$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/079cc1e2-817f-4601-bbf9-167342dd67d8.roa File: 079cc1e2-817f-4601-bbf9-167342dd67d8.roa (raw, json) Hash identifier: ++DGpKYlJ1yq2/HTCnXoxJ5nbUtztcRWhSOgIpoqicI= Subject key identifier: AE:74:80:A2:E9:A1:2A:46:93:2B:F5:90:B6:15:72:BA:F8:F2:84:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 599D65D3194E1CFE112354EA975B8FF9C21A7CCD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/079cc1e2-817f-4601-bbf9-167342dd67d8.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 168.185.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:9d:65:d3:19:4e:1c:fe:11:23:54:ea:97:5b:8f:f9:c2:1a:7c:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=ae135aa498b8463441a9de2931931fcab06224c708bebe603ea396624a1f6f34, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9d:2f:65:bd:76:ea:e3:e1:00:72:e2:2e:a4: 7c:58:21:c8:ba:dd:98:a2:4b:f5:02:4a:77:f0:10: 22:db:56:13:07:00:37:ba:cb:2f:21:f3:ae:5f:70: 6e:fe:17:ae:5c:83:01:df:92:fb:46:43:45:57:36: 43:b6:a0:dc:4b:d4:c6:e7:fa:82:82:33:a4:20:75: 44:60:3d:6f:7f:ff:8a:d4:f2:c0:ce:d1:9e:15:4e: 64:67:be:4f:63:a8:df:f9:38:bd:55:e6:cc:25:e7: d7:63:ed:f7:71:9f:f0:6a:94:a2:8d:6e:03:cc:4c: 37:1c:13:d1:76:1b:35:a4:9e:8f:99:9a:d8:49:ca: 68:fa:ec:e1:c9:ed:2e:bf:ec:b0:68:df:cd:c2:ce: 01:85:96:0d:e0:74:4a:56:1d:df:6c:29:56:88:68: e3:06:3e:6d:3e:91:3c:0e:d5:93:93:16:ca:12:ae: e9:2e:47:57:eb:1b:e1:6a:1f:c8:f1:fd:cd:21:31: 78:0c:86:c4:de:fb:6a:04:0d:2e:6b:1e:ab:8d:1e: d1:a3:ee:ad:00:98:01:72:0d:13:64:6f:30:39:a2: 90:e8:75:0e:ad:44:bf:f8:ee:94:00:8e:b6:e0:9e: 17:5e:c9:33:cc:69:b8:1a:48:34:0d:13:e3:c8:d7: a3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:74:80:A2:E9:A1:2A:46:93:2B:F5:90:B6:15:72:BA:F8:F2:84:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/079cc1e2-817f-4601-bbf9-167342dd67d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.185.4.0/22 Signature Algorithm: sha256WithRSAEncryption ab:2a:4e:d5:c2:35:e9:30:a3:9d:a0:a0:fe:92:82:7e:87:85: 87:0f:ce:46:f8:90:fe:81:76:65:19:48:d0:15:37:e1:e5:84: c9:7d:63:fd:46:02:d6:6d:79:8c:a2:b3:e5:66:79:f9:ba:b9: 5d:51:31:96:a3:34:bc:73:9c:db:f2:5e:b7:5d:64:dd:69:8c: ab:ee:22:73:83:49:9a:99:e1:57:22:7b:6a:5c:df:26:91:1f: b1:56:1e:d0:e7:9a:ce:b8:33:1f:11:b7:d6:7a:8f:49:16:66: 72:39:21:70:15:72:0d:dc:a5:7d:fb:77:57:d8:68:ee:66:ff: c8:cd:e8:95:c1:40:a2:c4:53:ff:2d:4f:c7:32:e3:37:e8:b9: fc:3f:ea:bb:91:ae:f2:14:09:41:6a:aa:15:f9:dc:9f:96:31: b7:79:e4:c1:71:c1:f2:70:06:27:7c:9c:d2:4c:5c:c2:1a:56: f8:4a:d7:20:c8:cc:88:fc:f0:26:42:c9:f8:5e:67:e9:a1:33: ec:d2:9d:36:e2:01:5e:39:6b:47:67:80:41:df:d5:bd:d0:92: e3:c2:ac:02:5a:f0:d0:78:c9:3b:94:42:61:6e:a0:a4:43:5b: 84:a1:4b:14:42:8d:2e:dd:10:b5:88:25:d0:ac:a5:12:e6:14: d0:d8:36:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWZ1l0xlOHP4RI1Tql1uP+cIafM0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTEzNWFhNDk4Yjg0NjM0NDFhOWRlMjkzMTkzMWZjYWIw NjIyNGM3MDhiZWJlNjAzZWEzOTY2MjRhMWY2ZjM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDnS9lvXbq4+EAcuIupHxYIci63ZiiS/UCSnfwECLbVhMH ADe6yy8h865fcG7+F65cgwHfkvtGQ0VXNkO2oNxL1Mbn+oKCM6QgdURgPW9//4rU 8sDO0Z4VTmRnvk9jqN/5OL1V5swl59dj7fdxn/BqlKKNbgPMTDccE9F2GzWkno+Z mthJymj67OHJ7S6/7LBo383CzgGFlg3gdEpWHd9sKVaIaOMGPm0+kTwO1ZOTFsoS rukuR1frG+FqH8jx/c0hMXgMhsTe+2oEDS5rHquNHtGj7q0AmAFyDRNkbzA5opDo dQ6tRL/47pQAjrbgnhdeyTPMabgaSDQNE+PI16NDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrnSAoumhKkaTK/WQthVyuvjyhJ0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3OWNjMWUyLTgxN2YtNDYwMS1iYmY5LTE2NzM0MmRkNjdkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKouQQwDQYJKoZIhvcNAQELBQADggEBAKsqTtXCNekwo52goP6Sgn6HhYcP zkb4kP6BdmUZSNAVN+HlhMl9Y/1GAtZteYyis+Vmefm6uV1RMZajNLxznNvyXrdd ZN1pjKvuInODSZqZ4Vcie2pc3yaRH7FWHtDnms64Mx8Rt9Z6j0kWZnI5IXAVcg3c pX37d1fYaO5m/8jN6JXBQKLEU/8tT8cy4zfoufw/6ruRrvIUCUFqqhX53J+WMbd5 5MFxwfJwBid8nNJMXMIaVvhK1yDIzIj88CZCyfheZ+mhM+zSnTbiAV45a0dngEHf 1b3QkuPCrAJa8NB4yTuUQmFuoKRDW4ShSxRCjS7dELWIJdCspRLmFNDYNqU= -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:16 2024 by rpki-client on console-ams.rpki-client.org