$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d656c23-db7c-418f-b8c2-73f0e3abc42e.roa File: 6d656c23-db7c-418f-b8c2-73f0e3abc42e.roa (raw, json) Hash identifier: cGLAwgEP0/u9cmLtNT+U9uDhD0+ScTTLresktkHV820= Subject key identifier: 45:1B:FA:73:6C:26:7A:B9:C0:8C:8C:F5:88:48:4E:F7:B8:79:CA:25 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6F7040F288249C96A34F8FB569CC74860B026ED7 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d656c23-db7c-418f-b8c2-73f0e3abc42e.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 18.52.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:70:40:f2:88:24:9c:96:a3:4f:8f:b5:69:cc:74:86:0b:02:6e:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=b204fe66137da431caf68e91831f248ecedf0098e128e837fc193123c518e941, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:43:0d:5f:dc:6e:28:2d:2e:79:ef:35:34:7a: 11:4c:1f:e9:d7:31:2a:24:43:21:4f:ea:85:c9:4c: 83:b0:65:ab:f8:20:58:bc:72:0b:b4:6c:12:6c:71: e5:46:7c:04:03:e4:fe:87:56:ee:7c:66:79:fa:8c: 06:a7:d8:f8:e7:70:8c:99:0d:1c:60:ef:0d:9a:dd: 69:ec:23:07:78:ab:d6:7c:57:e6:e0:6d:90:6d:fa: 14:10:06:33:46:7b:7b:e8:d6:33:9c:2f:15:15:7a: 74:a3:b5:d1:e4:9f:0e:53:3b:f6:b7:47:18:e8:61: e7:31:d4:38:74:a1:57:52:41:54:ed:97:0a:ca:f5: b6:50:de:b8:af:80:76:89:d6:1a:29:99:c7:04:d9: 9d:ed:ff:f9:e4:d0:cc:95:6f:0f:52:db:9c:0c:22: fd:44:70:85:5c:2b:29:49:9f:2a:3d:de:a9:2e:6e: 99:14:58:fa:24:9f:70:22:62:8c:c0:25:ce:4a:ff: 9e:e6:79:38:c7:bd:ca:ff:6d:4c:73:a7:09:c7:64: b8:74:28:9d:4a:41:88:14:d4:9c:fe:49:4b:81:58: d6:c9:fa:02:20:eb:f2:a6:df:b4:e6:88:01:9e:82: 19:39:b1:40:02:12:4c:7e:0e:80:b7:c8:c9:13:7e: 5f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:1B:FA:73:6C:26:7A:B9:C0:8C:8C:F5:88:48:4E:F7:B8:79:CA:25 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6d656c23-db7c-418f-b8c2-73f0e3abc42e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 90:c0:dc:c0:04:c3:ad:70:07:1b:b2:77:04:c6:52:98:1d:3f: 7b:5d:48:62:d2:37:5a:62:a7:68:89:58:2d:72:fc:65:da:94: af:06:bf:a7:30:10:f1:9b:6c:5b:2a:b6:18:f9:83:12:85:36: 2e:0b:f8:a1:42:94:51:4f:f8:38:c0:5c:aa:7e:a6:9d:ec:ee: 93:5b:c6:e2:ef:79:27:57:98:d9:20:3d:b7:a5:29:ce:98:54: e2:d4:90:a9:e1:54:d9:9c:2f:bc:3c:a2:8e:d1:30:46:d5:b3: ef:26:6a:c4:e1:38:97:f1:58:9b:e2:36:ab:55:10:7f:6d:53: 09:57:47:b3:06:ec:9d:ab:1a:36:05:ed:db:a7:62:dc:f4:70: f0:0f:66:1b:a5:dc:54:ae:12:43:f1:d0:b0:66:25:7b:7c:5d: d5:d1:02:e6:ff:b9:a3:6c:77:d0:84:1b:bb:fd:19:d7:6e:1a: f0:85:1e:95:94:d7:c7:f9:ad:9e:75:1b:5c:bb:9d:bc:ae:08: 01:20:81:55:31:40:98:a8:ee:bc:41:bb:0d:2d:fd:33:52:0d: ec:04:17:01:bd:77:f1:18:bc:43:19:7c:4e:56:f1:ee:fb:57: 91:58:d7:08:ef:d4:06:e4:4a:c8:fe:73:5d:fb:c6:58:18:df: 87:4d:ac:d2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUb3BA8ogknJajT4+1acx0hgsCbtcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE4MDAwMDAwWhcNMjQxMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjA0ZmU2NjEzN2RhNDMxY2FmNjhlOTE4MzFmMjQ4ZWNl ZGYwMDk4ZTEyOGU4MzdmYzE5MzEyM2M1MThlOTQxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5Qw1f3G4oLS557zU0ehFMH+nXMSokQyFP6oXJTIOwZav4 IFi8cgu0bBJsceVGfAQD5P6HVu58Znn6jAan2PjncIyZDRxg7w2a3WnsIwd4q9Z8 V+bgbZBt+hQQBjNGe3vo1jOcLxUVenSjtdHknw5TO/a3RxjoYecx1Dh0oVdSQVTt lwrK9bZQ3rivgHaJ1hopmccE2Z3t//nk0MyVbw9S25wMIv1EcIVcKylJnyo93qku bpkUWPokn3AiYozAJc5K/57meTjHvcr/bUxzpwnHZLh0KJ1KQYgU1Jz+SUuBWNbJ +gIg6/Km37TmiAGeghk5sUACEkx+DoC3yMkTfl8FAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURRv6c2wmernAjIz1iEhO97h5yiUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzZkNjU2YzIzLWRiN2MtNDE4Zi1iOGMyLTczZjBlM2FiYzQyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASNDANBgkqhkiG9w0BAQsFAAOCAQEAkMDcwATDrXAHG7J3BMZSmB0/e11I YtI3WmKnaIlYLXL8ZdqUrwa/pzAQ8ZtsWyq2GPmDEoU2Lgv4oUKUUU/4OMBcqn6m nezuk1vG4u95J1eY2SA9t6UpzphU4tSQqeFU2ZwvvDyijtEwRtWz7yZqxOE4l/FY m+I2q1UQf21TCVdHswbsnasaNgXt26di3PRw8A9mG6XcVK4SQ/HQsGYle3xd1dEC 5v+5o2x30IQbu/0Z124a8IUelZTXx/mtnnUbXLudvK4IASCBVTFAmKjuvEG7DS39 M1IN7AQXAb138Ri8Qxl8Tlbx7vtXkVjXCO/UBuRKyP5zXfvGWBjfh02s0g== -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:58 2024 by rpki-client on console-fra.rpki-client.org