$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22397cac-406e-4c89-85e5-b4a29edd8651.roa File: 22397cac-406e-4c89-85e5-b4a29edd8651.roa (raw, json) Hash identifier: JF3BA234ohr6m0AuDRjR9f78n95xQv1Oa/bFe3uU7dQ= Subject key identifier: AF:37:39:3D:03:19:1E:E8:CF:F9:7B:23:4B:25:38:2A:EC:F9:BF:41 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4429E0A7B7E9B2AC5011C1840D1D9B9915692A12 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22397cac-406e-4c89-85e5-b4a29edd8651.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 54.25.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:29:e0:a7:b7:e9:b2:ac:50:11:c1:84:0d:1d:9b:99:15:69:2a:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=c4785c70b0a6df5a6a9eb3a85d9dac750b34a7972e82119b72a9559c01683fa5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:6b:bd:df:fd:a8:11:63:7e:a5:dc:f1:8e:ca: 26:7c:d0:cf:1a:29:94:92:58:9e:a5:54:6b:2b:39: 8e:59:eb:e7:bb:18:23:db:35:87:e0:a2:12:e9:f3: dd:a8:c0:8d:5f:cb:44:2e:31:c6:8d:6d:09:05:5d: 90:bc:40:c3:27:d3:ab:17:53:54:9c:af:20:9b:f9: 84:49:77:6d:34:d7:bd:1e:3c:16:ef:3e:22:a8:2d: 08:0a:bb:aa:e3:27:65:ab:8e:2a:f6:6b:b1:fa:3b: d5:31:13:2a:8b:d2:55:2b:5e:4b:ba:4c:53:70:aa: 91:9f:07:e7:b9:7f:d2:59:31:1b:6d:7b:65:21:62: 88:88:05:42:43:fc:bc:aa:58:5e:6e:a4:b6:b1:b3: 55:ae:14:15:93:ae:66:fd:5f:eb:18:c1:89:a1:1c: 17:75:bf:5c:c9:45:bc:2f:70:10:3d:36:db:89:7c: a8:71:d3:fa:08:f1:3b:ce:6d:a2:d1:5c:e2:78:fe: bb:6d:f0:e9:db:01:13:46:0c:f9:a4:1b:6f:42:50: ca:b2:65:b7:93:6a:a4:89:c8:06:e1:76:94:9f:af: 35:32:cf:cb:d9:57:4c:55:26:59:a9:89:31:fb:1b: 95:54:19:05:70:a4:a9:f1:f6:d7:c1:dc:fe:fc:1f: d8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:37:39:3D:03:19:1E:E8:CF:F9:7B:23:4B:25:38:2A:EC:F9:BF:41 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22397cac-406e-4c89-85e5-b4a29edd8651.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.15.0/24 Signature Algorithm: sha256WithRSAEncryption d2:12:3a:52:9a:e6:67:59:1b:42:bf:1b:4c:5e:62:7a:08:a5: c5:bb:7e:ec:c0:0f:16:7c:9c:66:8b:52:c3:50:ba:9e:2c:70: 14:eb:9c:79:83:68:f8:6e:ff:f1:76:a4:cc:6c:c8:e2:d9:6e: 93:ed:39:1d:1f:c3:63:ef:6c:59:d0:62:6c:a5:4f:49:97:78: d2:15:fb:d6:e3:77:fc:ad:ea:b4:f8:bf:3a:91:6e:94:6f:de: a2:cf:52:3c:c4:a9:17:b6:a4:56:04:69:9f:cf:81:03:ec:11: 73:37:17:3c:2d:74:7d:6b:08:f3:98:16:e1:1a:bc:b4:d5:10: f3:2f:c9:fd:34:02:bd:bf:a0:dc:39:0e:57:7b:76:55:a1:fb: 7f:f4:4d:ad:e4:fa:db:fe:b9:1f:71:ee:32:fe:15:88:2b:a4: a0:20:46:95:74:60:fe:ac:5d:a8:b0:fd:55:14:b3:9a:3c:ef: e7:8e:79:1e:1a:16:de:42:9f:35:ec:ff:38:08:41:c7:7c:46: 00:37:ec:0a:4a:b7:75:be:ef:46:31:36:1c:4f:46:e2:63:6e: a8:4e:f2:ff:4b:5e:b4:3a:9c:0b:32:cb:22:1c:cf:c9:c1:8f: c7:c2:a9:18:8e:10:bb:c4:91:50:1f:7e:b4:36:95:ca:b0:5c: 9e:18:33:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURCngp7fpsqxQEcGEDR2bmRVpKhIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDc4NWM3MGIwYTZkZjVhNmE5ZWIzYTg1ZDlkYWM3NTBi MzRhNzk3MmU4MjExOWI3MmE5NTU5YzAxNjgzZmE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVa73f/agRY36l3PGOyiZ80M8aKZSSWJ6lVGsrOY5Z6+e7 GCPbNYfgohLp892owI1fy0QuMcaNbQkFXZC8QMMn06sXU1ScryCb+YRJd200170e PBbvPiKoLQgKu6rjJ2Wrjir2a7H6O9UxEyqL0lUrXku6TFNwqpGfB+e5f9JZMRtt e2UhYoiIBUJD/LyqWF5upLaxs1WuFBWTrmb9X+sYwYmhHBd1v1zJRbwvcBA9NtuJ fKhx0/oI8TvObaLRXOJ4/rtt8OnbARNGDPmkG29CUMqyZbeTaqSJyAbhdpSfrzUy z8vZV0xVJlmpiTH7G5VUGQVwpKnx9tfB3P78H9g/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrzc5PQMZHujP+XsjSyU4Kuz5v0EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyMzk3Y2FjLTQwNmUtNGM4OS04NWU1LWI0YTI5ZWRkODY1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GQ8wDQYJKoZIhvcNAQELBQADggEBANISOlKa5mdZG0K/G0xeYnoIpcW7 fuzADxZ8nGaLUsNQup4scBTrnHmDaPhu//F2pMxsyOLZbpPtOR0fw2PvbFnQYmyl T0mXeNIV+9bjd/yt6rT4vzqRbpRv3qLPUjzEqRe2pFYEaZ/PgQPsEXM3FzwtdH1r CPOYFuEavLTVEPMvyf00Ar2/oNw5Dld7dlWh+3/0Ta3k+tv+uR9x7jL+FYgrpKAg RpV0YP6sXaiw/VUUs5o87+eOeR4aFt5CnzXs/zgIQcd8RgA37ApKt3W+70YxNhxP RuJjbqhO8v9LXrQ6nAsyyyIcz8nBj8fCqRiOELvEkVAffrQ2lcqwXJ4YM+k= -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:07 2024 by rpki-client on console-fra.rpki-client.org