$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43c3117e-7a48-4db8-be6d-8a65a6d41cbc.roa File: 43c3117e-7a48-4db8-be6d-8a65a6d41cbc.roa (raw, json) Hash identifier: hsXPZ8FhYwwq0yLu+o0MPzdgSDdytEJgVLbR8Q23JLc= Subject key identifier: 25:D4:8C:E1:47:B4:AD:5E:46:DB:E9:61:C2:7B:E4:D8:89:16:D6:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2300CE294EA395031F5725FB23342D9EF5CA0C32 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43c3117e-7a48-4db8-be6d-8a65a6d41cbc.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 54.46.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:00:ce:29:4e:a3:95:03:1f:57:25:fb:23:34:2d:9e:f5:ca:0c:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=537744304e06fc39e956cecdcff6681fefa55f3f1ccfa4de2fddfdbe15e489b8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:53:ab:b8:54:6f:77:c0:72:da:93:37:8f:8c: 81:ec:56:ac:63:f6:aa:f9:df:16:82:05:e8:54:2a: b4:0d:38:46:65:51:d1:3c:e9:49:e9:42:9e:f1:11: 3c:5c:55:39:a8:68:0a:18:22:4e:2e:55:82:f1:0d: 20:68:a6:9c:e5:4b:83:43:ba:11:0c:c2:55:33:91: e1:25:6f:f0:16:5e:32:27:60:29:32:c6:8c:41:f4: b4:37:e0:fb:91:2f:3f:01:18:22:3c:48:10:bd:10: 8e:39:3a:0a:e9:d2:68:78:94:55:60:e9:a1:be:de: 73:03:87:f7:31:43:a8:4f:2f:41:e3:8b:37:06:fe: 0b:b3:10:9f:17:3f:4f:9a:99:d8:2e:77:d2:d5:f7: 65:0d:9e:e5:88:3a:07:2f:dc:82:12:d5:72:cf:fc: 8f:e5:10:a1:07:5d:0e:b8:8c:66:c8:72:87:b1:d2: e3:89:01:aa:21:4d:49:97:07:7b:fb:91:5c:9b:eb: 59:33:da:6f:40:8c:ee:d9:01:18:d5:1c:a7:22:5b: 1b:02:73:0b:55:25:23:14:44:a2:ee:3d:00:ef:2b: 2a:65:81:e5:1e:a6:81:61:54:fb:0a:c7:35:0f:57: 8f:26:79:46:45:6d:76:59:96:3f:91:73:8a:b3:ae: c8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D4:8C:E1:47:B4:AD:5E:46:DB:E9:61:C2:7B:E4:D8:89:16:D6:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43c3117e-7a48-4db8-be6d-8a65a6d41cbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.46.0.0/16 Signature Algorithm: sha256WithRSAEncryption 27:56:c3:b1:37:a8:cd:a9:dd:a6:31:1d:7c:36:a6:c2:fe:17: c1:61:11:b9:67:e3:01:c6:97:a1:13:e3:c0:df:22:c8:8a:43: 6e:c9:7e:79:ee:ae:87:8c:44:bd:10:79:2c:82:44:fc:08:10: 5c:56:6d:c5:93:cd:b9:12:73:36:7a:f0:22:3e:0e:11:30:5e: 78:5a:72:5a:1e:49:b9:ba:77:6d:57:9c:d4:95:39:4d:f6:db: 92:27:f2:20:56:3c:66:a4:61:fa:56:ac:16:e1:57:c3:97:91: df:7a:1a:50:3d:09:8a:24:72:dc:9e:e5:c3:0a:69:1f:e5:15: df:f9:45:98:75:d8:88:e7:a6:27:31:63:07:d5:1a:bb:83:6f: 6b:31:ed:92:9c:35:68:09:10:44:dc:49:f8:aa:98:98:b1:df: 9e:1c:d4:a0:1c:87:b4:6c:ce:e6:3d:f3:11:5b:5b:1d:6b:53: 20:f3:80:ab:7d:19:af:50:30:8f:c8:20:3e:c5:48:b1:ca:16: 91:8f:2f:4e:d8:82:c5:19:9a:1a:bf:7b:19:a7:8b:44:a7:8d: 6b:23:22:75:07:60:00:98:22:84:aa:b6:86:ca:e4:2f:d7:a6: c9:62:df:66:4f:1e:8e:c2:87:f2:4b:e7:40:34:d3:a8:93:8a: d5:75:e8:e0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIwDOKU6jlQMfVyX7IzQtnvXKDDIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Mzc3NDQzMDRlMDZmYzM5ZTk1NmNlY2RjZmY2NjgxZmVm YTU1ZjNmMWNjZmE0ZGUyZmRkZmRiZTE1ZTQ4OWI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZU6u4VG93wHLakzePjIHsVqxj9qr53xaCBehUKrQNOEZl UdE86UnpQp7xETxcVTmoaAoYIk4uVYLxDSBoppzlS4NDuhEMwlUzkeElb/AWXjIn YCkyxoxB9LQ34PuRLz8BGCI8SBC9EI45Ogrp0mh4lFVg6aG+3nMDh/cxQ6hPL0Hj izcG/guzEJ8XP0+amdgud9LV92UNnuWIOgcv3IIS1XLP/I/lEKEHXQ64jGbIcoex 0uOJAaohTUmXB3v7kVyb61kz2m9AjO7ZARjVHKciWxsCcwtVJSMURKLuPQDvKypl geUepoFhVPsKxzUPV48meUZFbXZZlj+Rc4qzrsi/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJdSM4Ue0rV5G2+lhwnvk2IkW1pYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzYzMxMTdlLTdhNDgtNGRiOC1iZTZkLThhNjVhNmQ0MWNiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2LjANBgkqhkiG9w0BAQsFAAOCAQEAJ1bDsTeozandpjEdfDamwv4XwWER uWfjAcaXoRPjwN8iyIpDbsl+ee6uh4xEvRB5LIJE/AgQXFZtxZPNuRJzNnrwIj4O ETBeeFpyWh5Jubp3bVec1JU5TfbbkifyIFY8ZqRh+lasFuFXw5eR33oaUD0JiiRy 3J7lwwppH+UV3/lFmHXYiOemJzFjB9Uau4NvazHtkpw1aAkQRNxJ+KqYmLHfnhzU oByHtGzO5j3zEVtbHWtTIPOAq30Zr1Awj8ggPsVIscoWkY8vTtiCxRmaGr97GaeL RKeNayMidQdgAJgihKq2hsrkL9emyWLfZk8ejsKH8kvnQDTTqJOK1XXo4A== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:31 2024 by rpki-client on console-ams.rpki-client.org