$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa File: 943694fe-e278-4d76-b786-7df26f151dd9.roa (raw, json) Hash identifier: SVOLiVWIjiBGITQxEcdyTj5jU/BdYeBQWWrE6iddmQ4= Subject key identifier: 3E:E6:62:83:C4:4F:0C:28:52:79:05:79:4E:01:5A:D1:0F:98:26:89 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 5D1689C2E5A0144515E1D1FD29BAAB97F3256C02 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:16:89:c2:e5:a0:14:45:15:e1:d1:fd:29:ba:ab:97:f3:25:6c:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=072f4d474bbe7370e9eb92762a42fc54869fc6384e18ee044981e19ed0b4d21a, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0a:b0:6b:c9:26:7a:e2:8e:6b:a9:d3:4d:6a: 4a:2a:2b:32:28:49:74:17:37:b8:c7:9d:6f:d7:00: 1f:3e:57:72:17:16:6e:c2:03:ea:e5:96:fe:8a:ba: 03:6c:17:04:bc:60:31:49:56:fc:f7:96:be:ff:e9: e0:81:b5:7d:ef:3f:53:e4:28:fc:53:1f:5b:79:9f: fd:ef:86:b7:60:d6:26:c4:f2:50:2a:2a:53:bd:e9: 8b:54:56:b3:27:9e:9c:b6:59:e0:63:95:49:60:75: cc:be:97:e8:0f:ea:4e:9b:fb:12:0c:0b:48:fa:ce: 98:ee:b0:a4:ec:de:39:36:61:dd:6f:73:cb:c5:c6: 37:e7:83:0f:74:23:c4:bd:9b:a7:9a:3d:20:14:63: c6:38:b8:89:8f:26:83:64:ce:8f:56:a5:1e:48:10: 61:92:5f:9d:c9:41:20:b4:f1:30:31:1b:b1:dc:e4: 25:eb:eb:30:8c:c2:44:08:8c:c2:09:d4:65:10:33: 9b:0e:9a:45:57:c3:85:ba:f0:06:7b:b0:56:97:86: cf:4f:a5:c2:51:f9:c0:50:c9:dc:18:dc:17:ba:a9: 74:f8:42:f1:00:b3:b2:71:7a:bf:c1:f8:6e:46:b8: f8:1d:0b:b0:6b:39:03:15:6b:96:97:b5:a6:12:c3: 8b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E6:62:83:C4:4F:0C:28:52:79:05:79:4E:01:5A:D1:0F:98:26:89 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffe::/48 Signature Algorithm: sha256WithRSAEncryption d1:8e:83:9e:50:33:11:a9:d8:e1:12:c9:1d:03:4d:f8:e3:45: 45:a2:7b:8e:19:6d:92:cc:32:f9:c9:b4:45:e5:cf:19:d5:bf: f1:b2:98:2c:93:c0:94:64:4f:73:1c:e1:ee:b7:9e:56:25:86: 46:db:09:f7:4e:3d:32:b4:72:7f:ba:16:a3:d5:a7:6b:3d:1b: b1:79:b2:3f:47:b4:1a:6d:f4:a9:ef:44:84:7a:a1:c5:a6:9e: c8:b1:e6:d3:1a:3f:3a:c6:df:94:59:3d:25:cd:9e:f9:23:ba: 44:e3:61:21:74:d3:12:fd:0f:5a:96:d9:34:09:73:da:07:0a: 13:b1:15:7f:1a:71:fb:9b:a1:05:cd:6f:6e:e5:ad:10:8f:6e: 46:05:f2:bd:b5:2c:0a:7b:ca:dc:c0:b5:96:c7:67:90:9a:81: 74:9c:81:f6:e1:63:ac:ac:28:99:9b:4c:6c:1e:5b:13:87:4c: db:0d:e3:52:59:a3:95:7c:ed:6c:04:42:f9:80:5e:22:38:c8: 11:61:6d:e7:9d:77:5f:e6:da:0f:55:af:76:bb:c9:9a:35:99: 1c:20:3f:06:f8:c8:2d:e9:d5:d1:d0:d2:0d:f9:40:bb:70:14: 65:d8:2f:8b:cc:62:16:0c:4c:ae:fe:91:5b:55:ef:5a:a1:df: 78:43:b6:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXRaJwuWgFEUV4dH9Kbqrl/MlbAIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzJmNGQ0NzRiYmU3MzcwZTllYjkyNzYyYTQyZmM1NDg2 OWZjNjM4NGUxOGVlMDQ0OTgxZTE5ZWQwYjRkMjFhMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4CrBrySZ64o5rqdNNakoqKzIoSXQXN7jHnW/XAB8+V3IX Fm7CA+rllv6KugNsFwS8YDFJVvz3lr7/6eCBtX3vP1PkKPxTH1t5n/3vhrdg1ibE 8lAqKlO96YtUVrMnnpy2WeBjlUlgdcy+l+gP6k6b+xIMC0j6zpjusKTs3jk2Yd1v c8vFxjfngw90I8S9m6eaPSAUY8Y4uImPJoNkzo9WpR5IEGGSX53JQSC08TAxG7Hc 5CXr6zCMwkQIjMIJ1GUQM5sOmkVXw4W68AZ7sFaXhs9PpcJR+cBQydwY3Be6qXT4 QvEAs7Jxer/B+G5GuPgdC7BrOQMVa5aXtaYSw4vFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPuZig8RPDChSeQV5TgFa0Q+YJokwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzk0MzY5NGZlLWUyNzgtNGQ3Ni1iNzg2LTdkZjI2ZjE1MWRkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//4wDQYJKoZIhvcNAQELBQADggEBANGOg55QMxGp2OESyR0DTfjj RUWie44ZbZLMMvnJtEXlzxnVv/GymCyTwJRkT3Mc4e63nlYlhkbbCfdOPTK0cn+6 FqPVp2s9G7F5sj9HtBpt9KnvRIR6ocWmnsix5tMaPzrG35RZPSXNnvkjukTjYSF0 0xL9D1qW2TQJc9oHChOxFX8acfuboQXNb27lrRCPbkYF8r21LAp7ytzAtZbHZ5Ca gXScgfbhY6ysKJmbTGweWxOHTNsN41JZo5V87WwEQvmAXiI4yBFhbeedd1/m2g9V r3a7yZo1mRwgPwb4yC3p1dHQ0g35QLtwFGXYL4vMYhYMTK7+kVtV71qh33hDtrw= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:44 2024 by rpki-client on console-fra.rpki-client.org