$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f90d113-e6a6-414c-86eb-9e53f2e95690.roa File: 7f90d113-e6a6-414c-86eb-9e53f2e95690.roa (raw, json) Hash identifier: M5oAm7G8UVqGG9tbLgKofGeP8JNIjY1cpbjzZ36T+cA= Subject key identifier: A3:EB:79:6C:F2:0A:DD:BA:EA:1B:80:68:89:AB:8F:8B:D7:7C:D6:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21AAB57B84B49A71C4F286064B8AA182566E35BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f90d113-e6a6-414c-86eb-9e53f2e95690.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 13.158.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:aa:b5:7b:84:b4:9a:71:c4:f2:86:06:4b:8a:a1:82:56:6e:35:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=bce22598cde1f9f6c38c9dcf66b00d68c47f07b97fa4ba70802dcdb136eaf28c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ba:fb:2d:d1:f7:96:8a:44:02:a3:86:8f:8f: 12:c6:79:83:b4:62:32:ee:9b:6e:f8:13:69:f0:db: b6:07:15:32:9d:3d:e1:5a:1e:e0:b3:00:e4:8b:cf: 12:11:78:e6:52:0e:dc:93:65:40:dc:14:07:1a:99: ce:1d:65:96:22:81:df:cf:c9:b4:45:08:ad:ce:36: c7:84:07:4a:6c:0d:73:c1:46:e7:84:d2:6d:7e:15: ee:57:fe:31:56:1a:c5:5e:e2:b3:54:57:81:30:81: fa:50:c9:ee:db:37:9b:ce:c3:00:89:9a:bb:67:fb: 27:91:ef:dd:96:e5:f3:9b:24:b3:35:9a:27:cf:68: 6b:02:0f:2d:e8:ed:12:f0:6a:a8:70:3c:13:a5:b4: b8:68:b7:9b:5d:49:63:46:a2:f1:96:dd:0c:b2:d4: e9:88:9d:17:4b:2a:4d:ac:0a:05:42:ee:79:b7:b3: e4:1f:8c:02:0b:c3:b0:c6:cd:3e:0c:9a:3d:33:38: 32:ab:cf:e3:08:00:02:e4:3f:da:a8:2c:f6:09:6b: 06:a4:7d:15:28:eb:cf:93:22:0a:53:67:0b:0f:18: dd:14:fc:af:1f:a8:76:37:d6:6c:89:61:2d:6c:b6: dd:99:27:dc:80:d8:9f:f6:71:8e:23:7e:28:c7:79: 45:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:EB:79:6C:F2:0A:DD:BA:EA:1B:80:68:89:AB:8F:8B:D7:7C:D6:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f90d113-e6a6-414c-86eb-9e53f2e95690.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.158.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6c:c6:53:b8:44:4c:1d:26:55:0b:5c:3f:6e:43:75:c6:9d:da: a5:34:a8:fc:6a:db:4c:1a:9f:64:45:cc:84:96:0a:35:1a:ea: f5:aa:ac:a2:66:9a:04:43:f2:0e:3c:ba:1f:9a:f2:4f:d1:58: 38:16:b3:b8:98:97:c3:fb:38:6d:77:7b:c0:8a:2d:a5:08:3e: cf:ad:81:d4:fe:e7:b5:34:b7:65:bc:28:b0:51:0e:2e:e7:68: 40:ce:73:32:b8:25:d8:7f:ce:56:4f:8e:e2:8c:c9:62:51:89: 5d:73:50:47:ca:07:58:bc:bc:7d:2f:ef:76:18:5a:1b:d0:5c: df:9e:6d:43:e5:80:77:69:bc:23:44:ba:93:a5:42:fa:62:fa: 3c:71:74:49:59:72:f3:03:c5:49:ad:89:eb:4b:38:67:ee:18: 23:75:5e:ac:8a:cb:e1:62:9e:c3:d2:17:47:57:26:f2:5b:f5: f9:5f:26:69:cf:15:87:f9:61:2b:28:c1:93:83:e3:1e:b5:4a: 25:99:a9:c9:64:dc:05:34:86:a7:69:77:77:e5:20:ab:c2:ba: ee:6a:b6:a4:84:b3:88:0e:b1:d9:f8:0b:4f:66:93:34:74:e9: ce:3a:b5:7a:38:12:21:1b:46:e2:41:0f:05:8b:b9:2d:55:a8: 6a:4b:6a:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIaq1e4S0mnHE8oYGS4qhglZuNb8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2UyMjU5OGNkZTFmOWY2YzM4YzlkY2Y2NmIwMGQ2OGM0 N2YwN2I5N2ZhNGJhNzA4MDJkY2RiMTM2ZWFmMjhjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjuvst0feWikQCo4aPjxLGeYO0YjLum274E2nw27YHFTKd PeFaHuCzAOSLzxIReOZSDtyTZUDcFAcamc4dZZYigd/PybRFCK3ONseEB0psDXPB RueE0m1+Fe5X/jFWGsVe4rNUV4EwgfpQye7bN5vOwwCJmrtn+yeR792W5fObJLM1 mifPaGsCDy3o7RLwaqhwPBOltLhot5tdSWNGovGW3Qyy1OmInRdLKk2sCgVC7nm3 s+QfjAILw7DGzT4Mmj0zODKrz+MIAALkP9qoLPYJawakfRUo68+TIgpTZwsPGN0U /K8fqHY31myJYS1stt2ZJ9yA2J/2cY4jfijHeUXhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUo+t5bPIK3brqG4BoiauPi9d81s0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdmOTBkMTEzLWU2YTYtNDE0Yy04NmViLTllNTNmMmU5NTY5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwENnjANBgkqhkiG9w0BAQsFAAOCAQEAbMZTuERMHSZVC1w/bkN1xp3apTSo /GrbTBqfZEXMhJYKNRrq9aqsomaaBEPyDjy6H5ryT9FYOBazuJiXw/s4bXd7wIot pQg+z62B1P7ntTS3ZbwosFEOLudoQM5zMrgl2H/OVk+O4ozJYlGJXXNQR8oHWLy8 fS/vdhhaG9Bc355tQ+WAd2m8I0S6k6VC+mL6PHF0SVly8wPFSa2J60s4Z+4YI3Ve rIrL4WKew9IXR1cm8lv1+V8mac8Vh/lhKyjBk4PjHrVKJZmpyWTcBTSGp2l3d+Ug q8K67mq2pISziA6x2fgLT2aTNHTpzjq1ejgSIRtG4kEPBYu5LVWoaktqKw== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:48 2024 by rpki-client on console-ams.rpki-client.org