$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cba4d40-8703-423e-a19b-23a47a42756c.roa File: 2cba4d40-8703-423e-a19b-23a47a42756c.roa (raw, json) Hash identifier: 2NW+t6jNbmMU+MNeXTy6hBwwxEm6/vLvw8Hj23B/Wns= Subject key identifier: E4:59:53:08:60:D1:D4:AB:1E:E6:26:A0:D8:28:65:77:E6:E5:D5:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7845490FE36505D6B626FC20D220B4FCAB9AE032 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cba4d40-8703-423e-a19b-23a47a42756c.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 216.252.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:45:49:0f:e3:65:05:d6:b6:26:fc:20:d2:20:b4:fc:ab:9a:e0:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=9e9729154df3ae0afc1255735a3702b8a4878e16400357984b7844080654aaf5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8b:7f:9a:bd:5f:bc:fe:cc:98:e2:04:37:90: cf:68:6f:a2:4b:fa:f9:04:61:e8:c5:1d:e7:4f:70: 51:e3:59:4c:7f:bf:80:30:7e:d2:89:fa:4e:66:9b: 97:9a:63:c6:49:e8:11:74:bf:63:83:63:b3:54:d7: 95:00:36:9e:a4:3f:2b:08:97:43:f5:df:39:eb:84: 04:c9:f3:e1:bf:f4:a6:4a:52:ee:6d:1c:81:9e:02: e3:21:76:b7:09:36:6f:34:0d:06:51:91:53:3b:f2: 8f:36:87:c0:51:0e:45:50:d1:14:c9:98:20:c9:6a: 18:0f:54:a2:24:ed:8b:a0:79:a2:05:aa:91:f0:94: 7b:fd:1d:5f:2f:3a:51:74:03:49:49:f9:da:40:c3: cc:d6:e7:32:50:78:2f:63:ae:17:84:0e:90:1b:1a: 80:97:9f:42:9d:32:2c:46:21:60:b8:03:4e:c2:53: 5d:13:c9:52:40:ae:00:0f:bc:30:4d:b1:cf:8d:3f: 86:5c:cc:6f:17:1f:53:34:70:27:db:17:1c:44:b1: 1a:9b:45:15:c3:52:b4:04:75:c9:7e:23:12:73:76: c7:58:93:30:ca:76:2b:9b:5f:33:cc:35:9a:e6:7d: 9a:5b:02:38:fb:68:2a:c8:dc:db:ca:06:d5:6b:04: 3a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:59:53:08:60:D1:D4:AB:1E:E6:26:A0:D8:28:65:77:E6:E5:D5:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cba4d40-8703-423e-a19b-23a47a42756c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.252.144.0/21 Signature Algorithm: sha256WithRSAEncryption ca:73:97:0f:53:e6:8c:e1:0a:a2:03:6d:25:19:0d:4b:9f:f9: 54:95:72:c8:6a:64:0d:72:1e:90:04:20:63:48:e2:66:3d:a3: 92:58:33:36:28:22:f1:f5:89:90:b9:1a:fc:ca:03:2e:16:d9: 10:5e:8c:45:7f:d9:af:c5:c9:44:6d:52:a0:06:84:2a:e6:21: fb:04:04:36:1d:64:7e:d1:60:b9:d4:c8:89:00:33:e1:2b:67: ba:51:ca:a1:4f:7b:aa:d7:67:35:5f:5a:eb:50:ab:b3:ef:9f: 4b:7f:5c:7b:6d:ff:5f:e5:62:cf:c8:78:62:fb:05:e2:a9:da: 51:6f:af:41:d2:6d:c5:fa:c3:24:a5:cf:be:09:23:73:3d:40: 63:bd:e5:17:25:4b:9e:47:d8:56:3f:69:36:42:ab:fb:a7:4d: fa:77:6d:c2:4c:54:77:ec:fa:89:43:b2:55:91:8d:bc:b0:64: 35:78:eb:00:58:c1:23:98:64:95:52:47:04:d2:1a:a5:29:d8: 7a:45:08:4c:5c:0b:99:1f:b3:2d:36:df:7c:dc:ef:50:a1:c2: 81:5c:1d:74:c4:68:33:f4:99:ae:d2:59:3a:ff:2e:f5:07:29: 41:09:4d:65:79:b7:ef:bb:86:46:e0:16:ac:41:85:08:1b:f9: 32:85:26:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeEVJD+NlBda2Jvwg0iC0/Kua4DIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTk3MjkxNTRkZjNhZTBhZmMxMjU1NzM1YTM3MDJiOGE0 ODc4ZTE2NDAwMzU3OTg0Yjc4NDQwODA2NTRhYWY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHi3+avV+8/syY4gQ3kM9ob6JL+vkEYejFHedPcFHjWUx/ v4AwftKJ+k5mm5eaY8ZJ6BF0v2ODY7NU15UANp6kPysIl0P13znrhATJ8+G/9KZK Uu5tHIGeAuMhdrcJNm80DQZRkVM78o82h8BRDkVQ0RTJmCDJahgPVKIk7YugeaIF qpHwlHv9HV8vOlF0A0lJ+dpAw8zW5zJQeC9jrheEDpAbGoCXn0KdMixGIWC4A07C U10TyVJArgAPvDBNsc+NP4ZczG8XH1M0cCfbFxxEsRqbRRXDUrQEdcl+IxJzdsdY kzDKdiubXzPMNZrmfZpbAjj7aCrI3NvKBtVrBDrLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5FlTCGDR1Kse5iag2Chld+bl1V4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjYmE0ZDQwLTg3MDMtNDIzZS1hMTliLTIzYTQ3YTQyNzU2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY/JAwDQYJKoZIhvcNAQELBQADggEBAMpzlw9T5ozhCqIDbSUZDUuf+VSV cshqZA1yHpAEIGNI4mY9o5JYMzYoIvH1iZC5GvzKAy4W2RBejEV/2a/FyURtUqAG hCrmIfsEBDYdZH7RYLnUyIkAM+ErZ7pRyqFPe6rXZzVfWutQq7Pvn0t/XHtt/1/l Ys/IeGL7BeKp2lFvr0HSbcX6wySlz74JI3M9QGO95RclS55H2FY/aTZCq/unTfp3 bcJMVHfs+olDslWRjbywZDV46wBYwSOYZJVSRwTSGqUp2HpFCExcC5kfsy0233zc 71ChwoFcHXTEaDP0ma7SWTr/LvUHKUEJTWV5t++7hkbgFqxBhQgb+TKFJj8= -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:26 2024 by rpki-client on console-ams.rpki-client.org