$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15633e1f-54bc-4c9a-8294-0c707f053f2a.roa File: 15633e1f-54bc-4c9a-8294-0c707f053f2a.roa (raw, json) Hash identifier: i66+wG295+j6vu0/S3STUuWDAZRM3K+ppg8o2ScCEK8= Subject key identifier: 72:F4:5A:A0:E2:A0:B9:9A:B9:A7:9B:41:DD:FA:F4:37:74:1D:59:85 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A76B4BF502ADE6BC8CCC65216C7CC430A78249A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15633e1f-54bc-4c9a-8294-0c707f053f2a.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:76:b4:bf:50:2a:de:6b:c8:cc:c6:52:16:c7:cc:43:0a:78:24:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=13db14e1741175302061d03f37c1d82e7fe14c03d2fb3a96872e1a6a65cf81e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ea:b9:45:ac:4a:05:c8:9d:b5:da:73:19:5e: 65:2e:fa:cf:10:48:f2:a8:25:c3:f5:db:a7:2a:47: 9a:7b:84:88:46:d2:0a:de:0c:e9:25:2e:cd:0b:eb: d2:4e:42:e1:51:b8:b1:df:74:78:25:75:28:56:ae: 10:48:02:b8:63:e6:b0:4d:2c:1a:12:fd:f5:f5:1e: af:5b:39:51:a5:43:bd:7b:22:83:02:10:e8:72:77: 99:5e:b7:bf:cc:f3:64:a4:cc:f8:60:ce:a7:22:91: f3:32:72:6e:c1:11:a6:c2:0f:e7:85:38:92:73:fb: 1e:85:66:e9:60:93:32:cb:c6:2c:4b:20:5f:e4:c1: 04:ec:1e:ad:33:46:7e:42:11:85:04:d3:21:c9:5d: 37:71:b2:4a:f3:52:5b:01:90:6c:07:3e:3c:52:03: 7c:43:24:f0:b1:67:b2:f6:d8:ba:97:5d:76:11:b9: 6a:bd:48:d7:78:d9:bd:21:f2:3f:26:d0:d6:a2:e7: 66:08:de:1e:10:f0:56:7b:27:56:68:69:61:22:b8: 10:55:63:41:4c:7c:1d:98:d3:e2:90:1c:2c:81:ac: 24:5e:a9:c0:88:e6:9b:89:6f:48:8d:00:2b:d8:86: 85:43:69:41:02:9d:02:e0:7e:c4:7a:f9:60:40:29: 9c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F4:5A:A0:E2:A0:B9:9A:B9:A7:9B:41:DD:FA:F4:37:74:1D:59:85 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/15633e1f-54bc-4c9a-8294-0c707f053f2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.190.0/24 Signature Algorithm: sha256WithRSAEncryption 83:f9:f5:5f:16:10:cb:cc:79:ea:98:8d:1b:8c:e9:e5:45:11: 5e:7e:20:cb:b3:cd:02:ef:06:22:a1:d5:1a:36:e2:60:31:28: e0:7c:2e:8c:e2:a5:9a:ce:7f:98:4e:27:9e:76:39:d9:91:50: de:b1:93:dd:ef:52:09:31:92:eb:80:77:96:d7:0f:25:73:29: a2:28:bc:53:0c:5a:d2:67:50:66:4a:b7:0a:32:c0:d5:6c:ec: 06:2c:3d:e2:5b:25:bb:8c:fb:c0:06:0a:11:d7:d6:08:38:7a: 94:10:fe:5d:e6:a1:d9:65:81:5d:39:0f:97:9a:ed:11:f5:56: 94:c2:4b:ae:bc:e3:f3:f3:fd:f2:92:18:bb:c2:5d:1f:00:f1: 7d:5c:eb:8a:ec:e7:5e:39:53:d2:ff:d8:82:0e:3e:50:14:42: a8:dc:56:74:a8:8f:be:5e:98:e0:ae:e4:ae:f8:8f:29:b8:eb: c7:a8:34:12:42:d9:32:07:47:eb:7e:b3:e0:df:ec:8b:ce:58: fa:4d:0b:fe:9b:11:e3:ef:2b:f2:3c:97:d3:d9:e5:0a:a1:d9: 43:b2:b4:50:b7:75:5c:9a:f3:eb:6e:79:f7:f7:c2:9b:79:16: a8:73:2e:d1:7a:fb:0f:67:9c:c8:d4:31:79:2b:8f:9c:80:28: 75:9c:09:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCna0v1Aq3mvIzMZSFsfMQwp4JJowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2RiMTRlMTc0MTE3NTMwMjA2MWQwM2YzN2MxZDgyZTdm ZTE0YzAzZDJmYjNhOTY4NzJlMWE2YTY1Y2Y4MWUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDl6rlFrEoFyJ212nMZXmUu+s8QSPKoJcP126cqR5p7hIhG 0greDOklLs0L69JOQuFRuLHfdHgldShWrhBIArhj5rBNLBoS/fX1Hq9bOVGlQ717 IoMCEOhyd5let7/M82SkzPhgzqcikfMycm7BEabCD+eFOJJz+x6FZulgkzLLxixL IF/kwQTsHq0zRn5CEYUE0yHJXTdxskrzUlsBkGwHPjxSA3xDJPCxZ7L22LqXXXYR uWq9SNd42b0h8j8m0Nai52YI3h4Q8FZ7J1ZoaWEiuBBVY0FMfB2Y0+KQHCyBrCRe qcCI5puJb0iNACvYhoVDaUECnQLgfsR6+WBAKZzlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcvRaoOKguZq5p5tB3fr0N3QdWYUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1NjMzZTFmLTU0YmMtNGM5YS04Mjk0LTBjNzA3ZjA1M2YyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTb4wDQYJKoZIhvcNAQELBQADggEBAIP59V8WEMvMeeqYjRuM6eVFEV5+ IMuzzQLvBiKh1Ro24mAxKOB8LozipZrOf5hOJ552OdmRUN6xk93vUgkxkuuAd5bX DyVzKaIovFMMWtJnUGZKtwoywNVs7AYsPeJbJbuM+8AGChHX1gg4epQQ/l3modll gV05D5ea7RH1VpTCS6684/Pz/fKSGLvCXR8A8X1c64rs5145U9L/2IIOPlAUQqjc VnSoj75emOCu5K74jym468eoNBJC2TIHR+t+s+Df7IvOWPpNC/6bEePvK/I8l9PZ 5Qqh2UOytFC3dVya8+tueff3wpt5FqhzLtF6+w9nnMjUMXkrj5yAKHWcCas= -----END CERTIFICATE-----Generated at Sun Nov 24 03:16:47 2024 by rpki-client on console-ams.rpki-client.org