$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa File: f98e5b39-9271-4700-b6e2-c2328787d9f6.roa (raw, json) Hash identifier: k3qS+qomkQGPAbr3GO4O+UcvPMiF/rMe3I4MNTZY2Nk= Subject key identifier: 6A:4D:A2:F1:C1:47:77:8C:9C:B0:A8:57:A3:81:9E:FF:A2:22:30:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2DD74CA4FF84B69708E206CB142291682813F3E5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:d7:4c:a4:ff:84:b6:97:08:e2:06:cb:14:22:91:68:28:13:f3:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=06246b9c665b108b99c1e1f5fa012fc2bf89bef6996ccfce914d780256397650, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9a:98:b9:fb:b4:ed:51:c1:3c:01:2c:6b:12: 36:14:02:06:fe:30:7d:a6:15:67:dc:3b:97:32:37: b1:10:2f:8a:a9:2d:2b:45:35:8b:5a:4f:41:03:28: 9e:57:b6:54:70:9d:66:49:a3:e4:80:f5:ff:bc:b1: b4:8a:ea:a1:e0:ae:05:41:17:c6:54:2d:98:26:ea: 99:25:32:ab:e0:fa:b3:fc:16:75:1e:f9:bc:20:87: e6:a7:3b:68:35:8f:b2:a9:e0:79:a3:35:ab:d9:5f: b2:65:eb:71:19:99:f8:35:64:bd:dd:8f:19:08:30: da:02:53:4d:95:3d:54:36:96:dd:f7:a1:45:89:d8: 4d:8a:8e:a9:a6:e0:f0:06:1e:46:59:e3:ba:2e:55: ce:d1:c1:84:7d:09:38:03:d6:07:ca:14:ed:4b:83: 29:4b:a2:8b:e4:4c:42:aa:3e:10:78:99:40:5f:e1: b4:09:57:bb:a3:ab:cf:2d:97:b1:e3:91:17:10:3d: 19:a5:13:b3:21:05:85:f2:7f:36:ee:21:fe:b9:18: ed:f6:65:f6:97:dc:ed:67:19:fb:c3:9e:12:34:99: ab:40:a7:5c:2f:75:6b:92:a8:ed:94:af:69:30:24: dd:8f:5e:85:fc:df:fb:16:eb:2b:20:4f:9f:50:36: c0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:4D:A2:F1:C1:47:77:8C:9C:B0:A8:57:A3:81:9E:FF:A2:22:30:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.64.0/18 Signature Algorithm: sha256WithRSAEncryption a7:b6:ba:b7:dd:93:50:14:f2:9a:87:f7:40:0f:9d:b9:ec:8a: 78:1c:fe:6f:5f:90:30:e0:72:17:c5:30:23:20:50:ba:80:52: 00:64:63:c5:dc:f4:26:94:0a:0b:f6:b0:82:7e:3a:69:25:02: 3f:28:a8:77:ae:96:b0:1c:76:e4:26:ca:e3:b4:bf:e5:1d:3b: 33:0c:8c:d1:30:46:03:06:44:b9:48:e8:11:3e:03:ff:bb:f4: 6e:77:36:ba:8b:26:d6:cd:bf:d0:c0:23:2a:dc:f8:3b:ee:fd: 68:c2:4e:92:ee:c0:09:67:df:3d:a6:36:e8:7c:6e:05:4e:22: 8e:ea:09:c4:eb:60:ff:6c:7a:44:75:e2:f2:7a:a6:57:99:c5: cf:c9:d5:c0:a3:a2:14:14:8d:f7:ef:d8:3d:6b:a5:bb:34:6e: b7:2b:14:db:47:db:c7:89:40:c8:42:67:5c:f4:52:64:89:4b: 8c:98:e0:1f:25:d6:28:31:02:f5:f9:cb:8a:6c:c4:e3:5c:7d: 8a:ac:a2:be:2a:98:bb:fe:af:5d:bf:1e:08:f4:5f:55:bc:ab: 13:09:06:34:8b:16:c6:2f:dd:43:85:10:c4:11:55:98:22:0a: 48:4b:dc:d4:84:26:81:fe:bb:fd:ec:76:20:7a:a3:6d:dc:9f: 33:92:f1:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULddMpP+EtpcI4gbLFCKRaCgT8+UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjI0NmI5YzY2NWIxMDhiOTljMWUxZjVmYTAxMmZjMmJm ODliZWY2OTk2Y2NmY2U5MTRkNzgwMjU2Mzk3NjUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFmpi5+7TtUcE8ASxrEjYUAgb+MH2mFWfcO5cyN7EQL4qp LStFNYtaT0EDKJ5XtlRwnWZJo+SA9f+8sbSK6qHgrgVBF8ZULZgm6pklMqvg+rP8 FnUe+bwgh+anO2g1j7Kp4HmjNavZX7Jl63EZmfg1ZL3djxkIMNoCU02VPVQ2lt33 oUWJ2E2Kjqmm4PAGHkZZ47ouVc7RwYR9CTgD1gfKFO1LgylLoovkTEKqPhB4mUBf 4bQJV7ujq88tl7HjkRcQPRmlE7MhBYXyfzbuIf65GO32ZfaX3O1nGfvDnhI0matA p1wvdWuSqO2Ur2kwJN2PXoX83/sW6ysgT59QNsA3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUak2i8cFHd4ycsKhXo4Ge/6IiMMowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5OGU1YjM5LTkyNzEtNDcwMC1iNmUyLWMyMzI4Nzg3ZDlmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaXlEAwDQYJKoZIhvcNAQELBQADggEBAKe2urfdk1AU8pqH90APnbnsingc /m9fkDDgchfFMCMgULqAUgBkY8Xc9CaUCgv2sIJ+OmklAj8oqHeulrAcduQmyuO0 v+UdOzMMjNEwRgMGRLlI6BE+A/+79G53NrqLJtbNv9DAIyrc+Dvu/WjCTpLuwAln 3z2mNuh8bgVOIo7qCcTrYP9sekR14vJ6pleZxc/J1cCjohQUjffv2D1rpbs0brcr FNtH28eJQMhCZ1z0UmSJS4yY4B8l1igxAvX5y4psxONcfYqsor4qmLv+r12/Hgj0 X1W8qxMJBjSLFsYv3UOFEMQRVZgiCkhL3NSEJoH+u/3sdiB6o23cnzOS8fw= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:43 2024 by rpki-client on console-fra.rpki-client.org