$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530e2a2b-5bed-4da2-b97f-94f805d7cb4b.roa File: 530e2a2b-5bed-4da2-b97f-94f805d7cb4b.roa (raw, json) Hash identifier: hk227QxJbdcMvHLq8pCzV+t7533/QZ5j1M7hlTj3jrA= Subject key identifier: DD:66:21:AD:D5:AC:21:9E:54:07:FC:67:A3:2B:B0:87:46:04:27:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43EE6067D45A4AB5D3C3122634808D557823BD02 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530e2a2b-5bed-4da2-b97f-94f805d7cb4b.roa Signing time: Wed 06 Nov 2024 00:00:00 +0000 ROA not before: Wed 06 Nov 2024 00:00:00 +0000 ROA not after: Wed 11 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 65.37.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ee:60:67:d4:5a:4a:b5:d3:c3:12:26:34:80:8d:55:78:23:bd:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 6 00:00:00 2024 GMT Not After : Dec 11 23:59:59 2024 GMT Subject: serialNumber=ac6cb91db790eeee2517cdd0f2ae982e7e77e42ca58bf404c505a47103788b51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2a:45:6b:9b:24:5b:7d:b3:71:0c:07:56:f9: 12:6f:18:e4:bf:fa:42:c0:99:96:aa:22:2d:5e:b2: 74:e5:8c:67:c7:bb:75:9f:65:d5:7e:2c:aa:8a:a4: 7d:fe:3b:fe:b2:58:50:a4:1e:e4:99:37:1d:36:7d: 93:d4:f6:76:b8:97:ef:35:b2:05:26:6b:2d:94:c5: 76:df:a1:dd:82:f4:9f:83:8b:7a:f8:f8:8a:8c:4e: 86:43:66:2b:4b:17:9c:8f:54:27:26:21:85:ed:41: c3:7e:6a:04:74:43:b1:41:51:aa:9e:57:5b:b9:f4: 04:27:69:e5:c7:4d:8c:fb:a4:de:61:58:16:31:0b: c0:6c:0d:da:d2:5f:fd:df:78:ad:2a:d6:de:21:b3: 33:85:7a:e4:7d:89:1f:ad:d1:e6:c9:5a:26:a7:21: 8b:c5:6b:c4:f0:a9:39:17:ed:7c:0b:36:47:f5:9c: 3e:0c:d7:53:d5:6d:f3:52:c0:53:84:a4:2e:2c:bf: 01:94:3b:3e:1a:22:8e:d9:fd:a0:0b:53:0c:16:88: dc:a1:2d:4a:a1:ed:8e:6b:35:9f:86:ed:a2:2b:28: 62:72:27:8b:24:03:fa:55:2d:0e:e4:10:44:e2:f1: 57:90:61:89:3e:a3:e8:02:1e:2b:9e:ae:02:2b:3d: 16:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:66:21:AD:D5:AC:21:9E:54:07:FC:67:A3:2B:B0:87:46:04:27:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530e2a2b-5bed-4da2-b97f-94f805d7cb4b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.37.128.0/18 Signature Algorithm: sha256WithRSAEncryption 6c:49:1d:fe:20:4c:ad:cc:b1:da:c1:e3:2b:01:ed:27:3d:0d: 99:3b:b6:b2:af:46:04:21:8e:94:22:96:6f:cd:66:c6:9c:74: 12:8a:0d:57:1a:2d:20:fb:8f:e3:9e:a1:c2:1a:1d:fb:7c:4a: 85:c3:18:b5:4e:60:c5:c5:31:be:f2:b5:fc:02:30:ca:3e:c8: 07:71:56:3c:84:ab:a9:ee:54:f5:26:35:3b:7e:b5:e9:23:8b: 2c:4f:c1:3e:7d:a7:65:7d:f8:25:a2:b6:cc:36:d6:80:9b:56: e1:dc:51:63:a8:a0:fd:5f:90:b7:58:56:b5:e8:eb:49:f6:c2: 21:17:ec:6c:df:3a:d3:10:20:15:a8:3e:e3:ac:d8:e8:25:13: 4c:d8:75:74:75:71:4e:d2:c7:e3:57:48:f2:12:17:dc:69:12: 2c:ca:63:da:bf:fb:e1:f9:cd:18:95:54:83:fd:06:bc:32:91: 5f:54:91:25:28:6e:32:87:b7:f3:b6:a8:00:c2:48:d4:9e:35: a9:3c:b6:d6:38:77:40:6a:2a:29:f2:d7:9b:10:d3:e6:fe:84: 5d:8f:3c:41:60:ef:04:9c:ba:98:0e:ff:82:06:57:be:c0:de: 69:62:ac:b9:65:d6:87:7d:1b:35:4c:a8:4d:dc:3d:48:27:21: 86:be:e9:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ+5gZ9RaSrXTwxImNICNVXgjvQIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA2MDAwMDAwWhcNMjQxMjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzZjYjkxZGI3OTBlZWVlMjUxN2NkZDBmMmFlOTgyZTdl NzdlNDJjYTU4YmY0MDRjNTA1YTQ3MTAzNzg4YjUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+KkVrmyRbfbNxDAdW+RJvGOS/+kLAmZaqIi1esnTljGfH u3WfZdV+LKqKpH3+O/6yWFCkHuSZNx02fZPU9na4l+81sgUmay2UxXbfod2C9J+D i3r4+IqMToZDZitLF5yPVCcmIYXtQcN+agR0Q7FBUaqeV1u59AQnaeXHTYz7pN5h WBYxC8BsDdrSX/3feK0q1t4hszOFeuR9iR+t0ebJWianIYvFa8TwqTkX7XwLNkf1 nD4M11PVbfNSwFOEpC4svwGUOz4aIo7Z/aALUwwWiNyhLUqh7Y5rNZ+G7aIrKGJy J4skA/pVLQ7kEETi8VeQYYk+o+gCHiuergIrPRb/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3WYhrdWsIZ5UB/xnoyuwh0YEJ8IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMGUyYTJiLTViZWQtNGRhMi1iOTdmLTk0ZjgwNWQ3Y2I0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZBJYAwDQYJKoZIhvcNAQELBQADggEBAGxJHf4gTK3MsdrB4ysB7Sc9DZk7 trKvRgQhjpQilm/NZsacdBKKDVcaLSD7j+OeocIaHft8SoXDGLVOYMXFMb7ytfwC MMo+yAdxVjyEq6nuVPUmNTt+tekjiyxPwT59p2V9+CWitsw21oCbVuHcUWOooP1f kLdYVrXo60n2wiEX7GzfOtMQIBWoPuOs2OglE0zYdXR1cU7Sx+NXSPISF9xpEizK Y9q/++H5zRiVVIP9BrwykV9UkSUobjKHt/O2qADCSNSeNak8ttY4d0BqKiny15sQ 0+b+hF2PPEFg7wScupgO/4IGV77A3mlirLll1od9GzVMqE3cPUgnIYa+6WA= -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:34 2024 by rpki-client on console-ams.rpki-client.org