$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa File: 725de74a-ea25-4864-a260-52460f0b56de.roa (raw, json) Hash identifier: aDW14wW4R3qucxVFrW/B2ETVv14lAU4Lg0gyq2rzvBE= Subject key identifier: 25:01:BA:2B:9F:EC:00:72:12:F3:FD:09:77:1D:B0:80:65:47:1F:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59EB527758D496EBA461D1266F17D538618845FC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 192.43.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:eb:52:77:58:d4:96:eb:a4:61:d1:26:6f:17:d5:38:61:88:45:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=e9d67c035f28674f20109ff89ea475e6506d48d0b6be93b5435efb646a12ee12, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9f:79:15:ad:44:5d:81:ca:e1:f2:4c:a2:13: 0b:f0:0d:ee:78:7d:11:3b:35:fa:c4:8f:4e:5a:f5: 69:85:a0:10:bf:d2:39:ee:b8:8e:a5:85:b7:8f:ea: 04:33:7a:6a:f6:c8:8d:8d:cc:52:d1:5e:f3:95:fd: e3:12:20:fb:2c:6d:6a:b1:fc:7f:13:c8:cc:7d:3e: 6c:ff:49:0f:b0:35:36:6b:f2:aa:11:30:15:1c:37: da:0c:ad:b1:20:d3:96:04:80:fd:1e:4d:0f:13:d2: 0e:a4:2d:30:8f:44:59:30:31:a1:f0:b1:a2:f5:b1: 7f:82:05:0b:e1:e9:8f:97:41:e2:64:48:cc:2a:5f: be:43:90:ea:c9:50:e9:17:3c:ed:fb:c4:0e:0b:83: 62:d1:72:e3:7c:5b:ed:16:5d:1e:ac:4b:4b:eb:9c: 45:48:8c:ae:19:c7:24:a7:f3:b7:ed:fb:41:45:20: a7:83:52:95:77:df:ea:2d:3e:4b:42:08:8e:75:a1: 89:bf:af:ee:66:4a:6d:da:bc:ac:6d:ba:36:4c:8b: 13:10:03:bf:4b:5f:92:60:fb:ad:2a:06:41:cf:03: f3:00:11:c1:f1:44:75:08:a7:62:f0:1d:ff:5a:2c: 51:4f:9f:d0:43:3a:7e:a1:a7:69:ab:c1:0c:0f:11: c5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:01:BA:2B:9F:EC:00:72:12:F3:FD:09:77:1D:B0:80:65:47:1F:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.43.175.0/24 Signature Algorithm: sha256WithRSAEncryption 98:a9:51:1d:b6:37:16:53:37:03:48:18:b9:d3:ee:7d:3a:ae: 55:7a:46:a1:06:e3:9e:b1:c2:16:c2:eb:52:0a:74:0f:c4:9d: 52:af:b8:e1:7b:98:e9:97:d7:bb:b2:92:a2:23:f0:c4:20:46: cd:b1:bd:47:4d:6a:b7:d5:62:1d:c0:35:d2:6c:59:35:96:4e: 4b:f1:a7:97:1f:34:d6:4d:18:ad:4c:46:e2:1b:27:39:ff:ac: d8:29:c0:86:57:1f:06:16:f1:aa:e8:05:2c:d3:37:fd:f5:72: 41:a1:c3:be:30:d0:24:03:90:a7:7e:c1:d9:dc:da:f8:91:82: e0:e0:7d:8a:9f:56:f4:9b:79:0d:e7:c3:62:9e:aa:d0:57:81: f0:5d:8c:bf:0c:c5:2a:49:7e:34:4e:57:f1:88:de:ca:dc:87: 88:8f:d4:46:ac:2e:c7:a0:cf:ea:88:4f:7f:00:14:81:53:fa: 1b:1f:a3:19:4b:b3:7a:e6:9c:1d:29:e7:2f:f3:59:5a:82:f3: 47:06:2f:5e:66:6d:d4:58:b3:e9:3f:5d:fc:e1:87:77:4c:02: 17:f7:a8:01:5a:9f:d3:fd:c0:72:1f:1e:2a:e8:b0:38:67:07: e8:6f:66:92:72:51:de:d3:1c:b0:47:2f:b6:30:b8:ec:d0:b2: a1:43:af:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWetSd1jUluukYdEmbxfVOGGIRfwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWQ2N2MwMzVmMjg2NzRmMjAxMDlmZjg5ZWE0NzVlNjUw NmQ0OGQwYjZiZTkzYjU0MzVlZmI2NDZhMTJlZTEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrn3kVrURdgcrh8kyiEwvwDe54fRE7NfrEj05a9WmFoBC/ 0jnuuI6lhbeP6gQzemr2yI2NzFLRXvOV/eMSIPssbWqx/H8TyMx9Pmz/SQ+wNTZr 8qoRMBUcN9oMrbEg05YEgP0eTQ8T0g6kLTCPRFkwMaHwsaL1sX+CBQvh6Y+XQeJk SMwqX75DkOrJUOkXPO37xA4Lg2LRcuN8W+0WXR6sS0vrnEVIjK4ZxySn87ft+0FF IKeDUpV33+otPktCCI51oYm/r+5mSm3avKxtujZMixMQA79LX5Jg+60qBkHPA/MA EcHxRHUIp2LwHf9aLFFPn9BDOn6hp2mrwQwPEcVlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJQG6K5/sAHIS8/0Jdx2wgGVHH8kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcyNWRlNzRhLWVhMjUtNDg2NC1hMjYwLTUyNDYwZjBiNTZkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAK68wDQYJKoZIhvcNAQELBQADggEBAJipUR22NxZTNwNIGLnT7n06rlV6 RqEG456xwhbC61IKdA/EnVKvuOF7mOmX17uykqIj8MQgRs2xvUdNarfVYh3ANdJs WTWWTkvxp5cfNNZNGK1MRuIbJzn/rNgpwIZXHwYW8aroBSzTN/31ckGhw74w0CQD kKd+wdnc2viRguDgfYqfVvSbeQ3nw2KeqtBXgfBdjL8MxSpJfjROV/GI3srch4iP 1EasLsegz+qIT38AFIFT+hsfoxlLs3rmnB0p5y/zWVqC80cGL15mbdRYs+k/Xfzh h3dMAhf3qAFan9P9wHIfHirosDhnB+hvZpJyUd7THLBHL7YwuOzQsqFDr/A= -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:10 2024 by rpki-client on console-ams.rpki-client.org