$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa File: f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa (raw, json) Hash identifier: Fzxsy3XY0KY8Uu83GVq+CT77i2/JCMMPO1mHCQiwcwk= Subject key identifier: 3A:B3:1D:A3:62:ED:D2:2F:57:FE:EF:8F:04:BA:E6:29:5B:14:A4:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F58A8AEFA861B1A2F26D038A62BDF83B5A19BFB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.36.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:58:a8:ae:fa:86:1b:1a:2f:26:d0:38:a6:2b:df:83:b5:a1:9b:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=20d845c5aba0ef9febff46a3c476df56f1112d793f037a222147fed0f25356c9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:29:ef:ab:ff:a0:d9:7a:27:cc:79:ad:83:7e: df:e0:02:82:75:8c:aa:fd:45:57:eb:8f:70:f8:9f: 3c:44:4c:08:6f:5c:96:00:af:fa:47:b4:83:c8:49: e7:a3:4b:85:90:c3:34:90:5e:ab:77:b4:f2:6b:5a: 68:e3:48:b0:8d:97:7f:c9:92:05:1e:73:9c:98:77: d1:ed:ef:6d:74:37:7e:22:b6:f7:b2:7f:a4:d6:98: 39:d9:c7:8d:db:89:c8:18:1f:ad:82:05:9b:19:86: 1d:ab:12:e9:32:f3:6a:1f:f9:bb:fa:a8:40:ee:97: d0:7e:8a:50:f3:91:d5:e8:09:9b:fd:c0:6c:7a:c8: 74:32:fc:5a:de:83:75:60:ec:25:f2:19:82:d8:98: 89:dc:4b:94:11:2e:51:aa:e5:80:29:2e:24:be:1e: 71:e1:1e:3d:34:85:b4:b7:8c:34:73:49:71:4f:c3: a3:83:e6:b3:48:78:96:57:93:e1:ed:5a:c9:c7:bd: c8:b1:27:fa:8d:68:20:f7:72:ae:33:4c:12:c7:a0: d8:35:b1:2f:c0:ed:80:19:c7:cd:44:c5:bd:3a:45: 4f:25:5a:27:f5:9a:5c:9c:62:15:e9:1d:09:e4:a3: 84:a9:e8:ef:a9:8b:b4:e7:15:50:3b:b8:6f:fa:0e: c9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:B3:1D:A3:62:ED:D2:2F:57:FE:EF:8F:04:BA:E6:29:5B:14:A4:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.36.0.0/16 Signature Algorithm: sha256WithRSAEncryption d3:99:7d:05:22:af:30:9d:ab:d0:a9:3e:07:b5:29:1c:a8:4f: ac:c4:17:a9:91:b5:a0:35:5f:eb:d5:8b:10:00:b5:5d:8e:dd: f9:ac:cf:ae:71:e0:52:72:7c:15:e3:0c:52:5f:ef:26:8a:82: a4:6c:46:a0:c1:08:1e:0b:32:72:72:79:91:41:02:5a:5f:84: c8:ab:ff:2e:dd:df:a6:c7:19:00:10:56:87:25:75:4b:58:22: be:17:22:43:5b:d8:6a:42:17:28:b8:ac:f1:cb:a1:b6:81:ae: 1a:7a:b2:a4:26:f1:31:de:be:20:e3:d0:36:fb:15:68:f4:fd: 7e:41:b3:12:82:63:76:21:9e:90:be:a4:48:a7:d9:a1:72:f3: eb:f1:7e:7a:be:65:76:fb:bc:88:7a:cb:ee:fd:d7:5e:e1:8c: 8d:fb:1c:90:22:d3:27:33:27:6a:e3:d4:14:11:c3:6c:e0:af: 21:e6:92:70:66:4f:46:98:65:e4:c4:f1:52:87:7c:b0:7d:48: 7b:0c:13:7d:09:20:6c:06:4c:0b:d3:6e:e8:c6:00:aa:fa:90: 8c:87:f4:75:39:fc:43:e3:60:fb:16:08:cc:63:5d:3d:1d:8e: b6:9d:ae:3f:22:0e:1b:c9:4e:3c:29:5d:c6:76:b9:98:fe:a2: 72:56:01:fc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUD1iorvqGGxovJtA4pivfg7Whm/swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMGQ4NDVjNWFiYTBlZjlmZWJmZjQ2YTNjNDc2ZGY1NmYx MTEyZDc5M2YwMzdhMjIyMTQ3ZmVkMGYyNTM1NmM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCIKe+r/6DZeifMea2Dft/gAoJ1jKr9RVfrj3D4nzxETAhv XJYAr/pHtIPISeejS4WQwzSQXqt3tPJrWmjjSLCNl3/JkgUec5yYd9Ht7210N34i tveyf6TWmDnZx43bicgYH62CBZsZhh2rEuky82of+bv6qEDul9B+ilDzkdXoCZv9 wGx6yHQy/Freg3Vg7CXyGYLYmIncS5QRLlGq5YApLiS+HnHhHj00hbS3jDRzSXFP w6OD5rNIeJZXk+HtWsnHvcixJ/qNaCD3cq4zTBLHoNg1sS/A7YAZx81Exb06RU8l Wif1mlycYhXpHQnko4Sp6O+pi7TnFVA7uG/6DskTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOrMdo2Lt0i9X/u+PBLrmKVsUpOQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxYzY5MGFiLTAxYTItNDU2MS1hZjEyLTBlMTVhYjliZmQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4JDANBgkqhkiG9w0BAQsFAAOCAQEA05l9BSKvMJ2r0Kk+B7UpHKhPrMQX qZG1oDVf69WLEAC1XY7d+azPrnHgUnJ8FeMMUl/vJoqCpGxGoMEIHgsycnJ5kUEC Wl+EyKv/Lt3fpscZABBWhyV1S1givhciQ1vYakIXKLis8cuhtoGuGnqypCbxMd6+ IOPQNvsVaPT9fkGzEoJjdiGekL6kSKfZoXLz6/F+er5ldvu8iHrL7v3XXuGMjfsc kCLTJzMnauPUFBHDbOCvIeaScGZPRphl5MTxUod8sH1IewwTfQkgbAZMC9Nu6MYA qvqQjIf0dTn8Q+Ng+xYIzGNdPR2Otp2uPyIOG8lOPCldxna5mP6iclYB/A== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:41 2024 by rpki-client on console-fra.rpki-client.org