$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eae7a77d-f9de-49aa-84be-d1c938181031.roa File: eae7a77d-f9de-49aa-84be-d1c938181031.roa (raw, json) Hash identifier: Stm2Kj3KQt0h0I8RbjotI5STnNaLt4hnEiakZoE3QFg= Subject key identifier: C9:88:FF:12:13:F0:58:48:C5:47:4C:25:78:CF:BD:A8:80:22:3E:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CE4F76E280DC66EF468C8177D45C440F0C5E097 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eae7a77d-f9de-49aa-84be-d1c938181031.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 198.132.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e4:f7:6e:28:0d:c6:6e:f4:68:c8:17:7d:45:c4:40:f0:c5:e0:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=3c3ca1d4c4f5b38f44296adcfcb0fb153bd990de2f8960d3f4c5589034018730, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ad:85:a2:94:4f:51:89:e1:18:21:24:54:54: 13:d0:19:d4:17:72:ea:4c:7c:57:32:2d:92:54:08: a7:09:12:ea:d1:34:17:75:7d:c8:96:4e:0e:3a:75: 4b:c5:a9:8b:d0:41:b9:75:bd:f5:28:68:6a:e8:42: bc:1b:f8:05:33:2a:e8:83:a8:68:0f:e7:d2:78:75: f2:a8:01:be:fb:c8:60:47:de:c9:22:59:8f:34:4a: d6:0b:d7:41:a4:14:30:b4:63:28:a3:ce:0f:32:dd: 80:13:9a:36:4d:af:61:3b:e7:b0:54:72:09:00:7f: 97:f6:e8:cf:ca:a0:a4:d7:14:f1:11:a7:43:a6:cc: 7c:09:7f:38:8a:01:f3:cc:60:38:49:9d:a2:00:ed: a5:63:8b:10:e5:96:1d:a6:ae:ec:c5:59:f6:55:f4: 56:21:d3:a1:35:ee:ba:2e:e2:3f:91:12:74:cf:03: 4d:ec:63:16:41:d1:77:bf:bd:c3:31:e9:26:6d:a3: d0:e6:0d:f9:06:2b:14:96:a9:62:aa:bb:fb:a2:64: 25:d1:2c:67:40:51:40:1c:01:6b:7e:40:f9:62:ab: 87:31:ea:00:5c:eb:92:58:11:8e:f3:1c:1c:7a:bc: 06:a0:aa:3e:9b:a6:10:98:11:93:a0:6d:bb:c1:f4: a1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:88:FF:12:13:F0:58:48:C5:47:4C:25:78:CF:BD:A8:80:22:3E:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eae7a77d-f9de-49aa-84be-d1c938181031.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.132.0.0/16 Signature Algorithm: sha256WithRSAEncryption d2:82:d5:ba:a9:1d:3c:7b:0c:6b:4c:fb:73:d2:5a:65:de:ed: cf:26:b3:ec:7d:e5:ed:f5:ea:97:26:e4:c0:e1:24:ee:86:f9: 63:c4:e2:22:bf:18:5a:bd:74:35:3e:9d:df:2a:24:b6:55:69: 18:28:58:6d:8e:a6:55:b8:82:85:64:55:46:d3:80:b3:12:07: 90:01:4d:95:e1:78:fe:2f:e7:91:92:97:d5:3b:08:da:d7:a7: 34:c5:99:11:0a:4a:e8:dd:09:2b:6c:08:db:97:da:c4:b1:f4: 5b:e7:62:fc:31:5c:86:32:90:6a:f0:97:10:b0:c4:e9:b5:3f: d6:e5:dc:31:db:cf:6a:94:12:c5:91:a2:21:48:f1:08:08:ed: 9c:95:58:27:b3:eb:92:b6:a8:31:97:0d:01:68:84:9f:4b:72: e3:6f:37:6c:c3:58:c4:5a:75:d0:eb:19:aa:d5:50:bc:3d:a8: 6a:c9:3a:61:d2:a5:87:a2:8b:eb:f5:42:8d:12:83:aa:87:9b: 08:a9:86:b1:db:2f:4c:35:1e:8f:7f:f7:18:3a:e8:c4:49:d5: e7:d7:27:ce:75:99:25:b3:1e:a3:7c:4b:c2:25:50:cb:38:47: 7c:46:5d:fc:ea:1f:a1:de:64:3f:5a:15:b5:1d:a6:04:0d:2c: fd:db:25:ec -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXOT3bigNxm70aMgXfUXEQPDF4JcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzNjYTFkNGM0ZjViMzhmNDQyOTZhZGNmY2IwZmIxNTNi ZDk5MGRlMmY4OTYwZDNmNGM1NTg5MDM0MDE4NzMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDrYWilE9RieEYISRUVBPQGdQXcupMfFcyLZJUCKcJEurR NBd1fciWTg46dUvFqYvQQbl1vfUoaGroQrwb+AUzKuiDqGgP59J4dfKoAb77yGBH 3skiWY80StYL10GkFDC0Yyijzg8y3YATmjZNr2E757BUcgkAf5f26M/KoKTXFPER p0OmzHwJfziKAfPMYDhJnaIA7aVjixDllh2mruzFWfZV9FYh06E17rou4j+REnTP A03sYxZB0Xe/vcMx6SZto9DmDfkGKxSWqWKqu/uiZCXRLGdAUUAcAWt+QPliq4cx 6gBc65JYEY7zHBx6vAagqj6bphCYEZOgbbvB9KEZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyYj/EhPwWEjFR0wleM+9qIAiPiQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhZTdhNzdkLWY5ZGUtNDlhYS04NGJlLWQxYzkzODE4MTAzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDGhDANBgkqhkiG9w0BAQsFAAOCAQEA0oLVuqkdPHsMa0z7c9JaZd7tzyaz 7H3l7fXqlybkwOEk7ob5Y8TiIr8YWr10NT6d3yoktlVpGChYbY6mVbiChWRVRtOA sxIHkAFNleF4/i/nkZKX1TsI2tenNMWZEQpK6N0JK2wI25faxLH0W+di/DFchjKQ avCXELDE6bU/1uXcMdvPapQSxZGiIUjxCAjtnJVYJ7PrkraoMZcNAWiEn0ty4283 bMNYxFp10OsZqtVQvD2oask6YdKlh6KL6/VCjRKDqoebCKmGsdsvTDUej3/3GDro xEnV59cnznWZJbMeo3xLwiVQyzhHfEZd/Oofod5kP1oVtR2mBA0s/dsl7A== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:39 2024 by rpki-client on console-fra.rpki-client.org