$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55df95b1-8dcd-446c-acf2-48bf57c934d1.roa File: 55df95b1-8dcd-446c-acf2-48bf57c934d1.roa (raw, json) Hash identifier: pLwavRnQO+dm7niwRzx88Xvcj9u71I14NoBAmpWaXq0= Subject key identifier: 4D:E6:53:BB:7E:B4:70:21:5C:B5:A3:2F:6D:C0:1B:01:03:FD:71:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4793327D1D21F8F03CB7B0D7B46E5299CF89C6E6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55df95b1-8dcd-446c-acf2-48bf57c934d1.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:93:32:7d:1d:21:f8:f0:3c:b7:b0:d7:b4:6e:52:99:cf:89:c6:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=ed1c717b2fc07cae924c862c460975ed68d478f197df9a769d9d3baf823433cb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b0:6c:72:75:09:24:97:6c:17:d0:3d:d1:76: d7:ee:8d:94:d9:54:7a:ca:aa:b4:66:32:04:50:d9: 8a:c3:24:c8:ef:dd:d0:79:9e:99:bc:a1:be:50:10: 74:3c:65:9d:26:fa:92:e8:32:2c:f1:ca:26:26:7b: fd:19:4a:72:7e:ad:33:79:58:36:b3:eb:cd:56:95: 2a:f1:08:fd:e2:30:57:ad:3e:9f:44:50:ed:8a:e6: 99:4d:c4:b4:7e:cd:61:4c:72:89:87:02:41:ad:38: 1a:de:58:1d:dd:8a:95:10:cc:58:22:c1:23:65:24: a8:2a:ad:27:de:66:ce:56:d3:4c:85:65:76:e1:90: 91:9e:4d:8c:5b:b0:71:14:38:0e:68:42:56:05:20: 80:aa:11:20:b1:1e:b4:f9:b4:cd:d6:bd:b0:72:c7: 5f:06:30:4c:7f:55:74:14:43:0b:c9:a5:56:ee:56: 75:4a:d0:9d:6d:1c:9b:d2:04:0f:13:0c:1a:51:ec: 4f:e8:c1:8d:00:75:ab:a6:20:35:dc:6c:61:01:5e: 8f:01:65:e8:f7:d8:67:4d:ef:c5:8b:57:b7:86:d1: 23:ec:ae:7a:21:f9:81:2d:cd:45:02:32:b0:5c:e0: c9:94:11:cc:4e:19:2e:d4:f5:fa:20:f7:48:fc:4c: b0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:E6:53:BB:7E:B4:70:21:5C:B5:A3:2F:6D:C0:1B:01:03:FD:71:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/55df95b1-8dcd-446c-acf2-48bf57c934d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.208.0/22 Signature Algorithm: sha256WithRSAEncryption 99:00:f9:2a:62:97:21:ff:68:c8:c0:f2:cd:b5:00:79:3d:03: 0e:7e:01:87:f5:fd:28:50:12:d6:40:7e:e6:42:3d:1f:49:87: 60:2d:22:a7:e0:2a:26:fd:f2:c4:f7:85:97:2f:4e:00:6c:47: 49:c6:59:9c:27:70:5e:c7:75:1d:2a:5c:3a:e3:5b:80:f2:25: b9:6d:4f:2f:b3:ac:77:9f:fe:c4:2f:a3:c3:e7:d6:ff:28:c7: 29:ed:91:b2:e3:b7:f0:29:7b:77:4b:96:6a:03:3f:f3:79:c2: 10:04:40:74:5f:d2:9e:1d:c6:b6:fb:36:40:92:9d:44:6c:1b: d1:72:20:3b:e3:ad:23:99:78:88:dc:ed:90:94:f6:a5:18:0b: f8:55:c8:3c:3c:f0:c5:5e:c2:17:be:c9:0e:ea:60:cc:a3:b5: b1:87:8d:39:9b:9f:c7:37:67:54:d4:72:b2:b1:65:5c:d2:00: 7d:5b:2a:21:82:94:49:d0:a1:e0:e1:13:6d:f5:53:a5:38:db: b0:d3:ed:2b:60:9f:76:7d:48:43:40:27:35:32:3c:2a:5e:1d: 3b:7c:89:cc:ca:27:91:53:42:87:53:4a:b7:36:8a:2f:80:c8: 4c:d7:ab:12:3d:55:b3:51:f4:3c:55:59:32:ee:39:40:ab:45: fc:1f:c2:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR5MyfR0h+PA8t7DXtG5Smc+JxuYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDFjNzE3YjJmYzA3Y2FlOTI0Yzg2MmM0NjA5NzVlZDY4 ZDQ3OGYxOTdkZjlhNzY5ZDlkM2JhZjgyMzQzM2NiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClsGxydQkkl2wX0D3RdtfujZTZVHrKqrRmMgRQ2YrDJMjv 3dB5npm8ob5QEHQ8ZZ0m+pLoMizxyiYme/0ZSnJ+rTN5WDaz681WlSrxCP3iMFet Pp9EUO2K5plNxLR+zWFMcomHAkGtOBreWB3dipUQzFgiwSNlJKgqrSfeZs5W00yF ZXbhkJGeTYxbsHEUOA5oQlYFIICqESCxHrT5tM3WvbByx18GMEx/VXQUQwvJpVbu VnVK0J1tHJvSBA8TDBpR7E/owY0AdaumIDXcbGEBXo8BZej32GdN78WLV7eG0SPs rnoh+YEtzUUCMrBc4MmUEcxOGS7U9fog90j8TLDzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTeZTu360cCFctaMvbcAbAQP9cRswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1ZGY5NWIxLThkY2QtNDQ2Yy1hY2YyLTQ4YmY1N2M5MzRkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjTtAwDQYJKoZIhvcNAQELBQADggEBAJkA+SpilyH/aMjA8s21AHk9Aw5+ AYf1/ShQEtZAfuZCPR9Jh2AtIqfgKib98sT3hZcvTgBsR0nGWZwncF7HdR0qXDrj W4DyJbltTy+zrHef/sQvo8Pn1v8oxyntkbLjt/Ape3dLlmoDP/N5whAEQHRf0p4d xrb7NkCSnURsG9FyIDvjrSOZeIjc7ZCU9qUYC/hVyDw88MVewhe+yQ7qYMyjtbGH jTmbn8c3Z1TUcrKxZVzSAH1bKiGClEnQoeDhE231U6U427DT7Stgn3Z9SENAJzUy PCpeHTt8iczKJ5FTQodTSrc2ii+AyEzXqxI9VbNR9DxVWTLuOUCrRfwfwkc= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:03 2024 by rpki-client on console-ams.rpki-client.org