$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2665b7b4-034e-4119-b0f0-8302adbcb7da.roa File: 2665b7b4-034e-4119-b0f0-8302adbcb7da.roa (raw, json) Hash identifier: L3Kf+v/5i2+v70YK8p53V0cgXtDORb+C6gShX09bV8M= Subject key identifier: 9E:DD:F5:51:22:31:83:D2:A4:9F:B8:00:B5:43:9D:9A:8A:BC:73:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54517E850322F6CDA0D1A20CE0F5C2EC43A85483 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2665b7b4-034e-4119-b0f0-8302adbcb7da.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.19.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:51:7e:85:03:22:f6:cd:a0:d1:a2:0c:e0:f5:c2:ec:43:a8:54:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=4794c310c65c393ba0d4889490b9c4dce34e50dbd800775b965ffcac6e30302d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:a2:3c:13:c1:1a:94:72:8a:93:08:4d:be:2e: ad:27:eb:1c:70:5d:6a:4f:07:7c:78:02:05:28:b4: ec:1c:1b:49:3f:e8:a6:e5:43:e8:29:f3:42:66:58: 7e:40:02:bc:46:7a:45:dd:e8:a3:de:ad:35:77:ca: 36:13:84:62:cd:ad:76:22:fa:a8:12:27:d1:1a:21: 50:0e:7c:bc:69:35:ee:36:b6:06:9d:99:60:49:a7: 8f:6c:c3:9b:dc:fe:0f:02:d2:ae:e0:2b:fa:d7:18: 78:74:9b:42:91:fe:87:ac:3c:d6:d3:db:b1:b6:99: b2:ce:23:a1:08:f8:47:ee:65:66:31:3e:99:bc:b0: c8:45:fb:56:a9:b0:51:01:0c:64:01:09:d2:aa:bc: 6d:f6:ad:71:3f:a0:d2:ef:9e:9e:16:b1:1a:8d:ac: cc:ee:1e:f8:0a:9d:16:9e:11:5f:b8:cc:d2:4e:d8: 89:35:90:ef:45:cc:fd:33:f2:93:51:bf:ee:8a:a1: 55:55:db:0e:f4:4a:b9:12:b7:1e:b2:e2:6a:82:07: 3f:bf:9f:10:19:ae:b7:44:9b:41:b7:4f:dd:55:73: 10:6c:1a:43:eb:12:e7:ee:1f:03:fc:0d:ab:7d:48: d7:4a:6d:34:b8:ec:96:7b:cc:8b:5c:e9:dd:0d:00: a1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:DD:F5:51:22:31:83:D2:A4:9F:B8:00:B5:43:9D:9A:8A:BC:73:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2665b7b4-034e-4119-b0f0-8302adbcb7da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.19.0.0/16 Signature Algorithm: sha256WithRSAEncryption 97:eb:c8:9d:f4:9e:75:ab:e3:45:7f:3e:6b:61:6b:9f:25:04: e8:d7:a1:9e:88:7c:a0:c1:86:2d:f0:cc:95:1f:c3:84:36:56: 41:fa:ea:5c:d7:4e:46:40:60:f5:1c:71:8e:7d:80:2d:bc:7e: 58:53:79:c2:8e:af:d2:3c:20:26:8a:05:d4:e7:f5:b9:6b:d4: 98:50:1e:0e:49:25:5d:9e:0e:16:6e:6e:5f:c7:de:42:4b:4d: de:6e:19:82:67:d7:cb:86:45:63:fe:7b:c6:4f:61:4c:b3:fd: 77:dc:f0:79:a3:f8:dd:40:c6:d9:c5:ce:08:7d:ae:69:a2:c8: 01:4e:b0:84:70:b8:84:69:ae:37:de:a4:1c:87:37:62:9b:12: 3e:2d:ac:70:e1:e1:f5:e5:9e:e9:48:8f:b7:9c:39:b4:a4:4f: b0:47:e5:55:78:22:7e:cf:53:21:22:b3:4d:6e:5c:fa:12:63: 7b:9a:1a:04:f4:37:b8:e8:a8:78:c0:fa:7b:4d:40:4e:d0:bc: 00:ee:d5:50:ac:bf:3b:ed:49:bd:d5:f7:d7:80:35:1b:14:18: 39:15:35:75:9f:cc:84:26:42:7b:4b:b1:d1:31:d7:b6:38:45: 80:e3:26:25:94:62:27:cf:45:57:37:ed:2f:50:08:2e:13:f1: 79:b7:c1:96 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVFF+hQMi9s2g0aIM4PXC7EOoVIMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0Nzk0YzMxMGM2NWMzOTNiYTBkNDg4OTQ5MGI5YzRkY2Uz NGU1MGRiZDgwMDc3NWI5NjVmZmNhYzZlMzAzMDJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCEojwTwRqUcoqTCE2+Lq0n6xxwXWpPB3x4AgUotOwcG0k/ 6KblQ+gp80JmWH5AArxGekXd6KPerTV3yjYThGLNrXYi+qgSJ9EaIVAOfLxpNe42 tgadmWBJp49sw5vc/g8C0q7gK/rXGHh0m0KR/oesPNbT27G2mbLOI6EI+EfuZWYx Ppm8sMhF+1apsFEBDGQBCdKqvG32rXE/oNLvnp4WsRqNrMzuHvgKnRaeEV+4zNJO 2Ik1kO9FzP0z8pNRv+6KoVVV2w70SrkStx6y4mqCBz+/nxAZrrdEm0G3T91VcxBs GkPrEufuHwP8Dat9SNdKbTS47JZ7zItc6d0NAKHFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnt31USIxg9Kkn7gAtUOdmoq8c08wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI2NjViN2I0LTAzNGUtNDExOS1iMGYwLTgzMDJhZGJjYjdkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQEzANBgkqhkiG9w0BAQsFAAOCAQEAl+vInfSedavjRX8+a2FrnyUE6Neh noh8oMGGLfDMlR/DhDZWQfrqXNdORkBg9Rxxjn2ALbx+WFN5wo6v0jwgJooF1Of1 uWvUmFAeDkklXZ4OFm5uX8feQktN3m4ZgmfXy4ZFY/57xk9hTLP9d9zweaP43UDG 2cXOCH2uaaLIAU6whHC4hGmuN96kHIc3YpsSPi2scOHh9eWe6UiPt5w5tKRPsEfl VXgifs9TISKzTW5c+hJje5oaBPQ3uOioeMD6e01ATtC8AO7VUKy/O+1JvdX314A1 GxQYORU1dZ/MhCZCe0ux0THXtjhFgOMmJZRiJ89FVzftL1AILhPxebfBlg== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:25 2024 by rpki-client on console-ams.rpki-client.org