$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d74bba8-1f15-41f0-8cac-9ac9d104ac5c.roa File: 0d74bba8-1f15-41f0-8cac-9ac9d104ac5c.roa (raw, json) Hash identifier: /gX/HadpxL93ghrU4mhWaY5VDKygZLxFYk2c82cXgZ0= Subject key identifier: 23:69:D8:D1:B3:22:00:05:27:05:8E:6F:DA:EB:B3:9A:CE:C2:E3:4D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FF66A08537488290D82544450AE7246CA9313D5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d74bba8-1f15-41f0-8cac-9ac9d104ac5c.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.214.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:f6:6a:08:53:74:88:29:0d:82:54:44:50:ae:72:46:ca:93:13:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=71c4c38fcfd36c8b4d1530b8cbdc565dc9c9f19480924e5bfa230cb9cdb34f5a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:24:16:cc:36:39:27:e5:7e:b7:ba:88:b0:09: d5:9c:9e:7d:9c:29:ff:9b:ef:88:b5:f7:c9:1f:c4: 52:6a:28:a5:22:a4:a2:b1:78:c5:9c:85:b3:83:e9: dc:0c:42:a4:7c:50:1d:ef:e6:ba:d7:4a:41:53:ba: 1d:db:b2:f7:6c:57:44:3e:bc:43:9d:71:98:80:e8: 8a:64:58:cf:4a:ab:e3:61:a7:31:0f:8e:d3:0f:84: 20:89:76:42:de:f6:e1:70:1d:b7:db:42:99:5c:49: ec:5c:6d:51:3e:df:5d:ad:75:8a:cc:4a:f7:eb:64: fe:2b:c4:f4:a6:88:41:ce:cd:7c:f5:9c:d6:24:cd: 2d:58:20:1e:85:83:ab:f7:da:af:cd:3f:6f:b3:ee: f5:de:db:1d:f3:15:5d:5d:c2:b2:40:fa:22:78:9e: 4d:a4:60:94:fd:dd:39:82:0e:7f:2d:06:28:00:be: 99:6b:6b:86:65:a2:cf:37:24:14:12:f1:c8:9d:c6: d6:0b:61:e5:59:a4:ad:1a:5c:20:d7:cf:af:a7:4b: 7d:ed:59:61:27:33:b9:82:74:41:fa:ec:52:41:ab: 42:47:d0:5d:05:d1:d5:af:d4:c3:cb:e2:5b:ed:c5: 75:ff:56:ab:7a:c2:67:ec:a5:94:c7:ff:8e:02:9b: 44:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:69:D8:D1:B3:22:00:05:27:05:8E:6F:DA:EB:B3:9A:CE:C2:E3:4D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d74bba8-1f15-41f0-8cac-9ac9d104ac5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.214.0.0/16 Signature Algorithm: sha256WithRSAEncryption 50:f4:96:22:c0:ec:ea:e2:3c:0a:72:de:f8:ba:fa:3f:92:8a: 44:8c:4a:84:47:21:5a:e7:07:59:18:ca:ba:15:a4:d9:27:e2: 68:ed:8b:4c:ca:e8:a6:a7:55:92:1b:d8:f5:ce:80:02:14:7e: 0d:c1:d8:50:db:80:5f:c5:fa:14:e4:a7:1e:f6:90:69:dc:75: b1:26:f5:ad:8e:ba:82:97:51:ec:99:22:ad:f5:aa:23:51:4d: 5e:82:d3:86:fe:a4:a2:e8:c8:61:e9:55:d2:8f:b0:90:cd:9f: e4:05:ae:98:f4:78:5b:65:80:2b:c6:a0:bd:c8:2c:89:2c:df: a7:21:12:01:d2:fc:70:cb:d6:79:fd:2c:70:ab:ff:76:04:2d: b8:ae:6e:61:36:7d:d3:31:ea:f3:0b:53:c1:0a:25:46:7a:e3: fd:54:aa:22:d3:10:c9:df:c3:72:2c:f4:cc:49:cf:54:3a:10: 5c:a8:1f:70:c4:d7:38:56:10:9a:04:ce:cd:2d:a7:4a:dd:86: b4:bf:57:72:ff:37:70:11:10:75:e3:a7:6f:7d:4a:c0:13:e2: b5:27:29:fb:34:a5:bf:9b:22:fb:21:b2:92:bc:08:76:d0:56: bd:c2:4d:9c:95:cd:58:68:b1:90:39:85:d4:1e:08:40:af:ef: 9c:6f:6d:d8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUD/ZqCFN0iCkNglREUK5yRsqTE9UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWM0YzM4ZmNmZDM2YzhiNGQxNTMwYjhjYmRjNTY1ZGM5 YzlmMTk0ODA5MjRlNWJmYTIzMGNiOWNkYjM0ZjVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJJBbMNjkn5X63uoiwCdWcnn2cKf+b74i198kfxFJqKKUi pKKxeMWchbOD6dwMQqR8UB3v5rrXSkFTuh3bsvdsV0Q+vEOdcZiA6IpkWM9Kq+Nh pzEPjtMPhCCJdkLe9uFwHbfbQplcSexcbVE+312tdYrMSvfrZP4rxPSmiEHOzXz1 nNYkzS1YIB6Fg6v32q/NP2+z7vXe2x3zFV1dwrJA+iJ4nk2kYJT93TmCDn8tBigA vplra4Zlos83JBQS8cidxtYLYeVZpK0aXCDXz6+nS33tWWEnM7mCdEH67FJBq0JH 0F0F0dWv1MPL4lvtxXX/Vqt6wmfspZTH/44Cm0QHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUI2nY0bMiAAUnBY5v2uuzms7C400wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBkNzRiYmE4LTFmMTUtNDFmMC04Y2FjLTlhYzlkMTA0YWM1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQ1jANBgkqhkiG9w0BAQsFAAOCAQEAUPSWIsDs6uI8CnLe+Lr6P5KKRIxK hEchWucHWRjKuhWk2SfiaO2LTMropqdVkhvY9c6AAhR+DcHYUNuAX8X6FOSnHvaQ adx1sSb1rY66gpdR7JkirfWqI1FNXoLThv6koujIYelV0o+wkM2f5AWumPR4W2WA K8agvcgsiSzfpyESAdL8cMvWef0scKv/dgQtuK5uYTZ90zHq8wtTwQolRnrj/VSq ItMQyd/Dciz0zEnPVDoQXKgfcMTXOFYQmgTOzS2nSt2GtL9Xcv83cBEQdeOnb31K wBPitScp+zSlv5si+yGykrwIdtBWvcJNnJXNWGixkDmF1B4IQK/vnG9t2A== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:41 2024 by rpki-client on console-fra.rpki-client.org