$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1f69134-90af-4545-bd2d-af7213a7260a.roa File: f1f69134-90af-4545-bd2d-af7213a7260a.roa (raw, json) Hash identifier: SuEXwG4Sx78xzv0mINvdtAFkI59+VaVj1RCmozvcjIg= Subject key identifier: 2A:B9:F8:AE:19:7F:49:2D:0B:D0:42:00:00:E9:90:9C:E1:2B:4E:FE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D5F1B62CA0DBD697EB5B57015402FB8A45479CF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1f69134-90af-4545-bd2d-af7213a7260a.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 164.195.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:5f:1b:62:ca:0d:bd:69:7e:b5:b5:70:15:40:2f:b8:a4:54:79:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=2af7428fdb2a306cf9d224f30ce505ae0bd6a6c4e054c025d5214e9712cec589, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:19:cd:f7:2b:83:fa:a3:14:c0:0c:7e:b2:c4: da:14:04:04:19:b7:79:cf:99:83:93:db:88:ab:b3: 82:91:72:0a:c3:4e:59:fc:a6:ed:11:9a:47:ed:5c: 42:75:64:4b:2e:59:f9:3b:70:df:f3:91:9d:8a:0c: cc:87:18:e9:4d:8e:46:7e:8c:1e:3a:0f:8a:38:7f: e8:b2:db:6e:56:2b:e0:39:7b:c1:4a:84:90:21:ff: 07:66:25:a0:88:7d:6d:d5:2c:f6:5f:7a:30:6e:09: 00:4b:da:f8:3f:4d:38:ee:99:2c:4b:75:32:67:1d: 63:a3:77:3c:7b:d3:1f:42:d9:cd:fd:fb:a0:af:ba: da:5c:04:4c:de:47:11:1b:de:4f:20:bd:fc:d9:82: c2:8e:1e:65:fc:d5:c0:6f:7e:cf:48:37:e8:06:90: c7:27:95:3b:ae:e2:4d:4d:0c:fa:2c:ee:a2:01:6e: 41:1f:c4:83:af:30:ff:31:8a:5b:b0:4d:df:88:f7: a7:33:2e:71:d5:8d:4f:84:75:49:26:44:1d:54:5c: 3c:c8:b9:ff:5c:f3:80:34:16:fe:3b:e1:b5:d8:9c: 36:58:66:d1:14:3c:34:a3:5c:3f:2b:d9:82:d2:30: 22:cc:01:7a:90:e5:49:40:aa:69:92:00:d4:21:2f: 96:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B9:F8:AE:19:7F:49:2D:0B:D0:42:00:00:E9:90:9C:E1:2B:4E:FE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1f69134-90af-4545-bd2d-af7213a7260a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption a5:f5:b1:a8:bb:b3:37:76:6a:19:e3:90:47:9d:39:46:f9:f4: ad:ab:02:1a:9b:ca:be:8a:a7:81:ec:43:cc:7b:f3:6c:59:6e: b2:44:c2:dd:a1:85:8d:6d:17:10:86:17:e3:f1:fe:9f:6b:83: 7f:a7:7b:24:ec:9d:47:3a:20:63:9c:d7:93:ff:86:6a:a1:29: aa:27:40:d7:31:83:41:7b:d4:ef:7b:b4:e8:ae:a8:38:8a:7a: d7:00:5a:5b:b9:1b:d0:21:9d:f5:b0:a8:ed:2e:24:22:9a:cd: 5c:85:54:96:68:91:be:47:4a:42:d1:0b:40:88:7d:f2:34:a2: 97:92:74:95:01:37:66:f1:77:72:0a:a4:ff:88:5a:4d:8b:92: d4:56:6b:4c:17:33:8e:2d:70:8b:3b:a8:05:21:4b:9e:5e:36: 52:96:74:1a:62:43:1c:0a:e0:0c:f8:43:9a:0e:da:df:55:da: a3:48:96:fa:7c:f9:5a:2a:87:21:0e:62:dd:55:5c:2a:c7:d7: fa:e1:27:a4:a5:82:00:06:19:07:63:e3:ed:50:f3:6c:54:80: aa:a7:16:e3:b2:88:a2:f1:9f:cd:25:a0:4c:e7:89:4d:fb:03: d9:62:7f:96:d8:98:05:7c:e5:26:b9:8d:83:d8:78:8e:9a:d8: 44:ca:8e:4f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPV8bYsoNvWl+tbVwFUAvuKRUec8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWY3NDI4ZmRiMmEzMDZjZjlkMjI0ZjMwY2U1MDVhZTBi ZDZhNmM0ZTA1NGMwMjVkNTIxNGU5NzEyY2VjNTg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0Gc33K4P6oxTADH6yxNoUBAQZt3nPmYOT24irs4KRcgrD Tln8pu0RmkftXEJ1ZEsuWfk7cN/zkZ2KDMyHGOlNjkZ+jB46D4o4f+iy225WK+A5 e8FKhJAh/wdmJaCIfW3VLPZfejBuCQBL2vg/TTjumSxLdTJnHWOjdzx70x9C2c39 +6CvutpcBEzeRxEb3k8gvfzZgsKOHmX81cBvfs9IN+gGkMcnlTuu4k1NDPos7qIB bkEfxIOvMP8xiluwTd+I96czLnHVjU+EdUkmRB1UXDzIuf9c84A0Fv474bXYnDZY ZtEUPDSjXD8r2YLSMCLMAXqQ5UlAqmmSANQhL5btAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKrn4rhl/SS0L0EIAAOmQnOErTv4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxZjY5MTM0LTkwYWYtNDU0NS1iZDJkLWFmNzIxM2E3MjYwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCkwzANBgkqhkiG9w0BAQsFAAOCAQEApfWxqLuzN3ZqGeOQR505Rvn0rasC GpvKvoqngexDzHvzbFluskTC3aGFjW0XEIYX4/H+n2uDf6d7JOydRzogY5zXk/+G aqEpqidA1zGDQXvU73u06K6oOIp61wBaW7kb0CGd9bCo7S4kIprNXIVUlmiRvkdK QtELQIh98jSil5J0lQE3ZvF3cgqk/4haTYuS1FZrTBczji1wizuoBSFLnl42UpZ0 GmJDHArgDPhDmg7a31Xao0iW+nz5WiqHIQ5i3VVcKsfX+uEnpKWCAAYZB2Pj7VDz bFSAqqcW47KIovGfzSWgTOeJTfsD2WJ/ltiYBXzlJrmNg9h4jprYRMqOTw== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:41 2024 by rpki-client on console-fra.rpki-client.org