$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa File: 407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa (raw, json) Hash identifier: bO2kSNbKDGiKnzfSiWfcyLYZhbP/vEICUnMU9ZakjaU= Subject key identifier: 4C:D0:32:76:31:D4:5C:D4:8B:E1:F7:B0:F1:9E:4C:AA:FD:5A:F5:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1CEE9C65AE5C34E960325354E4793F9417080BC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 199.182.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:ee:9c:65:ae:5c:34:e9:60:32:53:54:e4:79:3f:94:17:08:0b:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=8c8d12b968dac77d7c8785eabcf79bc35a8c737e8f45b725ab5f7326cf43c257, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:fd:4a:5d:87:3e:67:3c:21:9f:70:56:08:18: 24:f6:a6:c9:d0:69:f1:7d:b4:6f:08:3c:b7:c6:3c: 69:5b:64:82:cf:20:f9:54:82:00:3d:c2:4a:9f:9b: f1:fd:a7:09:89:bc:82:fa:b3:bb:e6:b3:bc:4b:56: 4d:41:22:5d:b4:cd:3f:02:99:43:7b:4f:1b:23:47: bb:70:57:8d:aa:d1:d5:29:b9:f8:f5:1a:c8:29:28: 98:1f:dd:5f:96:cf:26:a6:b8:b6:c0:1d:42:71:ca: 71:5b:aa:c0:1c:2d:81:b6:a9:38:93:ea:8f:60:72: af:49:ea:97:80:79:57:f9:75:84:b8:47:27:d8:f1: 30:d3:1c:9d:02:0a:df:35:37:07:09:ee:5f:09:17: c9:cf:8c:99:42:a6:e8:31:a7:28:fb:38:ee:da:53: 71:31:4b:72:6c:44:e4:f6:a1:d5:2c:09:1c:75:3d: 9b:51:09:50:b7:c3:49:5b:8b:91:34:57:cd:73:fb: ac:83:cd:52:c0:ff:15:92:e1:8c:69:fb:e1:fa:85: 15:18:4e:71:7f:e0:fd:33:2c:2a:23:02:2b:e1:e3: ba:fd:29:9f:de:34:2d:15:40:c7:5e:73:cb:22:c5: 10:78:01:8d:32:ae:c5:5f:f9:a8:f9:b4:90:67:46: 27:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D0:32:76:31:D4:5C:D4:8B:E1:F7:B0:F1:9E:4C:AA:FD:5A:F5:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.182.240.0/20 Signature Algorithm: sha256WithRSAEncryption a3:da:8a:6a:6e:07:29:fd:4f:c6:34:f5:63:ed:c0:1c:69:40: 6b:9e:d7:eb:76:09:f6:d5:03:ef:28:43:5c:1d:4b:e9:96:f3: 1a:a7:cb:b9:ca:9c:58:f7:8a:47:84:51:e9:98:50:a6:e6:3e: cd:8a:7d:a7:67:07:8b:eb:2c:30:c8:45:73:f2:bd:10:d0:2a: cb:d5:4f:9f:fb:b7:5a:88:15:fc:93:37:20:7a:0b:42:20:0b: 70:99:21:08:2d:cf:7a:18:fb:93:8b:2f:b2:2c:63:61:3a:03: 50:ee:5c:2f:4d:1b:d5:a4:27:b3:95:38:48:69:0b:6c:f5:a5: d6:58:08:3b:ce:2e:e6:30:a9:c8:b1:02:f7:64:b2:56:6b:27: e0:70:09:2d:0a:d5:44:ea:11:51:a2:24:e3:6b:0d:e6:21:6b: 22:6f:1e:20:87:3d:3a:ba:95:57:57:1c:28:6d:2d:1c:f1:2c: 0c:64:a1:bb:00:4e:39:ca:38:41:ab:e1:61:ab:65:0c:35:75: a3:93:1e:4b:24:5e:81:fb:23:ec:7b:86:1e:1e:8d:9b:66:e2: 85:31:9b:4d:04:84:06:91:85:63:a6:bb:27:ff:70:6d:4e:6b: 20:0c:b4:20:d2:b0:28:bb:80:67:60:aa:ed:78:94:39:f8:66: 57:ad:41:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHO6cZa5cNOlgMlNU5Hk/lBcIC8MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzhkMTJiOTY4ZGFjNzdkN2M4Nzg1ZWFiY2Y3OWJjMzVh OGM3MzdlOGY0NWI3MjVhYjVmNzMyNmNmNDNjMjU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDn/Updhz5nPCGfcFYIGCT2psnQafF9tG8IPLfGPGlbZILP IPlUggA9wkqfm/H9pwmJvIL6s7vms7xLVk1BIl20zT8CmUN7TxsjR7twV42q0dUp ufj1GsgpKJgf3V+WzyamuLbAHUJxynFbqsAcLYG2qTiT6o9gcq9J6peAeVf5dYS4 RyfY8TDTHJ0CCt81NwcJ7l8JF8nPjJlCpugxpyj7OO7aU3ExS3JsROT2odUsCRx1 PZtRCVC3w0lbi5E0V81z+6yDzVLA/xWS4Yxp++H6hRUYTnF/4P0zLCojAivh47r9 KZ/eNC0VQMdec8sixRB4AY0yrsVf+aj5tJBnRidZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTNAydjHUXNSL4few8Z5Mqv1a9eIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwN2ZlODFlLWJiMjctNGZhMi1iMWQ5LWEwN2Y4YWE3MTVkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATHtvAwDQYJKoZIhvcNAQELBQADggEBAKPaimpuByn9T8Y09WPtwBxpQGue 1+t2CfbVA+8oQ1wdS+mW8xqny7nKnFj3ikeEUemYUKbmPs2KfadnB4vrLDDIRXPy vRDQKsvVT5/7t1qIFfyTNyB6C0IgC3CZIQgtz3oY+5OLL7IsY2E6A1DuXC9NG9Wk J7OVOEhpC2z1pdZYCDvOLuYwqcixAvdkslZrJ+BwCS0K1UTqEVGiJONrDeYhayJv HiCHPTq6lVdXHChtLRzxLAxkobsATjnKOEGr4WGrZQw1daOTHkskXoH7I+x7hh4e jZtm4oUxm00EhAaRhWOmuyf/cG1OayAMtCDSsCi7gGdgqu14lDn4ZletQR8= -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:57 2024 by rpki-client on console-ams.rpki-client.org