$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b6c71c6e-c050-4809-915d-cbdced1558c2.roa File: b6c71c6e-c050-4809-915d-cbdced1558c2.roa (raw, json) Hash identifier: +PgWXosBMQj8tFP7LWH2mCY+d5wJS7+Sn4chkD9Cocw= Subject key identifier: 3F:24:C4:C5:FC:5E:A6:16:26:A1:68:CC:F1:F4:84:0B:3D:E0:4A:B5 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1FE6A2ECAC7E46BD3C306FE142FBD5C4D2DDDEE3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b6c71c6e-c050-4809-915d-cbdced1558c2.roa Signing time: Tue 29 Oct 2024 00:00:00 +0000 ROA not before: Tue 29 Oct 2024 00:00:00 +0000 ROA not after: Tue 03 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 18.112.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:e6:a2:ec:ac:7e:46:bd:3c:30:6f:e1:42:fb:d5:c4:d2:dd:de:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 29 00:00:00 2024 GMT Not After : Dec 3 23:59:59 2024 GMT Subject: serialNumber=2e94f114ddae2fcb875fe84e1c30dbec8c581d06e07b73d69780d20a1b1db32d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2e:8f:79:98:2d:f0:da:82:af:0d:3f:9e:bd: 69:51:d4:a4:b8:97:64:5e:25:fb:17:58:35:20:11: e8:e6:16:e8:49:b7:d6:5c:f2:fe:4c:51:9e:30:97: 85:3f:cb:75:33:8a:9e:fa:83:3e:7f:a2:33:5f:36: 45:0b:5f:d0:a2:3c:f2:08:e2:95:31:bc:cf:7e:84: 82:23:8c:0b:3a:0a:7e:18:97:d2:02:70:9e:ce:f8: 91:19:ce:ff:80:19:c1:77:a7:34:70:e6:69:b4:b3: 6f:9d:85:0b:95:f5:17:67:bb:49:04:5f:27:43:3d: 50:19:a4:53:d4:7c:8c:cb:47:b1:dc:21:1f:fb:df: 4a:0f:c5:a3:a2:d5:bf:1e:72:c7:d2:90:ed:06:d8: 07:b5:80:f0:ab:1f:18:44:15:78:d2:73:24:cb:b0: 25:ab:d5:41:51:b3:e9:5c:f9:12:5b:22:f7:b2:71: e4:4a:74:62:a9:6d:3f:8d:20:98:98:d1:1b:e8:ad: 67:4c:94:07:aa:27:37:8d:5f:5e:00:98:e4:ed:e3: 69:6b:47:70:34:e3:e1:a9:2a:a2:d9:46:d5:98:61: c1:e6:f1:0d:44:49:47:dd:31:7d:b2:ac:5c:a5:4d: 79:82:bb:43:8a:aa:7e:6a:49:85:ea:23:85:a1:ff: 0d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:24:C4:C5:FC:5E:A6:16:26:A1:68:CC:F1:F4:84:0B:3D:E0:4A:B5 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b6c71c6e-c050-4809-915d-cbdced1558c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.112.0.0/16 Signature Algorithm: sha256WithRSAEncryption 03:8c:b3:f1:57:8b:8c:bb:50:4b:10:56:1f:db:9a:cf:9e:8e: 10:87:ed:d0:80:ec:35:1f:c8:76:a0:1c:4f:c8:1e:90:a7:29: 0f:25:70:e8:a1:1c:e2:f5:21:8a:32:ea:4f:ce:aa:33:b8:92: fd:0f:40:61:7d:06:9e:95:1d:e6:eb:f5:43:3c:06:0c:fe:cf: 0d:92:af:44:bb:f3:37:9a:63:62:e6:2d:76:28:9a:b0:5c:71: 72:b6:04:ee:e2:2e:bb:f3:23:35:e1:00:77:8e:99:f6:f5:65: 09:4f:87:e1:48:76:50:34:76:fa:80:e1:4f:57:5a:7f:e0:cf: bf:f2:00:db:fa:cd:a1:5b:e0:62:02:b0:8f:7f:48:ec:ea:76: f6:63:e8:1a:8d:03:fe:56:7d:b7:c1:d3:8e:c8:f6:55:6c:1a: 79:eb:9d:14:25:25:5b:84:f2:c6:3e:24:98:67:6e:25:b1:8b: 4f:c9:55:df:1b:5b:a6:d1:56:b2:bf:e3:d2:d4:45:d5:9d:28: d7:11:49:9d:a3:15:e8:a7:b8:96:08:35:05:fa:24:cd:41:10: 78:48:52:48:7f:21:15:d7:a6:8e:a4:6d:d5:af:5b:1d:a5:aa: 3f:a9:64:9e:27:e0:50:2f:d9:23:cd:4c:0c:9f:a7:d4:5f:9c: 9c:95:d0:37 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUH+ai7Kx+Rr08MG/hQvvVxNLd3uMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMDI5MDAwMDAwWhcNMjQxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTk0ZjExNGRkYWUyZmNiODc1ZmU4NGUxYzMwZGJlYzhj NTgxZDA2ZTA3YjczZDY5NzgwZDIwYTFiMWRiMzJkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClLo95mC3w2oKvDT+evWlR1KS4l2ReJfsXWDUgEejmFuhJ t9Zc8v5MUZ4wl4U/y3Uzip76gz5/ojNfNkULX9CiPPII4pUxvM9+hIIjjAs6Cn4Y l9ICcJ7O+JEZzv+AGcF3pzRw5mm0s2+dhQuV9Rdnu0kEXydDPVAZpFPUfIzLR7Hc IR/730oPxaOi1b8ecsfSkO0G2Ae1gPCrHxhEFXjScyTLsCWr1UFRs+lc+RJbIvey ceRKdGKpbT+NIJiY0RvorWdMlAeqJzeNX14AmOTt42lrR3A04+GpKqLZRtWYYcHm 8Q1ESUfdMX2yrFylTXmCu0OKqn5qSYXqI4Wh/w1FAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPyTExfxephYmoWjM8fSECz3gSrUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I2YzcxYzZlLWMwNTAtNDgwOS05MTVkLWNiZGNlZDE1NThjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAScDANBgkqhkiG9w0BAQsFAAOCAQEAA4yz8VeLjLtQSxBWH9uaz56OEIft 0IDsNR/IdqAcT8gekKcpDyVw6KEc4vUhijLqT86qM7iS/Q9AYX0GnpUd5uv1QzwG DP7PDZKvRLvzN5pjYuYtdiiasFxxcrYE7uIuu/MjNeEAd46Z9vVlCU+H4Uh2UDR2 +oDhT1daf+DPv/IA2/rNoVvgYgKwj39I7Op29mPoGo0D/lZ9t8HTjsj2VWwaeeud FCUlW4Tyxj4kmGduJbGLT8lV3xtbptFWsr/j0tRF1Z0o1xFJnaMV6Ke4lgg1Bfok zUEQeEhSSH8hFdemjqRt1a9bHaWqP6lknifgUC/ZI81MDJ+n1F+cnJXQNw== -----END CERTIFICATE-----Generated at Sun Nov 24 22:11:37 2024 by rpki-client on console-fra.rpki-client.org