$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26191af3-5d36-4e52-a2b7-00dda51fdbff.roa File: 26191af3-5d36-4e52-a2b7-00dda51fdbff.roa (raw, json) Hash identifier: cwR4udpEgpz0XacQu0KXjN1sG/T8WdA9fsHRIW+jRmM= Subject key identifier: 6D:4C:40:27:7B:89:D0:CC:81:F0:AD:43:F0:A3:0F:D6:E3:FD:F0:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0DE36582779057A68ADA60F9DDD5ECCBEBFA9CA5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26191af3-5d36-4e52-a2b7-00dda51fdbff.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 6167 IP address blocks: 162.208.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:e3:65:82:77:90:57:a6:8a:da:60:f9:dd:d5:ec:cb:eb:fa:9c:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=8a9eb5dae98cdcc266f01c990a5afe9acd4985159957f3d7947a7ff38e314453, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:11:81:38:e7:4f:87:6a:23:9a:0f:68:04:89: 5d:40:c4:26:16:b9:2e:f9:33:ca:50:d5:18:0d:cb: 7b:45:22:6c:30:42:b2:96:6e:8e:4b:ad:8a:b2:67: ed:60:e2:e1:ce:2a:9d:ae:e0:4e:42:23:d3:b0:cb: 15:41:be:3f:4f:ab:ff:a1:6d:45:33:0a:6c:90:bd: df:b2:db:3f:4a:ad:dd:dc:5d:a1:d3:b0:fe:16:1d: 51:44:40:f8:fe:32:17:51:ac:a0:ca:f9:ec:95:f0: e7:97:e0:ee:a3:43:7e:c2:ab:98:d5:15:12:be:42: c2:1b:80:8b:ee:af:08:17:a5:ac:7d:7a:5f:ad:6e: 0d:c5:57:5b:37:16:b7:9c:1c:d5:85:ec:5e:fa:be: 58:13:5a:9c:5d:21:7c:45:4f:82:7c:09:2d:d2:8e: 39:00:27:fe:bd:3b:f3:82:85:14:9b:79:23:22:34: 01:b4:ad:40:7f:8b:b6:32:f5:0e:69:e3:76:38:f5: 89:4b:77:07:3f:92:a3:b7:7b:78:8a:b1:0f:4e:a0: 27:56:66:fd:3f:1b:0a:18:f2:3c:9b:75:85:cd:bc: e7:94:23:64:45:57:e6:b1:07:b9:a8:1a:67:cc:11: 37:85:26:f3:ef:45:8f:46:6f:19:37:15:b7:2a:7d: d8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:4C:40:27:7B:89:D0:CC:81:F0:AD:43:F0:A3:0F:D6:E3:FD:F0:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26191af3-5d36-4e52-a2b7-00dda51fdbff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.208.122.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:af:5a:1b:1e:29:8e:36:19:52:ce:36:f1:01:92:b6:d8:c3: 37:43:0a:d8:0a:3d:1a:e3:b4:59:ab:0a:d6:bf:76:a2:38:07: 64:4e:ad:f4:a1:67:0b:9b:20:05:84:81:93:96:90:6b:51:d4: bf:2f:c0:99:80:e4:b5:f0:da:9b:d1:3f:da:4a:c7:09:da:85: 8d:a6:74:e7:54:8c:89:66:2d:4f:95:00:de:a7:07:a8:a2:9d: bf:52:90:06:1c:69:67:28:b1:ba:4f:0a:bb:a5:a0:17:e2:70: d2:29:f0:90:62:6f:3b:a4:97:85:9a:55:a6:36:4b:51:10:4c: c3:d6:62:10:6d:7e:d2:c1:b2:87:92:31:63:30:71:49:55:cb: ac:dd:29:57:ed:94:a8:3b:71:b6:49:62:c3:ac:70:32:ba:1f: 20:1f:de:a7:af:69:22:9a:7e:5c:f4:a9:67:35:cd:b3:d4:32: 81:a2:53:7c:dd:e3:3b:f0:74:b4:61:aa:9c:65:ce:b9:ad:a5: d6:af:52:be:32:72:dc:6d:cd:a3:50:b5:38:b1:3e:a7:66:dc: 25:1b:26:a1:c0:2c:02:d9:bd:3c:58:1d:51:29:95:79:90:ec: f3:96:31:37:fd:6a:e9:83:fd:8e:a4:da:8c:41:be:4a:6e:cf: d0:5d:3c:1b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDeNlgneQV6aK2mD53dXsy+v6nKUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTllYjVkYWU5OGNkY2MyNjZmMDFjOTkwYTVhZmU5YWNk NDk4NTE1OTk1N2YzZDc5NDdhN2ZmMzhlMzE0NDUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1EYE450+HaiOaD2gEiV1AxCYWuS75M8pQ1RgNy3tFImww QrKWbo5LrYqyZ+1g4uHOKp2u4E5CI9OwyxVBvj9Pq/+hbUUzCmyQvd+y2z9Krd3c XaHTsP4WHVFEQPj+MhdRrKDK+eyV8OeX4O6jQ37Cq5jVFRK+QsIbgIvurwgXpax9 el+tbg3FV1s3FrecHNWF7F76vlgTWpxdIXxFT4J8CS3SjjkAJ/69O/OChRSbeSMi NAG0rUB/i7Yy9Q5p43Y49YlLdwc/kqO3e3iKsQ9OoCdWZv0/GwoY8jybdYXNvOeU I2RFV+axB7moGmfMETeFJvPvRY9Gbxk3Fbcqfdi/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbUxAJ3uJ0MyB8K1D8KMP1uP98EkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI2MTkxYWYzLTVkMzYtNGU1Mi1hMmI3LTAwZGRhNTFmZGJmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi0HowDQYJKoZIhvcNAQELBQADggEBAH2vWhseKY42GVLONvEBkrbYwzdD CtgKPRrjtFmrCta/dqI4B2ROrfShZwubIAWEgZOWkGtR1L8vwJmA5LXw2pvRP9pK xwnahY2mdOdUjIlmLU+VAN6nB6iinb9SkAYcaWcosbpPCruloBficNIp8JBibzuk l4WaVaY2S1EQTMPWYhBtftLBsoeSMWMwcUlVy6zdKVftlKg7cbZJYsOscDK6HyAf 3qevaSKaflz0qWc1zbPUMoGiU3zd4zvwdLRhqpxlzrmtpdavUr4yctxtzaNQtTix Pqdm3CUbJqHALALZvTxYHVEplXmQ7POWMTf9aumD/Y6k2oxBvkpuz9BdPBs= -----END CERTIFICATE-----Generated at Mon Nov 25 15:51:43 2024 by rpki-client on console-ams.rpki-client.org