$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1708c9ff-3127-454f-89db-7342094cdf97.roa File: 1708c9ff-3127-454f-89db-7342094cdf97.roa (raw, json) Hash identifier: q67dzKPrzhZAw28gcByDn8CxxU5l0uDrt+Eu8Vh9GPA= Subject key identifier: 30:41:C0:EA:4E:89:7F:F9:41:8C:F2:EF:0D:84:5D:8D:5B:84:1B:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08C04CC27A844A6DCE4D9A56B0ED05FD80583F53 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1708c9ff-3127-454f-89db-7342094cdf97.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:c0:4c:c2:7a:84:4a:6d:ce:4d:9a:56:b0:ed:05:fd:80:58:3f:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=bdf9b194d3a624ce6d8b226794eb41a40e2638851270768bf79d4689b3445d45, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:02:79:58:ba:32:ea:5e:31:4d:2a:54:e4:b0: 82:95:46:91:ee:dd:82:91:7b:8f:1f:df:fb:bf:a9: 85:5c:54:44:6d:37:ad:58:11:91:40:5f:68:40:20: 1d:48:bc:2f:bb:ea:ee:fe:10:4c:83:80:29:c6:8e: 70:bf:c6:97:a7:ef:6f:56:4e:13:3d:06:84:47:fc: c2:71:c2:cb:c6:f5:20:4f:cc:6e:90:c2:fd:40:0b: 8b:7d:5a:41:08:37:60:96:b8:31:6d:75:03:e5:96: 52:66:76:67:03:c3:94:0d:44:39:d7:07:d2:f5:6d: fe:8f:2d:bd:67:c4:d7:91:2e:44:31:61:7f:98:8f: 3f:11:b1:d2:90:ae:60:ae:48:ca:cf:af:92:5c:fe: 4b:5e:95:ad:8a:d7:9e:47:89:e8:59:02:49:c1:e2: bb:ba:25:f0:03:7d:63:6a:25:52:b5:27:11:36:64: 0a:26:66:57:a1:7d:f6:f9:93:82:aa:ab:30:3f:ef: 51:08:a9:c4:2c:4b:50:94:60:7b:a8:75:67:5b:d8: 63:a3:c9:76:4d:55:76:ab:54:8d:db:7a:65:3d:e5: ad:d3:5b:62:43:22:01:eb:e2:ea:c2:33:9d:67:dc: 5c:0c:ed:42:53:4d:21:8b:cb:62:ea:67:53:c7:40: d7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:41:C0:EA:4E:89:7F:F9:41:8C:F2:EF:0D:84:5D:8D:5B:84:1B:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1708c9ff-3127-454f-89db-7342094cdf97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.133.0/24 Signature Algorithm: sha256WithRSAEncryption 27:00:11:f2:81:6e:4b:91:d8:5a:97:02:82:22:46:36:4c:2b: c5:9c:2e:d3:f9:49:71:15:89:dc:41:2b:7c:ca:ea:33:1d:df: ba:b3:7d:f8:2b:ab:8c:ed:4f:84:4f:ce:e0:71:4e:f7:da:a0: c8:a5:eb:09:23:a6:82:3a:13:bf:88:f7:4c:08:2a:9c:fa:eb: 85:af:2b:e2:bc:14:fd:93:6b:22:75:af:1a:fe:67:68:b9:a5: 8b:27:35:20:e8:f0:94:07:f8:42:14:cd:52:49:6a:68:49:13: 0a:d0:55:90:47:6d:80:47:4e:81:f1:2e:44:df:ea:18:84:8e: ec:96:dd:47:2c:38:e8:99:ec:9b:45:1d:3b:b5:d2:0b:7a:8d: 22:3e:8d:84:79:7c:29:79:4e:de:10:34:4c:66:38:cf:0f:57: bb:a5:6b:86:de:86:81:18:de:71:b8:de:fa:15:af:06:30:dd: b2:73:d5:83:b9:da:c9:79:5c:8a:91:1c:ad:36:ce:58:e2:9f: 16:8c:d4:2b:fd:53:19:ca:6c:fb:b6:ef:51:40:c8:7d:16:72: 04:46:eb:c3:ad:56:9e:64:bd:88:13:d6:89:f9:25:6d:ef:a2: 72:59:49:12:4c:5d:f4:4f:1a:73:d4:f1:ae:b6:41:a8:ce:e7: 30:d7:88:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCMBMwnqESm3OTZpWsO0F/YBYP1MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZGY5YjE5NGQzYTYyNGNlNmQ4YjIyNjc5NGViNDFhNDBl MjYzODg1MTI3MDc2OGJmNzlkNDY4OWIzNDQ1ZDQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpAnlYujLqXjFNKlTksIKVRpHu3YKRe48f3/u/qYVcVERt N61YEZFAX2hAIB1IvC+76u7+EEyDgCnGjnC/xpen729WThM9BoRH/MJxwsvG9SBP zG6Qwv1AC4t9WkEIN2CWuDFtdQPlllJmdmcDw5QNRDnXB9L1bf6PLb1nxNeRLkQx YX+Yjz8RsdKQrmCuSMrPr5Jc/ktela2K155HiehZAknB4ru6JfADfWNqJVK1JxE2 ZAomZlehffb5k4KqqzA/71EIqcQsS1CUYHuodWdb2GOjyXZNVXarVI3bemU95a3T W2JDIgHr4urCM51n3FwM7UJTTSGLy2LqZ1PHQNd5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMEHA6k6Jf/lBjPLvDYRdjVuEGxIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3MDhjOWZmLTMxMjctNDU0Zi04OWRiLTczNDIwOTRjZGY5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYUwDQYJKoZIhvcNAQELBQADggEBACcAEfKBbkuR2FqXAoIiRjZMK8Wc LtP5SXEVidxBK3zK6jMd37qzffgrq4ztT4RPzuBxTvfaoMil6wkjpoI6E7+I90wI Kpz664WvK+K8FP2TayJ1rxr+Z2i5pYsnNSDo8JQH+EIUzVJJamhJEwrQVZBHbYBH ToHxLkTf6hiEjuyW3UcsOOiZ7JtFHTu10gt6jSI+jYR5fCl5Tt4QNExmOM8PV7ul a4behoEY3nG43voVrwYw3bJz1YO52sl5XIqRHK02zljinxaM1Cv9UxnKbPu271FA yH0WcgRG68OtVp5kvYgT1on5JW3vonJZSRJMXfRPGnPU8a62QajO5zDXiMw= -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:47 2024 by rpki-client on console-ams.rpki-client.org