$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74e7008f-a85b-4c1f-bd1f-953472f2542b.roa File: 74e7008f-a85b-4c1f-bd1f-953472f2542b.roa (raw, json) Hash identifier: gk7r7yH7mbufO/jX+pQNrDZ54Osf1nvUTcT4eCcIfns= Subject key identifier: 45:A2:5F:11:B7:0F:55:7E:E6:FE:4B:4F:86:91:A1:18:6D:E0:61:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CF5C033F2DDB813FFBFA4D84AD522A9F7740D67 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74e7008f-a85b-4c1f-bd1f-953472f2542b.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:f5:c0:33:f2:dd:b8:13:ff:bf:a4:d8:4a:d5:22:a9:f7:74:0d:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=9fb45996aea710810a76fb04c2408bfdc4a9baca7eb3565468ad34594a8e498e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:3d:27:4f:38:7e:da:b1:af:2f:78:94:58:47: f6:ae:26:66:71:59:fc:e5:cf:4d:41:5f:31:df:f7: 80:85:cc:67:de:d6:c8:38:bd:ca:0a:ef:70:1b:96: 4c:ca:6e:92:dd:b5:4d:42:8d:a1:4e:27:d2:d5:1b: 6a:2f:f6:27:5e:4a:76:4c:95:b2:9d:c0:7e:e5:ba: a3:c7:99:56:8d:47:fe:52:bb:c2:a4:68:85:37:64: c4:83:07:27:a9:c2:38:ac:49:b6:0a:fb:71:95:c8: 04:81:c2:44:e8:9d:9b:fa:ed:fc:b3:06:d8:ac:fc: 56:17:fb:30:8f:e1:1c:da:66:f1:e7:7c:82:3a:43: 17:1d:10:0b:9c:b3:7b:2a:ee:13:d4:54:fb:27:55: cc:a3:3d:5c:37:4f:69:20:a4:f9:f3:f0:04:91:b6: fb:43:e3:dd:40:bf:17:f1:a3:6c:d8:f2:ad:48:bb: 9c:49:23:ee:cb:6b:6c:a9:c2:19:38:5b:d3:41:4f: 25:d2:41:b0:83:26:58:75:64:d2:c3:f8:b2:90:b5: 01:cf:34:be:87:f1:21:05:c1:7c:07:f7:65:b7:d1: 06:63:df:6f:a7:74:4b:0f:4b:68:77:bb:df:b1:b3: dd:19:2d:44:9b:48:38:9e:5c:61:7b:3f:07:fc:d9: 7d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A2:5F:11:B7:0F:55:7E:E6:FE:4B:4F:86:91:A1:18:6D:E0:61:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74e7008f-a85b-4c1f-bd1f-953472f2542b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.68.0/23 Signature Algorithm: sha256WithRSAEncryption 00:37:1a:f6:0e:ab:f7:55:8e:bf:75:31:b6:53:09:5e:97:89: 18:0b:30:c5:12:e5:0f:15:ab:b8:c4:ac:22:ad:7b:b9:75:95: 81:08:26:10:75:55:f9:3c:e3:2a:aa:3d:3d:b9:9a:9c:d2:49: 9d:f2:47:16:e0:48:ee:31:49:e3:e2:a7:ca:dd:36:12:9d:af: f6:41:a1:a5:86:d9:87:d0:36:4b:b3:f2:15:60:e8:d0:b2:c8: e4:3e:6a:1e:7e:71:fc:7f:44:56:37:7b:70:5b:8c:49:b4:e5: 1d:b9:09:26:a1:92:5b:b3:e3:62:4d:6b:26:72:cf:b3:c6:68: 65:62:a0:e8:9a:e5:62:51:c2:f4:a7:e9:a5:c2:3c:e6:2f:c5: 12:b8:26:b4:78:57:39:69:b1:97:1e:f6:4f:70:4a:0b:48:a8: e3:58:a9:fc:59:fe:18:b6:64:0e:d1:f9:16:5a:ec:13:8b:91: d1:b5:a0:72:85:af:7b:17:a8:42:7d:79:e6:ed:50:05:4c:7d: e6:51:4b:04:ea:15:78:e9:44:34:d7:f8:eb:51:4f:71:f9:4d: 89:66:10:70:3f:80:36:d6:72:6d:e9:ed:f2:22:e0:56:f0:24: 44:85:54:a6:6b:18:44:c4:be:c7:0d:9a:44:47:f0:02:7e:2f: 45:18:a6:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULPXAM/LduBP/v6TYStUiqfd0DWcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZmI0NTk5NmFlYTcxMDgxMGE3NmZiMDRjMjQwOGJmZGM0 YTliYWNhN2ViMzU2NTQ2OGFkMzQ1OTRhOGU0OThlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOPSdPOH7asa8veJRYR/auJmZxWfzlz01BXzHf94CFzGfe 1sg4vcoK73AblkzKbpLdtU1CjaFOJ9LVG2ov9ideSnZMlbKdwH7luqPHmVaNR/5S u8KkaIU3ZMSDByepwjisSbYK+3GVyASBwkTonZv67fyzBtis/FYX+zCP4RzaZvHn fII6QxcdEAucs3sq7hPUVPsnVcyjPVw3T2kgpPnz8ASRtvtD491Avxfxo2zY8q1I u5xJI+7La2ypwhk4W9NBTyXSQbCDJlh1ZNLD+LKQtQHPNL6H8SEFwXwH92W30QZj 32+ndEsPS2h3u9+xs90ZLUSbSDieXGF7Pwf82X3tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURaJfEbcPVX7m/ktPhpGhGG3gYaIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0ZTcwMDhmLWE4NWItNGMxZi1iZDFmLTk1MzQ3MmYyNTQyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEQDEQwDQYJKoZIhvcNAQELBQADggEBAAA3GvYOq/dVjr91MbZTCV6XiRgL MMUS5Q8Vq7jErCKte7l1lYEIJhB1Vfk84yqqPT25mpzSSZ3yRxbgSO4xSePip8rd NhKdr/ZBoaWG2YfQNkuz8hVg6NCyyOQ+ah5+cfx/RFY3e3BbjEm05R25CSahkluz 42JNayZyz7PGaGVioOia5WJRwvSn6aXCPOYvxRK4JrR4VzlpsZce9k9wSgtIqONY qfxZ/hi2ZA7R+RZa7BOLkdG1oHKFr3sXqEJ9eebtUAVMfeZRSwTqFXjpRDTX+OtR T3H5TYlmEHA/gDbWcm3p7fIi4FbwJESFVKZrGETEvscNmkRH8AJ+L0UYpr0= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:10 2024 by rpki-client on console-ams.rpki-client.org