$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edc4465e-72f7-4c57-9f13-d96fb509acfc.roa File: edc4465e-72f7-4c57-9f13-d96fb509acfc.roa (raw, json) Hash identifier: gtS3Xt4k2fxKNOfUKpucsydR3Vat/Ki4fPgUzdX5WJc= Subject key identifier: 2C:45:93:03:62:49:51:80:F8:99:FD:E4:16:31:82:5A:1B:8F:AB:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30BCC261F96CFD4B70378C98172A63F58E18F6CD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edc4465e-72f7-4c57-9f13-d96fb509acfc.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 68.66.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:bc:c2:61:f9:6c:fd:4b:70:37:8c:98:17:2a:63:f5:8e:18:f6:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=fa206a516d5cf787eedef41b00ce948db32a02125762c99365a79b97a10e8ee4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0f:29:c0:9e:1b:65:1c:3a:cf:c3:8e:e2:e4: ad:2b:3a:4b:4d:46:94:ac:43:88:5d:b3:2f:5e:4d: e9:e5:d3:35:14:4d:4d:c7:96:8f:19:93:a5:3a:58: f1:96:0c:89:9b:79:ca:9e:e0:e7:61:f4:3b:85:84: a9:c0:ab:56:47:cc:06:18:94:39:7e:a7:65:38:e6: a8:07:16:ff:90:a0:73:15:56:b6:08:5d:7a:5a:86: 2d:fb:79:5c:94:6a:94:50:6f:db:ed:50:14:07:18: 5f:a8:55:c3:e8:da:f3:b9:d9:f7:81:0b:d7:ea:e6: e1:ec:77:44:3f:5c:df:85:0c:94:03:6e:21:88:28: 1e:82:fc:78:66:74:91:97:2e:88:9a:b4:03:ed:44: d4:94:93:81:00:e8:61:6d:98:24:98:80:5e:41:25: 31:ae:ff:42:d6:4b:19:12:d6:e1:89:62:47:1d:54: 3e:2e:69:83:7b:f0:0d:e9:b5:8a:e3:55:8f:74:69: 77:a5:65:26:ef:df:89:8a:67:cc:5c:eb:f9:38:67: 66:67:57:c8:e9:fd:19:62:ff:c9:8a:68:b4:bf:21: d7:95:3a:16:5e:ca:85:55:79:51:9b:28:c2:92:45: 98:cc:e6:f5:52:f2:af:9e:67:3b:0f:05:50:8d:86: 31:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:45:93:03:62:49:51:80:F8:99:FD:E4:16:31:82:5A:1B:8F:AB:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edc4465e-72f7-4c57-9f13-d96fb509acfc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.66.112.0/20 Signature Algorithm: sha256WithRSAEncryption a9:3f:ef:85:2d:e0:88:52:40:74:93:56:42:15:3a:07:1c:31: bb:87:fa:c8:7d:85:b5:2e:d9:ab:8a:8e:53:58:6e:b6:67:cd: b2:98:9b:4f:d5:cd:b6:68:4b:92:9f:99:a1:af:4e:4b:68:aa: 22:e9:9e:68:db:38:9d:7c:03:12:63:77:11:bc:78:54:ee:69: f5:42:25:f2:c7:2e:f0:29:ce:70:97:f4:21:71:d9:a4:91:d7: 31:a5:c1:44:c0:5d:54:37:5b:b5:ad:d5:03:7f:29:95:95:89: 2e:f3:ef:e7:3a:0a:cf:e9:e1:19:6b:fb:15:70:6d:be:c4:41: e0:97:7e:9d:8a:ec:7a:26:75:c6:55:91:b2:55:b9:d5:56:ea: 09:3d:37:9f:06:09:28:25:26:92:1f:5e:d7:5d:fa:5f:95:aa: 94:40:f6:52:25:8e:c2:a9:b8:cf:fc:f3:ec:89:e9:70:a0:26: fe:27:89:3e:27:ed:45:7e:b9:a6:0c:73:37:06:c7:e7:61:9a: d4:6a:83:fc:41:4d:e5:d9:93:ee:13:e8:bf:e6:91:a2:db:83: c9:ff:ca:b6:16:cf:bd:59:6d:b8:63:53:96:cc:97:4e:b1:17: 76:18:d1:42:da:3d:29:7d:cd:37:6f:91:3d:1c:62:b9:28:3d: cf:7b:1f:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMLzCYfls/UtwN4yYFypj9Y4Y9s0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTIwNmE1MTZkNWNmNzg3ZWVkZWY0MWIwMGNlOTQ4ZGIz MmEwMjEyNTc2MmM5OTM2NWE3OWI5N2ExMGU4ZWU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLDynAnhtlHDrPw47i5K0rOktNRpSsQ4hdsy9eTenl0zUU TU3Hlo8Zk6U6WPGWDImbecqe4Odh9DuFhKnAq1ZHzAYYlDl+p2U45qgHFv+QoHMV VrYIXXpahi37eVyUapRQb9vtUBQHGF+oVcPo2vO52feBC9fq5uHsd0Q/XN+FDJQD biGIKB6C/HhmdJGXLoiatAPtRNSUk4EA6GFtmCSYgF5BJTGu/0LWSxkS1uGJYkcd VD4uaYN78A3ptYrjVY90aXelZSbv34mKZ8xc6/k4Z2ZnV8jp/Rli/8mKaLS/IdeV OhZeyoVVeVGbKMKSRZjM5vVS8q+eZzsPBVCNhjGrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULEWTA2JJUYD4mf3kFjGCWhuPq90wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VkYzQ0NjVlLTcyZjctNGM1Ny05ZjEzLWQ5NmZiNTA5YWNmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAREQnAwDQYJKoZIhvcNAQELBQADggEBAKk/74Ut4IhSQHSTVkIVOgccMbuH +sh9hbUu2auKjlNYbrZnzbKYm0/VzbZoS5KfmaGvTktoqiLpnmjbOJ18AxJjdxG8 eFTuafVCJfLHLvApznCX9CFx2aSR1zGlwUTAXVQ3W7Wt1QN/KZWViS7z7+c6Cs/p 4Rlr+xVwbb7EQeCXfp2K7HomdcZVkbJVudVW6gk9N58GCSglJpIfXtdd+l+VqpRA 9lIljsKpuM/88+yJ6XCgJv4niT4n7UV+uaYMczcGx+dhmtRqg/xBTeXZk+4T6L/m kaLbg8n/yrYWz71ZbbhjU5bMl06xF3YY0ULaPSl9zTdvkT0cYrkoPc97H5w= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:40 2024 by rpki-client on console-fra.rpki-client.org