$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18be7a76-724b-4e6a-9d5a-ba51fd885a5e.roa File: 18be7a76-724b-4e6a-9d5a-ba51fd885a5e.roa (raw, json) Hash identifier: YBO61yU6a0oBRtZWjn/kgBAZMALzbqVPhf8KFQ3RIgQ= Subject key identifier: 10:FF:04:4A:40:A4:A4:92:4C:11:F1:9A:60:4F:95:E9:F0:15:50:2D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BEA653A0BD9EA381D264013B429CA52032F45D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18be7a76-724b-4e6a-9d5a-ba51fd885a5e.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:ea:65:3a:0b:d9:ea:38:1d:26:40:13:b4:29:ca:52:03:2f:45:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=d045d33c26cefbb9d6c249a15162f047b9b2e26ac82462ec76f80ffd12068703, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:67:26:1f:76:bc:6d:b3:1c:34:a6:97:72:bb: 37:fa:3d:23:ef:11:60:98:29:cb:07:3f:66:7a:24: 5d:de:d4:33:6e:d5:46:76:bd:7f:e1:95:1b:31:43: 7e:96:c0:b4:41:c4:1d:49:59:b7:1b:d3:ae:0c:ae: ff:e8:8d:59:ef:94:1d:0b:cc:56:80:2a:ef:85:5d: d9:bf:7e:17:36:de:d8:cb:4c:d1:f7:3d:e0:e9:17: f6:4f:2f:1d:12:f6:90:8e:f7:d2:a8:94:3c:0c:cf: a9:8f:38:99:9b:d1:ef:a8:c1:9f:c0:4f:15:7f:82: d4:fb:5f:a7:0a:9d:54:12:d9:ad:7b:22:66:b2:d7: 3c:ef:1b:3e:2d:bb:f6:e2:9e:8f:84:0a:a8:c9:9e: 95:69:f1:84:16:3a:64:1e:b6:95:51:c1:b2:ad:9e: 14:c1:ed:bd:0b:e8:4a:e2:ef:40:d7:09:96:05:c9: 83:ec:96:74:93:04:13:0c:31:a8:b6:6d:12:f2:40: aa:ed:e9:5c:81:96:30:26:3b:37:85:78:3a:b1:7b: c8:f8:ec:95:dd:9f:00:63:6d:06:54:11:72:e0:44: 1b:d5:9b:14:36:80:77:fd:ff:2a:ee:41:2d:ec:8a: 8e:a1:12:f3:af:80:78:f2:ed:7b:2d:05:0e:4e:44: ab:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:FF:04:4A:40:A4:A4:92:4C:11:F1:9A:60:4F:95:E9:F0:15:50:2D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18be7a76-724b-4e6a-9d5a-ba51fd885a5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.32.0/20 Signature Algorithm: sha256WithRSAEncryption d2:a0:a6:48:5f:86:04:42:2e:78:50:01:ff:13:70:cd:8f:a1: b7:6c:5b:a5:8a:a1:ea:57:d5:e1:a6:a1:c2:e4:7c:1a:0c:a1: 48:07:8c:1a:48:88:83:ce:a8:39:84:ec:5e:17:56:a5:4c:15: ee:dd:b8:e2:73:18:a5:2b:6d:1a:f6:95:7b:be:66:9e:74:40: 5b:5b:e3:54:5a:26:8f:05:16:37:06:0f:83:29:43:ab:c9:09: cb:8a:a8:6b:8a:4d:6d:78:0b:1c:1a:fa:99:b9:da:fe:8c:c4: 4e:b0:fb:15:8b:b0:0e:75:f6:bf:55:cb:b1:f7:55:a4:0b:d2: ff:25:57:5a:b5:b0:c4:29:a8:1d:19:f0:b6:09:13:cc:54:cc: a4:c4:a9:f5:9e:69:90:35:3f:47:be:67:1b:ee:37:1a:4a:6d: ea:90:6d:b8:78:e6:e4:b6:2f:76:d2:e2:15:30:56:98:29:ab: 2d:76:bf:a1:1c:d6:9c:2d:81:b1:75:75:d4:8c:9e:31:8b:9c: b9:99:64:c8:b7:b2:6e:71:b7:27:ec:26:08:ea:51:03:d3:42: d9:63:b3:9e:c8:78:f8:57:7e:bf:bf:4a:a3:40:c4:f6:b3:a2: 1e:2c:67:2e:6d:d7:44:d1:fe:c3:d4:4a:41:48:83:42:0f:a0: ea:07:65:6f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO+plOgvZ6jgdJkATtCnKUgMvRdAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE4MDAwMDAwWhcNMjQxMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDQ1ZDMzYzI2Y2VmYmI5ZDZjMjQ5YTE1MTYyZjA0N2I5 YjJlMjZhYzgyNDYyZWM3NmY4MGZmZDEyMDY4NzAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIZyYfdrxtsxw0ppdyuzf6PSPvEWCYKcsHP2Z6JF3e1DNu 1UZ2vX/hlRsxQ36WwLRBxB1JWbcb064Mrv/ojVnvlB0LzFaAKu+FXdm/fhc23tjL TNH3PeDpF/ZPLx0S9pCO99KolDwMz6mPOJmb0e+owZ/ATxV/gtT7X6cKnVQS2a17 Imay1zzvGz4tu/bino+ECqjJnpVp8YQWOmQetpVRwbKtnhTB7b0L6Eri70DXCZYF yYPslnSTBBMMMai2bRLyQKrt6VyBljAmOzeFeDqxe8j47JXdnwBjbQZUEXLgRBvV mxQ2gHf9/yruQS3sio6hEvOvgHjy7XstBQ5ORKu3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEP8ESkCkpJJMEfGaYE+V6fAVUC0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4YmU3YTc2LTcyNGItNGU2YS05ZDVhLWJhNTFmZDg4NWE1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASIEiAwDQYJKoZIhvcNAQELBQADggEBANKgpkhfhgRCLnhQAf8TcM2Pobds W6WKoepX1eGmocLkfBoMoUgHjBpIiIPOqDmE7F4XVqVMFe7duOJzGKUrbRr2lXu+ Zp50QFtb41RaJo8FFjcGD4MpQ6vJCcuKqGuKTW14Cxwa+pm52v6MxE6w+xWLsA51 9r9Vy7H3VaQL0v8lV1q1sMQpqB0Z8LYJE8xUzKTEqfWeaZA1P0e+ZxvuNxpKbeqQ bbh45uS2L3bS4hUwVpgpqy12v6Ec1pwtgbF1ddSMnjGLnLmZZMi3sm5xtyfsJgjq UQPTQtljs57IePhXfr+/SqNAxPazoh4sZy5t10TR/sPUSkFIg0IPoOoHZW8= -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:47 2024 by rpki-client on console-ams.rpki-client.org