$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e898c329-1de0-4a4c-903f-17dcd28452f4.roa File: e898c329-1de0-4a4c-903f-17dcd28452f4.roa (raw, json) Hash identifier: qb2Un7Rup8TZcAAi3GwO6L9lbmM0R5nrUZG5dyI9MTA= Subject key identifier: AE:3C:8A:C7:5F:55:1B:76:33:86:31:88:49:C1:D5:8A:D6:50:1B:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11F2AB9444BD572D4E301296CB88056B6F08D615 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e898c329-1de0-4a4c-903f-17dcd28452f4.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 50.19.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:f2:ab:94:44:bd:57:2d:4e:30:12:96:cb:88:05:6b:6f:08:d6:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=cdca68166acd267817cb53bfd93a802aa308674d1f66f3bee2306728ab811db8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:98:9a:2f:09:7e:2c:83:a9:c9:25:db:c2:50: 5c:f1:67:b9:ad:a7:e9:1b:68:67:d5:3b:bb:64:8c: b1:70:38:96:78:af:bb:aa:ff:11:d4:ef:e4:8d:35: c4:7e:de:45:d6:ef:0d:93:7c:c6:33:e8:57:6e:4a: 0b:61:b5:a1:d9:9b:90:58:01:c0:97:30:9e:49:13: 70:4b:a3:f9:05:22:51:18:6e:49:5d:6f:12:14:fe: bf:bd:e6:e2:4a:19:12:e3:e1:43:62:25:49:53:fe: 1d:dd:e9:f6:73:cf:31:b0:b0:75:3b:e2:0d:5b:34: a0:2b:11:b5:9d:9c:9d:23:33:0c:37:66:02:2d:19: 72:70:8e:4b:7f:ff:81:e3:09:cc:ec:b0:fe:00:9d: f0:79:d6:3c:68:e4:ea:8f:83:fb:81:7e:f1:2c:43: 2f:41:d2:ce:ab:63:bf:ec:cd:38:a7:4d:52:4a:56: 01:ad:84:d9:88:59:f7:dd:55:f1:eb:ad:e1:26:85: e7:7c:45:63:5b:ea:9e:f2:9c:ed:93:f9:d0:9e:2b: a7:3f:9f:40:4d:86:9b:50:5a:93:9f:ec:d2:51:ad: a8:c2:c6:9b:c5:2e:7c:83:eb:68:66:68:20:71:ca: 42:b9:68:06:30:77:6c:e0:89:24:2a:dc:04:c2:1d: d0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:3C:8A:C7:5F:55:1B:76:33:86:31:88:49:C1:D5:8A:D6:50:1B:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e898c329-1de0-4a4c-903f-17dcd28452f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.19.0.0/16 Signature Algorithm: sha256WithRSAEncryption 84:e0:97:59:4b:f4:d6:ed:8c:83:37:3b:59:bf:3b:f0:bc:83: 06:2c:07:5e:de:9a:49:e9:b6:bf:64:c1:f6:d9:0f:d7:0a:18: b2:da:79:63:bc:e4:74:8f:f3:68:f9:75:2e:a5:1d:ed:6e:6e: 43:97:e3:bd:de:94:47:06:9c:47:71:38:b8:3e:6c:84:0d:da: 24:2b:6f:a5:61:ae:15:aa:ba:f8:2e:33:23:7d:80:09:86:98: 7a:f1:54:1d:a6:91:45:f2:b6:7d:80:ab:ed:f6:8a:1c:c7:10: 65:7d:45:e8:23:d7:98:5c:48:3d:9f:2b:91:de:47:01:b4:31: c7:e2:a7:42:54:69:cb:c3:61:3f:2d:f5:09:df:8f:82:5d:69: 39:bc:2c:1d:45:57:a6:e8:1f:08:86:69:94:74:08:db:9a:92: 26:55:01:33:3f:da:f2:28:36:f5:52:84:8d:5c:6b:ba:da:27: 38:45:72:57:5b:6d:6f:2e:35:32:d7:aa:0a:b3:bf:c5:1e:5b: 98:7d:d9:e7:2f:34:fd:4a:e4:6b:d9:69:b3:df:eb:5f:5f:b9: cd:12:85:5f:e6:26:78:d4:ca:64:f4:05:bd:98:4e:b3:99:7a: b2:25:b6:5c:36:8d:38:ca:50:19:32:c4:26:69:70:1d:90:9a: fc:c0:f8:93 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEfKrlES9Vy1OMBKWy4gFa28I1hUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZGNhNjgxNjZhY2QyNjc4MTdjYjUzYmZkOTNhODAyYWEz MDg2NzRkMWY2NmYzYmVlMjMwNjcyOGFiODExZGI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmmJovCX4sg6nJJdvCUFzxZ7mtp+kbaGfVO7tkjLFwOJZ4 r7uq/xHU7+SNNcR+3kXW7w2TfMYz6FduSgthtaHZm5BYAcCXMJ5JE3BLo/kFIlEY bkldbxIU/r+95uJKGRLj4UNiJUlT/h3d6fZzzzGwsHU74g1bNKArEbWdnJ0jMww3 ZgItGXJwjkt//4HjCczssP4AnfB51jxo5OqPg/uBfvEsQy9B0s6rY7/szTinTVJK VgGthNmIWffdVfHrreEmhed8RWNb6p7ynO2T+dCeK6c/n0BNhptQWpOf7NJRrajC xpvFLnyD62hmaCBxykK5aAYwd2zgiSQq3ATCHdCPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrjyKx19VG3YzhjGIScHVitZQGzAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4OThjMzI5LTFkZTAtNGE0Yy05MDNmLTE3ZGNkMjg0NTJmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAyEzANBgkqhkiG9w0BAQsFAAOCAQEAhOCXWUv01u2Mgzc7Wb878LyDBiwH Xt6aSem2v2TB9tkP1woYstp5Y7zkdI/zaPl1LqUd7W5uQ5fjvd6URwacR3E4uD5s hA3aJCtvpWGuFaq6+C4zI32ACYaYevFUHaaRRfK2fYCr7faKHMcQZX1F6CPXmFxI PZ8rkd5HAbQxx+KnQlRpy8NhPy31Cd+Pgl1pObwsHUVXpugfCIZplHQI25qSJlUB Mz/a8ig29VKEjVxrutonOEVyV1ttby41MteqCrO/xR5bmH3Z5y80/Urka9lps9/r X1+5zRKFX+YmeNTKZPQFvZhOs5l6siW2XDaNOMpQGTLEJmlwHZCa/MD4kw== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:38 2024 by rpki-client on console-fra.rpki-client.org