$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/49079781-174c-4a16-b302-dc7e5a9fa71f.roa File: 49079781-174c-4a16-b302-dc7e5a9fa71f.roa (raw, json) Hash identifier: Ka+VjN1fyycNO+c3zY8tPplxZbK1IXcDKv46or+2JsA= Subject key identifier: FA:FD:A4:B0:CA:90:27:1F:78:AB:9D:C5:86:FE:46:ED:DA:09:29:D5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1F357FC5EB21B2E0B5D6C7E66AA8B1374EC7F1E9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/49079781-174c-4a16-b302-dc7e5a9fa71f.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 3.2.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:35:7f:c5:eb:21:b2:e0:b5:d6:c7:e6:6a:a8:b1:37:4e:c7:f1:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=4deef053af661f035847a7e6ddc8cb06b5b780eedb3c8363ba320c6b7141ec16, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4b:ab:9a:71:b9:c2:5c:6a:3c:c4:9c:d8:b0: 89:e4:98:d9:f2:1d:9f:e4:c2:ca:3c:71:ef:7f:b9: 0b:cb:48:b2:db:f3:7c:3f:0a:a2:52:9d:33:e2:17: 79:8d:ad:28:db:05:87:04:5d:68:43:c0:1a:7b:8c: 5c:89:3e:5c:cd:9c:ce:f0:2f:e2:eb:23:71:1a:8d: b9:f3:1b:0c:c5:e7:18:91:ee:b6:ca:c3:79:c3:0e: 2f:1a:91:d3:67:77:58:f0:ef:d1:65:7a:ab:d8:8f: fc:0f:8a:d3:99:fe:60:4b:ed:a8:27:14:d2:82:db: e1:34:31:b7:94:32:51:68:08:c5:c8:8b:45:4b:23: 2d:aa:76:bd:08:61:98:fc:97:a9:e3:8f:ea:16:6a: 87:c0:fb:a0:78:c8:f9:db:a5:cd:a8:45:8f:f1:9d: 6e:77:9b:f3:64:f7:c4:4a:d0:11:38:69:18:7f:f8: f7:96:23:d0:71:05:b4:9c:af:59:87:34:1e:c5:57: c4:29:9a:c5:2e:d5:b6:82:85:ee:5a:63:34:f7:ed: 77:59:26:d4:e4:09:f1:b7:49:f8:70:26:2f:c4:9d: 2c:9b:52:eb:ee:b0:ec:d7:7c:a2:73:a1:72:90:d2: d9:0f:c8:07:90:76:80:46:0e:4d:74:9a:4c:a3:1e: ea:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:FD:A4:B0:CA:90:27:1F:78:AB:9D:C5:86:FE:46:ED:DA:09:29:D5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/49079781-174c-4a16-b302-dc7e5a9fa71f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.2.49.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:8e:90:eb:ca:5b:d1:80:04:fc:e9:42:6e:9c:05:1a:7d:db: ce:84:e4:82:51:ea:4d:bf:c9:d7:24:3b:74:eb:87:17:70:05: 70:b0:dd:d5:f4:c8:2d:e9:c2:54:1c:4f:43:37:04:63:1c:25: 83:e0:bc:ed:4c:c1:0c:ce:04:3c:d8:7c:3b:c1:ba:e2:1f:06: ce:44:76:89:b3:44:6a:3b:73:b6:fc:e3:15:76:a8:b7:fd:8d: c6:f5:1f:bf:86:8d:3c:54:0e:5f:01:bd:f6:4e:4a:6c:18:35: 45:7d:0f:24:3f:f1:f6:33:da:c1:68:2a:48:15:ce:47:fc:ed: cb:bd:1f:ff:89:ea:3b:7e:a7:45:8b:0c:fd:ce:93:f7:bc:9a: 2b:87:a8:87:3f:4c:a7:d6:4b:8c:c7:7f:ee:08:d5:07:e7:6f: 7b:20:bd:3b:6a:42:a9:31:6d:00:f8:90:3b:b9:68:0a:a8:bc: 83:8f:da:13:fc:3e:4c:55:25:75:e8:ae:1e:81:a0:0d:98:37: df:69:4b:32:1b:0b:10:7e:77:6b:e3:40:75:9b:c3:04:1c:51: 9d:73:81:fc:33:dd:69:c5:ad:55:a9:0a:4b:6c:77:31:0b:6e: 85:95:c3:49:37:0f:1d:fd:06:0f:db:95:e8:95:11:f7:09:11: e2:39:03:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHzV/xeshsuC11sfmaqixN07H8ekwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZGVlZjA1M2FmNjYxZjAzNTg0N2E3ZTZkZGM4Y2IwNmI1 Yjc4MGVlZGIzYzgzNjNiYTMyMGM2YjcxNDFlYzE2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlS6uacbnCXGo8xJzYsInkmNnyHZ/kwso8ce9/uQvLSLLb 83w/CqJSnTPiF3mNrSjbBYcEXWhDwBp7jFyJPlzNnM7wL+LrI3EajbnzGwzF5xiR 7rbKw3nDDi8akdNnd1jw79FleqvYj/wPitOZ/mBL7agnFNKC2+E0MbeUMlFoCMXI i0VLIy2qdr0IYZj8l6njj+oWaofA+6B4yPnbpc2oRY/xnW53m/Nk98RK0BE4aRh/ +PeWI9BxBbScr1mHNB7FV8QpmsUu1baChe5aYzT37XdZJtTkCfG3SfhwJi/EnSyb UuvusOzXfKJzoXKQ0tkPyAeQdoBGDk10mkyjHup9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+v2ksMqQJx94q53Fhv5G7doJKdUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ5MDc5NzgxLTE3NGMtNGExNi1iMzAyLWRjN2U1YTlmYTcxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADAjEwDQYJKoZIhvcNAQELBQADggEBAAuOkOvKW9GABPzpQm6cBRp9286E 5IJR6k2/ydckO3TrhxdwBXCw3dX0yC3pwlQcT0M3BGMcJYPgvO1MwQzOBDzYfDvB uuIfBs5EdomzRGo7c7b84xV2qLf9jcb1H7+GjTxUDl8BvfZOSmwYNUV9DyQ/8fYz 2sFoKkgVzkf87cu9H/+J6jt+p0WLDP3Ok/e8miuHqIc/TKfWS4zHf+4I1Qfnb3sg vTtqQqkxbQD4kDu5aAqovIOP2hP8PkxVJXXorh6BoA2YN99pSzIbCxB+d2vjQHWb wwQcUZ1zgfwz3WnFrVWpCktsdzELboWVw0k3Dx39Bg/bleiVEfcJEeI5A1M= -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:51 2024 by rpki-client on console-fra.rpki-client.org