$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a0ca091-b3b5-4e0a-97dc-520e58a23e51.roa File: 0a0ca091-b3b5-4e0a-97dc-520e58a23e51.roa (raw, json) Hash identifier: pQNV2nKA3diOK1vFIJkgz+AJDtcNFJuYfTPs0Rc+wro= Subject key identifier: BA:06:24:C4:69:6D:1C:75:83:69:FB:98:C3:05:AB:67:7C:8D:67:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 22783B09863D871BE9B6857142A9E8D9F1215EFF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a0ca091-b3b5-4e0a-97dc-520e58a23e51.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.87.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:78:3b:09:86:3d:87:1b:e9:b6:85:71:42:a9:e8:d9:f1:21:5e:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=ddb1e51e768e6acb99cc4ae23f122af362944ec5bafd151afadaed61a7a4df25, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4e:2b:99:35:53:45:83:46:34:59:7d:ef:92: 19:34:18:bc:5a:ed:3c:68:e6:d2:cc:2e:ae:a8:ab: 8a:1b:a8:16:76:65:51:e0:54:3d:1a:95:d8:c7:e8: 44:c0:19:d4:3a:95:92:99:10:0c:30:87:14:b4:6d: 4f:3d:36:52:eb:33:05:2a:71:d5:62:f9:4c:a0:5f: 87:6c:bb:24:fb:15:eb:72:dd:9a:f9:85:80:22:b4: 2f:1f:60:64:d8:6b:7f:f8:88:47:e7:a7:d2:62:41: bb:f4:f6:7c:2a:f3:10:ca:13:56:3c:80:ba:52:ed: 2a:80:d7:c3:37:51:44:70:fd:21:4a:1d:e7:6a:d6: ba:c7:62:64:cc:a5:15:06:19:75:80:6e:16:07:1f: 73:45:ba:52:e9:e5:82:f7:4f:72:79:09:44:74:53: 93:93:a9:1c:c0:b7:bd:b2:1c:44:43:c3:c5:3a:d2: a3:f4:98:2e:e4:56:6b:62:5b:8b:08:79:2a:d4:47: b0:ea:1d:85:71:81:fb:47:dc:ed:e5:5d:1e:29:5a: bb:40:4a:dc:22:8a:d3:f5:74:6b:e3:d0:75:14:cb: e8:48:ca:4a:7e:ba:85:ca:3e:0f:79:4e:95:5e:99: e8:b3:a7:d5:09:a1:c9:5c:ab:84:1a:92:0a:ed:88: 78:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:06:24:C4:69:6D:1C:75:83:69:FB:98:C3:05:AB:67:7C:8D:67:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a0ca091-b3b5-4e0a-97dc-520e58a23e51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.87.4.0/22 Signature Algorithm: sha256WithRSAEncryption a3:09:b3:32:90:a3:05:4d:a2:c1:0d:dd:29:05:10:5a:ea:9c: 06:89:e9:04:ef:4c:62:83:c7:2e:70:61:b1:ec:a5:04:29:fe: 16:05:58:85:c7:d1:e2:16:82:8c:0c:9e:bb:c7:b8:2b:d7:8c: e7:df:e6:64:85:94:28:0b:0c:d6:98:8d:b5:7b:f6:9c:17:43: b1:a8:7b:21:2b:30:95:81:2e:f5:83:7b:b7:3f:56:1f:04:38: ac:18:16:a1:2e:9c:36:31:c0:b3:e6:63:1b:5e:20:f2:43:24: 3b:c2:5a:c6:83:f4:79:76:bb:19:55:79:5e:66:81:1a:38:b1: a8:da:17:57:05:43:5e:2b:8c:09:f1:6e:56:b6:a1:86:61:b5: ed:cd:65:59:43:63:41:96:40:b9:0a:2d:9e:63:55:5e:e1:1c: 6f:0b:0b:16:62:35:ca:b8:f2:37:1c:f0:0d:5b:b1:db:14:7c: ce:91:aa:fb:ea:53:41:66:d7:c7:ee:64:e8:08:7d:9a:6c:c2: 28:21:cf:50:ad:00:cc:4f:10:cb:64:ea:53:99:db:97:fe:be: 22:f1:c7:1b:f4:51:18:1d:1b:ab:2f:a4:c2:cc:7a:92:ba:10: 55:98:dc:6c:e5:7b:20:f4:c0:19:bc:ff:77:f6:cd:e9:a3:a4: 69:ca:41:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIng7CYY9hxvptoVxQqno2fEhXv8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGIxZTUxZTc2OGU2YWNiOTljYzRhZTIzZjEyMmFmMzYy OTQ0ZWM1YmFmZDE1MWFmYWRhZWQ2MWE3YTRkZjI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWTiuZNVNFg0Y0WX3vkhk0GLxa7Txo5tLMLq6oq4obqBZ2 ZVHgVD0aldjH6ETAGdQ6lZKZEAwwhxS0bU89NlLrMwUqcdVi+UygX4dsuyT7Fety 3Zr5hYAitC8fYGTYa3/4iEfnp9JiQbv09nwq8xDKE1Y8gLpS7SqA18M3UURw/SFK Hedq1rrHYmTMpRUGGXWAbhYHH3NFulLp5YL3T3J5CUR0U5OTqRzAt72yHERDw8U6 0qP0mC7kVmtiW4sIeSrUR7DqHYVxgftH3O3lXR4pWrtAStwiitP1dGvj0HUUy+hI ykp+uoXKPg95TpVemeizp9UJoclcq4QakgrtiHgbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUugYkxGltHHWDafuYwwWrZ3yNZ/8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhMGNhMDkxLWIzYjUtNGUwYS05N2RjLTUyMGU1OGEyM2U1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjVwQwDQYJKoZIhvcNAQELBQADggEBAKMJszKQowVNosEN3SkFEFrqnAaJ 6QTvTGKDxy5wYbHspQQp/hYFWIXH0eIWgowMnrvHuCvXjOff5mSFlCgLDNaYjbV7 9pwXQ7GoeyErMJWBLvWDe7c/Vh8EOKwYFqEunDYxwLPmYxteIPJDJDvCWsaD9Hl2 uxlVeV5mgRo4sajaF1cFQ14rjAnxbla2oYZhte3NZVlDY0GWQLkKLZ5jVV7hHG8L CxZiNcq48jcc8A1bsdsUfM6RqvvqU0Fm18fuZOgIfZpswighz1CtAMxPEMtk6lOZ 25f+viLxxxv0URgdG6svpMLMepK6EFWY3GzleyD0wBm8/3f2zemjpGnKQWw= -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:43 2024 by rpki-client on console-ams.rpki-client.org