$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/297c1ae1-725c-4b7d-89cf-0414aa1d6c72.roa File: 297c1ae1-725c-4b7d-89cf-0414aa1d6c72.roa (raw, json) Hash identifier: hpNNKA3HQ2j6DRbHrtbnK+/GPwfRs/Y9Fm0BdUd3oHg= Subject key identifier: 3D:C8:29:0B:11:E1:28:BC:E5:FA:59:3B:DA:26:02:44:A7:8E:D8:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7307F81C1DFDFD47CE98A025306B043015CE0B24 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/297c1ae1-725c-4b7d-89cf-0414aa1d6c72.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.172.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:07:f8:1c:1d:fd:fd:47:ce:98:a0:25:30:6b:04:30:15:ce:0b:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=7b40325da7d895e33724a39d9711df9bba0a6ad0cf53ed2fe63e5077e904148f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:80:b0:63:18:d8:a2:f9:f6:8b:2d:55:cb:60: 18:fa:af:5d:76:03:29:9e:2d:ab:1e:ba:af:59:66: d0:d1:e0:0c:a8:08:3f:af:4d:41:4f:ff:63:ba:29: 0b:b2:2f:d8:94:00:f7:aa:69:71:38:a0:4e:22:bb: e0:6d:3f:96:83:ea:3e:b6:6e:bb:bd:9e:b2:a8:f4: b5:18:86:12:c2:34:98:37:63:35:3e:1f:ee:e6:46: 56:91:3e:3c:34:8e:53:fb:ef:6c:a4:18:cd:a3:88: df:e9:0e:f0:f1:78:df:ba:94:6c:c8:31:20:0c:4b: 74:96:12:94:7f:c3:7c:31:d8:d9:5a:19:69:83:48: c1:4c:dd:70:2f:aa:47:79:1c:b7:0e:97:54:60:38: 5f:6c:1c:0f:26:39:75:ff:f0:f0:88:73:b2:6b:55: 68:90:2e:18:0a:47:55:46:a6:2d:37:dc:80:fb:67: cf:41:69:31:ec:a8:06:35:04:7e:86:6d:d3:85:32: 84:84:39:0d:51:75:77:14:b7:7d:c8:5e:8b:f0:ea: 33:4c:84:38:1a:b4:0f:30:05:36:3e:85:95:dc:f0: dc:ad:d8:61:65:ee:8a:54:74:d3:59:17:12:ca:12: a1:83:bb:db:e0:e5:b1:73:60:6e:67:ff:c5:19:60: f9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C8:29:0B:11:E1:28:BC:E5:FA:59:3B:DA:26:02:44:A7:8E:D8:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/297c1ae1-725c-4b7d-89cf-0414aa1d6c72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.172.0.0/14 Signature Algorithm: sha256WithRSAEncryption 9f:d8:04:27:8c:66:78:d5:9a:3a:c3:14:84:72:d1:7c:90:17: 1a:af:90:a7:27:0d:94:59:b2:72:e1:af:9b:d4:54:b1:d5:dc: 4d:36:8c:b8:a1:e3:f5:9c:07:ca:42:08:3a:21:fa:a3:e8:bb: b7:ff:00:6b:2d:c5:db:b1:86:d7:5f:07:83:42:c4:3b:c9:f4: 82:38:79:89:a2:a3:9d:be:61:a0:b2:13:02:86:fa:58:36:02: bf:35:2e:d5:54:3f:e2:46:7a:2e:0c:8e:14:b3:e7:bd:80:26: 2d:3d:0e:c9:54:66:84:b3:2b:c8:29:2c:96:84:48:9f:a2:b5: 21:0a:2c:b8:9b:20:62:ae:12:8d:a4:75:fe:9f:69:71:36:f4: 22:f8:02:81:a3:60:6c:16:20:96:f3:ec:96:df:29:58:44:91: 84:45:9e:c2:59:da:73:bb:0d:8b:dd:45:b9:10:a6:ba:dd:d0: 8c:c2:19:38:87:c4:64:6f:f8:d1:ba:38:06:53:06:c4:70:2d: 47:dc:fb:a0:da:7c:f6:3a:3d:31:91:b3:f2:e6:b3:ca:68:b4: e5:81:fe:c7:1a:41:19:86:4a:52:3a:6c:86:77:5a:24:80:f7: 46:a2:fa:0d:c0:37:45:a7:cb:c4:dd:e8:aa:59:6a:2e:41:18: f1:9f:fc:2f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcwf4HB39/UfOmKAlMGsEMBXOCyQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjQwMzI1ZGE3ZDg5NWUzMzcyNGEzOWQ5NzExZGY5YmJh MGE2YWQwY2Y1M2VkMmZlNjNlNTA3N2U5MDQxNDhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXgLBjGNii+faLLVXLYBj6r112AymeLaseuq9ZZtDR4Ayo CD+vTUFP/2O6KQuyL9iUAPeqaXE4oE4iu+BtP5aD6j62bru9nrKo9LUYhhLCNJg3 YzU+H+7mRlaRPjw0jlP772ykGM2jiN/pDvDxeN+6lGzIMSAMS3SWEpR/w3wx2Nla GWmDSMFM3XAvqkd5HLcOl1RgOF9sHA8mOXX/8PCIc7JrVWiQLhgKR1VGpi033ID7 Z89BaTHsqAY1BH6GbdOFMoSEOQ1RdXcUt33IXovw6jNMhDgatA8wBTY+hZXc8Nyt 2GFl7opUdNNZFxLKEqGDu9vg5bFzYG5n/8UZYPnvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPcgpCxHhKLzl+lk72iYCRKeO2MowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5N2MxYWUxLTcyNWMtNGI3ZC04OWNmLTA0MTRhYTFkNmM3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIorDANBgkqhkiG9w0BAQsFAAOCAQEAn9gEJ4xmeNWaOsMUhHLRfJAXGq+Q pycNlFmycuGvm9RUsdXcTTaMuKHj9ZwHykIIOiH6o+i7t/8Aay3F27GG118Hg0LE O8n0gjh5iaKjnb5hoLITAob6WDYCvzUu1VQ/4kZ6LgyOFLPnvYAmLT0OyVRmhLMr yCksloRIn6K1IQosuJsgYq4SjaR1/p9pcTb0IvgCgaNgbBYglvPslt8pWESRhEWe wlnac7sNi91FuRCmut3QjMIZOIfEZG/40bo4BlMGxHAtR9z7oNp89jo9MZGz8uaz ymi05YH+xxpBGYZKUjpshndaJID3RqL6DcA3RafLxN3oqllqLkEY8Z/8Lw== -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:09 2024 by rpki-client on console-fra.rpki-client.org