$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42c2edd1-452c-482a-b4a2-9ff320f459b0.roa File: 42c2edd1-452c-482a-b4a2-9ff320f459b0.roa (raw, json) Hash identifier: enbvQKZIwlNWJmRjUDRb3/S7MipsHSdMsXJ9nXTL/pU= Subject key identifier: 4F:C8:C8:DA:92:00:48:05:E2:E4:F6:5F:6B:46:B5:DC:84:65:F8:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23C8A3B72FB02194BEFB3D1DB630C55B5F74CD0A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42c2edd1-452c-482a-b4a2-9ff320f459b0.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.234.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:c8:a3:b7:2f:b0:21:94:be:fb:3d:1d:b6:30:c5:5b:5f:74:cd:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=2ac978cce75dce3b4b2b55451c3fff62826f377b6db63d118db4cf71291c4081, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:38:1e:92:09:da:f3:83:0d:4f:45:b1:38:94: 76:2f:cd:a5:e9:32:e7:78:23:89:48:4e:df:fe:59: a0:9b:2b:b9:7b:3c:76:19:41:3a:37:ac:5e:89:25: f8:be:7b:d0:40:f0:bb:05:7e:b5:c2:d3:97:fb:28: 29:0f:f6:98:71:0a:18:36:de:d9:9f:c9:3b:74:9d: e1:5f:20:30:86:16:b8:2c:7e:76:c7:e3:4f:47:9b: fa:3c:85:4e:ad:7c:27:f0:96:5f:f8:cc:a4:cd:ad: 90:15:e8:d8:4f:10:68:d3:0a:0b:27:2c:dc:79:13: a3:4c:c1:85:d1:e4:f3:87:9e:42:a1:42:82:a2:14: 43:46:a0:8a:41:d3:b5:64:5c:48:8b:55:a5:4f:e1: 3f:51:18:d9:d5:05:cf:66:1e:cd:7d:01:f2:3c:9b: 28:09:62:00:73:77:45:56:bb:2e:74:8b:c7:d4:d5: 93:4e:8f:1e:2a:43:64:6e:e7:49:98:3c:c0:22:74: bc:0e:64:77:e3:8b:d8:c1:19:82:da:dd:4d:eb:07: 85:16:f5:92:ba:8b:fb:00:17:4e:2b:ca:a8:30:07: e0:f2:7b:73:e4:da:fe:ee:6e:fa:69:32:46:4c:a6: 84:be:bf:20:c2:22:0f:1b:4d:77:45:14:bb:d8:7a: 9b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:C8:C8:DA:92:00:48:05:E2:E4:F6:5F:6B:46:B5:DC:84:65:F8:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42c2edd1-452c-482a-b4a2-9ff320f459b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.234.0.0/16 Signature Algorithm: sha256WithRSAEncryption 20:8b:5a:de:e4:7a:a2:bd:1e:41:31:58:4b:5f:6e:2a:d7:a8: 5a:51:66:e8:79:07:c9:15:c8:ab:7a:d8:c0:bc:78:92:37:64: a2:e6:00:6c:ae:5d:f7:86:9c:ac:12:aa:59:1e:d4:5f:60:9e: 35:c1:3f:50:a5:04:ad:3f:0f:04:ba:d9:fb:84:84:11:67:b4: 7e:e7:68:4a:e1:10:ab:56:30:53:be:43:eb:e3:24:41:24:ad: f6:bc:a8:d2:50:20:82:24:6e:33:c0:a2:38:93:61:40:61:b0: 37:de:d7:9b:0f:2d:ad:ae:d0:45:b3:d6:0e:65:fb:03:bc:ce: 26:9c:80:dd:88:2f:b3:0f:16:3a:53:4b:03:77:a8:4d:0f:8a: 46:d3:c1:70:6d:8e:a6:e3:bf:52:72:1d:bc:e5:11:81:cc:d4: 8d:0c:b8:68:7a:20:fe:d5:33:9a:77:97:ea:4b:cd:69:15:55: b5:df:99:31:dd:de:da:f1:1c:c6:ad:c5:5f:34:78:5c:24:6d: c3:71:28:0b:46:20:bf:f5:5a:21:5a:4e:02:0d:6a:1d:f5:20: fa:45:be:e5:f1:73:b5:b5:53:b5:0c:02:a4:1b:10:d2:c0:6f: 01:35:e8:e2:85:39:90:68:d0:42:dd:90:66:52:52:94:c9:1f: 63:d5:89:99 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI8ijty+wIZS++z0dtjDFW190zQowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWM5NzhjY2U3NWRjZTNiNGIyYjU1NDUxYzNmZmY2Mjgy NmYzNzdiNmRiNjNkMTE4ZGI0Y2Y3MTI5MWM0MDgxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWOB6SCdrzgw1PRbE4lHYvzaXpMud4I4lITt/+WaCbK7l7 PHYZQTo3rF6JJfi+e9BA8LsFfrXC05f7KCkP9phxChg23tmfyTt0neFfIDCGFrgs fnbH409Hm/o8hU6tfCfwll/4zKTNrZAV6NhPEGjTCgsnLNx5E6NMwYXR5POHnkKh QoKiFENGoIpB07VkXEiLVaVP4T9RGNnVBc9mHs19AfI8mygJYgBzd0VWuy50i8fU 1ZNOjx4qQ2Ru50mYPMAidLwOZHfji9jBGYLa3U3rB4UW9ZK6i/sAF04ryqgwB+Dy e3Pk2v7ubvppMkZMpoS+vyDCIg8bTXdFFLvYepujAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUT8jI2pIASAXi5PZfa0a13IRl+IswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyYzJlZGQxLTQ1MmMtNDgyYS1iNGEyLTlmZjMyMGY0NTliMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo6jANBgkqhkiG9w0BAQsFAAOCAQEAIIta3uR6or0eQTFYS19uKteoWlFm 6HkHyRXIq3rYwLx4kjdkouYAbK5d94acrBKqWR7UX2CeNcE/UKUErT8PBLrZ+4SE EWe0fudoSuEQq1YwU75D6+MkQSSt9ryo0lAggiRuM8CiOJNhQGGwN97Xmw8tra7Q RbPWDmX7A7zOJpyA3Ygvsw8WOlNLA3eoTQ+KRtPBcG2OpuO/UnIdvOURgczUjQy4 aHog/tUzmneX6kvNaRVVtd+ZMd3e2vEcxq3FXzR4XCRtw3EoC0Ygv/VaIVpOAg1q HfUg+kW+5fFztbVTtQwCpBsQ0sBvATXo4oU5kGjQQt2QZlJSlMkfY9WJmQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:56 2024 by rpki-client on console-fra.rpki-client.org