$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2db6a2b4-0538-45a4-850a-1a634c9433d2.roa File: 2db6a2b4-0538-45a4-850a-1a634c9433d2.roa (raw, json) Hash identifier: bWD/gsSDFOSdbtAsFVG8oQ8u/rTzkRHDme7zzlR5txo= Subject key identifier: 74:82:C4:4F:C4:5E:75:52:41:74:19:FE:65:E2:4E:2E:E2:D5:70:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41D0FDD16B9697D36A47BDA994136DE5983CE2BD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2db6a2b4-0538-45a4-850a-1a634c9433d2.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 107.150.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:d0:fd:d1:6b:96:97:d3:6a:47:bd:a9:94:13:6d:e5:98:3c:e2:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=06e556b73379c0ad6537a67773d8be69aa920cce83ec5d1c4cd3034d1f0cae88, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:39:0b:45:33:7f:73:23:eb:fd:48:69:02:01: 36:60:00:b1:d9:87:f0:9f:8d:25:b7:9f:a5:21:89: 22:dc:7d:1a:82:65:b2:be:a0:11:f4:e8:ac:df:34: a3:d9:94:24:16:bf:6b:72:c9:a6:22:42:1d:4b:c5: 5d:bb:65:31:18:11:13:a6:60:8d:4a:2b:5d:77:20: 5d:e0:d7:f6:70:3c:de:7d:9d:e9:b3:33:1d:0a:04: e1:bd:2e:cf:b4:43:de:a6:49:be:35:48:1d:06:02: 72:fe:64:2f:18:d8:b7:cf:11:b6:b1:53:a4:a7:ab: 3c:1c:e7:5c:55:0f:e9:33:9e:14:d0:aa:bb:65:f6: 27:55:29:ad:64:d3:35:59:8a:e6:ec:23:60:7f:6e: 76:d1:74:91:6c:7e:0d:9e:d4:bc:84:6a:96:2c:29: 24:72:12:c8:d6:75:99:f2:17:9b:04:47:ba:4f:45: 25:76:92:a0:bd:42:f9:8c:86:42:15:84:ca:c2:00: be:c9:e5:2f:5b:47:ca:c5:95:ad:13:d5:c8:25:42: db:58:9c:7c:41:25:be:5d:0e:82:e2:c1:d3:36:19: 4c:98:d9:d9:d5:78:9e:b7:87:ce:dc:9c:ff:b9:44: 9b:30:a5:6b:e9:5f:9d:0f:ac:3e:70:df:d7:ff:28: 8e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:82:C4:4F:C4:5E:75:52:41:74:19:FE:65:E2:4E:2E:E2:D5:70:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2db6a2b4-0538-45a4-850a-1a634c9433d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.150.192.0/19 Signature Algorithm: sha256WithRSAEncryption 2c:8a:1d:9c:a1:c6:b8:61:53:61:cf:6d:4a:a3:e8:f9:a4:22: 73:29:92:3d:a8:0d:cc:2e:a0:f3:c6:16:10:b9:e0:6f:71:35: d8:72:dc:f2:9c:d5:27:df:e2:f0:08:6f:24:95:ce:1a:da:0f: 89:a6:dc:8e:f2:18:e7:97:31:ac:af:c5:d0:f7:86:32:ef:65: 84:c0:d4:e3:16:df:8b:fc:1d:c8:55:d7:06:31:e0:48:7a:51: 54:f8:ef:3e:81:d0:9a:bf:fc:e6:e9:e7:3f:83:6e:57:9f:2a: 07:bf:c4:0e:12:ef:fc:f3:a9:4f:f1:d1:4d:f7:c4:55:06:c6: 75:b6:b6:3a:a6:28:bb:3b:33:c7:ce:a9:04:37:67:21:0c:95: d2:d0:39:b7:a1:f4:ea:83:12:56:10:c3:2a:a5:d3:2f:5a:85: 26:f6:ab:65:3a:23:5a:d4:12:4a:a9:a0:44:61:e5:15:82:43: 4f:21:cb:39:a2:cc:71:a3:88:08:69:eb:9c:32:5b:20:5b:37: 2c:be:ee:4b:eb:96:a8:50:85:43:ed:88:65:9f:f9:f5:76:e8: 86:b1:b5:bc:c0:3c:71:05:22:44:7b:b2:d8:5f:fc:3e:df:e0: 91:8b:2f:f4:7f:1d:7f:5a:75:e5:0d:a8:76:ad:af:16:ab:5f: a3:e5:cf:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQdD90WuWl9NqR72plBNt5Zg84r0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmU1NTZiNzMzNzljMGFkNjUzN2E2Nzc3M2Q4YmU2OWFh OTIwY2NlODNlYzVkMWM0Y2QzMDM0ZDFmMGNhZTg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClOQtFM39zI+v9SGkCATZgALHZh/CfjSW3n6UhiSLcfRqC ZbK+oBH06KzfNKPZlCQWv2tyyaYiQh1LxV27ZTEYEROmYI1KK113IF3g1/ZwPN59 nemzMx0KBOG9Ls+0Q96mSb41SB0GAnL+ZC8Y2LfPEbaxU6Snqzwc51xVD+kznhTQ qrtl9idVKa1k0zVZiubsI2B/bnbRdJFsfg2e1LyEapYsKSRyEsjWdZnyF5sER7pP RSV2kqC9QvmMhkIVhMrCAL7J5S9bR8rFla0T1cglQttYnHxBJb5dDoLiwdM2GUyY 2dnVeJ63h87cnP+5RJswpWvpX50PrD5w39f/KI7zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdILET8RedVJBdBn+ZeJOLuLVcK4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkYjZhMmI0LTA1MzgtNDVhNC04NTBhLTFhNjM0Yzk0MzNkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrlsAwDQYJKoZIhvcNAQELBQADggEBACyKHZyhxrhhU2HPbUqj6PmkInMp kj2oDcwuoPPGFhC54G9xNdhy3PKc1Sff4vAIbySVzhraD4mm3I7yGOeXMayvxdD3 hjLvZYTA1OMW34v8HchV1wYx4Eh6UVT47z6B0Jq//Obp5z+DblefKge/xA4S7/zz qU/x0U33xFUGxnW2tjqmKLs7M8fOqQQ3ZyEMldLQObeh9OqDElYQwyql0y9ahSb2 q2U6I1rUEkqpoERh5RWCQ08hyzmizHGjiAhp65wyWyBbNyy+7kvrlqhQhUPtiGWf +fV26IaxtbzAPHEFIkR7sthf/D7f4JGLL/R/HX9adeUNqHatrxarX6Plz20= -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:26 2024 by rpki-client on console-ams.rpki-client.org