$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb227c97-7acf-42a8-a0c3-658e0db984fd.roa File: eb227c97-7acf-42a8-a0c3-658e0db984fd.roa (raw, json) Hash identifier: ykVoEV2o8ppEZ3GWBXNHPHsLMKgJIpUJ7nnki3b2uto= Subject key identifier: F1:E6:17:D8:CB:3F:89:A6:C7:26:2A:DD:2C:3A:21:5F:20:58:8C:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30283D46253C45A6BCAF0EFA31498E967C8FC5FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb227c97-7acf-42a8-a0c3-658e0db984fd.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:28:3d:46:25:3c:45:a6:bc:af:0e:fa:31:49:8e:96:7c:8f:c5:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=a0d1e042fe9a5157e7605032209afff1b71bf3a534b9053a40833ff4e5fc8067, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c3:b4:3e:e1:7e:b8:68:07:95:e7:63:de:5e: 76:a9:ed:a2:6f:ab:80:a8:42:df:de:43:53:ac:d1: cf:98:68:b3:1b:bc:ee:4b:a7:91:a9:91:4f:e1:97: fd:f7:48:59:dd:56:5d:1d:b7:dd:29:a8:b0:3e:da: 13:66:e8:77:7b:e8:9c:ae:c8:03:24:44:65:7a:9c: fa:ec:5b:a4:60:0a:cf:8a:31:90:a1:61:67:65:6c: 3c:ca:84:fb:e0:99:77:12:cd:4f:14:35:26:c6:8a: c4:2e:7b:bd:94:ac:2d:3e:e4:53:f5:b3:00:12:bd: fc:97:47:cc:ab:40:26:a7:91:c6:1e:6b:42:90:9b: a5:78:3c:e8:82:82:c8:b6:cb:1c:47:97:24:d5:7e: d9:d4:e4:10:2e:85:c2:d1:19:b2:b8:ff:0d:1a:bc: 12:69:4a:66:4d:2f:e3:2b:3f:83:47:43:d0:da:40: 40:78:bc:3c:29:ab:ce:f2:8c:6c:2e:11:f7:67:4a: 97:2f:ec:bd:d3:2e:23:a7:4b:d8:92:c1:8d:9e:d3: d8:73:45:33:eb:4b:12:97:54:26:4e:aa:fa:1c:96: e0:9b:21:4b:ca:3a:98:f0:d7:28:2e:58:78:c2:5e: 2e:88:96:d0:08:8c:bb:ff:f7:81:10:ba:cf:35:28: 68:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:E6:17:D8:CB:3F:89:A6:C7:26:2A:DD:2C:3A:21:5F:20:58:8C:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb227c97-7acf-42a8-a0c3-658e0db984fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.8.0/22 Signature Algorithm: sha256WithRSAEncryption 40:93:26:0b:5c:de:e8:ec:5b:73:a5:6e:a3:a2:26:ae:fd:22: a7:fa:12:8e:e0:67:52:c4:a2:98:55:d3:92:dc:de:c7:8a:66: 9a:2d:46:5f:29:b6:52:87:49:f5:29:db:16:b6:8e:3e:bd:1b: 6a:c7:f3:5f:e6:45:09:77:c7:b6:99:d8:d0:ae:72:99:07:64: 9a:9a:98:07:15:78:e4:f5:90:ea:9e:74:cf:03:44:24:f2:d7: 8f:7d:e2:37:21:a6:f4:09:c9:69:2b:ca:37:99:47:b8:77:2e: 01:a2:51:ee:38:02:66:46:6f:74:e0:67:67:81:c5:c9:cd:6a: 1a:ad:30:bf:f8:7a:f6:7b:da:4b:16:79:b1:d8:5d:03:60:73: 7f:58:e8:59:a3:61:6a:a7:e0:41:2f:94:e2:e7:cb:8f:23:3d: 87:35:b1:15:db:9e:60:90:e0:e4:a8:e2:fa:56:5a:4c:5e:f7: 9f:59:df:87:a5:b0:db:13:d9:05:d3:e3:71:ee:7c:d0:7e:05: b2:1a:65:af:9b:5e:86:ea:30:99:22:d4:94:26:19:66:a7:dd: eb:6e:79:a0:41:e3:16:ee:79:d3:52:8f:eb:39:f8:4b:f2:1d: 1c:ba:8f:9d:db:19:c8:8b:27:58:89:2c:bd:46:a1:3e:81:eb: f1:f0:20:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMCg9RiU8Raa8rw76MUmOlnyPxf8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGQxZTA0MmZlOWE1MTU3ZTc2MDUwMzIyMDlhZmZmMWI3 MWJmM2E1MzRiOTA1M2E0MDgzM2ZmNGU1ZmM4MDY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDw7Q+4X64aAeV52PeXnap7aJvq4CoQt/eQ1Os0c+YaLMb vO5Lp5GpkU/hl/33SFndVl0dt90pqLA+2hNm6Hd76JyuyAMkRGV6nPrsW6RgCs+K MZChYWdlbDzKhPvgmXcSzU8UNSbGisQue72UrC0+5FP1swASvfyXR8yrQCankcYe a0KQm6V4POiCgsi2yxxHlyTVftnU5BAuhcLRGbK4/w0avBJpSmZNL+MrP4NHQ9Da QEB4vDwpq87yjGwuEfdnSpcv7L3TLiOnS9iSwY2e09hzRTPrSxKXVCZOqvocluCb IUvKOpjw1yguWHjCXi6IltAIjLv/94EQus81KGiRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8eYX2Ms/iabHJirdLDohXyBYjCMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ViMjI3Yzk3LTdhY2YtNDJhOC1hMGMzLTY1OGUwZGI5ODRmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgAAgwDQYJKoZIhvcNAQELBQADggEBAECTJgtc3ujsW3OlbqOiJq79Iqf6 Eo7gZ1LEophV05Lc3seKZpotRl8ptlKHSfUp2xa2jj69G2rH81/mRQl3x7aZ2NCu cpkHZJqamAcVeOT1kOqedM8DRCTy14994jchpvQJyWkryjeZR7h3LgGiUe44AmZG b3TgZ2eBxcnNahqtML/4evZ72ksWebHYXQNgc39Y6FmjYWqn4EEvlOLny48jPYc1 sRXbnmCQ4OSo4vpWWkxe959Z34elsNsT2QXT43HufNB+BbIaZa+bXobqMJki1JQm GWan3etueaBB4xbuedNSj+s5+EvyHRy6j53bGciLJ1iJLL1GoT6B6/HwIBk= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:39 2024 by rpki-client on console-fra.rpki-client.org