$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/195f43e5-9baf-4f50-bcbb-65039707f56b.roa File: 195f43e5-9baf-4f50-bcbb-65039707f56b.roa (raw, json) Hash identifier: DuSeNcO+TgeeBCAfPpfun4F+6lqwtoIa55b2jqZq2KU= Subject key identifier: 3F:AC:37:6F:EA:4D:73:86:0D:7F:25:6B:AA:57:0E:D0:9F:45:BA:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0403FB1B6DFDA43547830BECFFD5C2A102B7C814 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/195f43e5-9baf-4f50-bcbb-65039707f56b.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 161.228.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:03:fb:1b:6d:fd:a4:35:47:83:0b:ec:ff:d5:c2:a1:02:b7:c8:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=3d1a4ddf4e5120b0b24ed634a8c68e24cd1e64244273562dbdcba11585a6c20f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7d:1b:67:6f:d5:fe:53:ce:e3:76:37:c0:18: 01:b7:df:68:80:6e:32:80:ce:9f:77:cd:63:96:3d: c3:cc:c9:bd:da:ee:a5:86:a7:1c:1e:2f:6c:06:41: cb:f6:44:7d:1c:99:9f:96:c6:d8:10:a3:67:cb:0e: 99:d4:2d:d7:51:22:b8:5c:45:c2:02:ab:5d:84:4d: dd:4f:25:e2:e2:e1:28:e3:f1:dc:fc:0e:f8:67:f5: 09:38:2d:b3:53:45:76:54:ef:30:fd:6d:77:32:01: dc:c1:ee:e3:dc:d2:18:50:b9:15:37:e1:60:c1:15: 8a:19:5e:73:ae:78:41:be:ed:46:d8:0f:4c:fb:d1: a2:ca:9e:00:03:34:fd:4e:f8:ad:48:09:b0:cb:17: 08:ce:68:71:5f:f8:17:6b:a1:e9:7e:ee:e9:7b:fb: 87:92:4c:38:37:ec:d6:36:a0:17:34:a8:7e:90:b2: c5:c5:3f:e3:30:6b:75:f5:24:55:f4:23:97:2e:7d: 3e:dd:d1:70:55:09:5e:f0:96:87:23:b5:fb:a7:0e: c0:76:87:cc:dd:4c:3a:c9:e0:70:b2:1e:7e:ae:49: de:ca:aa:40:44:98:c7:e9:de:c0:f0:48:fd:86:72: c6:6d:23:89:af:a0:de:d4:75:73:eb:0c:cd:63:33: 5f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:AC:37:6F:EA:4D:73:86:0D:7F:25:6B:AA:57:0E:D0:9F:45:BA:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/195f43e5-9baf-4f50-bcbb-65039707f56b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.228.128.0/18 Signature Algorithm: sha256WithRSAEncryption 32:9d:e1:ec:11:6e:81:69:fa:d5:fa:4d:0e:79:0b:c7:f4:70: dd:84:c4:d2:23:70:63:49:d3:39:c2:dc:cb:ad:ee:20:49:1f: 22:8f:b0:e4:b6:58:2b:db:b2:44:05:ae:6c:d3:2b:93:ae:6e: e5:69:96:80:35:f5:f4:77:2e:94:5d:4a:20:7c:95:65:43:73: 74:48:80:b6:a7:3d:7e:c6:85:e6:60:ae:23:39:d0:6f:96:dd: 0c:2a:d2:34:17:09:bf:12:d2:57:6d:7a:0f:ba:15:b0:ef:1b: 01:30:34:c0:f9:88:5f:5c:68:d1:69:8b:14:3b:2b:38:77:47: c2:7f:a4:a8:41:5e:b1:02:24:0d:ac:6e:08:8f:65:5c:e6:3b: d5:04:de:7a:81:74:12:4d:af:5c:38:d3:ce:c5:b5:df:c9:52: 81:d3:84:b7:68:8e:6b:0a:14:b4:4f:15:6c:64:1f:13:f4:ad: a7:08:71:48:c7:ef:82:4c:e6:55:2b:93:87:55:c9:c9:0d:01: 6e:ea:d0:a9:10:74:fe:c0:dd:df:66:d9:10:65:69:9e:46:cc: 66:87:07:d8:9a:78:ea:f0:ee:c2:d3:13:c2:1c:5b:8f:be:b2: a5:9d:6c:96:05:00:b0:84:39:55:15:19:04:3c:26:33:24:35: a8:ee:6b:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBAP7G239pDVHgwvs/9XCoQK3yBQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAyMDAwMDAwWhcNMjQxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDFhNGRkZjRlNTEyMGIwYjI0ZWQ2MzRhOGM2OGUyNGNk MWU2NDI0NDI3MzU2MmRiZGNiYTExNTg1YTZjMjBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCffRtnb9X+U87jdjfAGAG332iAbjKAzp93zWOWPcPMyb3a 7qWGpxweL2wGQcv2RH0cmZ+WxtgQo2fLDpnULddRIrhcRcICq12ETd1PJeLi4Sjj 8dz8Dvhn9Qk4LbNTRXZU7zD9bXcyAdzB7uPc0hhQuRU34WDBFYoZXnOueEG+7UbY D0z70aLKngADNP1O+K1ICbDLFwjOaHFf+Bdroel+7ul7+4eSTDg37NY2oBc0qH6Q ssXFP+Mwa3X1JFX0I5cufT7d0XBVCV7wlocjtfunDsB2h8zdTDrJ4HCyHn6uSd7K qkBEmMfp3sDwSP2GcsZtI4mvoN7UdXPrDM1jM1+bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUP6w3b+pNc4YNfyVrqlcO0J9FumkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE5NWY0M2U1LTliYWYtNGY1MC1iY2JiLTY1MDM5NzA3ZjU2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAah5IAwDQYJKoZIhvcNAQELBQADggEBADKd4ewRboFp+tX6TQ55C8f0cN2E xNIjcGNJ0znC3Mut7iBJHyKPsOS2WCvbskQFrmzTK5OubuVploA19fR3LpRdSiB8 lWVDc3RIgLanPX7GheZgriM50G+W3Qwq0jQXCb8S0ldteg+6FbDvGwEwNMD5iF9c aNFpixQ7Kzh3R8J/pKhBXrECJA2sbgiPZVzmO9UE3nqBdBJNr1w4087Ftd/JUoHT hLdojmsKFLRPFWxkHxP0racIcUjH74JM5lUrk4dVyckNAW7q0KkQdP7A3d9m2RBl aZ5GzGaHB9iaeOrw7sLTE8IcW4++sqWdbJYFALCEOVUVGQQ8JjMkNajua/c= -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:48 2024 by rpki-client on console-ams.rpki-client.org