$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d1f84b0-8125-4c13-8c1b-59351db32528.roa File: 6d1f84b0-8125-4c13-8c1b-59351db32528.roa (raw, json) Hash identifier: e8hYeo+r6IzZXrc6e1fJObDsNYI8SY21GfaBxRHRFjM= Subject key identifier: BA:F8:7B:C3:12:4B:3C:03:AA:6C:C7:CF:8C:14:48:92:D4:EF:00:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F19AB444C70CCADB075077CA5BA828B03478299 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d1f84b0-8125-4c13-8c1b-59351db32528.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 137.16.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:19:ab:44:4c:70:cc:ad:b0:75:07:7c:a5:ba:82:8b:03:47:82:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=3e5c8ce079b3a3832d9ffcf609f683452aaca87b9ba6e6781dc614bfc7995f78, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8a:d3:72:eb:41:4b:7f:4b:3c:84:22:97:e2: 92:68:76:56:f1:97:5a:8d:75:25:2b:13:d8:f1:94: 1f:a8:db:32:9f:21:28:5b:ca:21:cd:cd:6a:53:14: ed:dc:14:99:45:93:1c:1e:64:59:8d:2c:c0:76:62: 2b:22:92:c8:a4:d3:d3:db:fc:fd:65:00:2f:53:8b: 3a:98:5a:9e:4a:38:f4:62:93:21:86:f5:0e:7c:e8: d4:11:b0:1e:29:8f:6d:d0:d8:18:ce:16:90:3d:3e: ea:98:46:af:cf:48:c2:45:41:83:a2:bd:88:66:29: b4:a1:37:27:e9:31:b5:b2:0d:1d:13:b8:58:71:9d: bb:1c:b8:3a:b3:b9:ea:fd:77:59:ec:d7:d2:38:b1: d4:2c:4b:0f:e5:53:94:f6:82:31:20:12:7d:95:fb: 92:d9:74:7d:11:f1:48:86:d1:29:50:04:d1:94:bb: 24:8c:5c:25:29:40:4e:cf:8b:fd:d6:18:fe:8d:5e: f4:88:99:b8:2f:be:dd:af:ae:d7:11:e3:c3:10:2f: 92:bd:89:cc:50:0a:4a:c3:96:4a:18:c2:f7:94:af: 93:48:3d:7a:c5:f6:a0:c3:54:b9:0c:cd:0c:be:41: ea:74:b9:7c:63:69:1a:98:a6:4c:be:3b:5f:b3:41: a4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F8:7B:C3:12:4B:3C:03:AA:6C:C7:CF:8C:14:48:92:D4:EF:00:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d1f84b0-8125-4c13-8c1b-59351db32528.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.16.0.0/16 Signature Algorithm: sha256WithRSAEncryption 19:9e:e2:6c:35:2e:13:bb:d9:0c:1f:82:00:17:c5:1e:b5:6c: 92:6f:55:8f:36:e2:77:41:0f:0b:63:77:3b:af:b1:e7:22:70: 64:74:06:05:33:5c:75:8c:f1:9c:1c:f4:2f:da:bd:f7:ef:96: 6c:07:af:bf:5c:94:d3:65:4c:a9:10:24:93:0d:20:cd:35:df: ed:83:f9:53:9f:e3:98:67:c5:4b:7f:2c:30:01:47:c2:79:bb: 46:03:be:c2:c4:48:69:27:81:aa:60:e2:ab:22:88:a6:25:3d: 9e:f5:67:e9:3b:64:1f:03:d3:42:43:e4:a8:ff:85:1a:b6:77: 8d:44:69:05:e0:49:26:fc:8c:47:0c:47:87:c5:f7:44:45:08: e7:fa:6a:ab:80:ea:f6:63:ad:76:58:16:2a:11:36:52:db:47: 80:97:1e:bd:cd:ae:12:19:14:52:e8:5c:56:0f:98:b8:aa:ff: be:ec:6c:79:54:46:67:bd:ca:17:6d:50:c1:fa:55:e4:b2:59: 43:f6:cf:14:b1:53:0b:a9:25:91:09:b8:f8:da:7c:fe:02:66: af:4e:9d:05:f6:d8:b4:56:9e:2c:fa:6d:bf:85:d0:45:b1:4c: e8:9f:6e:39:05:56:bb:3f:95:e4:7b:28:d6:18:b1:8e:f5:2c: 9a:fd:d3:38 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDxmrRExwzK2wdQd8pbqCiwNHgpkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTVjOGNlMDc5YjNhMzgzMmQ5ZmZjZjYwOWY2ODM0NTJh YWNhODdiOWJhNmU2NzgxZGM2MTRiZmM3OTk1Zjc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCritNy60FLf0s8hCKX4pJodlbxl1qNdSUrE9jxlB+o2zKf IShbyiHNzWpTFO3cFJlFkxweZFmNLMB2Yisiksik09Pb/P1lAC9TizqYWp5KOPRi kyGG9Q586NQRsB4pj23Q2BjOFpA9PuqYRq/PSMJFQYOivYhmKbShNyfpMbWyDR0T uFhxnbscuDqzuer9d1ns19I4sdQsSw/lU5T2gjEgEn2V+5LZdH0R8UiG0SlQBNGU uySMXCUpQE7Pi/3WGP6NXvSImbgvvt2vrtcR48MQL5K9icxQCkrDlkoYwveUr5NI PXrF9qDDVLkMzQy+Qep0uXxjaRqYpky+O1+zQaTnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuvh7wxJLPAOqbMfPjBRIktTvAHUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkMWY4NGIwLTgxMjUtNGMxMy04YzFiLTU5MzUxZGIzMjUyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCJEDANBgkqhkiG9w0BAQsFAAOCAQEAGZ7ibDUuE7vZDB+CABfFHrVskm9V jzbid0EPC2N3O6+x5yJwZHQGBTNcdYzxnBz0L9q99++WbAevv1yU02VMqRAkkw0g zTXf7YP5U5/jmGfFS38sMAFHwnm7RgO+wsRIaSeBqmDiqyKIpiU9nvVn6TtkHwPT QkPkqP+FGrZ3jURpBeBJJvyMRwxHh8X3REUI5/pqq4Dq9mOtdlgWKhE2UttHgJce vc2uEhkUUuhcVg+YuKr/vuxseVRGZ73KF21QwfpV5LJZQ/bPFLFTC6klkQm4+Np8 /gJmr06dBfbYtFaeLPptv4XQRbFM6J9uOQVWuz+V5Hso1hixjvUsmv3TOA== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:43 2024 by rpki-client on console-ams.rpki-client.org