$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/041581cb-3989-42ad-9b1d-367e0721b74a.roa File: 041581cb-3989-42ad-9b1d-367e0721b74a.roa (raw, json) Hash identifier: /JCPXcfBUsBH9lX4uDMmLDZWe8ifZDJDmbG2RxmKnl4= Subject key identifier: 15:81:8E:98:9C:87:AB:BB:B3:F3:97:38:A0:36:33:82:9E:43:7E:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 559620647AC4D2F3C2A3D4276EF82F363C22F527 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/041581cb-3989-42ad-9b1d-367e0721b74a.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.239.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:96:20:64:7a:c4:d2:f3:c2:a3:d4:27:6e:f8:2f:36:3c:22:f5:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=a2ed21f4f1f318ac7e3dd8fc6dd880297d24faec070816449c1663835ddda60f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e0:0f:43:19:96:70:6d:a6:94:76:f3:bc:19: 31:07:4c:41:85:e2:a4:4b:0d:64:64:59:44:8a:c1: 50:0c:fb:4a:dc:6d:d8:b8:42:03:2b:1a:cb:a1:a9: 94:c7:90:a6:56:5d:59:59:e5:ed:fe:8a:8f:fd:c5: 66:09:2c:67:cc:c6:8e:ce:e0:58:d1:0b:25:03:e4: e0:31:3a:70:19:e5:2c:68:3f:b1:69:3e:90:c1:2d: ac:e8:af:b1:32:4d:71:a7:31:0f:6a:3c:02:cf:56: e0:66:f0:c5:a6:86:08:4c:13:cd:fc:de:8d:1e:61: 2c:1c:aa:fb:be:59:f0:9a:8b:26:27:4d:39:76:a3: 0e:4c:09:5c:bf:06:43:cd:60:74:88:25:34:86:f0: 6b:61:53:21:92:c9:fd:4c:45:dc:b5:67:14:8d:89: 70:91:03:5c:1b:57:32:f4:0f:0f:78:45:22:70:86: 6a:8c:46:c6:b7:ae:92:cb:8a:af:23:f1:96:fa:ca: 7a:e8:d9:52:19:9b:01:61:56:5f:7b:3c:fc:da:84: d4:35:47:c4:38:1f:78:28:c6:32:a1:e3:1c:e2:94: 64:9c:92:3e:39:f0:5d:fd:31:95:a2:c7:97:c5:c2: 65:95:bb:45:9c:1c:1e:af:b2:56:b9:2f:e9:12:be: 5c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:81:8E:98:9C:87:AB:BB:B3:F3:97:38:A0:36:33:82:9E:43:7E:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/041581cb-3989-42ad-9b1d-367e0721b74a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.239.0.0/16 Signature Algorithm: sha256WithRSAEncryption ca:72:4a:b0:28:4f:79:39:e7:e4:56:72:b6:48:75:70:70:05: 6c:15:bd:1b:4f:e1:67:0e:63:74:b4:80:fc:b3:0d:30:77:bc: 87:2a:8d:e7:30:2b:c8:ce:8e:1c:92:24:2f:b3:b1:ef:80:db: 07:5b:6f:44:5a:88:cf:19:62:e1:a2:11:c3:8b:8a:74:85:39: 7f:9d:5e:c8:70:15:95:5f:de:16:19:8b:15:97:ff:54:5f:17: 71:80:f5:67:70:99:7d:a2:86:f7:73:7d:6b:00:c4:af:b9:8e: 12:ab:a3:e3:dd:2e:1b:0d:6a:1f:2b:13:e7:c0:bd:65:96:e1: ad:f7:e5:cb:37:4e:47:a0:54:10:aa:cd:09:3e:10:4d:3b:20: 52:dd:7a:10:00:da:fe:af:a4:a5:e7:d9:cd:85:70:6b:1d:94: 51:9a:27:96:3b:48:27:8d:a7:07:07:32:70:d2:2d:e2:7a:a5: 75:3a:9f:db:88:ce:af:18:5c:2c:ce:6d:10:3e:a2:c1:f8:5a: fe:49:40:72:42:db:e3:31:31:b6:c7:b1:56:3a:08:dd:87:fa: 3e:6c:60:ec:ea:5c:5d:3b:1e:db:ea:49:60:a8:cf:8d:58:39: 7f:78:30:13:dd:59:e5:46:52:47:c0:29:eb:27:08:5c:e3:0a: 3b:c8:8e:e7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVZYgZHrE0vPCo9QnbvgvNjwi9ScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMmVkMjFmNGYxZjMxOGFjN2UzZGQ4ZmM2ZGQ4ODAyOTdk MjRmYWVjMDcwODE2NDQ5YzE2NjM4MzVkZGRhNjBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd4A9DGZZwbaaUdvO8GTEHTEGF4qRLDWRkWUSKwVAM+0rc bdi4QgMrGsuhqZTHkKZWXVlZ5e3+io/9xWYJLGfMxo7O4FjRCyUD5OAxOnAZ5Sxo P7FpPpDBLazor7EyTXGnMQ9qPALPVuBm8MWmhghME8383o0eYSwcqvu+WfCaiyYn TTl2ow5MCVy/BkPNYHSIJTSG8GthUyGSyf1MRdy1ZxSNiXCRA1wbVzL0Dw94RSJw hmqMRsa3rpLLiq8j8Zb6ynro2VIZmwFhVl97PPzahNQ1R8Q4H3goxjKh4xzilGSc kj458F39MZWix5fFwmWVu0WcHB6vsla5L+kSvlxhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFYGOmJyHq7uz85c4oDYzgp5DfkkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA0MTU4MWNiLTM5ODktNDJhZC05YjFkLTM2N2UwNzIxYjc0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo7zANBgkqhkiG9w0BAQsFAAOCAQEAynJKsChPeTnn5FZytkh1cHAFbBW9 G0/hZw5jdLSA/LMNMHe8hyqN5zAryM6OHJIkL7Ox74DbB1tvRFqIzxli4aIRw4uK dIU5f51eyHAVlV/eFhmLFZf/VF8XcYD1Z3CZfaKG93N9awDEr7mOEquj490uGw1q HysT58C9ZZbhrfflyzdOR6BUEKrNCT4QTTsgUt16EADa/q+kpefZzYVwax2UUZon ljtIJ42nBwcycNIt4nqldTqf24jOrxhcLM5tED6iwfha/klAckLb4zExtsexVjoI 3Yf6Pmxg7OpcXTse2+pJYKjPjVg5f3gwE91Z5UZSR8Ap6ycIXOMKO8iO5w== -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:41 2024 by rpki-client on console-ams.rpki-client.org