$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f5b6e106-a8ff-40b7-9bd3-4b79769a731d.roa File: f5b6e106-a8ff-40b7-9bd3-4b79769a731d.roa (raw, json) Hash identifier: /2GP/uxaxIyR6PaX4J2iPjFJIJhMZcuzMYLXHS3dEZI= Subject key identifier: 6F:A1:4E:48:34:DE:C2:5E:B1:13:D2:9A:39:3D:43:FE:82:42:DB:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B9E878ECECE7D1C882C4D6C85987193BA0BD896 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f5b6e106-a8ff-40b7-9bd3-4b79769a731d.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 128.212.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:9e:87:8e:ce:ce:7d:1c:88:2c:4d:6c:85:98:71:93:ba:0b:d8:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=f610749e7c0932b87090b2f473623ccf932b32428441805351f1efae4089ea49, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:41:33:4d:10:22:64:ed:85:c5:c9:48:3e:76: a4:26:c0:92:87:d2:8b:5a:76:3a:f8:9b:24:fb:03: c5:14:04:d5:6a:b3:17:00:14:4e:75:af:ba:84:a3: 76:09:77:97:14:21:3c:78:bd:5f:fc:22:f1:59:b7: db:05:dd:47:94:4b:1f:55:20:7a:24:61:d5:f9:1e: 68:fb:bc:0d:fa:b6:59:85:53:76:91:a3:f0:b7:c6: 2c:98:32:85:91:fb:01:4d:02:43:46:16:6b:bf:4d: 5b:d1:b9:45:fc:1e:68:ab:80:6f:21:bc:c3:0f:ec: e3:64:d6:fa:fa:b5:1c:f9:7f:b1:0c:b1:59:d6:ed: 55:3c:aa:d8:b4:fc:29:07:0f:72:0c:97:92:0e:c4: 92:7f:c8:54:e1:a7:37:a1:c0:ab:ca:9a:59:e3:1a: 74:68:35:42:94:27:67:e9:0b:02:09:13:66:90:c6: 6a:23:2f:2b:c5:a6:7f:10:7e:02:67:10:ce:43:b4: c2:c9:33:0a:17:35:aa:aa:55:57:f8:f3:96:0e:25: c6:c7:5b:87:8a:d0:c5:e6:56:52:9d:f4:02:28:47: df:9b:f4:80:ff:d9:72:5e:1e:93:a2:e7:a9:6f:a8: 5f:87:53:1f:72:0b:5c:7a:09:47:77:f4:e8:5e:24: e7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:A1:4E:48:34:DE:C2:5E:B1:13:D2:9A:39:3D:43:FE:82:42:DB:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f5b6e106-a8ff-40b7-9bd3-4b79769a731d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.212.0.0/16 Signature Algorithm: sha256WithRSAEncryption 23:40:1b:39:fb:3d:70:bb:6d:7f:7a:ea:19:07:56:58:7e:49: f6:4b:39:81:7e:ec:58:3c:5a:75:ea:1c:d6:7f:d8:09:4e:04: 62:0f:c7:49:51:23:9a:2b:4c:24:2d:fe:53:f8:58:10:64:29: ff:3d:c0:b9:96:89:c4:35:3d:f3:ff:b0:c8:2e:86:dd:95:dc: d8:92:ef:6b:b0:fe:fd:d4:e8:7e:57:62:9e:88:da:73:f0:6a: 47:fe:06:ec:25:c2:39:c9:70:26:30:52:27:04:c8:73:ad:b2: 61:36:b9:c2:36:a2:4c:55:12:2a:94:ec:97:c1:db:2c:c0:6d: e8:2c:90:28:64:65:ba:ba:b3:a1:72:ab:d4:c2:5a:a7:34:0a: 46:6d:49:ec:0d:5b:a5:35:80:7a:5e:cc:3a:03:0a:ec:ec:98: 07:1c:2d:10:5a:c1:f2:b1:1c:d4:9c:98:fa:aa:bd:57:1b:7f: ea:48:ea:78:2b:9b:6d:d8:2a:27:9d:67:11:46:f4:7a:4e:64: ca:fb:10:db:aa:53:e1:27:7e:6c:56:b7:d7:c8:1d:20:79:0b: e2:d1:3a:d4:a8:c8:56:f7:5d:18:a6:97:08:90:f2:fd:e8:ff: cb:53:b7:12:6f:9d:ab:70:f4:30:d5:e0:f0:77:8f:f1:44:32: f5:00:ee:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUG56Hjs7OfRyILE1shZhxk7oL2JYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjEwNzQ5ZTdjMDkzMmI4NzA5MGIyZjQ3MzYyM2NjZjkz MmIzMjQyODQ0MTgwNTM1MWYxZWZhZTQwODllYTQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjQTNNECJk7YXFyUg+dqQmwJKH0otadjr4myT7A8UUBNVq sxcAFE51r7qEo3YJd5cUITx4vV/8IvFZt9sF3UeUSx9VIHokYdX5Hmj7vA36tlmF U3aRo/C3xiyYMoWR+wFNAkNGFmu/TVvRuUX8HmirgG8hvMMP7ONk1vr6tRz5f7EM sVnW7VU8qti0/CkHD3IMl5IOxJJ/yFThpzehwKvKmlnjGnRoNUKUJ2fpCwIJE2aQ xmojLyvFpn8QfgJnEM5DtMLJMwoXNaqqVVf485YOJcbHW4eK0MXmVlKd9AIoR9+b 9ID/2XJeHpOi56lvqF+HUx9yC1x6CUd39OheJOftAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUb6FOSDTewl6xE9KaOT1D/oJC210wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y1YjZlMTA2LWE4ZmYtNDBiNy05YmQzLTRiNzk3NjlhNzMxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCA1DANBgkqhkiG9w0BAQsFAAOCAQEAI0AbOfs9cLttf3rqGQdWWH5J9ks5 gX7sWDxadeoc1n/YCU4EYg/HSVEjmitMJC3+U/hYEGQp/z3AuZaJxDU98/+wyC6G 3ZXc2JLva7D+/dTofldinojac/BqR/4G7CXCOclwJjBSJwTIc62yYTa5wjaiTFUS KpTsl8HbLMBt6CyQKGRlurqzoXKr1MJapzQKRm1J7A1bpTWAel7MOgMK7OyYBxwt EFrB8rEc1JyY+qq9Vxt/6kjqeCubbdgqJ51nEUb0ek5kyvsQ26pT4Sd+bFa318gd IHkL4tE61KjIVvddGKaXCJDy/ej/y1O3Em+dq3D0MNXg8HeP8UQy9QDuKw== -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:42 2024 by rpki-client on console-fra.rpki-client.org