$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa File: 254b4192-a38e-41eb-a28b-d01a7ee37964.roa (raw, json) Hash identifier: iAaT7Ky/LenM1MbpLHPOcThmzAAL6HqlmJoN9uuH4ZY= Subject key identifier: 0A:D2:D6:40:7D:08:4F:E8:81:2B:77:9B:90:CC:2F:A3:AF:51:9D:04 Certificate issuer: /CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Certificate serial: 097C239A847B47D41FA3446F23151628C0734C6E Authority key identifier: 99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa Signing time: Wed 13 Nov 2024 00:00:00 +0000 ROA not before: Wed 13 Nov 2024 00:00:00 +0000 ROA not after: Wed 18 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2620:108:d000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/77b56428-9b52-416f-b279-bbae14422de2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7c:23:9a:84:7b:47:d4:1f:a3:44:6f:23:15:16:28:c0:73:4c:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04 Validity Not Before: Nov 13 00:00:00 2024 GMT Not After : Dec 18 23:59:59 2024 GMT Subject: serialNumber=7f5eecbcb77c16ff731cde56c03171d594676422ef1a57c7ef10829f6162de49, CN=0099a7ea-794a-4a28-b164-49547626eb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6e:c0:04:3a:49:10:8a:9f:2e:a3:ec:ef:52: 1c:b5:a2:15:57:3e:0b:40:cd:93:73:a0:a4:e9:ac: 73:00:b8:e0:11:47:b0:fe:89:48:12:6f:09:f6:22: 95:d5:b9:c4:e6:3c:25:70:6d:e0:8d:c8:be:6b:f6: 64:de:c2:db:39:c7:7f:15:fc:71:2c:c2:e1:e1:09: ef:c6:08:42:20:b9:c1:58:6d:ab:1b:a6:4e:0a:6a: 82:be:ff:8a:8e:f9:67:86:22:58:14:de:c8:83:cf: b9:f1:a0:2e:76:dd:3f:f1:70:c5:e7:be:34:2a:0d: 6b:28:b7:5b:c2:44:d3:04:1e:bf:ec:f4:4a:cd:67: 35:68:69:53:ea:5f:6d:ad:3b:e5:3a:95:cb:84:df: 9f:d7:f5:ce:a3:ec:1a:04:3c:f3:8c:bf:26:f5:38: cf:98:3a:2e:0d:4e:0d:5e:1b:79:5d:68:4d:53:47: cd:ed:94:41:84:df:5b:07:ca:c0:76:f7:e6:5a:f1: 14:3c:7d:65:b1:34:cb:8d:23:53:ea:09:f4:27:6d: 00:58:cf:2f:97:80:3e:a7:7c:96:1f:73:0a:41:14: 59:17:74:1f:7a:1c:d0:02:bc:54:67:e9:76:3e:70: cb:64:4a:fb:a0:cf:f9:9f:b7:ca:10:8e:08:dd:d2: 53:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:D2:D6:40:7D:08:4F:E8:81:2B:77:9B:90:CC:2F:A3:AF:51:9D:04 X509v3 Authority Key Identifier: keyid:99:C3:54:4C:08:C9:94:54:B8:79:95:1E:FF:A4:7A:8F:63:C8:A7:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/77b56428-9b52-416f-b279-bbae14422de2/c05676c733fd8ccae5be63b92bddc90b7a5b74e69449c1eb04.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/254b4192-a38e-41eb-a28b-d01a7ee37964.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/42582c67-dd3f-4bc5-ba60-e97e552c6e35/_YzK5b5juSvdyQt6W3TmlEnB6wQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:d000::/44 Signature Algorithm: sha256WithRSAEncryption 3d:d5:70:3e:87:ea:72:7a:62:d2:70:02:6f:c5:98:b6:4e:2a: 7f:a9:dc:ad:fd:9d:32:a0:2c:41:5b:bd:68:b3:d5:76:87:4c: 7c:61:be:f5:99:bb:60:79:c9:c1:0d:f1:a6:23:4f:85:6b:d5: 15:bd:91:16:a0:cf:59:0a:50:20:ab:f5:3c:51:cf:a7:fd:ca: e7:eb:92:15:9c:29:b4:e5:ae:b7:48:da:5c:5a:3e:5e:f8:e3: 79:fd:a7:19:f4:f1:61:07:3d:df:9f:ec:c6:e5:a2:82:0e:3c: c5:cb:a7:a0:e5:19:58:d2:a4:80:59:96:36:8a:00:21:e0:9c: 98:3d:7b:44:89:f5:c2:c2:4f:55:af:2b:76:34:83:ee:73:67: d0:07:ff:d3:d6:84:f1:2c:2f:92:fe:53:e9:91:dc:05:f2:18: 53:0d:78:eb:10:d7:eb:cf:7b:59:19:8b:d6:8e:00:a6:1a:14: fe:11:a1:d1:2e:5c:ef:01:ce:0a:1c:0d:d9:4d:a5:a7:03:3b: ac:09:c5:1c:94:2d:ad:40:9c:bf:d5:86:b1:e4:f6:54:5a:18: d9:9c:52:9f:ee:8d:89:1e:59:11:e8:17:48:f4:c8:48:e6:66: e7:76:ec:9e:49:04:7b:bf:b8:d1:a3:7e:59:71:5b:78:5c:9b: 7b:1e:20:1a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCXwjmoR7R9Qfo0RvIxUWKMBzTG4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzA1Njc2YzczM2ZkOGNjYWU1YmU2M2I5MmJkZGM5MGI3 YTViNzRlNjk0NDljMWViMDQwHhcNMjQxMTEzMDAwMDAwWhcNMjQxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjVlZWNiY2I3N2MxNmZmNzMxY2RlNTZjMDMxNzFkNTk0 Njc2NDIyZWYxYTU3YzdlZjEwODI5ZjYxNjJkZTQ5MS0wKwYDVQQDEyQwMDk5YTdl YS03OTRhLTRhMjgtYjE2NC00OTU0NzYyNmViMTEwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5bsAEOkkQip8uo+zvUhy1ohVXPgtAzZNzoKTprHMAuOAR R7D+iUgSbwn2IpXVucTmPCVwbeCNyL5r9mTewts5x38V/HEswuHhCe/GCEIgucFY basbpk4KaoK+/4qO+WeGIlgU3siDz7nxoC523T/xcMXnvjQqDWsot1vCRNMEHr/s 9ErNZzVoaVPqX22tO+U6lcuE35/X9c6j7BoEPPOMvyb1OM+YOi4NTg1eG3ldaE1T R83tlEGE31sHysB29+Za8RQ8fWWxNMuNI1PqCfQnbQBYzy+XgD6nfJYfcwpBFFkX dB96HNACvFRn6XY+cMtkSvugz/mft8oQjgjd0lNBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCtLWQH0IT+iBK3ebkMwvo69RnQQwHwYDVR0jBBgwFoAUmcNUTAjJlFS4 eZUe/6R6j2PIp3cwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83N2I1NjQyOC05 YjUyLTQxNmYtYjI3OS1iYmFlMTQ0MjJkZTIvYzA1Njc2YzczM2ZkOGNjYWU1YmU2 M2I5MmJkZGM5MGI3YTViNzRlNjk0NDljMWViMDQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNDI1ODJjNjctZGQzZi00YmM1LWJhNjAtZTk3 ZTU1MmM2ZTM1LzI1NGI0MTkyLWEzOGUtNDFlYi1hMjhiLWQwMWE3ZWUzNzk2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzQyNTgyYzY3LWRkM2YtNGJjNS1iYTYw LWU5N2U1NTJjNmUzNS9fWXpLNWI1anVTdmR5UXQ2VzNUbWxFbkI2d1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEI0AAwDQYJKoZIhvcNAQELBQADggEBAD3VcD6H6nJ6YtJwAm/FmLZO Kn+p3K39nTKgLEFbvWiz1XaHTHxhvvWZu2B5ycEN8aYjT4Vr1RW9kRagz1kKUCCr 9TxRz6f9yufrkhWcKbTlrrdI2lxaPl7443n9pxn08WEHPd+f7MblooIOPMXLp6Dl GVjSpIBZljaKACHgnJg9e0SJ9cLCT1WvK3Y0g+5zZ9AH/9PWhPEsL5L+U+mR3AXy GFMNeOsQ1+vPe1kZi9aOAKYaFP4RodEuXO8BzgocDdlNpacDO6wJxRyULa1AnL/V hrHk9lRaGNmcUp/ujYkeWRHoF0j0yEjmZud27J5JBHu/uNGjfllxW3hcm3seIBo= -----END CERTIFICATE-----Generated at Sun Nov 24 02:36:06 2024 by rpki-client on console-fra.rpki-client.org