$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa File: 41f74973-a63a-4161-8c87-21184ab17c25.roa (raw, json) Hash identifier: 11cNg4f4vcr46xdFxmjfxNfRhW3pAc0f97rsdGE2XfM= Subject key identifier: 6C:4E:A3:C1:11:04:75:7F:8B:6E:96:B3:98:06:C8:D7:18:D4:D2:48 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 3820B5DA30BCCA21CAD1290C3B81877BAEBE64FE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 21664 IP address blocks: 2605:9cc0:c1c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:20:b5:da:30:bc:ca:21:ca:d1:29:0c:3b:81:87:7b:ae:be:64:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=434edda5d2b62c1da52021ff615a50a19e08bda97377016b821ed4afabfe959a, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e2:6b:5b:3c:84:47:0b:bc:e2:45:68:a5:7d: c1:0c:42:72:c1:14:e9:62:b0:9b:4c:f0:da:20:c5: eb:4c:a2:c5:9e:3a:4e:b9:da:5d:a3:6b:42:74:1c: 2c:d7:ff:04:c6:80:15:64:b8:0e:ee:9d:14:26:1b: 41:41:46:1a:16:0a:b9:3f:d4:d7:16:cc:1f:a7:f2: 7b:33:4d:66:e0:7e:e5:92:aa:a5:27:83:ea:78:ea: 4f:f2:9b:2b:de:58:d4:d7:23:d6:70:da:d5:95:ba: 52:ed:40:83:fd:7e:d7:41:5e:02:02:d4:78:0d:b6: d7:89:bc:db:36:7f:32:93:a0:37:dd:15:98:91:7a: 51:2e:9b:12:b3:38:a7:bd:6e:04:6c:4c:00:12:a8: 82:20:d2:8f:5c:8d:4a:a4:2a:ed:38:e8:cc:b4:3d: c0:f9:36:a5:6b:d1:d2:58:03:e5:e4:37:1c:39:23: 0b:50:e0:70:b5:02:35:c5:1f:8d:8a:5d:25:aa:0d: 30:5b:05:3c:8d:a4:4f:29:1a:c2:fa:c0:0c:71:eb: d5:5f:a3:90:4b:56:7d:f4:65:00:67:30:e9:72:79: c8:54:e5:28:c1:50:c4:86:94:b8:44:1f:f0:f5:56: cd:47:27:f1:a3:93:04:25:83:ff:ce:24:53:36:b4: 04:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:4E:A3:C1:11:04:75:7F:8B:6E:96:B3:98:06:C8:D7:18:D4:D2:48 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c1c::/48 Signature Algorithm: sha256WithRSAEncryption a0:93:19:bb:9d:79:83:38:b0:2f:7c:cc:bc:70:af:08:4b:2f: b3:7f:2a:03:58:54:f6:bf:b3:6b:9f:07:56:3b:a1:23:e1:13: 39:97:e6:b2:7c:54:f5:d0:65:bc:82:61:b9:ce:88:01:94:11: 18:48:c3:78:cb:7a:f1:b3:8a:9e:be:02:f3:33:b1:55:bf:bf: 5b:1d:59:cf:4f:94:9c:bb:5d:4b:1a:e2:d8:e5:79:5b:ad:56: 28:f7:10:de:13:bc:cb:58:cf:67:4e:d0:9d:de:20:f9:96:32: 04:ed:a3:1e:f3:00:be:40:87:8c:12:71:30:99:da:c1:f6:01: 6d:5f:e0:f8:59:de:29:81:21:f2:cc:17:47:47:d2:c4:88:5f: f0:cc:c8:2a:d7:70:d1:81:68:b6:e3:67:fa:30:56:91:00:d0: 23:72:11:92:19:8e:24:25:d3:9e:22:ee:3c:d3:0b:b5:48:1b: 5e:2d:8e:a4:ed:a9:ff:65:e4:a0:9d:3c:f1:be:ef:7c:ab:d9: d6:af:04:5c:11:19:26:b5:cb:64:3b:4b:cd:1c:7f:e1:26:a8: 2a:3b:82:48:7d:bf:c7:d0:c0:c2:4b:9a:69:b8:51:8e:60:93: 18:06:20:cb:97:97:da:11:f0:68:68:df:3e:1f:f1:24:ab:76: 72:08:cd:12 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOCC12jC8yiHK0SkMO4GHe66+ZP4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzRlZGRhNWQyYjYyYzFkYTUyMDIxZmY2MTVhNTBhMTll MDhiZGE5NzM3NzAxNmI4MjFlZDRhZmFiZmU5NTlhMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+4mtbPIRHC7ziRWilfcEMQnLBFOlisJtM8NogxetMosWe Ok652l2ja0J0HCzX/wTGgBVkuA7unRQmG0FBRhoWCrk/1NcWzB+n8nszTWbgfuWS qqUng+p46k/ymyveWNTXI9Zw2tWVulLtQIP9ftdBXgIC1HgNtteJvNs2fzKToDfd FZiRelEumxKzOKe9bgRsTAASqIIg0o9cjUqkKu046My0PcD5NqVr0dJYA+XkNxw5 IwtQ4HC1AjXFH42KXSWqDTBbBTyNpE8pGsL6wAxx69Vfo5BLVn30ZQBnMOlyechU 5SjBUMSGlLhEH/D1Vs1HJ/GjkwQlg//OJFM2tAQ/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbE6jwREEdX+LbpazmAbI1xjU0kgwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzQxZjc0OTczLWE2M2EtNDE2MS04Yzg3LTIxMTg0YWIxN2MyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzADBwwDQYJKoZIhvcNAQELBQADggEBAKCTGbudeYM4sC98zLxwrwhL L7N/KgNYVPa/s2ufB1Y7oSPhEzmX5rJ8VPXQZbyCYbnOiAGUERhIw3jLevGzip6+ AvMzsVW/v1sdWc9PlJy7XUsa4tjleVutVij3EN4TvMtYz2dO0J3eIPmWMgTtox7z AL5Ah4wScTCZ2sH2AW1f4PhZ3imBIfLMF0dH0sSIX/DMyCrXcNGBaLbjZ/owVpEA 0CNyEZIZjiQl054i7jzTC7VIG14tjqTtqf9l5KCdPPG+73yr2davBFwRGSa1y2Q7 S80cf+EmqCo7gkh9v8fQwMJLmmm4UY5gkxgGIMuXl9oR8Gho3z4f8SSrdnIIzRI= -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:29 2024 by rpki-client on console-fra.rpki-client.org