$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f7eeb32-d339-4a93-a800-a390010eb44a.roa File: 1f7eeb32-d339-4a93-a800-a390010eb44a.roa (raw, json) Hash identifier: mQz9vKpFHI5Zot6e6TznnX+QuKuuz/NRskm09W7cEMk= Subject key identifier: 4C:AE:8C:09:B0:B4:BA:AF:B8:23:F1:A7:E6:32:4A:14:AD:AC:4B:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A03746155478092129A15CDA190C7E2D9B5CBF4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f7eeb32-d339-4a93-a800-a390010eb44a.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.140.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:03:74:61:55:47:80:92:12:9a:15:cd:a1:90:c7:e2:d9:b5:cb:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=f4da3e8b51a123dc652cb589cef6e4e4a05b93db863501d2d4b7d79909ff7f4b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:93:39:92:f0:02:e0:89:a4:5b:f2:73:a7:1e: 9e:1d:7e:8b:c6:37:47:da:a1:60:09:ba:ef:a7:9e: ae:4b:49:f9:b0:db:ea:7b:2e:af:7e:ab:b7:f5:41: 23:34:bf:53:75:69:cc:14:a5:8e:9e:57:51:8b:8c: 04:88:d7:fe:8f:58:19:ba:da:80:6b:69:a2:c8:6e: a5:d0:51:6e:f1:bc:d3:1e:e9:dc:f4:52:d5:23:97: e8:53:d5:b5:fc:8a:33:2e:fd:67:f5:aa:6e:48:4e: fc:89:b2:8f:c0:f7:1b:59:6c:b0:3b:30:12:91:f1: 9c:fb:bb:49:71:bd:60:36:9b:b7:13:1a:be:bb:44: 8a:f3:34:75:fe:70:7e:ba:e9:d5:ac:67:fe:3b:f4: 3b:db:07:11:ae:8e:53:44:af:d2:a3:61:14:10:59: 73:7e:d4:e4:e3:70:de:f7:eb:58:28:e2:b7:66:c0: cd:86:a3:d0:72:8c:5f:89:c7:be:7c:42:2f:20:61: a9:7e:6c:b1:08:16:b4:24:43:7e:92:38:c4:7f:86: 2b:c3:bf:57:24:2e:fb:44:39:0f:7b:1e:66:40:20: 5f:ca:d5:09:13:91:86:d0:df:ec:30:9b:bb:b7:89: 94:5b:58:84:64:08:97:4b:82:47:e1:13:48:c0:e0: 4d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AE:8C:09:B0:B4:BA:AF:B8:23:F1:A7:E6:32:4A:14:AD:AC:4B:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f7eeb32-d339-4a93-a800-a390010eb44a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.140.0.0/16 Signature Algorithm: sha256WithRSAEncryption 76:8f:c5:f5:f1:2d:09:dc:4e:c5:57:8c:10:3d:cd:c7:8e:bb: 50:ef:ba:97:1c:9b:07:a6:36:ff:c7:38:f0:dc:fa:3d:97:a9: c4:2c:49:41:0a:3c:a6:93:8a:64:63:c4:bc:57:3d:87:22:bd: 1f:c2:91:bd:ad:ab:c0:95:fe:ad:7b:de:fa:e9:29:75:72:06: 9d:65:82:ed:24:35:09:f6:5c:b7:26:89:ac:a1:32:d4:c9:cc: b0:93:6e:36:1d:2f:3a:e6:2d:40:a1:d5:1c:6d:b0:b4:f7:9a: b0:c1:82:82:f2:04:de:46:ce:cb:a7:c7:82:ad:d9:0c:48:d2: b0:ea:cc:fb:d9:4c:11:d2:64:28:2d:70:a5:ad:a6:8e:40:12: 85:7a:7a:f7:55:03:70:42:d3:11:51:c9:45:7c:d3:5b:62:34: 62:18:d1:3c:a8:58:8c:10:77:25:a4:22:a6:72:ad:ce:c5:11: fb:92:41:dc:89:5f:b8:c6:c0:01:72:0b:38:23:33:35:02:9a: f9:9a:31:61:86:ec:af:dc:2f:39:bc:92:25:43:18:a9:83:e3: 84:b3:bf:f8:f2:70:de:18:88:dc:ed:bc:8f:06:89:64:3a:b2: a6:84:9f:74:e0:fe:11:98:f8:65:23:bb:43:35:42:48:ab:9d: 71:d9:1e:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSgN0YVVHgJISmhXNoZDH4tm1y/QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNGRhM2U4YjUxYTEyM2RjNjUyY2I1ODljZWY2ZTRlNGEw NWI5M2RiODYzNTAxZDJkNGI3ZDc5OTA5ZmY3ZjRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqkzmS8ALgiaRb8nOnHp4dfovGN0faoWAJuu+nnq5LSfmw 2+p7Lq9+q7f1QSM0v1N1acwUpY6eV1GLjASI1/6PWBm62oBraaLIbqXQUW7xvNMe 6dz0UtUjl+hT1bX8ijMu/Wf1qm5ITvyJso/A9xtZbLA7MBKR8Zz7u0lxvWA2m7cT Gr67RIrzNHX+cH666dWsZ/479DvbBxGujlNEr9KjYRQQWXN+1OTjcN7361go4rdm wM2Go9ByjF+Jx758Qi8gYal+bLEIFrQkQ36SOMR/hivDv1ckLvtEOQ97HmZAIF/K 1QkTkYbQ3+wwm7u3iZRbWIRkCJdLgkfhE0jA4E2lAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTK6MCbC0uq+4I/Gn5jJKFK2sSwUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmN2VlYjMyLWQzMzktNGE5My1hODAwLWEzOTAwMTBlYjQ0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQjDANBgkqhkiG9w0BAQsFAAOCAQEAdo/F9fEtCdxOxVeMED3Nx467UO+6 lxybB6Y2/8c48Nz6PZepxCxJQQo8ppOKZGPEvFc9hyK9H8KRva2rwJX+rXve+ukp dXIGnWWC7SQ1CfZctyaJrKEy1MnMsJNuNh0vOuYtQKHVHG2wtPeasMGCgvIE3kbO y6fHgq3ZDEjSsOrM+9lMEdJkKC1wpa2mjkAShXp691UDcELTEVHJRXzTW2I0YhjR PKhYjBB3JaQipnKtzsUR+5JB3IlfuMbAAXILOCMzNQKa+ZoxYYbsr9wvObySJUMY qYPjhLO/+PJw3hiI3O28jwaJZDqypoSfdOD+EZj4ZSO7QzVCSKudcdkeKg== -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:49 2024 by rpki-client on console-ams.rpki-client.org