$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73c4295f-673a-4c0b-8757-c73b2a18288d.roa File: 73c4295f-673a-4c0b-8757-c73b2a18288d.roa (raw, json) Hash identifier: ek/1yE9gnkzCnHUmzY6yzv6JFBnSQpMsNUBRsRvchTc= Subject key identifier: 41:B0:E9:DF:50:05:7C:D3:13:52:99:73:42:FA:68:04:EB:07:16:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 098DF69A0FFDAE7F99B18FBBA44100987DFE74DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73c4295f-673a-4c0b-8757-c73b2a18288d.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 167.241.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:8d:f6:9a:0f:fd:ae:7f:99:b1:8f:bb:a4:41:00:98:7d:fe:74:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=2201938e873f88b30565180eaaaaafac9049b3a7e5eb7f5de4ac3a106d9818c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9a:10:cb:47:dc:e2:f7:2c:c8:d9:7a:03:40: 91:de:8d:f8:54:66:90:5e:e7:36:52:d5:58:09:3e: a8:3a:91:f7:f8:a3:e3:ea:a9:2e:cf:dc:fd:94:30: 0e:92:14:e9:2c:c7:13:b0:87:d6:69:87:bd:fa:e7: 70:05:30:9a:1a:eb:5b:0f:ff:4a:72:e2:ff:1b:54: cb:05:f0:2c:3a:65:1f:e4:29:61:80:f3:2a:db:51: a9:12:1e:a0:fd:ab:93:28:12:04:69:84:fe:41:89: 43:f2:6a:1d:8a:01:c6:71:49:88:fe:49:be:64:a7: 33:a3:f5:6f:56:35:e3:8a:0d:fa:d8:bf:3c:4f:35: 75:21:93:6d:9b:ac:06:22:eb:ae:63:5d:7a:30:a7: ad:ce:12:42:f8:79:8a:28:ee:65:03:cb:c8:dc:6f: 63:2a:b7:6b:20:39:43:81:81:5a:bf:80:6c:a5:1c: cd:4d:b1:57:c5:7e:ab:8b:b6:b3:37:7b:be:79:52: c7:54:db:1a:99:49:82:2f:2e:16:2e:c4:4e:97:ab: 53:75:a6:b0:f3:57:e4:61:78:f0:77:04:90:3e:a2: f8:dd:7e:cd:d4:64:92:58:40:96:7e:b8:a8:01:23: ca:9c:ac:8d:df:93:80:e3:a5:93:0a:c5:bb:e3:7f: 9e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B0:E9:DF:50:05:7C:D3:13:52:99:73:42:FA:68:04:EB:07:16:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73c4295f-673a-4c0b-8757-c73b2a18288d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.241.0.0/16 Signature Algorithm: sha256WithRSAEncryption ae:9d:3f:d0:18:8d:72:fb:68:32:0e:19:3f:d5:23:16:a8:b8: 20:d1:f1:c8:2f:ba:be:81:96:16:93:6d:47:68:f1:68:c6:f7: dc:60:46:94:27:60:3d:42:b0:2b:8c:8f:a3:e8:b2:39:79:43: a7:ee:d7:5f:5c:c4:c1:7c:24:94:39:3c:78:93:da:18:98:3b: c6:68:72:32:41:91:04:5e:3c:58:b9:b2:fc:cd:49:b7:2a:a2: 33:57:e9:61:3b:47:72:ae:47:9f:55:3f:16:49:0b:8b:78:9b: 8a:75:80:22:0f:1d:42:07:8b:3b:bd:00:1b:bd:38:c6:79:ad: 5d:91:f8:4b:16:37:ea:29:0f:db:14:60:54:d9:cd:60:58:6a: cd:7a:28:09:de:0d:36:dc:af:0b:7a:f4:70:67:08:79:78:29: 46:4f:28:70:df:a9:ea:8e:94:d1:16:cb:58:22:c7:1f:a7:9a: 91:b8:aa:a5:11:63:3f:73:3f:ac:09:cf:4b:e4:e6:47:de:be: 8f:15:02:93:7a:bf:b0:3d:64:51:e4:6b:a3:3d:42:73:b6:16: 44:d6:82:ad:ea:22:a8:0c:f8:50:5c:d0:47:5d:df:fc:c6:e7: 58:34:19:d8:b1:3f:20:5d:34:80:c7:51:38:38:66:c2:24:e3: 42:fc:e3:b4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCY32mg/9rn+ZsY+7pEEAmH3+dN8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjAxOTM4ZTg3M2Y4OGIzMDU2NTE4MGVhYWFhYWZhYzkw NDliM2E3ZTVlYjdmNWRlNGFjM2ExMDZkOTgxOGM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnmhDLR9zi9yzI2XoDQJHejfhUZpBe5zZS1VgJPqg6kff4 o+PqqS7P3P2UMA6SFOksxxOwh9Zph73653AFMJoa61sP/0py4v8bVMsF8Cw6ZR/k KWGA8yrbUakSHqD9q5MoEgRphP5BiUPyah2KAcZxSYj+Sb5kpzOj9W9WNeOKDfrY vzxPNXUhk22brAYi665jXXowp63OEkL4eYoo7mUDy8jcb2Mqt2sgOUOBgVq/gGyl HM1NsVfFfquLtrM3e755UsdU2xqZSYIvLhYuxE6Xq1N1prDzV+RhePB3BJA+ovjd fs3UZJJYQJZ+uKgBI8qcrI3fk4DjpZMKxbvjf56NAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQbDp31AFfNMTUplzQvpoBOsHFuIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzczYzQyOTVmLTY3M2EtNGMwYi04NzU3LWM3M2IyYTE4Mjg4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCn8TANBgkqhkiG9w0BAQsFAAOCAQEArp0/0BiNcvtoMg4ZP9UjFqi4INHx yC+6voGWFpNtR2jxaMb33GBGlCdgPUKwK4yPo+iyOXlDp+7XX1zEwXwklDk8eJPa GJg7xmhyMkGRBF48WLmy/M1JtyqiM1fpYTtHcq5Hn1U/FkkLi3ibinWAIg8dQgeL O70AG704xnmtXZH4SxY36ikP2xRgVNnNYFhqzXooCd4NNtyvC3r0cGcIeXgpRk8o cN+p6o6U0RbLWCLHH6eakbiqpRFjP3M/rAnPS+TmR96+jxUCk3q/sD1kUeRroz1C c7YWRNaCreoiqAz4UFzQR13f/MbnWDQZ2LE/IF00gMdRODhmwiTjQvzjtA== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:44 2024 by rpki-client on console-ams.rpki-client.org