$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/461512e0-a72b-4e95-b675-27ac531c5460.roa File: 461512e0-a72b-4e95-b675-27ac531c5460.roa (raw, json) Hash identifier: Rn+v0j0Nh/tD8VpQ+rmcSHI+Nr2P5Rgzt8Uo8NMAGM0= Subject key identifier: EF:AB:7F:4E:99:FD:B0:AC:86:93:30:1B:F4:60:D6:6D:CB:5C:25:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6DB711F696AEDD287DB09F428FAE9AB252B0DF00 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/461512e0-a72b-4e95-b675-27ac531c5460.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.115.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:b7:11:f6:96:ae:dd:28:7d:b0:9f:42:8f:ae:9a:b2:52:b0:df:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=f0377b461f7336276e52d4e69ea9906da152d9b864a17a80e07b1d0d06d42d1d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0d:32:b7:71:0f:81:c9:40:0a:77:a2:71:7a: a1:d7:3a:f0:de:9e:22:de:96:b4:80:26:e9:23:02: e4:94:1f:43:ab:5d:53:52:0e:a1:8a:92:b7:d8:2b: 18:f7:f7:f2:0e:5d:b1:e4:c1:72:35:b1:b6:4a:d4: 4e:78:4b:4e:89:e7:30:a5:96:60:0e:5c:09:08:ff: 5b:54:c8:2a:aa:51:6c:c5:37:2b:bf:43:75:bb:23: 50:fa:15:80:9b:e8:92:c6:03:81:4e:47:b0:b1:9d: 19:4e:e7:b5:77:11:7a:de:e1:63:09:3c:e7:6f:d0: 63:5d:b2:e0:08:4b:f7:41:90:e5:9c:e2:aa:aa:b2: 2d:f7:32:a7:da:37:90:c5:18:fb:1e:52:b6:de:e7: 14:fc:f3:69:68:53:be:b1:4e:06:48:fc:4e:6b:d5: 04:1e:e1:20:54:de:9f:8e:72:e4:f3:90:0d:4e:34: 23:ec:a1:2f:d7:44:99:19:24:e7:2b:5a:18:58:52: 34:3b:ea:ca:c6:5a:b3:3c:3d:72:e0:6b:40:c4:85: b7:eb:7e:dc:71:ac:63:51:49:4b:6b:94:00:2d:14: 31:7b:2b:72:78:79:87:5a:a5:a9:55:c2:81:4f:7b: 63:33:27:00:53:85:45:bf:20:95:42:d2:1b:ca:b5: ba:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:AB:7F:4E:99:FD:B0:AC:86:93:30:1B:F4:60:D6:6D:CB:5C:25:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/461512e0-a72b-4e95-b675-27ac531c5460.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.115.0.0/16 Signature Algorithm: sha256WithRSAEncryption 36:a3:b2:17:f4:4c:6f:e3:f3:67:74:04:4a:6a:6c:5d:48:91: a9:47:7a:e7:95:e5:cb:d5:6a:c4:76:11:87:16:85:60:f1:53: 8b:3a:c4:32:83:8e:d5:c9:0f:cb:17:f1:5b:37:01:a9:72:bd: f7:a1:d3:56:ff:7f:ff:a4:e5:e0:04:37:15:d3:d4:22:d3:a9: 4f:ae:dd:c8:d1:1a:e3:9a:dc:2a:88:c3:d3:20:96:08:10:29: 6d:8e:77:74:62:79:6d:b5:6a:f6:2b:22:aa:42:e2:e8:35:80: 18:21:fa:9a:59:e6:94:24:d0:80:a6:cc:a6:59:12:69:e2:cf: 05:ad:57:ef:44:e0:93:67:3d:ac:f1:80:ec:f1:8b:1f:16:8e: 0e:dd:ac:62:51:c6:00:fc:cf:35:fc:07:c3:e2:e5:23:d6:73: 51:7d:7a:f1:ce:ec:6c:d5:88:0b:76:04:fb:ad:5b:19:0f:87: 01:f7:f3:6b:90:5b:ab:c4:0f:dc:c4:d1:14:17:00:11:93:d1: c5:b2:77:d5:ea:e2:b4:ab:f3:59:70:be:16:37:81:3c:91:9d: 80:b3:62:ef:34:33:41:50:f8:43:37:19:a0:fc:e9:cd:c3:1f: 45:fb:31:8e:ea:f5:46:14:03:b7:df:6c:3d:27:de:5d:ca:d1: 24:b5:45:6c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbbcR9pau3Sh9sJ9Cj66aslKw3wAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDM3N2I0NjFmNzMzNjI3NmU1MmQ0ZTY5ZWE5OTA2ZGEx NTJkOWI4NjRhMTdhODBlMDdiMWQwZDA2ZDQyZDFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaDTK3cQ+ByUAKd6JxeqHXOvDeniLelrSAJukjAuSUH0Or XVNSDqGKkrfYKxj39/IOXbHkwXI1sbZK1E54S06J5zCllmAOXAkI/1tUyCqqUWzF Nyu/Q3W7I1D6FYCb6JLGA4FOR7CxnRlO57V3EXre4WMJPOdv0GNdsuAIS/dBkOWc 4qqqsi33MqfaN5DFGPseUrbe5xT882loU76xTgZI/E5r1QQe4SBU3p+OcuTzkA1O NCPsoS/XRJkZJOcrWhhYUjQ76srGWrM8PXLga0DEhbfrftxxrGNRSUtrlAAtFDF7 K3J4eYdapalVwoFPe2MzJwBThUW/IJVC0hvKtbpBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU76t/Tpn9sKyGkzAb9GDWbctcJXgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2MTUxMmUwLWE3MmItNGU5NS1iNjc1LTI3YWM1MzFjNTQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2czANBgkqhkiG9w0BAQsFAAOCAQEANqOyF/RMb+PzZ3QESmpsXUiRqUd6 55Xly9VqxHYRhxaFYPFTizrEMoOO1ckPyxfxWzcBqXK996HTVv9//6Tl4AQ3FdPU ItOpT67dyNEa45rcKojD0yCWCBApbY53dGJ5bbVq9isiqkLi6DWAGCH6mlnmlCTQ gKbMplkSaeLPBa1X70Tgk2c9rPGA7PGLHxaODt2sYlHGAPzPNfwHw+LlI9ZzUX16 8c7sbNWIC3YE+61bGQ+HAffza5Bbq8QP3MTRFBcAEZPRxbJ31eritKvzWXC+FjeB PJGdgLNi7zQzQVD4QzcZoPzpzcMfRfsxjur1RhQDt99sPSfeXcrRJLVFbA== -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:58 2024 by rpki-client on console-ams.rpki-client.org