$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261c24b-13a0-4019-b3b3-0562e86aea2f.roa File: e261c24b-13a0-4019-b3b3-0562e86aea2f.roa (raw, json) Hash identifier: wXzoEW/H1KvImqBMMP3Nvv2+0bcs0rshMSgxkxemC7c= Subject key identifier: 5E:44:9C:34:59:F0:6F:80:F3:F9:0F:1E:2F:38:00:DC:B4:8F:46:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 055949D0F8EF3870D47FD54A66114F1F575D3BA4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261c24b-13a0-4019-b3b3-0562e86aea2f.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 68.223.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:59:49:d0:f8:ef:38:70:d4:7f:d5:4a:66:11:4f:1f:57:5d:3b:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=25d1d7132ef6006200ef067efe61dd3c9ccb0f4e0a647f9c3f98491103b7d94f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2d:27:e6:1f:15:ec:2b:f7:73:8f:7a:c2:c2: d1:b2:b8:ee:37:a7:f9:14:2d:42:ea:6f:48:2a:0f: 51:1f:e2:7d:bf:36:8c:0d:9b:6e:d6:1f:c4:52:56: 49:4a:6f:6d:e6:c8:c9:b1:c5:c4:98:12:b2:cd:d2: 65:36:37:d2:60:87:d1:60:a4:f4:5d:8a:f7:dd:8e: 98:84:b1:ee:69:e9:16:d8:cb:d0:04:3a:52:f6:fb: ff:45:b4:ea:15:10:95:0c:7b:b9:0c:b7:bb:d5:b2: a9:5e:e6:22:ac:4d:20:46:b7:ce:0a:fa:cd:8b:07: 6b:1d:80:59:3a:ce:1a:ab:77:f6:ab:96:77:14:23: a4:17:6e:21:34:96:2a:a3:d8:59:46:9a:9e:4a:33: 7a:9c:fb:d7:73:64:12:99:d8:74:a5:7e:5e:1d:8a: 0d:bd:1c:52:3b:bc:3e:bc:60:90:12:2d:cd:3d:5b: ca:11:c2:5c:25:1b:c5:2c:a4:36:1a:bb:96:67:96: 2b:51:28:a9:14:97:49:6c:32:f4:9c:b3:e2:fc:c5: 54:44:48:6d:00:da:95:dd:5f:86:24:ef:c7:f8:e9: a5:1a:ed:57:dc:e4:b5:a7:d1:5b:3a:af:d2:77:cf: 95:34:17:83:f1:de:d6:f3:87:b9:52:8a:a4:07:90: 5a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:44:9C:34:59:F0:6F:80:F3:F9:0F:1E:2F:38:00:DC:B4:8F:46:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e261c24b-13a0-4019-b3b3-0562e86aea2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.223.0.0/16 Signature Algorithm: sha256WithRSAEncryption 21:77:e4:ac:45:34:b8:b0:c5:a8:3d:4b:13:51:dc:83:8e:2c: eb:b2:52:63:54:0e:c5:38:79:01:dc:b3:a8:a1:ed:63:5a:ff: 5d:26:06:47:52:98:80:7f:e7:4b:08:21:45:c7:40:b9:0c:dd: 6d:82:1d:ae:dd:cc:8f:4e:98:26:62:10:45:0a:09:ed:e5:8f: 58:9b:71:b5:9d:f7:2f:79:ea:84:c5:47:6d:66:d5:62:5d:eb: ae:ef:16:6f:0b:0d:77:bd:3b:3a:cf:74:ec:19:95:e6:bb:8e: 50:ea:c3:97:6a:c9:31:f1:12:65:df:a4:7b:96:c0:f3:77:57: d2:bb:37:a7:a2:20:84:b2:34:0e:a0:74:fc:fe:d7:6c:09:63: 9d:6b:17:82:23:08:a0:e4:40:b7:04:bf:d0:a7:10:50:ba:58: 44:f5:1e:45:a8:b0:b2:86:32:ff:81:b5:59:7a:f1:14:ca:7f: 26:60:0f:06:2b:08:02:78:61:1e:0b:69:d4:73:a5:da:af:2b: 40:47:53:37:b2:ce:cb:ca:0c:e0:6f:38:02:a7:9d:16:f5:4d: 20:2e:38:47:d4:ee:ca:8f:d9:87:02:c7:94:2c:02:6e:cd:df: aa:40:ef:61:94:dd:ed:3a:3c:30:d9:67:8b:d1:bd:8c:f7:2f: 24:3d:54:9e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBVlJ0PjvOHDUf9VKZhFPH1ddO6QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWQxZDcxMzJlZjYwMDYyMDBlZjA2N2VmZTYxZGQzYzlj Y2IwZjRlMGE2NDdmOWMzZjk4NDkxMTAzYjdkOTRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLLSfmHxXsK/dzj3rCwtGyuO43p/kULULqb0gqD1Ef4n2/ NowNm27WH8RSVklKb23myMmxxcSYErLN0mU2N9Jgh9FgpPRdivfdjpiEse5p6RbY y9AEOlL2+/9FtOoVEJUMe7kMt7vVsqle5iKsTSBGt84K+s2LB2sdgFk6zhqrd/ar lncUI6QXbiE0liqj2FlGmp5KM3qc+9dzZBKZ2HSlfl4dig29HFI7vD68YJASLc09 W8oRwlwlG8UspDYau5ZnlitRKKkUl0lsMvScs+L8xVRESG0A2pXdX4Yk78f46aUa 7Vfc5LWn0Vs6r9J3z5U0F4Px3tbzh7lSiqQHkFqjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXkScNFnwb4Dz+Q8eLzgA3LSPRkowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyNjFjMjRiLTEzYTAtNDAxOS1iM2IzLTA1NjJlODZhZWEyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBE3zANBgkqhkiG9w0BAQsFAAOCAQEAIXfkrEU0uLDFqD1LE1Hcg44s67JS Y1QOxTh5AdyzqKHtY1r/XSYGR1KYgH/nSwghRcdAuQzdbYIdrt3Mj06YJmIQRQoJ 7eWPWJtxtZ33L3nqhMVHbWbVYl3rru8WbwsNd707Os907BmV5ruOUOrDl2rJMfES Zd+ke5bA83dX0rs3p6IghLI0DqB0/P7XbAljnWsXgiMIoORAtwS/0KcQULpYRPUe RaiwsoYy/4G1WXrxFMp/JmAPBisIAnhhHgtp1HOl2q8rQEdTN7LOy8oM4G84Aqed FvVNIC44R9Tuyo/ZhwLHlCwCbs3fqkDvYZTd7To8MNlni9G9jPcvJD1Ung== -----END CERTIFICATE-----Generated at Mon Nov 25 02:47:06 2024 by rpki-client on console-ams.rpki-client.org