$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/507d4877-5d0b-4596-b195-24061fb28b45.roa File: 507d4877-5d0b-4596-b195-24061fb28b45.roa (raw, json) Hash identifier: qkk5jPgb/pWcrRcsLBAGwYIjHeSjD+ysAoOcvVj/aDg= Subject key identifier: B7:30:83:22:B8:B0:06:7C:DE:B3:8E:22:A4:2F:4A:2F:93:4C:A6:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AA70199E903A477A2EBBC92BC9210C7AB5905A5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/507d4877-5d0b-4596-b195-24061fb28b45.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.224.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:a7:01:99:e9:03:a4:77:a2:eb:bc:92:bc:92:10:c7:ab:59:05:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=ec966ce17461d1dfbdb1446b8c054b1d156106c4bbeed59da349b9082de38d2b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6f:69:2c:5b:fc:64:3c:8b:6e:ee:a9:47:a4: a0:a1:84:2e:ed:de:2f:c4:b5:f2:5c:1a:4e:ee:64: 93:5d:34:c2:22:ae:e8:28:98:d8:8b:8d:11:3d:4d: 74:e6:da:f3:e3:57:59:ae:7d:6c:c3:7a:25:cd:37: e9:cf:50:34:bc:6b:67:eb:88:37:e0:97:18:ad:8c: b3:f7:b4:79:f6:11:b5:11:16:8f:a5:c7:28:44:a8: 25:d1:78:ba:81:a2:db:53:42:68:cd:a6:cd:c1:eb: e5:db:f0:fe:e8:28:b0:09:41:7f:5d:94:7d:7e:16: 73:0a:b3:ff:cd:cd:c8:ff:45:c9:c9:b7:d9:c7:a5: ad:87:f3:8d:21:20:6b:94:4c:0b:87:40:ea:82:1e: 9e:49:3a:e6:5b:00:30:78:b2:07:3f:5b:45:50:6f: 24:83:3c:5a:6d:da:30:14:b3:50:77:84:51:a9:6e: 93:11:7f:5e:44:da:a0:cd:b2:dd:25:2d:e9:b9:96: 05:91:89:a7:27:10:d5:56:c8:93:96:bb:8b:66:28: f5:49:7b:4d:0e:c7:28:41:82:3b:d1:47:3b:26:58: 51:a8:31:64:3a:2d:9b:34:fb:0d:d1:f5:45:be:fd: b3:53:3b:1d:53:2d:90:00:8c:c4:01:b0:f7:e2:86: d8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:30:83:22:B8:B0:06:7C:DE:B3:8E:22:A4:2F:4A:2F:93:4C:A6:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/507d4877-5d0b-4596-b195-24061fb28b45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.224.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0c:90:53:93:42:83:a6:a7:e3:58:ac:19:99:e2:b5:10:d2:df: 97:12:79:d0:a3:fb:39:a4:d7:fa:f2:aa:d8:15:41:c3:5c:26: 95:0f:70:a7:b8:41:0a:43:be:67:bf:af:ff:66:c4:f5:86:c9: 34:2f:21:82:a1:86:25:ba:ec:7b:d4:01:69:56:46:2c:88:e8: cf:28:ca:e6:c7:ed:af:35:5e:b9:c9:ab:18:6c:c4:cd:12:95: 0f:1b:1e:ce:49:18:6d:8c:50:8c:a2:d6:06:f7:9c:e4:d5:ad: 98:41:f3:fc:10:37:d5:9d:fa:be:fa:9c:cf:ae:5f:89:91:58: 3f:6c:7a:42:17:c4:2a:ea:77:93:5c:04:9d:38:63:80:12:ff: b8:3a:62:09:d7:06:9f:97:ab:ef:c7:ab:4a:26:ad:96:12:d3: 7e:03:22:65:a8:e0:46:64:a9:1b:e8:3e:26:70:e6:f3:f1:cb: 9f:47:06:0c:0a:fa:32:2f:21:04:16:50:a6:6e:d2:b6:73:86: 08:82:94:1f:4b:d8:5d:f9:6d:8f:37:f6:8a:66:2a:80:b8:ed: a5:db:88:07:69:b1:f2:bc:96:b8:13:20:56:af:36:b3:e0:37: 2e:1f:78:22:e0:fb:3a:28:86:c5:d7:14:59:c5:8b:5e:02:4b: e0:3f:93:ed -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOqcBmekDpHei67ySvJIQx6tZBaUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzk2NmNlMTc0NjFkMWRmYmRiMTQ0NmI4YzA1NGIxZDE1 NjEwNmM0YmJlZWQ1OWRhMzQ5YjkwODJkZTM4ZDJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRb2ksW/xkPItu7qlHpKChhC7t3i/EtfJcGk7uZJNdNMIi rugomNiLjRE9TXTm2vPjV1mufWzDeiXNN+nPUDS8a2friDfglxitjLP3tHn2EbUR Fo+lxyhEqCXReLqBottTQmjNps3B6+Xb8P7oKLAJQX9dlH1+FnMKs//Nzcj/RcnJ t9nHpa2H840hIGuUTAuHQOqCHp5JOuZbADB4sgc/W0VQbySDPFpt2jAUs1B3hFGp bpMRf15E2qDNst0lLem5lgWRiacnENVWyJOWu4tmKPVJe00OxyhBgjvRRzsmWFGo MWQ6LZs0+w3R9UW+/bNTOx1TLZAAjMQBsPfihtijAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtzCDIriwBnzes44ipC9KL5NMpvcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUwN2Q0ODc3LTVkMGItNDU5Ni1iMTk1LTI0MDYxZmIyOGI0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo4DANBgkqhkiG9w0BAQsFAAOCAQEADJBTk0KDpqfjWKwZmeK1ENLflxJ5 0KP7OaTX+vKq2BVBw1wmlQ9wp7hBCkO+Z7+v/2bE9YbJNC8hgqGGJbrse9QBaVZG LIjozyjK5sftrzVeucmrGGzEzRKVDxsezkkYbYxQjKLWBvec5NWtmEHz/BA31Z36 vvqcz65fiZFYP2x6QhfEKup3k1wEnThjgBL/uDpiCdcGn5er78erSiatlhLTfgMi ZajgRmSpG+g+JnDm8/HLn0cGDAr6Mi8hBBZQpm7StnOGCIKUH0vYXfltjzf2imYq gLjtpduIB2mx8ryWuBMgVq82s+A3Lh94IuD7OiiGxdcUWcWLXgJL4D+T7Q== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:02 2024 by rpki-client on console-ams.rpki-client.org