$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6a59fb8b-76dd-478b-8633-7422730479a3.roa File: 6a59fb8b-76dd-478b-8633-7422730479a3.roa (raw, json) Hash identifier: ijdc7apKbeQYd3V3qZUy4xXCCFETF1ol6qIRAcPQDJE= Subject key identifier: 6A:40:EA:06:6E:11:18:E1:1C:FC:18:A0:6A:63:D8:5A:B0:ED:83:9A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2DFDD7268065AB94714446B086F71875DBF9D2BA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6a59fb8b-76dd-478b-8633-7422730479a3.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:fd:d7:26:80:65:ab:94:71:44:46:b0:86:f7:18:75:db:f9:d2:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=391c3ebf0267b8ca34a43a7b38883abbdecec77a4ada633df8648b44268f8cf8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ba:8f:67:a8:13:b6:4a:27:a4:54:da:55:f2: f6:7b:60:0d:f9:6a:2a:74:19:24:cf:4e:c9:33:29: c3:bb:2b:bf:0c:85:0d:e8:9d:bb:40:a6:12:96:65: 58:46:76:75:9d:4f:e1:48:37:e8:2b:6b:80:1a:89: bb:20:50:92:fb:ee:92:8c:83:3c:ba:32:3d:3a:2b: 14:1a:0e:d8:6f:99:4e:ed:d4:6e:83:3c:8e:57:fa: 40:2c:d6:07:1b:6f:98:e4:67:b2:38:4a:73:bc:e4: df:a3:8b:f8:2c:3f:d0:3b:99:6c:18:cf:03:77:5f: 0c:1c:ea:26:74:ff:59:5a:2f:9f:67:6d:f4:5d:bb: af:d5:0c:82:4a:9d:21:99:c3:37:6a:c8:07:86:86: a0:07:b6:8a:d4:52:e0:d4:74:b8:10:95:9e:80:75: 2b:d0:da:05:05:8a:6e:f4:e1:47:61:42:07:0c:13: 96:e6:b3:31:ec:e7:73:8e:27:20:54:71:0c:c6:a3: 92:40:ab:4c:fe:a1:45:79:cb:0e:6e:85:71:24:2b: c7:0a:cf:9a:a5:40:a2:e8:05:15:c3:d2:de:cd:00: 2e:c0:0b:e4:45:cf:0e:32:53:89:b0:f1:54:e2:19: e5:86:54:02:3a:0e:36:b1:95:d1:0d:65:f1:79:ca: 81:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:40:EA:06:6E:11:18:E1:1C:FC:18:A0:6A:63:D8:5A:B0:ED:83:9A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6a59fb8b-76dd-478b-8633-7422730479a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.111.0/24 Signature Algorithm: sha256WithRSAEncryption 36:26:b2:1e:29:f4:e8:9c:3f:45:8a:ae:9c:ea:42:e2:94:d5: fb:b4:ef:ff:07:f4:60:1a:38:45:af:d5:a6:17:09:b2:fd:b6: 66:10:ac:50:cc:ea:a4:ca:4c:3e:40:a0:a5:3d:95:eb:4d:b3: fa:56:e2:d6:25:38:b9:05:23:ec:b8:66:5f:b2:7d:d1:c0:36: df:7f:7b:f8:1a:0b:51:c2:ac:aa:f9:45:da:b2:62:a4:54:47: 43:52:72:5b:4c:f4:2c:a2:44:77:26:11:07:86:92:04:66:81: 68:3d:22:d2:64:48:24:24:1c:6c:e9:54:10:76:ec:46:dd:5a: cc:c9:e6:56:c0:f2:db:1e:9d:c9:5c:94:87:ca:bb:13:7e:6a: 8a:52:d0:07:6c:d5:19:d5:3d:db:37:24:a2:9c:75:29:b2:4b: 66:49:60:cb:40:3b:2d:1c:c4:3f:2d:75:d8:c5:c0:92:26:e6: 09:d6:c5:1f:70:c1:e1:0a:f6:02:27:ed:69:c8:b5:96:ea:1a: 31:58:46:ee:ec:db:e8:63:65:2f:fd:40:8e:0e:07:1f:08:6c: 24:c3:c6:20:7c:be:f5:9c:6c:ef:1a:10:2d:21:a1:eb:b9:a7: 2f:2f:56:f2:3a:26:21:bb:35:a7:5b:54:b8:65:d6:33:a6:da: 3e:c8:36:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULf3XJoBlq5RxREawhvcYddv50rowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE4MDAwMDAwWhcNMjQxMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTFjM2ViZjAyNjdiOGNhMzRhNDNhN2IzODg4M2FiYmRl Y2VjNzdhNGFkYTYzM2RmODY0OGI0NDI2OGY4Y2Y4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtuo9nqBO2SiekVNpV8vZ7YA35aip0GSTPTskzKcO7K78M hQ3onbtAphKWZVhGdnWdT+FIN+gra4AaibsgUJL77pKMgzy6Mj06KxQaDthvmU7t 1G6DPI5X+kAs1gcbb5jkZ7I4SnO85N+ji/gsP9A7mWwYzwN3Xwwc6iZ0/1laL59n bfRdu6/VDIJKnSGZwzdqyAeGhqAHtorUUuDUdLgQlZ6AdSvQ2gUFim704UdhQgcM E5bmszHs53OOJyBUcQzGo5JAq0z+oUV5yw5uhXEkK8cKz5qlQKLoBRXD0t7NAC7A C+RFzw4yU4mw8VTiGeWGVAI6DjaxldENZfF5yoFHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUakDqBm4RGOEc/BigamPYWrDtg5owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZhNTlmYjhiLTc2ZGQtNDc4Yi04NjMzLTc0MjI3MzA0NzlhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0X28wDQYJKoZIhvcNAQELBQADggEBADYmsh4p9OicP0WKrpzqQuKU1fu0 7/8H9GAaOEWv1aYXCbL9tmYQrFDM6qTKTD5AoKU9letNs/pW4tYlOLkFI+y4Zl+y fdHANt9/e/gaC1HCrKr5RdqyYqRUR0NScltM9CyiRHcmEQeGkgRmgWg9ItJkSCQk HGzpVBB27EbdWszJ5lbA8tsenclclIfKuxN+aopS0Ads1RnVPds3JKKcdSmyS2ZJ YMtAOy0cxD8tddjFwJIm5gnWxR9wweEK9gIn7WnItZbqGjFYRu7s2+hjZS/9QI4O Bx8IbCTDxiB8vvWcbO8aEC0hoeu5py8vVvI6JiG7NadbVLhl1jOm2j7INnw= -----END CERTIFICATE-----Generated at Sun Nov 24 22:11:19 2024 by rpki-client on console-fra.rpki-client.org