$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1028ee03-83a3-45c2-92fc-4c21a13270fc.roa File: 1028ee03-83a3-45c2-92fc-4c21a13270fc.roa (raw, json) Hash identifier: fexIxQ1K5go2OZQb+P0EQJl2VCfQcpo+DpgBCKLhQkU= Subject key identifier: 71:00:CB:DB:92:DF:73:5A:CA:02:B5:DF:5A:40:64:34:E3:4E:E0:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B8AA7A60F89D9C22956293E26CAAF8EFCC7EB12 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1028ee03-83a3-45c2-92fc-4c21a13270fc.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 56.234.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:8a:a7:a6:0f:89:d9:c2:29:56:29:3e:26:ca:af:8e:fc:c7:eb:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=e9235fe1ee051dcc1a7ca598daea30f8ee83abea28430867279e39c763153008, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:03:7a:92:0d:60:81:6f:38:8a:30:d7:a9:eb: 57:83:93:50:e6:db:be:f9:1f:d1:68:9f:df:1a:be: 86:1a:44:7d:91:4e:8e:50:e4:e6:3d:92:1f:f6:89: bb:83:ca:1e:11:35:3d:38:5b:84:a4:0f:1d:5f:0a: f4:fd:38:ae:36:7e:60:64:8a:4d:77:48:d9:48:f5: ea:66:10:4c:a6:22:91:8e:7b:bc:9f:67:b3:9d:2e: 7f:97:b3:43:bb:3c:31:a7:85:c1:98:c8:dd:64:9e: 9e:44:44:fb:b9:48:62:31:e7:cf:a4:8a:29:bb:40: e9:59:8a:b0:49:82:d9:09:72:6c:9b:a2:15:06:a1: 70:e2:ca:19:3f:00:2b:b3:0b:ab:3f:04:94:ae:eb: 43:44:b9:ce:fc:9d:6e:7b:b1:6e:9c:ed:f6:48:23: 07:95:12:28:20:a2:84:5b:3c:9d:a8:3c:e3:7f:0b: ac:28:d3:e2:c8:5b:7b:dd:62:a8:69:43:dd:0d:1b: fc:48:c8:bd:40:09:6c:c3:ff:d5:8a:da:55:ec:3e: c5:3b:c7:0f:2d:1a:cf:9c:15:d8:e8:f6:67:16:f7: 25:11:b7:8d:36:3b:f5:2b:40:99:72:b3:af:02:4d: ec:a8:c0:9a:5e:b8:f8:f4:e8:26:52:8f:f8:e1:b6: 70:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:00:CB:DB:92:DF:73:5A:CA:02:B5:DF:5A:40:64:34:E3:4E:E0:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1028ee03-83a3-45c2-92fc-4c21a13270fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.234.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9b:20:21:f7:49:10:09:f3:59:48:f9:86:02:b1:fc:f4:cf:9a: a9:d3:88:26:be:d9:41:86:e7:2a:b8:49:5f:ce:fd:49:d1:04: 59:89:06:95:a8:eb:4c:4a:07:7f:25:f0:be:52:07:8d:1c:e4: f8:45:88:12:2e:1e:bd:7f:e1:41:07:38:e5:9d:53:c6:af:d8: 8a:27:7b:96:d3:85:8a:e5:fe:83:a4:02:36:b2:fe:ff:87:0d: d1:8a:66:9e:b4:f2:f4:ed:0b:7e:9b:3d:8f:f7:28:21:90:26: f3:66:4e:67:7d:ab:ca:4b:bf:de:76:19:a0:e6:f5:0e:dc:d0: fa:6a:93:b3:3d:bb:99:e9:10:d2:0f:3a:4a:63:b7:20:b7:73: 3b:7a:59:2a:41:d8:84:3a:46:f0:92:a1:97:11:c1:27:a1:8c: 1c:b6:0e:2c:5d:54:1a:d4:84:b4:1e:3e:7f:71:f6:14:40:b7: 52:47:80:7a:71:cc:58:c5:62:4c:0d:7c:b0:a8:79:1c:a7:a0: c7:78:7d:fc:79:8a:69:1f:08:fe:1d:57:08:d9:f3:b2:7b:6b: 45:d4:ea:3c:80:a4:e5:a3:e0:4e:68:1d:34:a2:b5:aa:ce:b5: 64:4d:8e:5d:6d:96:a6:52:77:98:51:f8:f5:14:c7:aa:92:45: 75:cc:a6:84 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUC4qnpg+J2cIpVik+JsqvjvzH6xIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTIzNWZlMWVlMDUxZGNjMWE3Y2E1OThkYWVhMzBmOGVl ODNhYmVhMjg0MzA4NjcyNzllMzljNzYzMTUzMDA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOA3qSDWCBbziKMNep61eDk1Dm2775H9Fon98avoYaRH2R To5Q5OY9kh/2ibuDyh4RNT04W4SkDx1fCvT9OK42fmBkik13SNlI9epmEEymIpGO e7yfZ7OdLn+Xs0O7PDGnhcGYyN1knp5ERPu5SGIx58+kiim7QOlZirBJgtkJcmyb ohUGoXDiyhk/ACuzC6s/BJSu60NEuc78nW57sW6c7fZIIweVEiggooRbPJ2oPON/ C6wo0+LIW3vdYqhpQ90NG/xIyL1ACWzD/9WK2lXsPsU7xw8tGs+cFdjo9mcW9yUR t402O/UrQJlys68CTeyowJpeuPj06CZSj/jhtnC7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcQDL25Lfc1rKArXfWkBkNONO4GIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwMjhlZTAzLTgzYTMtNDVjMi05MmZjLTRjMjFhMTMyNzBmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA46jANBgkqhkiG9w0BAQsFAAOCAQEAmyAh90kQCfNZSPmGArH89M+aqdOI Jr7ZQYbnKrhJX879SdEEWYkGlajrTEoHfyXwvlIHjRzk+EWIEi4evX/hQQc45Z1T xq/Yiid7ltOFiuX+g6QCNrL+/4cN0YpmnrTy9O0Lfps9j/coIZAm82ZOZ32ryku/ 3nYZoOb1DtzQ+mqTsz27mekQ0g86SmO3ILdzO3pZKkHYhDpG8JKhlxHBJ6GMHLYO LF1UGtSEtB4+f3H2FEC3UkeAenHMWMViTA18sKh5HKegx3h9/HmKaR8I/h1XCNnz sntrRdTqPICk5aPgTmgdNKK1qs61ZE2OXW2WplJ3mFH49RTHqpJFdcymhA== -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:45 2024 by rpki-client on console-ams.rpki-client.org