$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4448c9ac-4024-4f85-a898-bad42919a19c.roa File: 4448c9ac-4024-4f85-a898-bad42919a19c.roa (raw, json) Hash identifier: ZAjZXgzMvSlwZs/3ia5aLKIMqG1jAD8PUxDG+TcLSR8= Subject key identifier: DD:1D:07:3A:D5:DB:61:87:84:E3:4E:E1:49:1C:1D:BE:AA:B9:15:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 231AFF30D3F13AAEC030A233BDC3E62493D3080D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4448c9ac-4024-4f85-a898-bad42919a19c.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.153.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:1a:ff:30:d3:f1:3a:ae:c0:30:a2:33:bd:c3:e6:24:93:d3:08:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=77ad8a7b327cbc05178751f4b756b515111883ef921b5b3c1e592c79f1939069, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ef:5c:3d:87:bb:c8:b0:4f:d4:e0:82:66:ad: a9:21:32:74:37:e3:09:e9:ec:90:e0:1f:c2:c2:aa: 47:84:01:08:a9:9f:71:97:9b:d9:a9:4d:50:76:9f: 9f:00:69:7a:87:e2:15:2d:e3:8c:1a:a7:90:61:db: 82:90:a3:67:61:6a:e6:9c:b5:4b:33:4c:73:ff:f9: 34:33:31:2d:07:3b:71:da:1d:06:c7:bf:ea:0d:8d: de:86:f4:64:6c:07:5e:80:12:ed:97:0c:50:b3:ab: 3b:c2:57:9e:60:05:c2:4d:79:fb:b5:7b:08:0c:2a: ea:5a:a4:25:c2:57:b8:2f:90:91:4a:17:7c:b8:be: 5a:87:88:bd:31:24:80:59:da:cc:fe:cc:70:9e:ff: 95:a2:92:4d:1b:a2:ed:18:21:af:22:e0:45:3e:af: b0:8c:6f:ae:c5:1d:3b:c1:5d:13:f4:22:6f:58:d9: d2:1e:41:e8:cb:14:cd:e2:20:d5:62:38:37:e7:df: 32:52:3c:d5:69:b2:55:b3:e7:7d:c7:38:a3:f6:93: 64:9c:e2:a6:d0:6b:4b:ac:7d:35:a8:f8:41:8e:2e: 50:93:d6:c5:9a:07:3c:f4:2f:66:ba:ac:63:a2:d9: d2:3b:4f:7a:fb:f3:54:d8:ff:a3:55:fc:28:13:46: 0d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1D:07:3A:D5:DB:61:87:84:E3:4E:E1:49:1C:1D:BE:AA:B9:15:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4448c9ac-4024-4f85-a898-bad42919a19c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.153.0.0/16 Signature Algorithm: sha256WithRSAEncryption 98:82:aa:8a:21:b7:28:84:c6:2f:53:81:68:6b:63:e9:94:ba: e8:c7:91:8f:f1:08:f3:df:7c:2b:6e:d6:63:88:57:de:19:a2: fd:12:da:88:58:17:f9:d7:ef:d8:51:bd:c2:5e:c5:81:c8:4f: c0:84:1b:3c:6c:fd:49:e0:e5:ba:1a:bf:37:0f:7e:82:f9:db: 03:23:30:04:4e:a1:43:4e:19:cb:52:b1:99:cf:94:dc:40:15: 9c:cb:08:55:b5:19:ae:e0:f1:2f:f5:e3:75:a1:6b:09:31:48: 01:de:ab:45:a4:bc:6b:09:2a:b5:07:5b:f6:d9:8b:7b:af:e1: 24:63:ab:f0:bb:79:72:4c:37:16:9c:34:57:af:1b:af:77:73: 1c:e4:6f:d9:87:13:ae:6e:9e:2d:82:73:ab:c5:7e:ac:db:d7: 2f:a4:8e:5d:47:50:80:53:61:2c:2e:eb:97:c5:28:51:9a:1b: 64:62:ef:48:98:04:ef:d0:9f:b7:59:d1:c9:ca:c2:e1:90:42: a3:6e:ea:ef:1e:26:4e:1d:93:b2:ec:7f:89:5f:53:47:c6:33: 79:32:de:a0:1f:9c:6e:19:08:73:f3:ce:2b:ce:bd:42:9e:7c: b9:6a:73:3d:51:73:d5:0a:da:d0:70:98:0d:13:cb:e9:18:af: 9a:0b:a7:0d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIxr/MNPxOq7AMKIzvcPmJJPTCA0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2FkOGE3YjMyN2NiYzA1MTc4NzUxZjRiNzU2YjUxNTEx MTg4M2VmOTIxYjViM2MxZTU5MmM3OWYxOTM5MDY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCj71w9h7vIsE/U4IJmrakhMnQ34wnp7JDgH8LCqkeEAQip n3GXm9mpTVB2n58AaXqH4hUt44wap5Bh24KQo2dhauactUszTHP/+TQzMS0HO3Ha HQbHv+oNjd6G9GRsB16AEu2XDFCzqzvCV55gBcJNefu1ewgMKupapCXCV7gvkJFK F3y4vlqHiL0xJIBZ2sz+zHCe/5Wikk0bou0YIa8i4EU+r7CMb67FHTvBXRP0Im9Y 2dIeQejLFM3iINViODfn3zJSPNVpslWz533HOKP2k2Sc4qbQa0usfTWo+EGOLlCT 1sWaBzz0L2a6rGOi2dI7T3r781TY/6NV/CgTRg0HAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3R0HOtXbYYeE407hSRwdvqq5FbEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0NDhjOWFjLTQwMjQtNGY4NS1hODk4LWJhZDQyOTE5YTE5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQmTANBgkqhkiG9w0BAQsFAAOCAQEAmIKqiiG3KITGL1OBaGtj6ZS66MeR j/EI8998K27WY4hX3hmi/RLaiFgX+dfv2FG9wl7FgchPwIQbPGz9SeDluhq/Nw9+ gvnbAyMwBE6hQ04Zy1Kxmc+U3EAVnMsIVbUZruDxL/XjdaFrCTFIAd6rRaS8awkq tQdb9tmLe6/hJGOr8Lt5ckw3Fpw0V68br3dzHORv2YcTrm6eLYJzq8V+rNvXL6SO XUdQgFNhLC7rl8UoUZobZGLvSJgE79Cft1nRycrC4ZBCo27q7x4mTh2Tsux/iV9T R8YzeTLeoB+cbhkIc/POK869Qp58uWpzPVFz1Qra0HCYDRPL6RivmgunDQ== -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:58 2024 by rpki-client on console-ams.rpki-client.org