$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa File: 8f960b0d-c291-490f-aff5-abe964221bd2.roa (raw, json) Hash identifier: Yo5Bd3vE8mimjXfJLrq8pSQtpZJ+Ac6BMel23RBNG5k= Subject key identifier: 14:F6:12:0A:31:E0:B1:6E:0D:F2:74:7B:4A:D0:D7:88:C4:F2:F9:E2 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 23C063BC92CAFBB061E1D5243D12FEF49B23DD7F Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa Signing time: Wed 13 Nov 2024 00:00:00 +0000 ROA not before: Wed 13 Nov 2024 00:00:00 +0000 ROA not after: Wed 18 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2620:108:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:c0:63:bc:92:ca:fb:b0:61:e1:d5:24:3d:12:fe:f4:9b:23:dd:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: Nov 13 00:00:00 2024 GMT Not After : Dec 18 23:59:59 2024 GMT Subject: serialNumber=a88dcb7353dea4e0357200a541c053bfff9e68d8b8742fed1d12c2ab46faf9aa, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:0e:f0:78:89:f3:49:3f:99:ca:69:ba:c4:89: 04:e2:18:78:77:d8:37:18:f4:59:46:9a:0f:4b:44: 3f:39:11:0c:52:82:1e:06:10:95:56:e5:11:61:8c: 77:9b:95:eb:44:7f:f7:0a:bd:77:ac:77:c1:03:9a: b0:e4:7d:73:9b:fc:ec:d3:2c:03:46:8e:5c:56:8a: 40:ae:ec:b5:ab:5f:ef:00:32:1d:ac:ee:a9:81:7d: e5:2b:9a:1b:4e:b6:91:54:2c:73:2d:03:40:32:d1: 52:07:cf:35:6c:f3:7b:0f:47:ee:99:5a:df:7a:2a: 98:3e:a8:d9:06:77:05:c7:f2:5f:bf:01:e3:3b:33: de:17:68:92:fc:f9:54:b1:54:ad:6e:2e:e3:04:a7: 65:3c:ca:ae:36:fd:e7:b6:20:46:47:45:3d:38:58: d3:0f:35:a0:0f:65:83:45:41:f1:0b:b9:90:94:a7: 31:39:d1:c8:93:5a:6c:b2:6d:94:5b:2e:6b:5d:24: 67:cb:f9:6a:47:1b:45:94:a9:e0:71:c2:39:9e:49: b6:41:c4:5e:73:34:be:d9:71:9d:a0:19:10:48:63: 51:cc:48:28:44:03:2e:92:9b:79:e6:0e:ef:6e:f9: f0:e7:b9:04:e4:4f:05:86:b8:94:e2:cc:e9:0d:e4: 98:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F6:12:0A:31:E0:B1:6E:0D:F2:74:7B:4A:D0:D7:88:C4:F2:F9:E2 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/8f960b0d-c291-490f-aff5-abe964221bd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:108:7000::/44 Signature Algorithm: sha256WithRSAEncryption 7b:fa:1f:b1:92:2c:29:16:38:c4:89:9b:ff:10:e7:84:5d:b8: 31:dc:e8:76:2e:c6:74:92:40:35:d7:6c:08:c0:a0:24:91:4a: f6:97:c5:5e:df:b1:c7:e8:92:88:74:48:92:fe:6a:9d:d1:28: 09:84:c9:dd:d5:7a:2a:1e:03:77:52:29:cf:e6:60:c9:b1:95: 59:82:4f:60:15:b2:61:c4:44:82:57:9a:88:a3:1c:40:b9:2b: 99:df:db:f7:53:e5:06:f9:62:77:b4:7c:74:4b:b1:49:15:39: 23:cc:10:10:63:96:56:75:6b:4c:d7:3e:17:62:97:1e:4d:73: 83:b4:21:85:85:fe:d3:28:5d:2a:bd:55:88:00:d3:f4:c8:7d: 82:32:09:36:04:52:48:42:89:ec:23:87:b5:c6:91:e3:8d:b7: 12:ee:c9:86:6f:54:93:9c:f2:d9:75:13:ea:ec:b3:31:08:75: a4:37:f1:d9:bb:01:c4:5a:8f:bd:d2:f9:18:71:8b:dc:c9:54: b0:3c:59:14:e8:7d:74:07:f1:24:88:1a:3c:54:c6:b1:fc:fc: a8:83:8a:d5:07:a9:91:15:37:01:07:a8:de:0b:f9:76:b9:8e: a6:a5:a0:3d:6a:07:c5:20:e8:4c:99:e3:92:d2:8e:f3:93:bb: 3b:a8:3f:a0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI8BjvJLK+7Bh4dUkPRL+9Jsj3X8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjQxMTEzMDAwMDAwWhcNMjQxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODhkY2I3MzUzZGVhNGUwMzU3MjAwYTU0MWMwNTNiZmZm OWU2OGQ4Yjg3NDJmZWQxZDEyYzJhYjQ2ZmFmOWFhMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLDvB4ifNJP5nKabrEiQTiGHh32DcY9FlGmg9LRD85EQxS gh4GEJVW5RFhjHebletEf/cKvXesd8EDmrDkfXOb/OzTLANGjlxWikCu7LWrX+8A Mh2s7qmBfeUrmhtOtpFULHMtA0Ay0VIHzzVs83sPR+6ZWt96Kpg+qNkGdwXH8l+/ AeM7M94XaJL8+VSxVK1uLuMEp2U8yq42/ee2IEZHRT04WNMPNaAPZYNFQfELuZCU pzE50ciTWmyybZRbLmtdJGfL+WpHG0WUqeBxwjmeSbZBxF5zNL7ZcZ2gGRBIY1HM SChEAy6Sm3nmDu9u+fDnuQTkTwWGuJTizOkN5JhjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFPYSCjHgsW4N8nR7StDXiMTy+eIwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5LzhmOTYwYjBkLWMyOTEtNDkwZi1hZmY1LWFiZTk2NDIyMWJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmIAEIcAAwDQYJKoZIhvcNAQELBQADggEBAHv6H7GSLCkWOMSJm/8Q54Rd uDHc6HYuxnSSQDXXbAjAoCSRSvaXxV7fscfokoh0SJL+ap3RKAmEyd3VeioeA3dS Kc/mYMmxlVmCT2AVsmHERIJXmoijHEC5K5nf2/dT5Qb5Yne0fHRLsUkVOSPMEBBj llZ1a0zXPhdilx5Nc4O0IYWF/tMoXSq9VYgA0/TIfYIyCTYEUkhCiewjh7XGkeON txLuyYZvVJOc8tl1E+rsszEIdaQ38dm7AcRaj73S+Rhxi9zJVLA8WRTofXQH8SSI GjxUxrH8/KiDitUHqZEVNwEHqN4L+Xa5jqaloD1qB8Ug6EyZ45LSjvOTuzuoP6A= -----END CERTIFICATE-----Generated at Sun Nov 24 01:32:37 2024 by rpki-client on console-ams.rpki-client.org