$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa File: 0ec55b55-70d8-4c9a-a949-98332400c54c.roa (raw, json) Hash identifier: jqmXv+hJbDOGH+ONVfjisH5CkTn/dD9/rEntPQJNgaI= Subject key identifier: 81:47:28:4B:9B:6A:2A:B5:5A:EA:21:57:7F:87:14:AB:35:B4:77:7C Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 766AA5800805428835FE9FC0CDE3ABDF8A703C04 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa Signing time: Mon 28 Oct 2024 00:00:00 +0000 ROA not before: Mon 28 Oct 2024 00:00:00 +0000 ROA not after: Mon 02 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:6a:a5:80:08:05:42:88:35:fe:9f:c0:cd:e3:ab:df:8a:70:3c:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Oct 28 00:00:00 2024 GMT Not After : Dec 2 23:59:59 2024 GMT Subject: serialNumber=ec5a69c00a0716398e3dd7561d371b30c4d1c921a467087402d460733c0deb15, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e6:7e:69:b0:c2:ca:34:c8:19:42:05:67:24: e9:d7:b4:a1:67:65:c8:83:7e:2e:a0:53:ca:6b:ac: ad:b0:f0:9b:8e:a3:7a:dc:a2:a3:75:cf:f3:c7:25: 65:8d:ab:65:22:d7:59:5c:55:a2:a9:a3:51:5a:7f: 18:a4:19:3e:06:7d:bd:a8:d8:da:53:d2:14:e2:f3: 26:14:15:52:db:35:c7:6d:a8:f6:0c:99:77:fb:a4: 26:56:44:8c:95:a2:fa:9b:ad:ba:10:f8:2b:ef:ce: 5c:06:7e:32:74:ba:27:7f:63:ff:9c:87:6f:cb:66: d4:c1:c6:fc:2b:c2:15:4a:24:25:f2:6f:a7:78:cf: a5:29:bd:8b:71:28:dd:3d:5c:87:cb:4e:b7:d0:ad: 60:72:9a:fa:27:74:38:a3:63:f0:29:69:a0:24:e2: c9:a3:87:20:2e:73:cf:d9:53:d0:87:f2:4a:a3:8e: 54:4d:89:de:57:d8:d8:12:60:88:2f:31:b8:1a:86: 97:6c:6e:5d:62:b3:39:3f:65:14:ee:ac:66:78:42: 37:c6:3e:f9:7e:70:44:38:dd:b0:9a:0f:bd:58:3b: d3:88:b4:5c:4a:a4:1f:80:ba:7a:be:50:a6:17:f7: f7:fa:1d:01:8c:a2:61:87:ca:a7:c0:4b:ad:2d:a3: ac:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:47:28:4B:9B:6A:2A:B5:5A:EA:21:57:7F:87:14:AB:35:B4:77:7C X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:3000::/48 Signature Algorithm: sha256WithRSAEncryption 71:ef:4a:ce:91:3f:25:e6:ad:69:8f:d6:41:63:72:6f:84:79: ac:fd:4b:71:f4:85:b2:c8:45:04:8a:3b:cc:10:16:ab:5c:41: 4f:8d:1a:b9:5e:58:da:73:ba:44:85:7b:99:13:1f:1b:ec:d1: 16:36:0d:28:9c:0b:3a:74:30:4b:a1:d1:90:da:08:77:6b:a5: 8e:2f:aa:9a:1e:b1:18:e2:70:68:1e:53:ec:4d:80:4b:17:fe: a1:09:e9:04:3e:cd:f4:df:65:a6:9e:73:e7:14:29:f6:89:5b: c5:89:72:74:7c:9a:6f:62:2f:21:65:67:71:7e:2d:6f:87:48: 7c:c1:a4:d7:4a:4b:0f:9d:5e:80:89:fa:ef:3b:8e:f2:a2:18: d5:85:a2:5d:34:e5:10:08:b5:65:8c:54:e1:d5:b1:e9:df:e5: b7:0b:09:73:5d:c1:f1:a9:ad:ab:63:83:d6:f4:57:e9:6a:a4: 03:ae:d2:38:4c:5b:a3:af:d6:c3:d1:99:3d:59:1c:15:96:ab: 20:1a:24:de:10:ed:41:83:8e:c3:03:3d:32:5d:60:43:52:fc: 7f:b7:74:59:bd:2c:87:8e:5b:d9:26:eb:27:69:d6:db:f6:28: c5:97:23:3f:4b:7f:0c:1e:e8:27:7e:39:9b:97:21:64:f4:16: 15:23:c6:9a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdmqlgAgFQog1/p/AzeOr34pwPAQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjQxMDI4MDAwMDAwWhcNMjQxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzVhNjljMDBhMDcxNjM5OGUzZGQ3NTYxZDM3MWIzMGM0 ZDFjOTIxYTQ2NzA4NzQwMmQ0NjA3MzNjMGRlYjE1MS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy5n5psMLKNMgZQgVnJOnXtKFnZciDfi6gU8prrK2w8JuO o3rcoqN1z/PHJWWNq2Ui11lcVaKpo1FafxikGT4Gfb2o2NpT0hTi8yYUFVLbNcdt qPYMmXf7pCZWRIyVovqbrboQ+CvvzlwGfjJ0uid/Y/+ch2/LZtTBxvwrwhVKJCXy b6d4z6UpvYtxKN09XIfLTrfQrWBymvondDijY/ApaaAk4smjhyAuc8/ZU9CH8kqj jlRNid5X2NgSYIgvMbgahpdsbl1iszk/ZRTurGZ4QjfGPvl+cEQ43bCaD71YO9OI tFxKpB+Aunq+UKYX9/f6HQGMomGHyqfAS60to6xVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgUcoS5tqKrVa6iFXf4cUqzW0d3wwHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjLzBlYzU1YjU1LTcwZDgtNGM5YS1hOTQ5LTk4MzMyNDAwYzU0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHMAAwDQYJKoZIhvcNAQELBQADggEBAHHvSs6RPyXmrWmP1kFjcm+E eaz9S3H0hbLIRQSKO8wQFqtcQU+NGrleWNpzukSFe5kTHxvs0RY2DSicCzp0MEuh 0ZDaCHdrpY4vqpoesRjicGgeU+xNgEsX/qEJ6QQ+zfTfZaaec+cUKfaJW8WJcnR8 mm9iLyFlZ3F+LW+HSHzBpNdKSw+dXoCJ+u87jvKiGNWFol005RAItWWMVOHVsenf 5bcLCXNdwfGpratjg9b0V+lqpAOu0jhMW6Ov1sPRmT1ZHBWWqyAaJN4Q7UGDjsMD PTJdYENS/H+3dFm9LIeOW9km6ydp1tv2KMWXIz9Lfwwe6Cd+OZuXIWT0FhUjxpo= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:48 2024 by rpki-client on console-fra.rpki-client.org