$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf06feb-5302-4d0b-b594-4d338c334d3f.roa File: 0cf06feb-5302-4d0b-b594-4d338c334d3f.roa (raw, json) Hash identifier: rCAUdk2A9iez+KkDxkwGFfImEhWqy4dNiUc6KVxTsh0= Subject key identifier: 79:88:8E:72:AB:9F:D9:4E:B9:24:C1:9E:49:00:EA:16:08:AC:1D:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 13D0E9F3BBF2EB04D1E42AA1791D206CC36467DA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf06feb-5302-4d0b-b594-4d338c334d3f.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 13.60.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:d0:e9:f3:bb:f2:eb:04:d1:e4:2a:a1:79:1d:20:6c:c3:64:67:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=00836cbfe30784b004e98e0b89a0aaef782676b2a1e610d821c74e4e6f34ce09, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:90:7c:31:3f:ed:9e:de:b4:49:e6:78:c9:c5: 1f:61:d7:a7:de:e8:0a:b2:dd:29:5d:45:b0:41:98: 5a:ff:5c:41:55:00:de:8a:e6:0d:3e:c0:1d:fe:15: 3a:cf:2b:25:2c:d3:b1:e6:87:bc:d0:aa:55:9c:d1: d9:ef:e4:83:b8:70:5e:84:5d:2b:55:60:a7:64:13: 05:95:9d:ed:28:16:bc:59:46:8d:12:56:3e:39:b1: 95:b5:c2:00:e2:1a:c7:a7:a9:92:cf:0a:7b:2d:8c: 16:21:fc:9d:e6:38:8d:7e:cb:72:0a:82:99:d9:21: c5:ce:90:7c:dc:99:5c:18:3f:ed:38:d5:03:09:3b: a3:9e:7a:d7:6c:6d:b3:34:50:10:8f:3b:a0:b4:96: 1b:74:74:bb:88:c3:30:22:59:15:70:50:ae:20:6e: 07:84:07:3a:b9:4d:d2:cb:a9:b2:60:21:8d:2a:0f: d0:89:8a:84:cb:9d:38:f6:dc:86:6f:7a:e3:8b:a0: 15:9e:f0:cf:47:d8:ea:28:10:ba:5c:b4:4a:c3:f3: 7f:b4:0a:00:1a:21:19:16:7b:a0:85:a4:70:70:e4: 76:83:85:93:d3:04:d6:b7:96:b4:d8:d0:1b:c9:09: f1:df:e3:df:ec:90:a2:07:f0:90:9a:53:28:ff:f6: c6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:88:8E:72:AB:9F:D9:4E:B9:24:C1:9E:49:00:EA:16:08:AC:1D:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf06feb-5302-4d0b-b594-4d338c334d3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.60.0.0/14 Signature Algorithm: sha256WithRSAEncryption bd:d3:a4:36:35:d0:d4:3a:d2:fc:a1:a2:6b:c1:d0:24:5c:bb: 9b:77:bf:5f:43:79:92:9b:c3:e5:6b:bb:f3:cd:e8:79:ba:79: c9:e5:b1:50:25:f1:76:bb:c2:7c:83:b0:45:49:16:13:90:a1: 3f:65:59:66:4f:8c:03:eb:85:c6:b7:ca:75:d0:4b:54:c3:d6: bd:2f:3a:9b:c4:99:d0:d2:51:1c:82:c7:77:4b:17:4c:52:52: e8:50:4d:34:8b:a8:9a:cb:83:b3:4a:02:88:8d:8f:a7:1d:bf: 3c:09:20:af:49:b5:0f:a3:c5:75:0a:bb:2f:4f:75:bf:26:69: 70:c4:da:15:e3:9c:86:bc:64:a8:45:78:37:0e:66:17:db:1b: 54:e8:5c:6f:3e:60:fb:4e:f2:13:a3:5e:cb:91:8e:e3:fe:fb: 63:64:b2:ad:17:f1:1a:02:3b:fd:cd:14:d0:aa:8f:ac:84:be: e7:46:5f:d7:ba:bb:b3:78:4b:a8:d3:f5:9e:f4:77:39:88:1b: ef:13:62:20:af:5d:9c:f1:96:6e:e8:e4:16:8a:b5:5a:5e:ba: 32:0b:17:bf:0f:0a:85:9c:b5:22:93:25:f9:25:4c:72:f7:cb: a2:f0:5e:29:4e:d6:97:3d:73:10:9a:12:29:d1:d0:47:32:9b: 16:d4:ff:d8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUE9Dp87vy6wTR5CqheR0gbMNkZ9owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDgzNmNiZmUzMDc4NGIwMDRlOThlMGI4OWEwYWFlZjc4 MjY3NmIyYTFlNjEwZDgyMWM3NGU0ZTZmMzRjZTA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChkHwxP+2e3rRJ5njJxR9h16fe6Aqy3SldRbBBmFr/XEFV AN6K5g0+wB3+FTrPKyUs07Hmh7zQqlWc0dnv5IO4cF6EXStVYKdkEwWVne0oFrxZ Ro0SVj45sZW1wgDiGsenqZLPCnstjBYh/J3mOI1+y3IKgpnZIcXOkHzcmVwYP+04 1QMJO6OeetdsbbM0UBCPO6C0lht0dLuIwzAiWRVwUK4gbgeEBzq5TdLLqbJgIY0q D9CJioTLnTj23IZveuOLoBWe8M9H2OooELpctErD83+0CgAaIRkWe6CFpHBw5HaD hZPTBNa3lrTY0BvJCfHf49/skKIH8JCaUyj/9sbnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeYiOcquf2U65JMGeSQDqFgisHbcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjZjA2ZmViLTUzMDItNGQwYi1iNTk0LTRkMzM4YzMzNGQzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwINPDANBgkqhkiG9w0BAQsFAAOCAQEAvdOkNjXQ1DrS/KGia8HQJFy7m3e/ X0N5kpvD5Wu7883oebp5yeWxUCXxdrvCfIOwRUkWE5ChP2VZZk+MA+uFxrfKddBL VMPWvS86m8SZ0NJRHILHd0sXTFJS6FBNNIuomsuDs0oCiI2Ppx2/PAkgr0m1D6PF dQq7L091vyZpcMTaFeOchrxkqEV4Nw5mF9sbVOhcbz5g+07yE6Ney5GO4/77Y2Sy rRfxGgI7/c0U0KqPrIS+50Zf17q7s3hLqNP1nvR3OYgb7xNiIK9dnPGWbujkFoq1 Wl66MgsXvw8KhZy1IpMl+SVMcvfLovBeKU7Wlz1zEJoSKdHQRzKbFtT/2A== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:17 2024 by rpki-client on console-ams.rpki-client.org