$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f31cc568-a980-4770-8b3d-f2b3a58ab790.roa File: f31cc568-a980-4770-8b3d-f2b3a58ab790.roa (raw, json) Hash identifier: 6mfV84Y2tHja4qdaouXVpzN12HCN11vFoGX+hhu0Hhg= Subject key identifier: E0:C2:2B:F7:83:5F:1B:88:46:1D:84:FD:33:11:ED:BB:E4:94:32:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 28102157A629BF4704A31B9A626D0B85AB14A8C8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f31cc568-a980-4770-8b3d-f2b3a58ab790.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 131.168.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:10:21:57:a6:29:bf:47:04:a3:1b:9a:62:6d:0b:85:ab:14:a8:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=d7c648e9653bb5f458e6bbc63fcaf7588f2e4b771d7fc00b8705a7d7f6a2c469, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d9:92:f4:d8:43:8e:ae:bc:d1:df:71:6c:87: ba:76:0d:a2:fa:90:9c:77:37:17:34:06:13:4a:9f: dc:ee:7c:d7:e5:14:b0:e1:3d:1c:a0:b0:e7:42:bf: 43:e1:e4:c1:56:a3:5c:5f:0d:cf:ec:92:bd:5d:ff: 79:09:4c:1f:60:79:9a:bd:be:5b:41:8f:86:14:6c: 93:68:82:87:85:f7:16:80:b7:bf:72:c0:71:56:35: d4:c7:67:35:65:8d:4d:49:83:2d:3d:da:29:40:a8: a0:b2:6f:63:54:8c:d1:6b:39:8e:1e:6c:5d:02:50: f0:f5:41:46:a8:08:fa:c0:b6:67:4e:46:15:a9:df: 5c:f7:c8:b5:86:8b:2e:5b:2b:c8:b6:c1:5b:56:b5: 66:79:ce:ec:73:10:16:a5:dd:a5:96:97:0a:2a:db: d3:bb:5e:d3:88:db:5b:fb:97:83:87:eb:4e:0d:95: 91:f1:f7:d3:c9:69:f9:bc:4e:ba:dc:50:13:8b:b0: e1:60:10:56:07:9d:95:28:9a:ba:f6:5a:27:3e:0d: 1e:c7:97:e3:b9:0e:7a:9a:d6:02:c4:3b:54:50:a1: c2:19:28:ed:54:82:9a:63:63:0f:f9:95:51:3b:49: c0:7c:8b:c8:f2:4a:b8:b2:b7:10:7b:76:27:70:6a: ba:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:C2:2B:F7:83:5F:1B:88:46:1D:84:FD:33:11:ED:BB:E4:94:32:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f31cc568-a980-4770-8b3d-f2b3a58ab790.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.168.0.0/16 Signature Algorithm: sha256WithRSAEncryption ae:db:f0:d8:d6:4d:c7:ed:66:a7:38:72:e7:24:8a:e9:bb:c3: 33:ad:37:3b:4a:88:47:64:61:ba:d0:46:bd:e3:1d:11:86:08: 62:0d:c7:e7:ea:3c:26:bc:a1:96:5e:08:e1:0f:da:dd:dc:6d: a9:ba:cb:60:22:db:30:0a:d9:78:e2:c2:c0:db:a2:34:94:9f: cb:1e:2e:a8:f4:96:ca:1d:39:fd:bc:e5:3a:32:43:77:90:2d: 7f:fe:5c:0d:d2:b4:79:e6:c5:d4:57:32:ff:33:86:08:0f:3b: 7a:60:4b:2b:8a:23:97:ce:db:88:cb:51:96:14:c2:de:5f:bd: 61:e1:65:e3:97:4e:23:60:6e:7a:a9:42:1f:cf:e9:0a:f6:03: ca:26:69:59:d2:37:18:24:2d:fe:f7:f7:e0:a5:a5:54:55:54: c8:bb:37:c0:ab:56:e0:ec:8a:4b:ac:6d:d6:22:47:1d:35:7c: 11:8c:1c:4b:3e:f9:c9:b0:bb:cd:fa:7b:30:28:a2:0e:6f:32: 81:a5:ab:ef:64:46:09:c1:9f:4f:be:33:9f:ef:95:04:66:9f: 4f:d3:82:74:ca:94:60:9c:4a:8a:69:3d:3d:f0:3e:4b:1e:b7: a0:16:e5:ce:e3:cf:78:f9:42:16:3a:da:57:14:59:65:98:3d: ac:be:1f:36 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKBAhV6Ypv0cEoxuaYm0LhasUqMgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2M2NDhlOTY1M2JiNWY0NThlNmJiYzYzZmNhZjc1ODhm MmU0Yjc3MWQ3ZmMwMGI4NzA1YTdkN2Y2YTJjNDY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS2ZL02EOOrrzR33Fsh7p2DaL6kJx3Nxc0BhNKn9zufNfl FLDhPRygsOdCv0Ph5MFWo1xfDc/skr1d/3kJTB9geZq9vltBj4YUbJNogoeF9xaA t79ywHFWNdTHZzVljU1Jgy092ilAqKCyb2NUjNFrOY4ebF0CUPD1QUaoCPrAtmdO RhWp31z3yLWGiy5bK8i2wVtWtWZ5zuxzEBal3aWWlwoq29O7XtOI21v7l4OH604N lZHx99PJafm8TrrcUBOLsOFgEFYHnZUomrr2Wic+DR7Hl+O5Dnqa1gLEO1RQocIZ KO1UgppjYw/5lVE7ScB8i8jySriytxB7didwarpbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4MIr94NfG4hGHYT9MxHtu+SUMkwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YzMWNjNTY4LWE5ODAtNDc3MC04YjNkLWYyYjNhNThhYjc5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCDqDANBgkqhkiG9w0BAQsFAAOCAQEArtvw2NZNx+1mpzhy5ySK6bvDM603 O0qIR2RhutBGveMdEYYIYg3H5+o8Jryhll4I4Q/a3dxtqbrLYCLbMArZeOLCwNui NJSfyx4uqPSWyh05/bzlOjJDd5Atf/5cDdK0eebF1Fcy/zOGCA87emBLK4ojl87b iMtRlhTC3l+9YeFl45dOI2BueqlCH8/pCvYDyiZpWdI3GCQt/vf34KWlVFVUyLs3 wKtW4OyKS6xt1iJHHTV8EYwcSz75ybC7zfp7MCiiDm8ygaWr72RGCcGfT74zn++V BGafT9OCdMqUYJxKimk9PfA+Sx63oBblzuPPePlCFjraVxRZZZg9rL4fNg== -----END CERTIFICATE-----Generated at Mon Nov 25 02:47:10 2024 by rpki-client on console-ams.rpki-client.org