$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e73af41-699f-4191-a5fd-61d8359ba3ae.roa File: 4e73af41-699f-4191-a5fd-61d8359ba3ae.roa (raw, json) Hash identifier: 1+oJ2VQxd3ZBviNX9f/IWY96d5ODlYkAkiFYpNPCgrE= Subject key identifier: D2:C3:42:DA:13:6B:95:E0:60:02:B9:CB:45:D4:AD:4D:61:7B:EB:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CF5E91FF351FA604AB9DA0D4BC70B19CD2F0E36 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e73af41-699f-4191-a5fd-61d8359ba3ae.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 207.202.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:f5:e9:1f:f3:51:fa:60:4a:b9:da:0d:4b:c7:0b:19:cd:2f:0e:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=5d98ed496acccc85dc4a299be2de667e0fad705e0c48e2b88bc143f47a618c4c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c8:ae:9c:c6:8b:ee:b9:6e:67:69:2b:22:97: 2e:67:a6:c1:83:bd:a0:95:60:ea:af:b1:38:7a:f4: d3:be:3a:42:fa:2c:92:c1:5a:1c:86:5c:0d:63:76: ac:98:c9:b3:ee:52:af:9b:6e:e0:a7:ec:c4:38:0d: af:cc:cb:54:41:c4:ef:25:cb:7b:de:49:4d:b1:99: dd:11:f0:da:dd:90:12:0b:ef:c1:b4:9a:ef:e4:2b: 08:8a:d9:c1:f5:55:55:fc:9c:4c:60:8a:b9:5b:05: 2a:cf:f0:ca:71:67:21:ac:da:4a:14:76:f1:e1:fe: c8:aa:b2:dc:06:81:32:a5:fb:d7:c9:b8:db:9f:76: 80:b5:0e:6e:24:7a:46:96:29:55:79:52:19:30:0a: 29:d6:6f:52:84:9f:14:95:91:b4:8b:30:8a:0c:ef: 43:db:9e:03:33:c8:9f:18:05:19:d3:55:36:99:a3: 94:e3:1c:ed:de:74:c0:9e:69:6d:2b:6f:26:f3:9a: a4:c6:d4:f9:fe:53:5f:1c:bd:16:36:4d:71:31:27: bb:2c:ae:e3:0b:5d:c6:fe:96:51:4f:9d:06:b8:5b: 56:3d:f1:d4:d8:16:09:2b:51:8c:61:af:7b:cc:d1: eb:c9:d6:40:60:9c:a1:10:cd:db:4b:53:fa:8b:92: 1a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:C3:42:DA:13:6B:95:E0:60:02:B9:CB:45:D4:AD:4D:61:7B:EB:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e73af41-699f-4191-a5fd-61d8359ba3ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.202.128.0/17 Signature Algorithm: sha256WithRSAEncryption 1f:2b:d6:15:84:e0:33:08:5b:3b:2b:88:62:f1:89:c4:e4:c4: 2a:6c:8b:c1:86:4a:84:ff:c9:74:d7:3d:8c:c3:9e:80:46:a3: 86:1c:44:54:6a:f8:66:58:8d:35:87:6c:75:46:6e:57:88:e7: c2:00:6d:09:f9:53:85:c2:37:d9:e4:8c:94:00:05:c6:a5:33: 31:de:57:b6:70:55:cf:40:99:cb:eb:44:b4:98:e3:dc:b3:9d: e7:f3:dc:e6:9a:e4:9e:c3:ec:e5:d7:42:63:c4:25:d1:ee:56: 6c:84:6e:61:66:76:25:10:52:01:b0:08:7f:67:b8:b4:de:b9: ef:8a:2f:4f:9e:01:07:26:19:e2:f3:8d:c1:37:71:f4:e0:c8: 35:79:bc:1d:01:c2:5c:d9:6c:be:34:30:6b:25:ae:fc:16:8c: e2:33:4b:e4:c3:15:d5:d7:45:8a:19:68:84:90:a4:c9:c9:5a: 1e:4b:f9:11:cd:d2:32:9b:9a:e7:02:33:45:b5:fc:43:1b:bc: 5c:69:9c:6b:76:27:da:65:64:e1:4a:bb:0a:d6:cb:b5:b2:de: 16:65:9b:7d:5a:81:e4:56:54:b4:0b:c7:ad:c8:79:20:3a:5e: a9:95:ae:f4:f3:10:3d:35:74:e4:f8:14:64:0f:1c:e1:1d:4b: ac:43:d6:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbPXpH/NR+mBKudoNS8cLGc0vDjYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDk4ZWQ0OTZhY2NjYzg1ZGM0YTI5OWJlMmRlNjY3ZTBm YWQ3MDVlMGM0OGUyYjg4YmMxNDNmNDdhNjE4YzRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZyK6cxovuuW5naSsily5npsGDvaCVYOqvsTh69NO+OkL6 LJLBWhyGXA1jdqyYybPuUq+bbuCn7MQ4Da/My1RBxO8ly3veSU2xmd0R8NrdkBIL 78G0mu/kKwiK2cH1VVX8nExgirlbBSrP8MpxZyGs2koUdvHh/siqstwGgTKl+9fJ uNufdoC1Dm4kekaWKVV5UhkwCinWb1KEnxSVkbSLMIoM70PbngMzyJ8YBRnTVTaZ o5TjHO3edMCeaW0rbybzmqTG1Pn+U18cvRY2TXExJ7ssruMLXcb+llFPnQa4W1Y9 8dTYFgkrUYxhr3vM0evJ1kBgnKEQzdtLU/qLkhpxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0sNC2hNrleBgArnLRdStTWF764IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlNzNhZjQxLTY5OWYtNDE5MS1hNWZkLTYxZDgzNTliYTNhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfPyoAwDQYJKoZIhvcNAQELBQADggEBAB8r1hWE4DMIWzsriGLxicTkxCps i8GGSoT/yXTXPYzDnoBGo4YcRFRq+GZYjTWHbHVGbleI58IAbQn5U4XCN9nkjJQA BcalMzHeV7ZwVc9AmcvrRLSY49yznefz3Oaa5J7D7OXXQmPEJdHuVmyEbmFmdiUQ UgGwCH9nuLTeue+KL0+eAQcmGeLzjcE3cfTgyDV5vB0BwlzZbL40MGslrvwWjOIz S+TDFdXXRYoZaISQpMnJWh5L+RHN0jKbmucCM0W1/EMbvFxpnGt2J9plZOFKuwrW y7Wy3hZlm31ageRWVLQLx63IeSA6XqmVrvTzED01dOT4FGQPHOEdS6xD1uQ= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:01 2024 by rpki-client on console-ams.rpki-client.org