$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3704d245-436a-4b87-a96c-f0f8b852cf09.roa File: 3704d245-436a-4b87-a96c-f0f8b852cf09.roa (raw, json) Hash identifier: 14yhOgk/CBmeIrZan2PglHHmeucj6DXTqCJMU+OFWEA= Subject key identifier: F1:CB:F5:93:E8:20:92:40:6D:47:C1:63:E1:EC:35:A6:3B:94:E1:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21FD819BAB45A01483109FB6280EB67FD316A63B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3704d245-436a-4b87-a96c-f0f8b852cf09.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.133.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:fd:81:9b:ab:45:a0:14:83:10:9f:b6:28:0e:b6:7f:d3:16:a6:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=215cef22160258d5c312f954a973309b113f2932a84628e70b54be8bcc3f2fd8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fe:26:b4:87:93:74:d7:1a:98:04:ee:03:af: 6e:52:9d:fa:7c:1f:2f:0c:2b:84:31:d4:d6:62:1b: 61:99:1b:10:ba:1b:53:71:4d:2b:22:aa:8f:18:89: 5d:f7:86:94:5e:ce:0e:7d:ab:f2:87:d7:a1:ab:ba: 4f:0f:aa:38:fc:6d:88:63:31:2b:36:5b:89:29:c0: e4:f2:b9:cd:80:c8:e7:08:d1:a8:d9:30:bb:4d:d1: 5b:8b:fb:c8:78:d7:43:12:51:35:cc:09:97:dc:68: f9:28:4e:ea:21:2a:1f:e9:77:e3:64:ee:9d:33:0d: 2d:4c:ee:08:4c:ef:b1:4b:26:cc:21:cf:2f:42:3f: c0:d2:d4:55:fb:49:75:19:34:ba:64:dc:77:a9:15: 89:a9:cb:e0:b1:9e:c2:aa:ef:97:95:7b:a2:f3:b8: 8e:ec:cb:21:45:d1:0d:d1:5a:aa:41:c4:81:50:ac: 9d:30:e1:60:c2:71:3b:3e:ff:76:f6:fd:d6:7d:61: 6f:9b:e5:4a:61:32:a9:be:0d:52:fb:6a:9c:ec:75: 0f:62:b0:31:4b:65:eb:d5:e5:d4:23:88:3c:aa:0f: 08:f7:ed:70:7d:bc:91:75:ea:ad:65:71:13:1c:47: 48:cb:24:eb:2c:5c:0b:ce:96:b3:1e:4b:cb:d7:38: d6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:CB:F5:93:E8:20:92:40:6D:47:C1:63:E1:EC:35:A6:3B:94:E1:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3704d245-436a-4b87-a96c-f0f8b852cf09.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.133.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:95:a1:bb:7d:da:3e:79:ac:f4:d4:89:3c:c6:70:58:a1:9a: 52:98:d3:92:18:00:76:cc:3f:94:f3:12:aa:46:c5:8b:fd:27: ae:12:9c:b6:c3:e6:c5:ff:aa:65:db:34:f0:33:c1:97:57:bd: 9b:10:8d:4e:d8:93:fb:c8:32:13:57:53:bc:32:2c:50:f7:0d: ee:57:5b:96:62:29:f8:98:93:aa:77:6a:93:9a:c3:e7:ae:ed: f2:81:20:24:74:0f:07:10:42:aa:b6:71:d5:25:78:ad:ad:4a: 92:47:80:c5:47:00:a7:a0:2c:d6:3c:4a:4c:ae:81:0b:ad:49: d8:ec:f3:2d:b7:91:c1:70:53:34:f8:60:2c:2d:c9:41:64:61: 0d:a8:76:f2:10:49:a1:b3:4f:40:f9:eb:e0:6a:5d:cb:12:62: c6:fb:03:22:f4:e8:cf:aa:f6:27:44:45:58:f8:c5:ba:de:28: f9:30:f1:32:18:46:66:39:bf:dc:22:60:dd:d6:1b:1f:af:b0: 26:cf:d7:69:a6:4a:19:50:be:e0:a8:11:e6:a0:5d:a5:6c:9d: 76:e6:8d:05:98:dd:07:7c:14:e7:3c:58:ee:b9:9e:8a:d1:7c: c9:d5:f5:dc:2e:40:16:2d:e8:a3:41:4c:e3:31:d0:97:99:4a: 77:d3:b3:34 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIf2Bm6tFoBSDEJ+2KA62f9MWpjswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTVjZWYyMjE2MDI1OGQ1YzMxMmY5NTRhOTczMzA5YjEx M2YyOTMyYTg0NjI4ZTcwYjU0YmU4YmNjM2YyZmQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv/ia0h5N01xqYBO4Dr25Snfp8Hy8MK4Qx1NZiG2GZGxC6 G1NxTSsiqo8YiV33hpRezg59q/KH16Gruk8Pqjj8bYhjMSs2W4kpwOTyuc2AyOcI 0ajZMLtN0VuL+8h410MSUTXMCZfcaPkoTuohKh/pd+Nk7p0zDS1M7ghM77FLJswh zy9CP8DS1FX7SXUZNLpk3HepFYmpy+CxnsKq75eVe6LzuI7syyFF0Q3RWqpBxIFQ rJ0w4WDCcTs+/3b2/dZ9YW+b5UphMqm+DVL7apzsdQ9isDFLZevV5dQjiDyqDwj3 7XB9vJF16q1lcRMcR0jLJOssXAvOlrMeS8vXONY1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8cv1k+ggkkBtR8Fj4ew1pjuU4fkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3MDRkMjQ1LTQzNmEtNGI4Ny1hOTZjLWYwZjhiODUyY2YwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4hTANBgkqhkiG9w0BAQsFAAOCAQEAQJWhu33aPnms9NSJPMZwWKGaUpjT khgAdsw/lPMSqkbFi/0nrhKctsPmxf+qZds08DPBl1e9mxCNTtiT+8gyE1dTvDIs UPcN7ldblmIp+JiTqndqk5rD567t8oEgJHQPBxBCqrZx1SV4ra1KkkeAxUcAp6As 1jxKTK6BC61J2OzzLbeRwXBTNPhgLC3JQWRhDah28hBJobNPQPnr4GpdyxJixvsD IvToz6r2J0RFWPjFut4o+TDxMhhGZjm/3CJg3dYbH6+wJs/XaaZKGVC+4KgR5qBd pWydduaNBZjdB3wU5zxY7rmeitF8ydX13C5AFi3oo0FM4zHQl5lKd9OzNA== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:28 2024 by rpki-client on console-ams.rpki-client.org