$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/284ee337-d59d-458a-afa5-4dc1b9587ad2.roa File: 284ee337-d59d-458a-afa5-4dc1b9587ad2.roa (raw, json) Hash identifier: 23uLVN8R8zHXwCZLhse123qg9GPKEZvQ7dKonNiFH6A= Subject key identifier: 56:B8:5D:A3:03:36:77:C6:99:92:E6:D6:02:5D:71:E1:55:7C:02:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 657B3FD6ED5229B04F753682524406063385BDC6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/284ee337-d59d-458a-afa5-4dc1b9587ad2.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 35.34.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:7b:3f:d6:ed:52:29:b0:4f:75:36:82:52:44:06:06:33:85:bd:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=c4ef8db719f2a6011dfe440d9da10edd8ccbc446f1dcb28749ea379446f359c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:6e:ce:a4:e7:76:71:08:10:28:db:1b:37:69: 15:ec:64:a6:ba:03:20:01:04:d0:b4:1a:93:cd:a8: 8f:f2:5c:83:dd:4c:a4:50:6b:03:ab:ec:f9:83:f9: 21:f1:ac:5f:42:b2:19:46:50:9c:3f:e5:a1:fd:0e: bf:df:0d:a9:7f:c7:ca:2a:7f:50:7f:86:65:fc:3d: ce:a2:3a:ed:44:0b:eb:89:0a:77:23:be:5e:63:70: 61:0c:2b:e7:bb:7d:3c:ea:c9:40:f0:a9:b3:80:56: e9:f3:55:5b:39:35:00:a9:72:4f:3a:9d:dd:fc:72: 5e:2c:cf:5b:e7:b0:5e:84:7e:88:59:61:21:73:3b: 8c:d2:a2:f1:5e:55:77:87:dd:eb:fa:7b:df:79:8f: 9e:38:8f:31:f8:cc:01:4b:0e:9d:0b:ae:49:1b:f4: ae:19:06:cd:ca:14:40:76:33:28:74:82:11:08:52: 30:86:d1:dc:33:db:95:05:3c:17:ef:6c:d2:78:8b: 76:97:84:cb:c8:b0:d8:4a:94:d6:a1:b3:f5:02:f1: 74:18:b5:b0:f1:ea:bb:bf:1f:fc:73:8a:ae:81:00: a1:39:6f:eb:dc:78:0d:04:2d:ed:b9:52:94:b9:22: 85:dd:e9:42:7f:7f:a6:66:83:2f:99:3f:c5:25:3a: ff:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B8:5D:A3:03:36:77:C6:99:92:E6:D6:02:5D:71:E1:55:7C:02:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/284ee337-d59d-458a-afa5-4dc1b9587ad2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.34.80.0/20 Signature Algorithm: sha256WithRSAEncryption 36:c2:39:1b:ee:28:ea:09:6c:e7:6b:b2:26:02:3c:e6:d1:63: 4c:50:f4:58:8e:b2:14:5c:d3:bb:05:51:8c:3e:4f:b7:39:90: 77:b5:c3:26:91:82:e8:73:e6:96:61:8c:ff:a0:12:ca:94:45: 20:11:5b:80:49:34:3e:30:f5:08:34:7a:20:52:01:29:1a:24: 03:7b:0a:01:32:b4:5b:a9:dd:97:55:a2:e5:f4:37:49:bf:85: 91:41:e2:83:89:71:e2:66:d2:f2:30:39:99:0c:33:75:ea:d0: 66:45:35:e5:58:31:9d:31:11:82:61:f5:a3:86:51:42:39:28: f6:60:48:f9:31:62:97:ac:6d:f6:9a:4e:f7:12:36:b9:24:b9: 11:14:ad:50:8e:e8:44:5a:0f:a5:7e:12:25:76:d7:8d:ce:c6: a0:0f:78:f2:2c:cc:82:ba:89:e5:6d:7e:30:d3:e2:15:ef:9a: 19:57:2e:09:8a:38:7e:e6:78:9d:dd:81:d3:e5:85:9c:37:71: 0e:2b:22:6e:aa:a9:e4:70:12:37:ae:d9:73:1a:3c:91:7d:04: e4:2e:47:07:60:fa:03:e9:e5:93:f4:72:0a:91:d2:d7:75:8b: 7e:2a:40:55:be:9c:bc:1b:8f:60:d0:f4:fb:78:17:7a:f0:e4: 64:1c:34:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZXs/1u1SKbBPdTaCUkQGBjOFvcYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGVmOGRiNzE5ZjJhNjAxMWRmZTQ0MGQ5ZGExMGVkZDhj Y2JjNDQ2ZjFkY2IyODc0OWVhMzc5NDQ2ZjM1OWM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUbs6k53ZxCBAo2xs3aRXsZKa6AyABBNC0GpPNqI/yXIPd TKRQawOr7PmD+SHxrF9CshlGUJw/5aH9Dr/fDal/x8oqf1B/hmX8Pc6iOu1EC+uJ Cncjvl5jcGEMK+e7fTzqyUDwqbOAVunzVVs5NQCpck86nd38cl4sz1vnsF6EfohZ YSFzO4zSovFeVXeH3ev6e995j544jzH4zAFLDp0Lrkkb9K4ZBs3KFEB2Myh0ghEI UjCG0dwz25UFPBfvbNJ4i3aXhMvIsNhKlNahs/UC8XQYtbDx6ru/H/xziq6BAKE5 b+vceA0ELe25UpS5IoXd6UJ/f6Zmgy+ZP8UlOv85AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVrhdowM2d8aZkubWAl1x4VV8AtowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4NGVlMzM3LWQ1OWQtNDU4YS1hZmE1LTRkYzFiOTU4N2FkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjIlAwDQYJKoZIhvcNAQELBQADggEBADbCORvuKOoJbOdrsiYCPObRY0xQ 9FiOshRc07sFUYw+T7c5kHe1wyaRguhz5pZhjP+gEsqURSARW4BJND4w9Qg0eiBS ASkaJAN7CgEytFup3ZdVouX0N0m/hZFB4oOJceJm0vIwOZkMM3Xq0GZFNeVYMZ0x EYJh9aOGUUI5KPZgSPkxYpesbfaaTvcSNrkkuREUrVCO6ERaD6V+EiV2143OxqAP ePIszIK6ieVtfjDT4hXvmhlXLgmKOH7meJ3dgdPlhZw3cQ4rIm6qqeRwEjeu2XMa PJF9BOQuRwdg+gPp5ZP0cgqR0td1i34qQFW+nLwbj2DQ9Pt4F3rw5GQcNNk= -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:49 2024 by rpki-client on console-fra.rpki-client.org