$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa File: 04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa (raw, json) Hash identifier: a5x/JNQViC70RSqCpxfifOW+OGBs19IUgFbfayqXrN0= Subject key identifier: 8D:34:BB:21:50:A3:D2:42:32:11:CC:BE:F6:63:0E:3A:4F:34:C8:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14B421F182CE231DBD2718634A2BBE56887AE2FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.138.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:b4:21:f1:82:ce:23:1d:bd:27:18:63:4a:2b:be:56:88:7a:e2:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=28216b185fca63bd03de283a3be2a1a05e84d66cbb9f637d391efa920a3b2432, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bc:a8:db:1e:d8:76:84:8f:84:d5:c0:6b:5a: 1a:23:0d:13:01:49:ab:32:fe:6b:e8:07:88:30:d9: bc:de:7b:b3:e8:b2:87:2b:f0:f3:41:32:87:04:60: 8d:25:95:25:a8:da:59:f0:83:53:b3:0b:4a:9f:62: 77:64:f6:51:35:71:94:0f:21:a7:b0:db:6c:73:2d: d5:96:10:54:ed:dc:6b:53:8a:5f:e5:a3:a1:ae:58: 0f:38:bb:e6:24:21:79:04:57:4b:f4:53:09:11:cc: b6:14:84:fd:93:b8:d1:34:a0:74:03:b3:09:52:14: c8:bf:e9:77:7d:61:bb:80:57:89:31:02:87:f1:1a: 4f:8f:56:ca:b9:ba:01:7b:cd:bf:84:c5:fb:0b:ef: 34:bf:cf:0e:bb:9b:85:f0:56:84:03:0a:e5:d2:d3: 04:00:b8:81:50:c3:8f:e4:14:6f:be:97:45:9d:8f: 2d:1e:d2:08:6d:88:e0:ae:fb:ec:8a:72:7a:12:a3: 54:6e:ed:d5:0b:3f:d4:a1:cb:c1:94:be:9f:44:c3: 5b:df:77:b5:ef:5f:5c:b5:2c:af:fe:a4:63:8a:27: 4b:ae:83:68:9d:a3:27:d3:6f:e2:bd:4c:6c:bd:7f: 87:27:9d:ba:54:56:5b:76:3a:12:1f:6a:27:34:53: 0b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:34:BB:21:50:A3:D2:42:32:11:CC:BE:F6:63:0E:3A:4F:34:C8:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.138.0.0/16 Signature Algorithm: sha256WithRSAEncryption 41:45:d4:ec:6e:39:e0:fc:ca:20:ac:ab:e1:03:69:76:d8:65: 50:ad:ef:43:12:70:84:c8:b1:da:a9:79:45:10:f5:37:e9:7c: 48:68:dc:c9:87:3f:70:b0:17:6f:c0:f7:6c:18:7f:31:64:d9: 96:13:c2:35:48:30:75:0e:95:00:2b:ee:b1:70:2e:78:cb:e7: 83:95:e8:4d:20:2a:fe:2f:7b:22:cb:ea:8d:9e:80:96:7d:62: a6:db:1d:94:d6:0a:a2:51:34:a0:0d:e3:3b:9c:b1:93:39:1e: c8:b0:27:f4:65:99:e4:22:32:0b:3c:59:f5:3d:6c:07:84:eb: ba:72:0a:ec:56:b7:e5:b3:2f:1c:4c:b6:47:a7:65:71:70:7f: d8:37:9a:a5:9c:20:3b:32:61:63:d0:4e:33:4b:54:b3:63:3a: 95:87:c6:3a:56:92:30:46:24:f6:50:86:21:14:2a:ef:85:30: 96:e2:c2:ee:6b:00:1c:aa:87:b8:07:a8:27:d2:3e:fb:1a:c8: c0:cb:a1:ac:6d:90:16:60:6b:6c:99:f8:23:fd:71:24:ad:97: 83:31:19:e9:4d:d7:f6:aa:8b:19:d8:d0:5d:2e:8e:ad:ce:36: 24:a7:c1:0a:9f:84:1e:19:78:5c:d5:90:a3:5f:1c:7b:17:3f: 24:4c:d3:5f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFLQh8YLOIx29JxhjSiu+Voh64v8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyODIxNmIxODVmY2E2M2JkMDNkZTI4M2EzYmUyYTFhMDVl ODRkNjZjYmI5ZjYzN2QzOTFlZmE5MjBhM2IyNDMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEvKjbHth2hI+E1cBrWhojDRMBSasy/mvoB4gw2bzee7Po socr8PNBMocEYI0llSWo2lnwg1OzC0qfYndk9lE1cZQPIaew22xzLdWWEFTt3GtT il/lo6GuWA84u+YkIXkEV0v0UwkRzLYUhP2TuNE0oHQDswlSFMi/6Xd9YbuAV4kx AofxGk+PVsq5ugF7zb+ExfsL7zS/zw67m4XwVoQDCuXS0wQAuIFQw4/kFG++l0Wd jy0e0ghtiOCu++yKcnoSo1Ru7dULP9Shy8GUvp9Ew1vfd7XvX1y1LK/+pGOKJ0uu g2idoyfTb+K9TGy9f4cnnbpUVlt2OhIfaic0UwsxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjTS7IVCj0kIyEcy+9mMOOk80yM0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA0ZTU3NTUyLTFkZmItNDFlZS05ZGQyLWYxNGQ0ZmFhY2JiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2ijANBgkqhkiG9w0BAQsFAAOCAQEAQUXU7G454PzKIKyr4QNpdthlUK3v QxJwhMix2ql5RRD1N+l8SGjcyYc/cLAXb8D3bBh/MWTZlhPCNUgwdQ6VACvusXAu eMvng5XoTSAq/i97IsvqjZ6Aln1iptsdlNYKolE0oA3jO5yxkzkeyLAn9GWZ5CIy CzxZ9T1sB4TrunIK7Fa35bMvHEy2R6dlcXB/2DeapZwgOzJhY9BOM0tUs2M6lYfG OlaSMEYk9lCGIRQq74UwluLC7msAHKqHuAeoJ9I++xrIwMuhrG2QFmBrbJn4I/1x JK2XgzEZ6U3X9qqLGdjQXS6Orc42JKfBCp+EHhl4XNWQo18cexc/JEzTXw== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:39 2024 by rpki-client on console-fra.rpki-client.org