$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48542cc9-844a-4ee0-bc35-7880a7b1e734.roa File: 48542cc9-844a-4ee0-bc35-7880a7b1e734.roa (raw, json) Hash identifier: /xqlyNL+DfXdvyxVUqyJl0SbWefFSGHy/eN8SPXQY1M= Subject key identifier: 92:DA:24:B4:97:AE:72:25:32:7B:A0:5C:D5:E1:D0:AE:74:23:8B:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09E0CD7D04C4A66F8C5018A384A3D1AD17C11DA4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48542cc9-844a-4ee0-bc35-7880a7b1e734.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 35.44.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:e0:cd:7d:04:c4:a6:6f:8c:50:18:a3:84:a3:d1:ad:17:c1:1d:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=2be2766ce137350fa13f48565b2f95adc4f0dd62c943d0c218449ec9a47780fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:20:82:7b:71:6e:9a:d4:fc:51:99:0a:1e:66: 12:1a:9d:21:4f:1c:8a:07:ac:3c:9f:d4:1c:e9:5d: 29:c3:fe:fb:1d:e4:fd:ec:f0:01:00:41:fb:18:39: f1:67:b4:24:d6:11:cb:ab:b0:c8:9c:1c:d8:23:bb: 0a:59:47:cb:27:b4:f7:19:bf:27:f3:ac:21:b8:24: f6:9e:74:2c:d6:4b:ad:82:49:a2:e7:fe:0a:90:35: 81:d5:51:03:a8:a5:1b:69:f6:dc:a9:51:b2:c6:a6: 96:4f:ba:d0:3c:04:37:4a:3e:ab:0e:d2:66:a8:5d: 11:e6:92:48:81:5f:a0:43:ca:62:e4:89:63:54:37: 3e:50:9d:9f:ec:a7:b9:54:75:45:c6:22:a2:5b:04: 32:06:42:4d:08:9b:7d:18:29:cb:4a:5b:4e:e0:21: e7:47:25:2e:7a:8f:5a:12:92:60:44:1d:5b:ef:4e: 21:ad:67:83:29:4f:91:6c:03:33:4a:2c:cc:88:9a: ae:4d:ad:01:ef:c7:69:f4:3f:54:ee:67:e5:af:2e: bf:44:ee:62:5c:ce:77:e4:b0:15:21:40:94:69:20: 1e:54:a5:12:89:e6:d9:ce:0b:c9:70:f2:b5:08:59: 02:db:d7:b2:53:50:83:64:51:8b:59:76:5b:6d:6b: f8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:DA:24:B4:97:AE:72:25:32:7B:A0:5C:D5:E1:D0:AE:74:23:8B:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48542cc9-844a-4ee0-bc35-7880a7b1e734.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.44.0.0/15 Signature Algorithm: sha256WithRSAEncryption 4b:1c:fe:75:13:1d:02:f6:93:8b:35:1a:9a:3b:e6:39:0c:ca: c4:4b:df:78:05:dc:92:af:60:a7:13:3b:22:84:7b:1e:b2:6f: 80:cd:0c:d9:01:af:95:a0:cd:43:5a:14:ec:d0:0b:c1:0c:84: ec:d1:8f:a4:ad:66:48:b9:00:ea:41:9b:f3:0a:7f:f8:7e:08: de:45:24:79:7c:0f:3f:fd:65:62:2b:4d:41:f6:69:b8:87:45: b5:e0:6e:8e:0f:12:2d:d2:92:c6:cf:0a:fe:82:2f:e6:0a:f1: d9:19:dc:ba:48:b9:0f:90:c4:49:a5:5f:3d:f2:d8:12:4a:96: e9:ca:f3:b4:5b:e7:f1:bc:b4:c9:9b:3e:46:a3:8f:4a:64:c6: 52:4f:aa:c3:47:fc:2f:6d:3f:68:26:7e:ea:2b:25:1e:e2:fa: bd:a7:46:33:ec:04:05:45:db:ae:65:8d:75:8d:cc:58:ec:ae: 19:71:b9:b8:75:db:93:32:94:ad:27:f5:74:f5:a1:11:88:f0: a6:88:4c:e3:92:eb:75:fd:86:45:16:2c:43:bf:ac:86:5c:23: 3f:49:35:eb:eb:b2:7a:bc:2d:a3:43:49:6b:c8:a7:db:b8:ee: 39:c8:ef:de:1b:ba:8c:8e:f0:10:ae:09:74:a0:6e:3a:50:ee: 8d:9b:ff:01 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCeDNfQTEpm+MUBijhKPRrRfBHaQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmUyNzY2Y2UxMzczNTBmYTEzZjQ4NTY1YjJmOTVhZGM0 ZjBkZDYyYzk0M2QwYzIxODQ0OWVjOWE0Nzc4MGZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuIIJ7cW6a1PxRmQoeZhIanSFPHIoHrDyf1BzpXSnD/vsd 5P3s8AEAQfsYOfFntCTWEcursMicHNgjuwpZR8sntPcZvyfzrCG4JPaedCzWS62C SaLn/gqQNYHVUQOopRtp9typUbLGppZPutA8BDdKPqsO0maoXRHmkkiBX6BDymLk iWNUNz5QnZ/sp7lUdUXGIqJbBDIGQk0Im30YKctKW07gIedHJS56j1oSkmBEHVvv TiGtZ4MpT5FsAzNKLMyImq5NrQHvx2n0P1TuZ+WvLr9E7mJcznfksBUhQJRpIB5U pRKJ5tnOC8lw8rUIWQLb17JTUINkUYtZdltta/jHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUktoktJeuciUye6Bc1eHQrnQji2wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4NTQyY2M5LTg0NGEtNGVlMC1iYzM1LTc4ODBhN2IxZTczNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjLDANBgkqhkiG9w0BAQsFAAOCAQEASxz+dRMdAvaTizUamjvmOQzKxEvf eAXckq9gpxM7IoR7HrJvgM0M2QGvlaDNQ1oU7NALwQyE7NGPpK1mSLkA6kGb8wp/ +H4I3kUkeXwPP/1lYitNQfZpuIdFteBujg8SLdKSxs8K/oIv5grx2Rncuki5D5DE SaVfPfLYEkqW6crztFvn8by0yZs+RqOPSmTGUk+qw0f8L20/aCZ+6islHuL6vadG M+wEBUXbrmWNdY3MWOyuGXG5uHXbkzKUrSf1dPWhEYjwpohM45Lrdf2GRRYsQ7+s hlwjP0k16+uyerwto0NJa8in27juOcjv3hu6jI7wEK4JdKBuOlDujZv/AQ== -----END CERTIFICATE-----Generated at Fri Nov 22 02:07:57 2024 by rpki-client on console-fra.rpki-client.org