$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0364ab8d-ad59-40f9-a140-7bb40cb409fa.roa File: 0364ab8d-ad59-40f9-a140-7bb40cb409fa.roa (raw, json) Hash identifier: yRBDA4liuqpQQOcycY+zcN131+eDbffY3Vi/b9MC+r8= Subject key identifier: 1A:57:DD:FD:68:33:D9:DC:99:DD:C5:CF:43:92:D2:9B:01:6A:7F:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1104601214F8165CA3CD08355054D1798BD88B4A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0364ab8d-ad59-40f9-a140-7bb40cb409fa.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 139.89.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:04:60:12:14:f8:16:5c:a3:cd:08:35:50:54:d1:79:8b:d8:8b:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=cb3ae925d2a0a8534dcbab0c2406940d80ce576831e0fe862bd87a5daa8d3bfb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f7:79:48:64:65:39:38:61:4c:24:dc:e1:36: a2:b5:54:43:53:18:0d:42:81:9d:11:eb:dd:4d:d5: 8d:4a:94:89:1b:29:07:1d:02:9a:02:d8:7f:8e:e3: a4:e8:b3:5f:59:05:b6:35:5e:4f:0b:4b:b3:6e:fc: 5b:4b:2d:12:55:c5:e2:e9:04:90:4f:b0:1b:fa:d6: a1:1b:6c:f7:71:9d:5d:1d:51:c5:cd:ab:0f:92:65: 8c:98:06:65:de:4e:53:8e:28:8a:fe:63:9d:10:76: 46:12:25:79:ae:1a:1d:51:49:75:be:bf:20:31:a8: 97:80:e6:3f:9f:42:5c:5a:5e:a2:02:bf:58:68:64: 08:d6:66:8c:ef:b3:82:e8:da:53:ed:ad:b9:19:60: 70:8f:9a:5d:65:52:82:a6:af:b7:3f:08:87:b1:2c: 82:66:01:07:aa:e8:84:79:02:97:da:36:ea:90:a4: 0b:da:1e:ee:55:91:b7:11:45:0b:7a:c3:f8:3a:19: aa:fc:6e:03:b8:fc:c3:25:71:4f:86:fe:d2:f4:be: dd:39:fc:9b:43:49:36:d8:72:aa:dc:18:83:98:6e: fd:f9:b7:ad:8d:f3:f8:0d:8e:c6:09:9f:48:8d:45: 81:c2:3f:69:ee:06:1d:44:ab:8a:46:cd:d7:07:53: 3e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:57:DD:FD:68:33:D9:DC:99:DD:C5:CF:43:92:D2:9B:01:6A:7F:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0364ab8d-ad59-40f9-a140-7bb40cb409fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6c:ce:38:6d:e4:98:f9:79:16:6e:f3:e5:56:ba:62:a0:a8:b9: c6:48:a3:36:80:ba:af:fd:fd:0a:50:4d:85:5f:08:e7:c6:25: 91:89:a2:db:e7:68:2f:07:92:ca:6e:62:e2:c7:3e:76:bb:60: fd:71:8d:88:90:35:52:b0:18:10:77:9d:0c:c6:f6:6f:8c:a7: 6c:21:e3:71:c8:9e:4c:b0:ee:23:87:f0:65:9b:6c:f5:89:98: 5f:da:f5:a5:df:b9:c0:75:a4:f8:f8:46:f0:92:0e:67:f5:07: aa:a8:d3:01:5d:3a:fd:e4:59:d6:7a:6e:66:97:83:92:58:f1: b6:b4:db:fa:3a:fe:7c:f5:23:94:5e:5c:b0:d1:9e:de:97:f2: 4b:74:44:bb:0f:40:eb:d7:9a:f6:24:42:4d:0d:c5:3c:09:7e: 05:df:2b:a4:64:1c:55:a3:ac:26:3f:a1:aa:a4:fc:a2:d2:66: 17:2b:5a:88:8b:ab:ae:5e:9f:67:d2:43:23:20:8d:fd:2b:a7: 20:93:fd:c3:9d:3b:64:56:3e:5f:e6:ec:1c:ae:17:c5:75:61: 6c:69:94:5f:5e:53:77:a2:3b:34:c1:21:b6:4c:01:97:76:0f: e8:9b:7b:2c:71:de:af:94:2d:14:8c:24:33:04:fe:ef:cb:96: 56:9a:14:6b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEQRgEhT4FlyjzQg1UFTReYvYi0owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjNhZTkyNWQyYTBhODUzNGRjYmFiMGMyNDA2OTQwZDgw Y2U1NzY4MzFlMGZlODYyYmQ4N2E1ZGFhOGQzYmZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC693lIZGU5OGFMJNzhNqK1VENTGA1CgZ0R691N1Y1KlIkb KQcdApoC2H+O46Tos19ZBbY1Xk8LS7Nu/FtLLRJVxeLpBJBPsBv61qEbbPdxnV0d UcXNqw+SZYyYBmXeTlOOKIr+Y50QdkYSJXmuGh1RSXW+vyAxqJeA5j+fQlxaXqIC v1hoZAjWZozvs4Lo2lPtrbkZYHCPml1lUoKmr7c/CIexLIJmAQeq6IR5ApfaNuqQ pAvaHu5VkbcRRQt6w/g6Gar8bgO4/MMlcU+G/tL0vt05/JtDSTbYcqrcGIOYbv35 t62N8/gNjsYJn0iNRYHCP2nuBh1Eq4pGzdcHUz5bAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGlfd/Wgz2dyZ3cXPQ5LSmwFqf+cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzNjRhYjhkLWFkNTktNDBmOS1hMTQwLTdiYjQwY2I0MDlmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLWTANBgkqhkiG9w0BAQsFAAOCAQEAbM44beSY+XkWbvPlVrpioKi5xkij NoC6r/39ClBNhV8I58YlkYmi2+doLweSym5i4sc+drtg/XGNiJA1UrAYEHedDMb2 b4ynbCHjccieTLDuI4fwZZts9YmYX9r1pd+5wHWk+PhG8JIOZ/UHqqjTAV06/eRZ 1npuZpeDkljxtrTb+jr+fPUjlF5csNGe3pfyS3REuw9A69ea9iRCTQ3FPAl+Bd8r pGQcVaOsJj+hqqT8otJmFytaiIurrl6fZ9JDIyCN/SunIJP9w507ZFY+X+bsHK4X xXVhbGmUX15Td6I7NMEhtkwBl3YP6Jt7LHHer5QtFIwkMwT+78uWVpoUaw== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:15 2024 by rpki-client on console-ams.rpki-client.org