$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65467053-c5f6-4d77-abbd-1f7cf36e1978.roa File: 65467053-c5f6-4d77-abbd-1f7cf36e1978.roa (raw, json) Hash identifier: cwQWTo+g4VrxB5awtdoN1cleqbtL9y2YYZyOGrJdNU4= Subject key identifier: CB:45:12:53:F9:79:D6:CA:E6:A7:03:55:D9:70:54:20:AC:38:4B:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65C4FFE3FB3EF46C3819DDD9E52DFAF2EDD8D9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65467053-c5f6-4d77-abbd-1f7cf36e1978.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 161.99.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:c4:ff:e3:fb:3e:f4:6c:38:19:dd:d9:e5:2d:fa:f2:ed:d8:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=ab546a40278c07cd964bd59bd4adb75cf12f2f91ab831f2e41ae984f7845ad9c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:79:b9:ec:79:4c:e3:93:8e:63:ca:fd:ac:64: 87:24:22:fc:39:93:71:1c:7c:c8:f8:f4:b2:98:53: c7:95:e2:a0:1e:ca:73:c8:15:1e:2d:09:e1:40:be: d8:90:2b:39:77:46:e9:2c:f8:52:43:e4:29:be:ec: ce:18:2c:e5:04:bc:65:1a:57:1d:dc:d9:e0:0d:c2: db:e4:2a:30:2b:25:65:66:ba:ff:60:b5:ff:87:d4: 3d:c2:3c:35:0a:43:56:e3:e3:38:ed:26:32:e4:07: da:fe:05:fc:34:8c:f7:02:33:59:fd:8d:2c:ee:1d: ac:2e:8e:ce:dc:c5:2d:40:37:f1:83:23:3d:e6:c6: 33:b4:0e:0d:d6:0a:96:1e:45:53:f9:7c:55:be:4b: be:3c:12:04:69:e9:0a:3f:3a:ec:07:06:c2:7f:c0: f7:34:18:27:04:48:c9:8b:84:00:29:c9:8c:3f:68: 7f:14:e5:4e:87:55:b6:b2:86:e2:f9:b5:80:00:f4: 68:b3:49:1a:15:16:9f:f5:85:1b:a8:2e:3a:ca:28: e8:f2:25:d3:49:0e:2f:a6:99:3a:2d:94:6a:ad:4d: 53:3e:41:20:36:97:12:d0:c5:72:30:8c:a7:e0:1d: f7:de:97:54:02:9e:50:31:06:f5:ca:12:b9:a3:a2: 0c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:45:12:53:F9:79:D6:CA:E6:A7:03:55:D9:70:54:20:AC:38:4B:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65467053-c5f6-4d77-abbd-1f7cf36e1978.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.99.128.0/17 Signature Algorithm: sha256WithRSAEncryption 3a:a5:79:56:f5:bc:8a:ca:bb:5c:bd:d1:db:6f:71:b7:5b:e6: d7:fb:11:38:e6:b1:09:94:10:35:28:28:1e:3c:30:0c:0a:a1: bb:66:ed:b0:d5:8c:32:d6:86:5f:26:fe:dd:a5:8f:51:71:bf: 34:14:42:97:d9:e9:c3:16:7b:34:f4:14:72:d1:67:bd:6f:1f: e1:d2:5f:b4:fe:cc:36:04:55:62:19:b8:69:19:22:28:c0:4b: 54:26:a8:36:9e:7a:27:31:88:1e:c6:52:0e:5b:db:dd:97:af: 03:f8:f7:d3:b0:9f:d2:f4:2b:9f:80:1e:92:fc:e4:e4:d0:e8: 79:a5:ae:e6:16:84:bb:28:7a:2e:1d:7e:f0:90:4e:a9:2c:9c: ca:11:7e:38:ca:29:b4:0a:23:33:1b:e9:28:bb:d6:52:99:86: d7:c5:fb:a0:ac:85:67:3c:2d:9a:50:2f:6f:27:3c:cc:3b:3f: d6:0e:36:7c:f3:bc:c5:5f:64:ab:59:cb:e0:0d:74:73:a2:b1: af:4f:ca:70:ff:d9:bb:8a:22:ec:5a:4d:fc:fd:c7:b5:a3:cc: 49:a0:df:a3:09:a0:d6:8e:c9:42:23:f9:0e:c7:bf:77:a6:f3: bf:b7:6a:84:bc:a4:31:45:4d:0a:39:98:af:21:73:21:7f:10: f4:d8:9b:77 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITZcT/4/s+9Gw4Gd3Z5S368u3Y2TANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDExMDIwMDAwMDBaFw0yNDEyMDcyMzU5NTla MHoxSTBHBgNVBAUTQGFiNTQ2YTQwMjc4YzA3Y2Q5NjRiZDU5YmQ0YWRiNzVjZjEy ZjJmOTFhYjgzMWYyZTQxYWU5ODRmNzg0NWFkOWMxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALl5uex5TOOTjmPK/axkhyQi/DmTcRx8yPj0sphTx5XioB7K c8gVHi0J4UC+2JArOXdG6Sz4UkPkKb7szhgs5QS8ZRpXHdzZ4A3C2+QqMCslZWa6 /2C1/4fUPcI8NQpDVuPjOO0mMuQH2v4F/DSM9wIzWf2NLO4drC6OztzFLUA38YMj PebGM7QODdYKlh5FU/l8Vb5LvjwSBGnpCj867AcGwn/A9zQYJwRIyYuEACnJjD9o fxTlTodVtrKG4vm1gAD0aLNJGhUWn/WFG6guOsoo6PIl00kOL6aZOi2Uaq1NUz5B IDaXEtDFcjCMp+Ad996XVAKeUDEG9coSuaOiDIMCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTLRRJT+XnWyuanA1XZcFQgrDhLljAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNjU0NjcwNTMtYzVmNi00ZDc3LWFiYmQtMWY3Y2YzNmUxOTc4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB6FjgDANBgkqhkiG9w0BAQsFAAOCAQEAOqV5VvW8isq7XL3R229xt1vm1/sR OOaxCZQQNSgoHjwwDAqhu2btsNWMMtaGXyb+3aWPUXG/NBRCl9npwxZ7NPQUctFn vW8f4dJftP7MNgRVYhm4aRkiKMBLVCaoNp56JzGIHsZSDlvb3ZevA/j307Cf0vQr n4Aekvzk5NDoeaWu5haEuyh6Lh1+8JBOqSycyhF+OMoptAojMxvpKLvWUpmG18X7 oKyFZzwtmlAvbyc8zDs/1g42fPO8xV9kq1nL4A10c6Kxr0/KcP/Zu4oi7FpN/P3H taPMSaDfowmg1o7JQiP5Dse/d6bzv7dqhLykMUVNCjmYryFzIX8Q9Nibdw== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:07 2024 by rpki-client on console-ams.rpki-client.org