$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/ca3b7905-fc3e-488b-9f36-5fa382bf07c6.roa File: ca3b7905-fc3e-488b-9f36-5fa382bf07c6.roa (raw, json) Hash identifier: +GmIfA3Sifp88oynLiwWiN+FJcL67pJoxkte+69W/ro= Subject key identifier: C6:07:8A:36:38:19:0C:F4:3C:7A:B4:14:71:82:62:61:CA:0C:62:29 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 0C30831407FFED23FEB3F0A741016C58BD2F7289 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/ca3b7905-fc3e-488b-9f36-5fa382bf07c6.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:fffd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:30:83:14:07:ff:ed:23:fe:b3:f0:a7:41:01:6c:58:bd:2f:72:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=356edf1a48b7e1c524ed58cfabd7bbdbe6a8799cd36d9a6ff302a3a1adfa0a4a, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3f:1e:5f:38:7b:89:66:bf:cd:e8:c3:8e:4d: 19:5a:f2:e7:ad:ce:58:ad:d7:5b:18:f0:0c:e4:57: 2a:a8:90:7a:ab:6a:e4:fd:b3:81:a2:b6:52:42:62: da:c0:72:92:19:84:ec:b7:fb:26:e6:ed:16:ae:eb: 2b:e0:99:fb:85:0b:da:e8:70:21:27:90:b5:82:fb: bd:c6:4a:f8:36:53:bb:3b:4b:fc:66:45:18:03:4c: 63:e4:a2:55:1f:f8:1d:4f:04:10:10:70:9d:10:66: 0e:6a:87:16:7a:45:c8:57:c8:69:07:e3:bd:97:45: 00:d6:ff:b0:c5:31:d5:65:e6:3f:9d:4f:79:2a:f7: 77:df:e6:63:18:7f:98:a3:62:d3:3a:a9:f2:d6:0a: 67:9f:54:6d:c4:07:f0:2f:b9:cc:b5:ec:dd:c7:11: 93:e6:ad:a0:b6:f4:31:22:2c:55:40:d0:70:8f:60: 20:e8:a5:cc:43:83:6f:73:4e:9b:eb:57:ab:a4:f6: f1:1e:02:e6:84:79:66:1e:5c:fe:84:d3:5c:f9:ba: 34:c7:5b:6f:70:3c:b4:e3:3f:0e:aa:20:fc:a0:eb: 66:0e:11:ba:ae:5b:60:da:3e:2a:fe:18:5b:5a:1d: 10:4f:fb:d8:ee:5d:2e:d7:b3:71:6d:ef:eb:25:f5: dc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:07:8A:36:38:19:0C:F4:3C:7A:B4:14:71:82:62:61:CA:0C:62:29 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/ca3b7905-fc3e-488b-9f36-5fa382bf07c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffd::/48 Signature Algorithm: sha256WithRSAEncryption 78:7a:88:ed:e8:19:83:9a:6d:27:7a:5e:f8:67:af:57:0d:80: 10:14:60:82:8c:c3:6a:5f:48:b1:3c:a2:5c:8a:31:b7:bc:14: e2:47:1c:e2:52:e3:a2:17:97:45:b4:e1:f1:86:3a:d0:84:17: e4:ac:6e:00:44:b3:aa:6f:bd:a5:92:f6:31:bf:d8:82:70:f9: f4:39:67:ed:42:bb:c7:00:91:38:54:40:01:68:b4:e7:38:8c: ce:dc:85:24:f6:6d:7f:6d:c8:53:14:5b:62:16:8b:33:be:bf: f3:c1:41:07:d0:d6:b1:eb:3d:be:94:5c:65:44:64:00:5a:cc: c3:70:02:0d:b0:e4:b6:32:50:3a:15:bb:7b:94:04:90:c9:55: ed:9c:d9:cf:d3:c2:83:c3:2c:9b:df:5f:7d:b1:b8:73:12:6d: 3a:e4:41:92:c5:f0:3c:1b:c2:85:fe:c3:a0:bf:c9:a9:eb:00: 13:83:32:06:16:f2:1c:23:15:46:09:a6:5d:bc:f2:07:1d:12: 31:97:98:5b:ba:4e:70:6b:2b:bb:4b:07:4b:20:8f:5a:cc:e9: ee:b3:e6:f6:91:55:df:8b:4f:0a:95:b0:98:9a:73:ce:ba:9a: bd:09:a7:ec:71:3b:ae:71:37:ca:4b:08:78:15:f7:05:ed:f2: c2:65:28:ce -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDDCDFAf/7SP+s/CnQQFsWL0vcokwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTZlZGYxYTQ4YjdlMWM1MjRlZDU4Y2ZhYmQ3YmJkYmU2 YTg3OTljZDM2ZDlhNmZmMzAyYTNhMWFkZmEwYTRhMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOPx5fOHuJZr/N6MOOTRla8uetzlit11sY8AzkVyqokHqr auT9s4GitlJCYtrAcpIZhOy3+ybm7Rau6yvgmfuFC9rocCEnkLWC+73GSvg2U7s7 S/xmRRgDTGPkolUf+B1PBBAQcJ0QZg5qhxZ6RchXyGkH472XRQDW/7DFMdVl5j+d T3kq93ff5mMYf5ijYtM6qfLWCmefVG3EB/Avucy17N3HEZPmraC29DEiLFVA0HCP YCDopcxDg29zTpvrV6uk9vEeAuaEeWYeXP6E01z5ujTHW29wPLTjPw6qIPyg62YO EbquW2DaPir+GFtaHRBP+9juXS7Xs3Ft7+sl9dxVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUxgeKNjgZDPQ8erQUcYJiYcoMYikwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2NhM2I3OTA1LWZjM2UtNDg4Yi05ZjM2LTVmYTM4MmJmMDdjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//0wDQYJKoZIhvcNAQELBQADggEBAHh6iO3oGYOabSd6Xvhnr1cN gBAUYIKMw2pfSLE8olyKMbe8FOJHHOJS46IXl0W04fGGOtCEF+SsbgBEs6pvvaWS 9jG/2IJw+fQ5Z+1Cu8cAkThUQAFotOc4jM7chST2bX9tyFMUW2IWizO+v/PBQQfQ 1rHrPb6UXGVEZABazMNwAg2w5LYyUDoVu3uUBJDJVe2c2c/TwoPDLJvfX32xuHMS bTrkQZLF8DwbwoX+w6C/yanrABODMgYW8hwjFUYJpl288gcdEjGXmFu6TnBrK7tL B0sgj1rM6e6z5vaRVd+LTwqVsJiac866mr0Jp+xxO65xN8pLCHgV9wXt8sJlKM4= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:18 2024 by rpki-client on console-fra.rpki-client.org