: 23:32:6f:27:e9:1e:ee:4d:4b:45:b9:70:78:6e:04:86:b1:75: 22:2a:08:0d:9b:80:2e:7b:ec:22:02:1d:5e:e6:51:ba:33:48: df:4e:80:eb:f9:c7:44:9a:04:d5:f0:40:48:a2:f8:1e:20:eb: 0f:23:07:1e:fe:c4:65:be:1b:b5:a9:11:83:7c:5d:2c:4a:6b: 8d:f0:ae:6b:84:b4:3b:cf:fd:c0:15:65:bc:80:9c:0a:8f:77: 1d:d9:c3:ad:e7:67:b6:94:4b:b4:f9:c4:4b:f3:11:07:3c:da: 59:30:c2:a4:b2:0f:3b:22:68:f2:14:17:fb:e1:fd:0c:e3:9c: f5:91:94:fb:07:28:a8:e5:28:d3:3e:1f:3a:75:c1:52:5b:5e: a6:40:31:ce -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURJlulNtVraJVaZ9QOylynWOSecIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDE3MDAwMDAwWhcNMjQxMTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OWYxODUxNGYxNTQ5OTM2OWQyOWVlZTRjZjI0MzI4MzU1 OGEwM2M1ZmMxNmU0ZjllOTE2MjM3ZTY2ZjJiYzExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2sfSXsZW7vA+l1Xk2qE3zyHhDO9db+B6lhu0tMW93egWw W2214y/aLT74weG5hJ5bDiXFmgiuTog0cU6IZVfIBOh4qTNhRP6iNuvxc9WbGUXm +vBRBP2TXthkHEy24dvP9WvD0tDuN76ChpUFf/2goVFAZXkLVUMi3sSRG+0BQ+VQ 7ponYJJqdnQ92liuBgrF6up7UXILT8T9thcyTpFuCP1ck1YuLLcEmL9I125+vZjE hwI6n/8QaLIW+CwNzJNrhZXrOLr5VgBFPGFtKhZ081a4QzjVAHBFDcEUKHEpcHgY 9QZ+r4F/JZHdCKa+D722KUZfHFYp6ydNpWmaqGk1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBf/06pNNnctB0ZYxPEJxjHH64r4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwNjc3YzY4LTM2ODEtNGUzYy1iNjNhLWUyZGZkZDVlMDc3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/H0wDQYJKoZIhvcNAQELBQADggEBAIxc5XEKry5bM9+v21tWETHYn9qd qh4pygR8GXevtRV3nHOc13qEKujRPXyf+auwxRyBGfDPZbVNyLC2GLSWiWeLlZif IgmOEdzU0tbhm0sAOEPvpZIOTjVWfrII0gh24qANur7Kq0BvsgmazCMybyfpHu5N S0W5cHhuBIaxdSIqCA2bgC577CICHV7mUbozSN9OgOv5x0SaBNXwQEii+B4g6w8j Bx7+xGW+G7WpEYN8XSxKa43wrmuEtDvP/cAVZbyAnAqPdx3Zw63nZ7aUS7T5xEvz EQc82lkwwqSyDzsiaPIUF/vh/QzjnPWRlPsHKKjlKNM+Hzp1wVJbXqZAMc4= -----END CERTIFICATE-----Generated at Tue Oct 22 00:47:13 2024 by rpki-client on console-fra.rpki-client.org