$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4295544d-a4b9-403c-b238-8ee88a67faf8.roa File: 4295544d-a4b9-403c-b238-8ee88a67faf8.roa (raw, json) Hash identifier: SPITeH/5OZWtlivVFuF9iJJ0LMMvqEO/PswsSIOnX9s= Subject key identifier: 3F:11:55:E0:89:A0:FE:0D:5E:4A:4B:FB:CD:B3:43:84:89:CC:FC:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2350D52A281958320000B98CBA20F992442089C0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4295544d-a4b9-403c-b238-8ee88a67faf8.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 54.20.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:50:d5:2a:28:19:58:32:00:00:b9:8c:ba:20:f9:92:44:20:89:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=8f64852e2725272f2cee98406f85422d73f7d9c294ec4a76cff3388aab4b14e1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ff:29:f2:65:ae:c3:38:c9:35:78:06:c0:f9: 10:99:63:4b:5e:bf:e0:82:a4:9e:11:26:a7:1b:32: 64:41:74:a4:76:60:68:21:f1:4a:f1:3b:48:2f:d0: f4:0e:bf:7d:3f:35:48:54:73:47:0d:52:4b:51:0b: 4b:06:0f:0c:e8:9d:32:51:a5:f0:b9:8c:55:34:57: ea:5c:f9:d4:d8:b0:75:0e:b4:f4:94:2e:dc:5b:d9: 6c:83:f7:18:41:17:12:9b:76:c7:85:34:bb:d5:ad: 0d:fc:a0:d2:ed:b0:80:34:46:98:ac:8c:9a:ef:13: 31:ac:64:c3:50:bb:d4:09:6f:bc:31:2b:d8:ac:a7: 18:4d:51:4c:1b:7d:22:da:e4:aa:31:d6:e8:bd:d7: 23:1d:d8:1e:64:88:f0:9b:e1:59:d6:59:e3:ca:5c: 09:d3:c3:6b:fb:2a:cd:f6:5b:b6:d0:fb:9a:25:fb: 56:92:5a:68:ff:b7:1d:3b:07:18:02:c9:cd:35:cd: 3a:bd:c8:63:1d:1f:ed:4c:2a:f7:b1:6c:50:6b:8a: e0:2f:26:b8:6a:17:86:ae:2c:be:8b:d7:1d:30:c2: ea:92:f7:e4:7b:17:c6:76:f9:fc:05:bd:88:f0:ee: 0f:81:23:51:69:0b:ab:91:dd:18:a5:74:94:c3:55: bf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:11:55:E0:89:A0:FE:0D:5E:4A:4B:FB:CD:B3:43:84:89:CC:FC:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4295544d-a4b9-403c-b238-8ee88a67faf8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 44:e8:cd:ef:ee:4d:25:5c:1a:e3:95:48:84:cc:7d:c2:ab:0c: 68:b4:c5:e2:bd:a9:db:2a:d2:de:f2:61:23:8c:0a:7a:68:62: 74:86:30:bc:8b:b4:be:91:45:7a:61:0f:81:a0:f5:ae:2a:15: 29:e2:71:83:75:f1:83:4a:78:e5:89:73:0f:1e:41:51:61:71: 50:4e:4d:14:5e:54:f0:ad:83:12:35:ee:ae:fd:72:d0:6a:6f: 5a:f9:1d:78:a0:b8:5c:70:57:55:be:62:ec:bc:33:3a:24:3a: 6c:7e:f8:b6:58:4e:ab:f8:dc:ae:68:09:25:84:f8:73:e2:ef: 1b:cb:59:35:83:b3:21:df:14:68:e6:e7:dd:3d:9a:57:16:2c: 09:c9:b4:f4:d3:9e:52:fa:fd:70:f3:09:b0:b3:09:7a:46:f9: 48:5e:a0:2a:69:3c:d7:6a:fd:07:f4:1d:72:22:38:8d:f6:42: d4:b6:d5:2a:92:5e:94:f7:1a:e4:2a:c4:9a:74:9d:18:4b:cb: 14:75:c5:b9:ca:32:c1:31:ef:c8:df:43:56:bc:f5:3d:d5:bd: d3:5a:e1:dc:6b:fd:12:e0:27:d0:9d:79:c4:77:d2:39:e4:58: 49:d2:2e:88:e2:0c:ba:5d:07:de:c1:75:c3:2a:f7:5f:74:73: da:d8:9f:1a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI1DVKigZWDIAALmMuiD5kkQgicAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjY0ODUyZTI3MjUyNzJmMmNlZTk4NDA2Zjg1NDIyZDcz ZjdkOWMyOTRlYzRhNzZjZmYzMzg4YWFiNGIxNGUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF/ynyZa7DOMk1eAbA+RCZY0tev+CCpJ4RJqcbMmRBdKR2 YGgh8UrxO0gv0PQOv30/NUhUc0cNUktRC0sGDwzonTJRpfC5jFU0V+pc+dTYsHUO tPSULtxb2WyD9xhBFxKbdseFNLvVrQ38oNLtsIA0RpisjJrvEzGsZMNQu9QJb7wx K9ispxhNUUwbfSLa5Kox1ui91yMd2B5kiPCb4VnWWePKXAnTw2v7Ks32W7bQ+5ol +1aSWmj/tx07BxgCyc01zTq9yGMdH+1MKvexbFBriuAvJrhqF4auLL6L1x0wwuqS 9+R7F8Z2+fwFvYjw7g+BI1FpC6uR3RildJTDVb8jAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPxFV4Img/g1eSkv7zbNDhInM/CwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyOTU1NDRkLWE0YjktNDAzYy1iMjM4LThlZTg4YTY3ZmFmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2FDANBgkqhkiG9w0BAQsFAAOCAQEAROjN7+5NJVwa45VIhMx9wqsMaLTF 4r2p2yrS3vJhI4wKemhidIYwvIu0vpFFemEPgaD1rioVKeJxg3Xxg0p45YlzDx5B UWFxUE5NFF5U8K2DEjXurv1y0GpvWvkdeKC4XHBXVb5i7LwzOiQ6bH74tlhOq/jc rmgJJYT4c+LvG8tZNYOzId8UaObn3T2aVxYsCcm09NOeUvr9cPMJsLMJekb5SF6g Kmk812r9B/QdciI4jfZC1LbVKpJelPca5CrEmnSdGEvLFHXFucoywTHvyN9DVrz1 PdW901rh3Gv9EuAn0J15xHfSOeRYSdIuiOIMul0H3sF1wyr3X3Rz2tifGg== -----END CERTIFICATE-----Generated at Sun Nov 24 02:35:16 2024 by rpki-client on console-fra.rpki-client.org