$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43f30a7a-34f3-44ec-8f0e-3357214f2627.roa File: 43f30a7a-34f3-44ec-8f0e-3357214f2627.roa (raw, json) Hash identifier: FhePSguo38bpwk+/QLpfouca1CLbnF5cbN4YNvwRsgQ= Subject key identifier: 6A:FF:A8:7E:21:8C:CC:07:01:3D:10:1D:F3:C3:91:98:58:2D:81:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D85F2DA320E08F9E357A1B8D2EC6510233760BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43f30a7a-34f3-44ec-8f0e-3357214f2627.roa Signing time: Mon 19 Aug 2024 00:00:00 +0000 ROA not before: Mon 19 Aug 2024 00:00:00 +0000 ROA not after: Mon 23 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.25.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Sep 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:85:f2:da:32:0e:08:f9:e3:57:a1:b8:d2:ec:65:10:23:37:60:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:00:00 2024 GMT Not After : Sep 23 23:59:59 2024 GMT Subject: serialNumber=9ded8c648a7ff2990517566e54ea386a599ed7625fe282b3b38ca3a1e184e8e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:54:41:3d:69:8b:63:18:55:c5:f1:ee:07:5a: 06:ca:86:d2:c6:e3:36:79:64:26:03:87:13:02:fa: f0:a4:78:86:d8:66:73:37:61:7b:00:ca:58:35:19: f6:ec:ea:ce:42:9c:bf:d5:6e:4d:f7:03:1e:fd:ee: 59:75:59:14:2c:16:6a:23:c8:f5:48:aa:04:f1:3b: 6a:d4:74:af:f5:c3:26:5c:06:a4:8c:19:81:bc:4e: 5d:de:6f:84:52:fe:85:00:ef:ca:6e:cf:a1:4b:2c: 44:7e:8c:6b:2b:7f:71:9c:95:e4:c2:57:63:88:c4: 62:7d:5e:14:b9:9e:9a:52:d0:14:f1:c2:a0:d4:2f: c7:83:4d:3c:5d:d1:e0:9f:4e:47:85:f9:6a:fb:d2: d8:02:a1:f0:dc:3f:b3:32:f3:57:8c:70:c8:12:f3: 26:a4:fe:f8:62:50:a1:fd:88:9b:b1:18:dc:ca:19: 6a:3a:58:68:09:13:76:36:95:bb:6e:86:0b:c1:95: 77:6d:b1:c1:52:d9:84:5c:17:5b:45:2b:3e:5a:97: 6a:70:5a:e5:5f:0e:a4:1f:61:2e:1f:66:c7:a4:f8: ea:aa:7b:54:6e:c7:d6:52:69:8f:7d:e1:60:a1:14: a8:72:b6:39:39:31:d6:6f:75:98:09:64:65:87:f3: 4b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:FF:A8:7E:21:8C:CC:07:01:3D:10:1D:F3:C3:91:98:58:2D:81:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43f30a7a-34f3-44ec-8f0e-3357214f2627.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.64.0/24 Signature Algorithm: sha256WithRSAEncryption 37:d1:e2:3d:15:31:27:2d:57:2d:ad:6c:14:c9:8a:47:00:5e: d1:5f:a6:93:df:63:08:a9:fe:1e:44:35:a2:33:8c:88:26:1f: e5:71:2c:a2:c2:4b:ad:7f:39:9c:47:4d:f2:9f:61:a9:c2:4a: 58:cb:fc:e7:81:a8:4b:42:cd:ad:b4:d0:ff:f7:aa:4f:88:70: b0:2e:c3:b6:1e:73:78:77:24:c4:1e:7c:b0:fe:e3:91:33:6c: 85:68:b2:e1:cc:0b:9f:49:21:6d:75:07:ea:8f:88:60:e6:31: 73:54:2e:bc:b4:dd:11:26:1e:50:b6:ef:20:b7:2a:d8:c9:7d: 27:72:82:cb:d3:aa:9b:27:05:c3:ce:40:ee:ea:55:a1:73:1e: a6:5b:15:a5:37:89:c7:d1:19:08:b2:a7:b9:ff:9a:6d:8d:af: a5:4f:dc:18:e0:b9:5d:e3:95:85:da:97:7d:66:87:86:7a:99: ec:d4:ac:71:87:30:97:1c:77:fb:e5:21:4a:cb:d5:40:ac:c7: 26:8e:29:3f:f8:57:3c:e0:64:92:6c:ea:12:0e:b4:76:a8:3d: 03:d4:29:71:19:53:d6:6f:7d:4a:83:10:ab:d0:27:3c:d7:b0: af:21:d7:fd:71:72:3d:3f:a7:19:cf:05:85:a3:b5:ef:d7:cb: 75:4b:4f:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTYXy2jIOCPnjV6G40uxlECM3YL8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwODE5MDAwMDAwWhcNMjQwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGVkOGM2NDhhN2ZmMjk5MDUxNzU2NmU1NGVhMzg2YTU5 OWVkNzYyNWZlMjgyYjNiMzhjYTNhMWUxODRlOGUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVVEE9aYtjGFXF8e4HWgbKhtLG4zZ5ZCYDhxMC+vCkeIbY ZnM3YXsAylg1Gfbs6s5CnL/Vbk33Ax797ll1WRQsFmojyPVIqgTxO2rUdK/1wyZc BqSMGYG8Tl3eb4RS/oUA78puz6FLLER+jGsrf3GcleTCV2OIxGJ9XhS5nppS0BTx wqDUL8eDTTxd0eCfTkeF+Wr70tgCofDcP7My81eMcMgS8yak/vhiUKH9iJuxGNzK GWo6WGgJE3Y2lbtuhgvBlXdtscFS2YRcF1tFKz5al2pwWuVfDqQfYS4fZsek+Oqq e1Rux9ZSaY994WChFKhytjk5MdZvdZgJZGWH80t9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUav+ofiGMzAcBPRAd88ORmFgtgRwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzZjMwYTdhLTM0ZjMtNDRlYy04ZjBlLTMzNTcyMTRmMjYyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GUAwDQYJKoZIhvcNAQELBQADggEBADfR4j0VMSctVy2tbBTJikcAXtFf ppPfYwip/h5ENaIzjIgmH+VxLKLCS61/OZxHTfKfYanCSljL/OeBqEtCza200P/3 qk+IcLAuw7Yec3h3JMQefLD+45EzbIVosuHMC59JIW11B+qPiGDmMXNULry03REm HlC27yC3KtjJfSdygsvTqpsnBcPOQO7qVaFzHqZbFaU3icfRGQiyp7n/mm2Nr6VP 3BjguV3jlYXal31mh4Z6mezUrHGHMJccd/vlIUrL1UCsxyaOKT/4VzzgZJJs6hIO tHaoPQPUKXEZU9ZvfUqDEKvQJzzXsK8h1/1xcj0/pxnPBYWjte/Xy3VLT74= -----END CERTIFICATE-----Generated at Sat Sep 7 01:39:13 2024 by rpki-client on console-ams.rpki-client.org