$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a88b58b-3e28-4123-bc14-f0898160e546.roa File: 5a88b58b-3e28-4123-bc14-f0898160e546.roa (raw, json) Hash identifier: jTgj7eORbYykL2MrDkY6zLyl2zsAWpZJDCf1mPCICWw= Subject key identifier: BF:09:3A:8E:D5:6D:29:05:B4:9D:D6:24:A4:5B:98:FC:D6:6D:4A:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20C0F67EF7DA760CA5093E07BF25A02F8B15E280 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a88b58b-3e28-4123-bc14-f0898160e546.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 71.143.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:c0:f6:7e:f7:da:76:0c:a5:09:3e:07:bf:25:a0:2f:8b:15:e2:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=1c60f16307c4cb4d5cfc259f8bab5f084e7fed7cdeedfa084b94aa903d91baf1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1f:c4:ec:37:ec:d5:c3:15:29:33:24:40:4f: b9:46:9f:1a:9e:e7:f6:19:41:7e:97:81:2f:4a:2d: 10:b9:2b:9b:9d:76:e9:f8:6a:6c:13:bb:1f:ed:78: 4d:2d:a8:15:e8:0f:34:86:32:65:b5:89:0f:ad:32: c5:4d:ad:fe:84:f1:f5:6a:3a:54:fe:9d:b5:81:4c: 36:7b:18:22:69:a8:4e:08:6e:db:92:ea:5c:e5:38: 63:87:36:50:85:9f:f8:7f:80:da:8d:00:86:50:59: 86:5d:86:3e:ed:9e:8c:22:18:b2:cb:60:70:03:85: d9:35:db:ce:b5:be:95:e8:c1:8a:4d:38:18:0c:fb: 36:aa:4e:d4:93:e7:72:50:ba:7d:23:f4:e3:25:31: 8d:04:c6:2e:72:74:06:27:da:cd:ba:9e:a4:3e:56: 98:c1:a9:78:c2:ca:be:7b:4b:c5:48:07:1c:b6:80: 56:3d:f5:d4:99:02:b0:a6:77:21:b1:5e:62:98:1c: 63:79:b7:61:ea:36:74:e8:02:ab:47:ca:7e:74:4f: b6:a5:17:b4:43:71:c3:bd:40:be:6a:56:b8:c4:d4: ec:f3:6d:ab:67:b8:b6:47:ad:25:81:69:ed:00:81: 58:47:3f:29:d9:c6:36:c2:1a:bc:95:07:70:45:7a: 60:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:09:3A:8E:D5:6D:29:05:B4:9D:D6:24:A4:5B:98:FC:D6:6D:4A:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a88b58b-3e28-4123-bc14-f0898160e546.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.143.0.0/18 Signature Algorithm: sha256WithRSAEncryption 25:38:85:72:2d:6b:a3:00:03:bb:02:cb:03:e9:fb:37:0f:f5: 08:bf:e4:dc:d7:1e:ef:df:d9:e1:f0:f2:08:05:3b:91:be:f1: 93:aa:e5:05:fe:eb:cb:07:59:32:86:47:e8:d0:b6:d5:b3:b0: 2e:78:b9:c1:96:7c:6a:02:75:be:ce:a3:29:26:84:8c:74:04: 0a:06:81:f2:4f:14:5d:c8:f7:b1:1b:74:ea:9b:aa:4d:2f:ae: 1f:70:bd:c3:fa:a7:99:48:4e:31:e7:6b:d2:41:5a:c3:d1:2e: 17:14:51:6b:c4:99:21:02:f4:3f:1a:af:f7:1f:bf:9f:5a:82: 83:ac:81:d3:42:9f:2a:51:73:d8:0a:e3:5c:1b:9c:1a:91:34: 70:11:09:69:15:90:75:54:45:58:57:32:bf:29:ab:f0:9d:b2: 6a:75:0d:bf:3e:85:ca:12:c2:48:f9:07:dc:b8:ba:cf:e2:ab: 6e:e6:30:86:5e:18:20:8c:47:ed:78:4d:d5:ad:58:4f:94:ff: 5e:94:df:07:ce:6c:06:97:8d:c8:4f:b2:55:ee:b8:58:67:27: 26:09:4d:d2:61:bf:c9:ce:e0:42:4e:3f:8e:24:1a:99:69:91: 97:77:5c:0f:f7:04:a1:cb:2f:9a:51:0d:b4:79:45:60:a3:8e: d4:da:f7:17 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIMD2fvfadgylCT4HvyWgL4sV4oAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzYwZjE2MzA3YzRjYjRkNWNmYzI1OWY4YmFiNWYwODRl N2ZlZDdjZGVlZGZhMDg0Yjk0YWE5MDNkOTFiYWYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0H8TsN+zVwxUpMyRAT7lGnxqe5/YZQX6XgS9KLRC5K5ud dun4amwTux/teE0tqBXoDzSGMmW1iQ+tMsVNrf6E8fVqOlT+nbWBTDZ7GCJpqE4I btuS6lzlOGOHNlCFn/h/gNqNAIZQWYZdhj7tnowiGLLLYHADhdk12861vpXowYpN OBgM+zaqTtST53JQun0j9OMlMY0Exi5ydAYn2s26nqQ+VpjBqXjCyr57S8VIBxy2 gFY99dSZArCmdyGxXmKYHGN5t2HqNnToAqtHyn50T7alF7RDccO9QL5qVrjE1Ozz batnuLZHrSWBae0AgVhHPynZxjbCGryVB3BFemDXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvwk6jtVtKQW0ndYkpFuY/NZtSgUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhODhiNThiLTNlMjgtNDEyMy1iYzE0LWYwODk4MTYwZTU0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZHjwAwDQYJKoZIhvcNAQELBQADggEBACU4hXIta6MAA7sCywPp+zcP9Qi/ 5NzXHu/f2eHw8ggFO5G+8ZOq5QX+68sHWTKGR+jQttWzsC54ucGWfGoCdb7Ooykm hIx0BAoGgfJPFF3I97EbdOqbqk0vrh9wvcP6p5lITjHna9JBWsPRLhcUUWvEmSEC 9D8ar/cfv59agoOsgdNCnypRc9gK41wbnBqRNHARCWkVkHVURVhXMr8pq/Cdsmp1 Db8+hcoSwkj5B9y4us/iq27mMIZeGCCMR+14TdWtWE+U/16U3wfObAaXjchPslXu uFhnJyYJTdJhv8nO4EJOP44kGplpkZd3XA/3BKHLL5pRDbR5RWCjjtTa9xc= -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:38 2024 by rpki-client on console-ams.rpki-client.org