$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59e261ac-4fa0-46a8-9673-10e12b07f88e.roa File: 59e261ac-4fa0-46a8-9673-10e12b07f88e.roa (raw, json) Hash identifier: vVTc18f+Oajd/Jb+o2cuaKvkMEYyOpQrjbsI9lGu3cU= Subject key identifier: 5B:BC:FF:2D:51:9F:95:0A:CE:F2:3E:24:B5:05:F0:35:41:D0:A4:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11BA1E2D357E3C1B625CCB630847AB01965C3879 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59e261ac-4fa0-46a8-9673-10e12b07f88e.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 142.54.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ba:1e:2d:35:7e:3c:1b:62:5c:cb:63:08:47:ab:01:96:5c:38:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=3a41ca9f1e734248072b10e058b8df85ac51a42061f8acbeb66527b9a4373d1d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:65:c5:6a:66:04:48:74:9d:7b:ca:9a:23:64: ca:6d:3f:c2:d6:4b:7a:17:6b:06:1b:3b:dc:c5:7f: 7a:5b:b4:dc:8f:a8:d1:3b:d9:dc:d7:85:38:3e:c8: 8a:42:d7:1c:22:f6:a7:e9:58:cd:5f:81:38:4c:23: b7:b3:6c:e2:32:88:96:13:ad:8a:90:dd:87:76:b9: 10:f2:fd:8a:0a:3a:3f:7e:05:f2:bb:50:c4:27:e0: aa:fe:4b:fd:9f:33:b8:93:fa:8c:40:04:55:0d:2a: d2:00:d2:80:70:0b:57:b2:6b:e5:39:a8:c8:56:34: c5:1e:1b:04:89:be:3a:67:52:b9:f6:fb:20:16:61: ed:e0:54:1b:c2:6e:da:0a:b6:35:22:97:b2:1a:9a: 9c:44:cc:cc:26:ee:cd:0d:f5:94:fd:f5:81:8f:07: 0c:54:b1:12:28:ca:3a:56:f5:46:3d:5e:7d:ed:e3: 3f:bd:e1:a1:31:60:6e:c0:20:39:8d:b3:fd:89:e8: d7:f8:36:78:14:b1:02:72:d8:31:15:95:df:28:4b: 67:d3:a4:e7:68:30:96:55:07:ab:65:1d:6a:e9:2d: 3e:8d:2c:e2:05:9f:ce:10:d1:b0:e4:c1:25:7e:f6: 53:5e:82:04:47:39:13:ff:33:83:0d:22:d4:80:3e: ed:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:BC:FF:2D:51:9F:95:0A:CE:F2:3E:24:B5:05:F0:35:41:D0:A4:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59e261ac-4fa0-46a8-9673-10e12b07f88e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.54.128.0/19 Signature Algorithm: sha256WithRSAEncryption 29:e6:d6:b8:1f:4f:58:6d:15:51:31:af:ad:30:e1:58:63:40: d7:6d:ea:0f:92:eb:aa:99:b8:e5:2c:3c:ca:08:00:b1:d9:58: 2d:88:9f:80:e6:3b:a8:0f:79:a9:7a:60:61:7b:6d:3a:0b:95: eb:a0:50:bd:ec:8f:67:38:9d:b5:eb:98:34:00:5c:d4:35:0a: 19:a9:8f:b1:07:5e:db:64:29:97:ab:9a:1e:87:52:5a:63:56: f1:e6:29:cf:e4:0f:43:14:20:4f:a1:7b:ea:62:73:23:ca:09: 7a:01:5d:92:51:64:02:b2:4e:00:a1:04:a6:6d:b9:80:b7:18: ff:06:a7:37:0a:ff:54:91:46:d1:79:8f:5c:d9:f6:5f:5c:3b: 11:27:b9:27:d3:68:61:5a:6c:76:3a:6a:85:67:54:8e:52:3f: c0:62:0a:c8:3c:ac:74:4f:af:e1:20:87:30:05:74:66:46:1e: c2:ea:bf:0e:9d:d2:41:28:4e:36:f9:f5:c0:63:bc:94:f1:d9: 1d:b9:49:89:c3:2d:db:26:97:15:59:f9:72:a1:46:ae:6b:04: d6:2a:75:b3:5e:c9:62:48:da:5a:9c:ee:9d:bd:b9:27:c4:01: 53:37:23:03:90:74:26:27:6d:40:a5:fc:8c:a8:0e:35:16:aa: 08:00:4e:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEboeLTV+PBtiXMtjCEerAZZcOHkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAyMDAwMDAwWhcNMjQxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTQxY2E5ZjFlNzM0MjQ4MDcyYjEwZTA1OGI4ZGY4NWFj NTFhNDIwNjFmOGFjYmViNjY1MjdiOWE0MzczZDFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWZcVqZgRIdJ17ypojZMptP8LWS3oXawYbO9zFf3pbtNyP qNE72dzXhTg+yIpC1xwi9qfpWM1fgThMI7ezbOIyiJYTrYqQ3Yd2uRDy/YoKOj9+ BfK7UMQn4Kr+S/2fM7iT+oxABFUNKtIA0oBwC1eya+U5qMhWNMUeGwSJvjpnUrn2 +yAWYe3gVBvCbtoKtjUil7IampxEzMwm7s0N9ZT99YGPBwxUsRIoyjpW9UY9Xn3t 4z+94aExYG7AIDmNs/2J6Nf4NngUsQJy2DEVld8oS2fTpOdoMJZVB6tlHWrpLT6N LOIFn84Q0bDkwSV+9lNeggRHORP/M4MNItSAPu03AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUW7z/LVGflQrO8j4ktQXwNUHQpHEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5ZTI2MWFjLTRmYTAtNDZhOC05NjczLTEwZTEyYjA3Zjg4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWONoAwDQYJKoZIhvcNAQELBQADggEBACnm1rgfT1htFVExr60w4VhjQNdt 6g+S66qZuOUsPMoIALHZWC2In4DmO6gPeal6YGF7bToLleugUL3sj2c4nbXrmDQA XNQ1Chmpj7EHXttkKZermh6HUlpjVvHmKc/kD0MUIE+he+picyPKCXoBXZJRZAKy TgChBKZtuYC3GP8GpzcK/1SRRtF5j1zZ9l9cOxEnuSfTaGFabHY6aoVnVI5SP8Bi Csg8rHRPr+EghzAFdGZGHsLqvw6d0kEoTjb59cBjvJTx2R25SYnDLdsmlxVZ+XKh Rq5rBNYqdbNeyWJI2lqc7p29uSfEAVM3IwOQdCYnbUCl/IyoDjUWqggATiA= -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:38 2024 by rpki-client on console-ams.rpki-client.org