$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3bf46862-8b35-4326-a9d1-8bf2403c6c96.roa File: 3bf46862-8b35-4326-a9d1-8bf2403c6c96.roa (raw, json) Hash identifier: wcoUjENmGq7QizYTP0zQXNAtipD6xQ6jMuWR739cOjQ= Subject key identifier: C9:AE:9E:94:79:E0:50:EF:98:D6:DD:39:AA:B0:80:E8:26:4A:B2:01 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05FC31CC6671DC63DFDC32601FC8100103605861 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3bf46862-8b35-4326-a9d1-8bf2403c6c96.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.20.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:fc:31:cc:66:71:dc:63:df:dc:32:60:1f:c8:10:01:03:60:58:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=ae2a2d6bb356b8f3ecd3917d6e428d15770f6c96e1ad13a993466aa0ea02496e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:52:8d:aa:ae:83:85:f9:f2:4c:a1:1d:57:2c: 9f:0a:6f:0e:36:93:72:b2:a5:72:d7:51:a7:01:09: 2a:e4:27:73:bf:16:e8:6e:61:f4:13:84:b9:a6:f9: 7f:65:a3:73:2d:f6:a7:e9:e8:e3:6d:0a:29:ac:7e: 5a:e0:05:c9:d8:de:81:74:be:0b:b4:a4:af:99:2e: 7b:d6:df:70:77:7b:00:a7:eb:30:d8:23:50:28:78: 54:88:68:9f:4f:22:8a:7e:76:c6:f3:b7:ad:a8:cc: b8:28:e3:60:e4:e0:e1:8d:6c:25:2d:70:d4:a4:51: 0a:bc:33:ee:41:c1:90:f3:72:e3:9f:08:64:72:1b: 27:ad:39:b1:ff:46:a4:d4:fa:30:8d:39:71:0b:e9: 3c:12:c7:bf:c6:07:b1:a6:1d:4d:90:3f:3d:21:ca: 8d:4b:2d:62:bb:d0:95:2c:dd:09:ab:d5:8a:8b:88: f8:46:3f:e5:cc:05:a2:28:21:7a:19:70:23:71:78: 66:61:5c:16:42:7c:67:ae:d0:93:58:7f:44:2f:9b: 32:07:1a:fd:31:92:f0:04:c1:c0:7d:da:a6:f9:0c: ab:c3:cb:d2:52:27:42:e8:c8:22:fe:07:22:f0:7e: 25:f4:11:a3:42:bd:20:ae:6b:75:d0:4a:7c:a3:03: 79:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:AE:9E:94:79:E0:50:EF:98:D6:DD:39:AA:B0:80:E8:26:4A:B2:01 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3bf46862-8b35-4326-a9d1-8bf2403c6c96.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.216.0/22 Signature Algorithm: sha256WithRSAEncryption c2:7a:e1:05:c0:bc:7c:c7:a0:16:5c:9e:be:67:7f:c3:63:36: 9e:9f:ae:05:9b:89:f9:e2:1f:df:ba:83:9a:dd:a2:47:67:ed: eb:41:60:06:7f:97:09:ca:32:9d:26:28:63:40:37:ed:c1:fa: 6f:60:92:05:5c:20:85:3a:76:0e:df:f7:8a:27:7b:68:a2:c7: cc:f3:39:f1:8c:2f:92:b5:39:70:79:57:8f:6d:41:79:28:cf: 59:76:53:e5:52:68:4b:64:d0:f0:ab:fc:3f:19:b9:f9:44:bb: 84:b7:f4:1c:f4:58:4c:78:64:c7:45:01:b2:60:d6:26:39:36: 49:a5:ef:8a:ce:90:d9:8a:86:df:7c:b5:77:0f:e2:20:2c:f4: 92:77:aa:f1:58:84:92:f5:53:9c:1d:6e:76:52:52:61:e2:9e: b0:96:bb:e5:6a:d8:3a:9b:79:2a:73:7e:9d:e5:76:61:da:32: f6:a6:24:5e:49:c3:0e:ce:bf:80:22:34:37:a7:71:03:ee:60: 73:70:bd:07:78:d9:b7:45:ec:ae:54:bd:ad:c9:74:7a:4f:d3: fb:01:bf:23:04:b8:0a:63:2d:74:21:16:3b:43:c6:88:50:09: 3a:f2:ce:bf:35:24:45:0e:5b:5d:61:6a:f1:e3:89:ca:da:47: 5d:61:2b:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBfwxzGZx3GPf3DJgH8gQAQNgWGEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAyMDAwMDAwWhcNMjQxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTJhMmQ2YmIzNTZiOGYzZWNkMzkxN2Q2ZTQyOGQxNTc3 MGY2Yzk2ZTFhZDEzYTk5MzQ2NmFhMGVhMDI0OTZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcUo2qroOF+fJMoR1XLJ8Kbw42k3KypXLXUacBCSrkJ3O/ FuhuYfQThLmm+X9lo3Mt9qfp6ONtCimsflrgBcnY3oF0vgu0pK+ZLnvW33B3ewCn 6zDYI1AoeFSIaJ9PIop+dsbzt62ozLgo42Dk4OGNbCUtcNSkUQq8M+5BwZDzcuOf CGRyGyetObH/RqTU+jCNOXEL6TwSx7/GB7GmHU2QPz0hyo1LLWK70JUs3Qmr1YqL iPhGP+XMBaIoIXoZcCNxeGZhXBZCfGeu0JNYf0QvmzIHGv0xkvAEwcB92qb5DKvD y9JSJ0LoyCL+ByLwfiX0EaNCvSCua3XQSnyjA3n5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUya6elHngUO+Y1t05qrCA6CZKsgEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiZjQ2ODYyLThiMzUtNDMyNi1hOWQxLThiZjI0MDNjNmM5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIQFNgwDQYJKoZIhvcNAQELBQADggEBAMJ64QXAvHzHoBZcnr5nf8NjNp6f rgWbifniH9+6g5rdokdn7etBYAZ/lwnKMp0mKGNAN+3B+m9gkgVcIIU6dg7f94on e2iix8zzOfGML5K1OXB5V49tQXkoz1l2U+VSaEtk0PCr/D8ZuflEu4S39Bz0WEx4 ZMdFAbJg1iY5Nkml74rOkNmKht98tXcP4iAs9JJ3qvFYhJL1U5wdbnZSUmHinrCW u+Vq2DqbeSpzfp3ldmHaMvamJF5Jww7Ov4AiNDencQPuYHNwvQd42bdF7K5Uva3J dHpP0/sBvyMEuApjLXQhFjtDxohQCTryzr81JEUOW11havHjicraR11hK9k= -----END CERTIFICATE-----Generated at Mon Nov 25 02:46:27 2024 by rpki-client on console-ams.rpki-client.org