$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5aea638a-4add-4057-a257-151e3dabf638.roa File: 5aea638a-4add-4057-a257-151e3dabf638.roa (raw, json) Hash identifier: cXijBl/8iAOu6fAfX/KvOtuMiGfPnrZh1/Y8vD5xwNw= Subject key identifier: 8D:F8:CC:9B:D7:DB:D7:30:F2:20:72:EA:B3:E1:90:73:D7:8C:8B:74 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5AEE434E184E10584395D548152849CB8A9B1327 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5aea638a-4add-4057-a257-151e3dabf638.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:ee:43:4e:18:4e:10:58:43:95:d5:48:15:28:49:cb:8a:9b:13:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=95f9e1e09b4827b6adf146c436c226ebac2332f0b303b2fbcef3e2d444b43d9b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:19:ad:5a:3a:8c:a6:e1:50:10:a5:95:eb:55: 67:7d:69:d2:b9:3e:18:08:45:b6:23:96:fc:98:46: 75:6f:79:0c:71:09:cd:60:8e:6d:06:3a:39:db:94: 2a:3e:d8:bf:b3:7f:1c:b5:d6:a2:30:4c:88:4c:0c: 2d:3d:84:0e:95:97:eb:75:21:cf:9d:da:84:02:1f: 4f:64:8a:06:78:e6:40:c9:92:ba:a8:34:da:ac:59: 97:05:c9:c4:be:56:80:66:4b:d3:6b:24:48:60:1a: 71:3e:87:6b:e7:9c:97:ab:20:97:0e:05:0d:e8:7a: 9e:c2:8e:6f:e8:e7:a8:55:12:1e:08:78:0c:d3:6b: 7c:4b:0f:52:44:df:f9:3a:11:bc:e4:aa:c8:14:44: c9:07:38:41:b0:59:f7:80:1b:17:57:2c:d0:0c:57: 5a:75:16:1a:0d:98:bf:e5:e9:0d:98:34:31:0d:64: 7f:e1:a8:17:f8:90:86:c4:0c:c0:00:26:5e:ce:ec: 4c:32:0a:a5:f4:77:c3:88:4b:04:a2:58:da:5a:7b: 8a:1a:c5:a9:05:4d:dc:51:f5:53:b4:95:7a:dc:2d: bf:26:c3:31:08:a1:49:97:23:78:77:a9:24:80:1d: a8:17:14:91:88:45:33:9a:cd:52:4c:ad:e6:25:e6: 36:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F8:CC:9B:D7:DB:D7:30:F2:20:72:EA:B3:E1:90:73:D7:8C:8B:74 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5aea638a-4add-4057-a257-151e3dabf638.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.16.0/21 Signature Algorithm: sha256WithRSAEncryption d3:47:c5:fd:e1:9d:ca:d5:5a:67:6c:fe:00:7c:57:8b:02:ad: 29:03:87:38:59:b0:a1:0e:51:65:92:d0:cd:a3:90:30:73:06: 28:7d:01:6b:11:e0:a0:2f:d2:43:f9:ee:6d:cd:99:85:ac:00: 46:38:1f:6a:3b:7d:b5:c5:b6:bd:13:fb:61:48:96:9d:4a:e5: 9f:f6:99:8a:e2:8a:fb:89:54:41:a2:22:cb:7c:7c:54:f7:f9: d9:2c:58:3b:cb:59:6f:71:eb:85:18:7c:71:e8:68:eb:2d:2f: 93:04:78:52:9a:56:a3:8a:fd:4a:97:69:3e:8a:9c:73:32:b5: ae:84:3c:53:cd:10:63:00:f8:a8:71:d6:eb:16:5e:8f:79:d5: 0b:02:59:47:e5:a9:62:58:f4:88:99:48:75:f2:89:9b:23:23: 10:62:83:9a:a2:56:e5:6b:74:a8:f2:40:27:54:8d:5a:35:6c: cf:06:b8:50:89:ab:18:07:85:09:41:8a:e8:db:c5:12:2a:51: d4:9a:29:81:99:42:34:c2:1a:9c:3f:55:a0:50:24:34:65:4c: e6:30:f2:5c:9a:b5:fe:16:60:59:99:c5:b4:2e:56:aa:ff:47: 71:bc:63:a9:98:99:52:6a:7d:5d:8b:99:cd:57:41:29:9e:20: 2a:4a:47:10 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWu5DThhOEFhDldVIFShJy4qbEycwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWY5ZTFlMDliNDgyN2I2YWRmMTQ2YzQzNmMyMjZlYmFj MjMzMmYwYjMwM2IyZmJjZWYzZTJkNDQ0YjQzZDliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/Ga1aOoym4VAQpZXrVWd9adK5PhgIRbYjlvyYRnVveQxx Cc1gjm0GOjnblCo+2L+zfxy11qIwTIhMDC09hA6Vl+t1Ic+d2oQCH09kigZ45kDJ krqoNNqsWZcFycS+VoBmS9NrJEhgGnE+h2vnnJerIJcOBQ3oep7Cjm/o56hVEh4I eAzTa3xLD1JE3/k6EbzkqsgURMkHOEGwWfeAGxdXLNAMV1p1FhoNmL/l6Q2YNDEN ZH/hqBf4kIbEDMAAJl7O7EwyCqX0d8OISwSiWNpae4oaxakFTdxR9VO0lXrcLb8m wzEIoUmXI3h3qSSAHagXFJGIRTOazVJMreYl5ja3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjfjMm9fb1zDyIHLqs+GQc9eMi3QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhZWE2MzhhLTRhZGQtNDA1Ny1hMjU3LTE1MWUzZGFiZjYzOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjTRAwDQYJKoZIhvcNAQELBQADggEBANNHxf3hncrVWmds/gB8V4sCrSkD hzhZsKEOUWWS0M2jkDBzBih9AWsR4KAv0kP57m3NmYWsAEY4H2o7fbXFtr0T+2FI lp1K5Z/2mYriivuJVEGiIst8fFT3+dksWDvLWW9x64UYfHHoaOstL5MEeFKaVqOK /UqXaT6KnHMyta6EPFPNEGMA+Khx1usWXo951QsCWUflqWJY9IiZSHXyiZsjIxBi g5qiVuVrdKjyQCdUjVo1bM8GuFCJqxgHhQlBiujbxRIqUdSaKYGZQjTCGpw/VaBQ JDRlTOYw8lyatf4WYFmZxbQuVqr/R3G8Y6mYmVJqfV2Lmc1XQSmeICpKRxA= -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:04 2024 by rpki-client on console-ams.rpki-client.org