$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa File: 4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa (raw, json) Hash identifier: JsSnZBsXdoQqm4+bQIHN2Mtn61fDsWcnDTuzWjH+uoY= Subject key identifier: A2:9A:6F:73:21:54:8A:49:6A:F8:FA:89:79:D5:39:4A:F6:97:5B:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CE2E855DAD8DB0DE3CFB317EEDB10E156C13B89 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:e2:e8:55:da:d8:db:0d:e3:cf:b3:17:ee:db:10:e1:56:c1:3b:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=9ba7eaf91847569c5716f3c2b4377a18f648a69c4930c4d185053dc2bbdb9dd9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:58:b9:6f:d0:cd:56:41:3c:db:a6:3e:01:01: f7:06:a9:d6:15:74:ef:a4:aa:de:75:f6:8c:cf:3d: e7:f4:02:07:f1:e8:50:d3:af:11:b6:14:e0:1d:a6: 6e:f4:7c:3c:fa:20:8f:77:c4:35:f2:a7:59:0d:3b: 28:dd:82:c5:53:4d:36:e6:f2:01:82:86:36:eb:65: 0c:b9:e1:27:01:ff:2c:b7:df:3a:7e:e3:9f:ad:80: 37:5e:70:3e:51:0c:29:62:a0:97:62:0e:30:e2:fa: fd:43:62:2e:72:cf:15:53:ec:74:47:ed:47:c5:cf: c2:87:8d:b7:ed:68:f0:92:b4:99:cf:1e:00:52:93: f0:88:d5:90:f8:4e:b7:60:09:3a:fc:3b:d1:1b:eb: d1:b1:9d:5b:19:d0:24:c7:5a:f1:3b:f2:a8:99:17: b2:52:52:43:4c:ec:cd:02:69:55:98:b5:b5:ff:07: 8c:25:85:06:a7:5d:77:a8:92:db:47:a7:d7:50:fa: 22:dc:2f:ea:09:68:52:11:43:07:85:1d:42:00:2b: 61:34:be:10:a1:50:f9:fe:f3:c5:6d:a2:d7:a5:36: 99:12:a8:c2:b8:d1:dd:79:40:00:53:9a:88:00:30: b5:2c:4c:f3:51:bb:36:9d:d0:d5:5e:6f:a0:9f:02: 23:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:9A:6F:73:21:54:8A:49:6A:F8:FA:89:79:D5:39:4A:F6:97:5B:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.50.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:aa:c8:fd:4f:63:e9:96:fc:4b:db:23:6d:e4:df:5d:11:97: 31:eb:ea:90:29:c2:f9:2c:cb:eb:68:cd:29:84:a6:ec:09:45: 5b:1d:15:50:2d:4c:5f:9c:16:a5:da:05:ea:6a:c3:ae:fc:4d: 2a:81:6f:15:fc:eb:c4:1a:b8:7f:79:5c:de:c6:2e:71:9a:ad: d8:34:d9:1c:67:44:21:de:98:81:f7:27:9b:27:45:68:58:9d: 54:b3:7a:08:3c:c2:76:d6:4d:88:87:2b:1d:b0:f9:b1:c5:5c: a3:24:fc:bb:74:9a:e3:db:ff:4f:7b:ca:0a:32:6c:3f:33:56: ff:ec:61:6c:22:6d:e1:59:22:69:88:74:69:ea:98:9e:91:55: 71:ab:8f:49:d6:17:b9:c5:6a:69:44:5f:0e:f0:3a:4d:89:9e: 48:7c:38:19:64:8f:20:71:9f:a1:f9:a2:1a:d6:46:ff:cc:2b: 46:ba:19:1e:5a:7c:a1:cd:4a:7c:30:92:26:c8:9e:19:6b:f0: 8a:13:4f:e9:23:c9:84:87:9b:f6:ee:39:48:2a:39:0f:68:12: 59:6f:ae:70:5b:03:2a:b9:8b:39:8d:7c:c1:94:e1:d5:d7:d7: 29:8f:2a:b1:cd:47:03:8e:3c:61:67:86:fd:03:77:67:d9:df: 89:b7:c7:76 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfOLoVdrY2w3jz7MX7tsQ4VbBO4kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YmE3ZWFmOTE4NDc1NjljNTcxNmYzYzJiNDM3N2ExOGY2 NDhhNjljNDkzMGM0ZDE4NTA1M2RjMmJiZGI5ZGQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4WLlv0M1WQTzbpj4BAfcGqdYVdO+kqt519ozPPef0Agfx 6FDTrxG2FOAdpm70fDz6II93xDXyp1kNOyjdgsVTTTbm8gGChjbrZQy54ScB/yy3 3zp+45+tgDdecD5RDClioJdiDjDi+v1DYi5yzxVT7HRH7UfFz8KHjbftaPCStJnP HgBSk/CI1ZD4TrdgCTr8O9Eb69GxnVsZ0CTHWvE78qiZF7JSUkNM7M0CaVWYtbX/ B4wlhQanXXeokttHp9dQ+iLcL+oJaFIRQweFHUIAK2E0vhChUPn+88VtotelNpkS qMK40d15QABTmogAMLUsTPNRuzad0NVeb6CfAiOlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoppvcyFUiklq+PqJedU5SvaXW28wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjZjY3MjRmLTNhM2YtNDhkNC05Zjc5LWM1Nzg5NGEzMzZkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGIEjIwDQYJKoZIhvcNAQELBQADggEBAI2qyP1PY+mW/EvbI23k310RlzHr 6pApwvksy+tozSmEpuwJRVsdFVAtTF+cFqXaBepqw678TSqBbxX868QauH95XN7G LnGardg02RxnRCHemIH3J5snRWhYnVSzegg8wnbWTYiHKx2w+bHFXKMk/Lt0muPb /097ygoybD8zVv/sYWwibeFZImmIdGnqmJ6RVXGrj0nWF7nFamlEXw7wOk2Jnkh8 OBlkjyBxn6H5ohrWRv/MK0a6GR5afKHNSnwwkibInhlr8IoTT+kjyYSHm/buOUgq OQ9oEllvrnBbAyq5izmNfMGU4dXX1ymPKrHNRwOOPGFnhv0Dd2fZ34m3x3Y= -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:59 2024 by rpki-client on console-ams.rpki-client.org