$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8a0b258-82d3-4927-a176-717caf7c4e70.roa File: c8a0b258-82d3-4927-a176-717caf7c4e70.roa (raw, json) Hash identifier: qYNDcO1VE1s1tHq8MpJON8N98T9lcXbBrHCEqFXmS6o= Subject key identifier: C4:A7:8C:8B:3A:01:45:FA:2D:84:5D:07:83:2B:E8:43:55:54:5C:31 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4F95D31EC546EE4827A89663EE982191B2CA502F Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8a0b258-82d3-4927-a176-717caf7c4e70.roa Signing time: Tue 29 Oct 2024 00:00:00 +0000 ROA not before: Tue 29 Oct 2024 00:00:00 +0000 ROA not after: Tue 03 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 136.16.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:95:d3:1e:c5:46:ee:48:27:a8:96:63:ee:98:21:91:b2:ca:50:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 29 00:00:00 2024 GMT Not After : Dec 3 23:59:59 2024 GMT Subject: serialNumber=6f07034e74c5f1217cdc810751440007d8288608a0b4e1cea2f5abbd3833ea10, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:de:a9:04:31:2e:41:9b:06:28:a7:04:19:ac: f5:be:7b:28:24:07:9e:be:26:40:3d:9a:2d:6f:69: 68:10:5e:7c:31:b8:12:ca:5b:c5:e0:da:db:42:64: 28:a6:22:24:c0:ca:8a:b3:97:af:b8:76:cf:2f:60: 19:dc:aa:9f:01:6d:61:68:0a:1c:dd:8f:70:3e:c4: ab:da:80:18:ff:70:8f:af:2f:75:2c:8a:7b:77:91: b1:a1:3a:8a:65:37:61:bc:8a:75:4d:49:4d:40:36: f6:54:66:99:72:e3:28:c7:13:a1:1a:1a:5a:b4:f6: 11:85:34:c3:18:54:ba:af:c4:ef:84:b1:ca:65:6c: 2a:a3:70:0a:91:40:69:d6:b3:de:28:16:0c:87:4e: 8e:a7:69:4b:12:69:6f:d6:e5:ca:52:b0:d0:21:be: a7:6e:77:3f:36:e0:df:9f:01:57:96:ab:ea:d6:d5: 81:43:15:af:f0:e1:03:e1:4a:58:4b:62:4d:e7:fa: 9a:1b:01:29:24:51:85:7e:0c:76:77:61:8f:ac:a0: ad:63:0f:dc:1d:cd:b0:90:17:d7:dd:d6:30:c6:02: db:9a:6e:34:94:b3:86:15:4b:59:2f:cd:3e:83:71: 90:04:29:07:a0:45:94:7d:f5:a9:73:50:cb:46:91: 20:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:A7:8C:8B:3A:01:45:FA:2D:84:5D:07:83:2B:E8:43:55:54:5C:31 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c8a0b258-82d3-4927-a176-717caf7c4e70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.16.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:0f:67:37:0e:4b:86:f9:66:cb:f7:a1:82:b3:ec:f0:d6:99: 2c:3b:6d:c1:11:b1:c7:2a:50:38:71:e1:a4:ca:f1:c9:6a:ce: 42:d4:b7:27:35:85:45:97:77:a5:b7:64:33:ef:2b:6c:58:ae: ec:07:49:82:75:68:26:02:27:74:91:0e:5c:5b:9e:07:54:6a: b9:65:f8:d0:aa:49:f4:8e:76:0a:72:63:37:da:e6:cd:de:0f: c6:83:d0:ec:34:24:6c:c3:b7:ad:48:d1:db:c8:f4:eb:db:d5: 5a:69:f0:e7:48:f6:a0:34:ee:64:4b:63:b3:8a:10:6f:e3:ed: 26:f3:6f:42:6b:7a:55:b8:94:19:3c:95:89:8c:4c:22:ad:48: 7d:5f:81:93:9b:70:f8:c8:0e:61:82:25:17:6f:dd:0f:cd:b6: 0b:84:93:66:70:14:d8:df:95:8d:53:ff:5f:ea:5b:49:80:40: ff:43:57:07:89:3d:28:69:a5:f4:82:6b:af:22:b2:84:77:25: 93:dd:a1:f8:c3:e8:c5:d8:ee:35:a8:94:71:3b:d9:b7:a5:88: 52:c9:fc:3c:f8:08:0a:f9:ca:8b:4f:22:86:e2:f9:53:86:b0: 9d:93:3f:8f:5b:02:bc:2f:da:c7:d0:a8:f8:aa:99:f4:62:f9: d6:7b:53:5c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT5XTHsVG7kgnqJZj7pghkbLKUC8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMDI5MDAwMDAwWhcNMjQxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZjA3MDM0ZTc0YzVmMTIxN2NkYzgxMDc1MTQ0MDAwN2Q4 Mjg4NjA4YTBiNGUxY2VhMmY1YWJiZDM4MzNlYTEwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx3qkEMS5BmwYopwQZrPW+eygkB56+JkA9mi1vaWgQXnwx uBLKW8Xg2ttCZCimIiTAyoqzl6+4ds8vYBncqp8BbWFoChzdj3A+xKvagBj/cI+v L3Usint3kbGhOoplN2G8inVNSU1ANvZUZply4yjHE6EaGlq09hGFNMMYVLqvxO+E scplbCqjcAqRQGnWs94oFgyHTo6naUsSaW/W5cpSsNAhvqdudz824N+fAVeWq+rW 1YFDFa/w4QPhSlhLYk3n+pobASkkUYV+DHZ3YY+soK1jD9wdzbCQF9fd1jDGAtua bjSUs4YVS1kvzT6DcZAEKQegRZR99alzUMtGkSAnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxKeMizoBRfothF0HgyvoQ1VUXDEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2M4YTBiMjU4LTgyZDMtNDkyNy1hMTc2LTcxN2NhZjdjNGU3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCIEDANBgkqhkiG9w0BAQsFAAOCAQEAPQ9nNw5Lhvlmy/ehgrPs8NaZLDtt wRGxxypQOHHhpMrxyWrOQtS3JzWFRZd3pbdkM+8rbFiu7AdJgnVoJgIndJEOXFue B1RquWX40KpJ9I52CnJjN9rmzd4PxoPQ7DQkbMO3rUjR28j069vVWmnw50j2oDTu ZEtjs4oQb+PtJvNvQmt6VbiUGTyViYxMIq1IfV+Bk5tw+MgOYYIlF2/dD822C4ST ZnAU2N+VjVP/X+pbSYBA/0NXB4k9KGml9IJrryKyhHclk92h+MPoxdjuNaiUcTvZ t6WIUsn8PPgICvnKi08ihuL5U4awnZM/j1sCvC/ax9Co+KqZ9GL51ntTXA== -----END CERTIFICATE-----Generated at Thu Nov 21 21:04:17 2024 by rpki-client on console-fra.rpki-client.org