$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2333dcbb-fe31-43d5-982b-b974de76c14d.roa File: 2333dcbb-fe31-43d5-982b-b974de76c14d.roa (raw, json) Hash identifier: uj5CdPfLcXYIum7ur8bIZSSI3J94SiH49bwBkrhJ78A= Subject key identifier: 63:6E:6F:E6:E6:AE:A7:B6:0F:9A:6B:83:0C:7A:7F:95:1C:76:6D:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A6A1F262F89281203B6E30C6785E167F39D6397 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2333dcbb-fe31-43d5-982b-b974de76c14d.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 129.30.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:6a:1f:26:2f:89:28:12:03:b6:e3:0c:67:85:e1:67:f3:9d:63:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=d9c46a130457ba11dd19c64bc9b12bc478430c188aa4474cb96766e6aef284e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:64:f2:d1:32:a1:7d:82:26:e6:c9:de:3e:83: 93:49:ba:27:55:98:39:12:d4:bb:b1:0f:c7:56:b6: b0:59:ee:7e:38:a6:6e:8e:fe:fa:d8:ac:4c:2f:37: c7:3f:49:3c:0a:da:fa:b7:b9:73:ec:29:6a:0f:27: 76:dc:9d:82:4f:ac:0e:ac:64:b0:f3:0c:40:bb:21: c7:44:79:72:89:e5:61:ab:66:da:b4:f3:78:c4:29: d5:79:f7:76:40:b5:83:35:8c:5d:eb:cd:e7:af:b9: c0:87:27:04:8b:00:af:b2:6c:0d:0c:97:1e:57:2e: f9:52:b6:c5:35:d4:a0:7b:92:f7:fa:59:45:14:32: 3a:60:4a:0d:a3:28:f7:35:95:19:83:a4:b3:1c:c8: 47:c7:0a:da:1c:26:bb:4e:32:dc:3b:2b:34:76:81: 81:0f:a3:6f:35:77:4c:d0:e7:e3:cc:9f:ba:6d:dd: c9:f8:1d:89:fd:e5:33:ae:4f:d8:3a:67:a7:6c:bd: fb:de:7a:8f:15:8b:64:eb:28:21:68:70:51:fd:4e: 52:d3:a8:0e:b3:f4:dd:f0:42:b2:76:84:8d:7f:bc: 61:f6:db:4e:09:32:ea:fa:b6:5c:3e:06:26:63:98: 33:ba:b3:28:5e:e5:d3:95:19:c1:b2:80:76:bf:19: d9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:6E:6F:E6:E6:AE:A7:B6:0F:9A:6B:83:0C:7A:7F:95:1C:76:6D:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2333dcbb-fe31-43d5-982b-b974de76c14d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.30.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9b:12:35:7d:0c:06:c1:85:0f:5f:46:e0:d3:30:8d:93:dd:2b: 38:ea:68:06:5f:5b:20:79:49:5d:e8:cf:ca:f9:8e:ea:77:52: 9a:23:9f:9c:04:a6:b0:a1:55:d8:87:c6:24:82:65:e1:92:83: 0b:3f:0d:d3:bb:61:c8:54:28:5f:ed:a3:5b:95:9e:85:86:13: 33:43:c2:c0:54:0c:c0:f1:91:0b:60:96:26:eb:c8:41:4d:18: 6a:ac:15:08:de:8a:81:bf:6a:f8:be:63:63:cf:1e:f2:a5:8f: 16:50:1d:10:a1:99:34:f3:c5:10:cf:33:67:b3:fd:54:78:aa: 68:a3:1b:f3:92:62:0c:98:43:0a:e0:18:fa:b6:ab:0f:45:1c: 47:1c:32:ac:38:22:10:3f:f2:a5:a0:ad:53:de:c2:f9:42:61: 9a:d7:66:c9:d5:2b:f4:53:c3:9d:dc:6c:df:ce:cd:ec:98:3d: 36:c6:d2:b8:af:80:b8:91:82:f5:64:ed:27:37:46:b8:b4:7e: b2:ad:6f:ab:ce:d7:9d:9f:40:a0:25:07:01:e2:de:c6:7e:9f: ca:4d:e2:f1:d6:c8:10:79:6b:95:58:0f:e9:a8:41:37:3a:21: 00:32:87:c0:65:f2:8d:cb:0d:7e:05:c1:3d:92:27:f2:79:a9: c1:9b:a6:6f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSmofJi+JKBIDtuMMZ4XhZ/OdY5cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWM0NmExMzA0NTdiYTExZGQxOWM2NGJjOWIxMmJjNDc4 NDMwYzE4OGFhNDQ3NGNiOTY3NjZlNmFlZjI4NGU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6ZPLRMqF9gibmyd4+g5NJuidVmDkS1LuxD8dWtrBZ7n44 pm6O/vrYrEwvN8c/STwK2vq3uXPsKWoPJ3bcnYJPrA6sZLDzDEC7IcdEeXKJ5WGr Ztq083jEKdV593ZAtYM1jF3rzeevucCHJwSLAK+ybA0Mlx5XLvlStsU11KB7kvf6 WUUUMjpgSg2jKPc1lRmDpLMcyEfHCtocJrtOMtw7KzR2gYEPo281d0zQ5+PMn7pt 3cn4HYn95TOuT9g6Z6dsvfveeo8Vi2TrKCFocFH9TlLTqA6z9N3wQrJ2hI1/vGH2 204JMur6tlw+BiZjmDO6syhe5dOVGcGygHa/GdlDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUY25v5uaup7YPmmuDDHp/lRx2bYAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzMzNkY2JiLWZlMzEtNDNkNS05ODJiLWI5NzRkZTc2YzE0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCBHjANBgkqhkiG9w0BAQsFAAOCAQEAmxI1fQwGwYUPX0bg0zCNk90rOOpo Bl9bIHlJXejPyvmO6ndSmiOfnASmsKFV2IfGJIJl4ZKDCz8N07thyFQoX+2jW5We hYYTM0PCwFQMwPGRC2CWJuvIQU0YaqwVCN6Kgb9q+L5jY88e8qWPFlAdEKGZNPPF EM8zZ7P9VHiqaKMb85JiDJhDCuAY+rarD0UcRxwyrDgiED/ypaCtU97C+UJhmtdm ydUr9FPDndxs387N7Jg9NsbSuK+AuJGC9WTtJzdGuLR+sq1vq87XnZ9AoCUHAeLe xn6fyk3i8dbIEHlrlVgP6ahBNzohADKHwGXyjcsNfgXBPZIn8nmpwZumbw== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:24 2024 by rpki-client on console-ams.rpki-client.org