$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb380ed-b38c-4bbe-b2c1-4f0e602093da.roa File: feb380ed-b38c-4bbe-b2c1-4f0e602093da.roa (raw, json) Hash identifier: RICvXqe47FDtdS4kXAUDqsxX8EXOftHGpRZKVfbAs8g= Subject key identifier: 85:AC:CA:8E:B5:06:11:05:05:47:ED:D5:D9:BD:7F:0E:FA:FA:6C:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11C4CDC9225C996C1283D2BAB31EBC32AC117A5B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb380ed-b38c-4bbe-b2c1-4f0e602093da.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 204.39.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:c4:cd:c9:22:5c:99:6c:12:83:d2:ba:b3:1e:bc:32:ac:11:7a:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=667aef36661de95df0a3ab84419a072124bb553e755a14267b6d67e41d11890b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1a:ba:83:65:0c:02:be:dd:38:eb:55:9f:41: 27:fd:bb:10:13:6b:99:21:f3:91:f5:97:a9:ee:e9: 2e:80:3e:bb:9b:55:c8:f9:f1:b6:d5:ef:1f:97:6f: e9:67:64:58:22:60:98:8f:9e:dc:35:f9:e8:ff:eb: f9:b0:4d:9a:c2:ef:3e:5e:1f:54:da:63:ce:70:fe: b0:5a:e2:66:cf:29:f2:c4:ab:d0:e5:c4:fb:56:92: ea:11:e1:a6:95:f0:59:7f:7b:0b:9b:da:56:e0:6c: 24:74:7c:ce:3e:6c:68:17:6b:c1:60:60:a3:19:5c: 10:ef:42:27:c1:20:18:ed:86:df:6f:68:2c:94:54: 51:6c:d1:82:86:90:4a:f2:b7:29:3d:7e:8b:4c:4f: a6:a4:0f:ad:25:7f:71:45:b4:a5:70:55:db:fb:f2: 29:01:68:b2:8d:ef:30:fc:00:19:03:19:4f:39:26: 92:a8:f2:cc:4d:44:1c:99:0e:52:9a:24:5c:62:98: f0:34:09:6a:78:8f:3f:fb:f9:57:2a:8e:13:6b:05: 5d:52:1d:29:24:86:60:4b:67:12:50:e9:17:08:30: fe:98:d0:3c:1c:74:5c:44:92:bc:9b:60:a7:1c:48: a3:a1:98:9b:69:ee:52:9c:ba:99:2c:07:41:b8:bc: e1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:AC:CA:8E:B5:06:11:05:05:47:ED:D5:D9:BD:7F:0E:FA:FA:6C:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb380ed-b38c-4bbe-b2c1-4f0e602093da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.39.0.0/17 Signature Algorithm: sha256WithRSAEncryption 3c:0b:84:b4:ba:8d:54:46:da:80:37:3f:65:6f:bb:a1:7b:a4: 0c:3d:06:c7:e0:66:b9:48:28:5b:82:3b:48:71:f5:87:2c:07: 07:51:e9:2b:9d:af:8b:12:fb:e1:a7:83:fc:a9:7f:db:bd:be: 72:96:28:20:fb:ab:d0:ea:8c:a9:72:99:d1:08:25:7f:90:ae: 86:14:d2:36:1b:69:69:54:c7:6f:34:d8:cb:16:4d:06:0c:8d: 67:b4:75:c1:64:e1:ce:64:dc:99:ba:35:ff:d2:56:41:78:60: 90:7b:c2:89:18:07:c0:25:66:ea:16:fb:60:9a:9e:02:fe:96: 06:68:24:9f:6d:2f:3f:a6:b7:81:19:d4:67:3f:e5:e5:0a:0a: ad:11:04:d0:19:8b:4f:3d:9f:cf:59:a8:e2:c7:ee:8f:a7:89: 88:2f:75:8b:b3:2b:b0:f5:f8:bf:11:7b:af:1a:4e:27:a6:94: 83:8e:fa:4f:99:8f:c6:0d:c6:5f:08:3c:8f:9e:cd:9c:a6:aa: 57:ce:97:41:42:6a:25:67:9e:39:c9:e4:3a:83:fa:81:9f:39: d5:1f:f5:77:c1:c2:e7:9a:3d:3d:1c:f2:fa:96:f1:71:58:dc: 39:45:b6:88:ee:cd:b6:e2:80:26:38:40:a0:55:67:76:9d:22: 5d:32:68:40 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEcTNySJcmWwSg9K6sx68MqwRelswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NjdhZWYzNjY2MWRlOTVkZjBhM2FiODQ0MTlhMDcyMTI0 YmI1NTNlNzU1YTE0MjY3YjZkNjdlNDFkMTE4OTBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwGrqDZQwCvt0461WfQSf9uxATa5kh85H1l6nu6S6APrub Vcj58bbV7x+Xb+lnZFgiYJiPntw1+ej/6/mwTZrC7z5eH1TaY85w/rBa4mbPKfLE q9DlxPtWkuoR4aaV8Fl/ewub2lbgbCR0fM4+bGgXa8FgYKMZXBDvQifBIBjtht9v aCyUVFFs0YKGkErytyk9fotMT6akD60lf3FFtKVwVdv78ikBaLKN7zD8ABkDGU85 JpKo8sxNRByZDlKaJFximPA0CWp4jz/7+VcqjhNrBV1SHSkkhmBLZxJQ6RcIMP6Y 0DwcdFxEkrybYKccSKOhmJtp7lKcupksB0G4vOFbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhazKjrUGEQUFR+3V2b1/Dvr6bLswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlYjM4MGVkLWIzOGMtNGJiZS1iMmMxLTRmMGU2MDIwOTNkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfMJwAwDQYJKoZIhvcNAQELBQADggEBADwLhLS6jVRG2oA3P2Vvu6F7pAw9 BsfgZrlIKFuCO0hx9YcsBwdR6Sudr4sS++Gng/ypf9u9vnKWKCD7q9DqjKlymdEI JX+QroYU0jYbaWlUx2802MsWTQYMjWe0dcFk4c5k3Jm6Nf/SVkF4YJB7wokYB8Al ZuoW+2CangL+lgZoJJ9tLz+mt4EZ1Gc/5eUKCq0RBNAZi089n89ZqOLH7o+niYgv dYuzK7D1+L8Re68aTiemlIOO+k+Zj8YNxl8IPI+ezZymqlfOl0FCaiVnnjnJ5DqD +oGfOdUf9XfBwueaPT0c8vqW8XFY3DlFtojuzbbigCY4QKBVZ3adIl0yaEA= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:44 2024 by rpki-client on console-fra.rpki-client.org