$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/807004a1-9fca-450c-b773-bdaf30407d8a.roa File: 807004a1-9fca-450c-b773-bdaf30407d8a.roa (raw, json) Hash identifier: 757dB8MswhmTosAQ/LAgkUN/yxEs03CjqZwySrlZW4E= Subject key identifier: 30:95:76:B4:28:87:8B:1C:2E:C1:28:B8:FD:C0:33:13:90:91:2A:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C227439AD4BEA3EA253193F4EF91049E4458720 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/807004a1-9fca-450c-b773-bdaf30407d8a.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 204.123.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:22:74:39:ad:4b:ea:3e:a2:53:19:3f:4e:f9:10:49:e4:45:87:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=475534f5a305bcb78727e60902882cf8c321ba9481b0b21d0ef85a6c539abe4e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1b:cf:5c:04:29:27:6b:81:dd:e4:70:e2:db: 35:d0:d1:84:d3:ac:20:e0:c8:53:93:97:18:cf:c2: 77:59:a0:69:86:b5:03:37:bf:3f:96:5c:04:ea:17: 1e:f4:75:4c:44:1f:ce:ef:0e:49:a4:63:f2:43:be: 86:70:04:c1:7b:67:23:ba:20:a3:8b:f3:2a:d1:ec: c0:6b:3a:24:a5:fd:dc:a2:cf:b5:1e:d0:b2:64:96: 5f:c8:68:0a:fc:a3:d0:96:39:ae:37:42:2e:85:14: 63:01:01:ee:c1:a6:9d:5a:67:de:91:1e:49:31:a2: f0:12:f1:0b:a5:fa:04:37:b8:92:fb:a8:62:52:2d: 54:e5:3d:84:92:5c:54:8d:06:33:4e:e4:93:b2:de: a5:df:42:08:c9:8f:97:7b:23:d4:53:24:00:ea:26: bb:c6:d8:4a:dd:d0:d8:9a:56:44:ad:27:f1:70:6b: a8:b4:71:9f:44:c5:c5:07:eb:3d:75:94:5c:6d:c0: c2:2c:01:5f:f4:5e:86:cc:17:05:1b:66:ce:b3:02: 19:52:f8:4a:54:87:72:13:77:a0:70:16:52:e9:00: ec:2c:b1:7e:84:a1:5d:7b:f1:0e:a3:eb:43:f9:56: 8d:b5:e4:e1:8c:e1:1d:ee:bb:ac:71:aa:85:3d:3c: 07:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:95:76:B4:28:87:8B:1C:2E:C1:28:B8:FD:C0:33:13:90:91:2A:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/807004a1-9fca-450c-b773-bdaf30407d8a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.123.0.0/16 Signature Algorithm: sha256WithRSAEncryption 56:bd:c3:bc:f9:f1:cd:02:63:25:2c:80:00:84:d1:c0:49:c0: 72:ab:55:96:8d:b6:a9:5e:3f:af:d2:f9:98:cb:bd:27:52:13: 09:8a:f6:68:3d:71:d8:c9:ca:a1:65:3c:c9:ee:24:f7:c0:25: 3d:c9:ad:85:6d:91:23:83:1d:cf:a8:38:50:05:2e:e2:52:06: 45:cf:84:85:63:0f:ef:1f:fd:3b:6e:79:ee:5a:92:26:92:2d: c4:5e:ec:1f:45:52:d3:cb:c7:38:79:18:6d:f8:79:7b:fa:73: 1f:42:f6:00:4b:41:55:18:8c:45:f8:d9:f2:48:fb:91:4a:44: 4f:91:82:0c:c4:b7:a5:55:50:55:c0:08:cd:33:49:1d:c8:b6: af:68:c5:d3:01:d8:cc:e9:39:57:b4:e3:0b:13:be:1f:21:6f: 62:2c:28:63:07:8c:99:74:0a:b5:1d:44:7c:c8:87:0b:72:40: 9a:e3:c5:79:8b:cb:e0:0b:ec:bb:7b:0e:2c:0b:7a:a8:a2:b5: 42:8f:c1:6c:8e:c1:b7:2a:58:26:40:49:5f:21:c1:97:b6:80: aa:33:36:57:b8:0b:9e:6c:48:a9:bd:38:ec:24:62:39:92:c7: 63:4b:df:8b:42:70:d4:bb:a0:3c:3c:1e:c2:bb:e3:b8:a8:40: 1d:36:00:b9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHCJ0Oa1L6j6iUxk/TvkQSeRFhyAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzU1MzRmNWEzMDViY2I3ODcyN2U2MDkwMjg4MmNmOGMz MjFiYTk0ODFiMGIyMWQwZWY4NWE2YzUzOWFiZTRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8G89cBCkna4Hd5HDi2zXQ0YTTrCDgyFOTlxjPwndZoGmG tQM3vz+WXATqFx70dUxEH87vDkmkY/JDvoZwBMF7ZyO6IKOL8yrR7MBrOiSl/dyi z7Ue0LJkll/IaAr8o9CWOa43Qi6FFGMBAe7Bpp1aZ96RHkkxovAS8Qul+gQ3uJL7 qGJSLVTlPYSSXFSNBjNO5JOy3qXfQgjJj5d7I9RTJADqJrvG2Erd0NiaVkStJ/Fw a6i0cZ9ExcUH6z11lFxtwMIsAV/0XobMFwUbZs6zAhlS+EpUh3ITd6BwFlLpAOws sX6EoV178Q6j60P5Vo215OGM4R3uu6xxqoU9PAdJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUMJV2tCiHixwuwSi4/cAzE5CRKuUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgwNzAwNGExLTlmY2EtNDUwYy1iNzczLWJkYWYzMDQwN2Q4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDMezANBgkqhkiG9w0BAQsFAAOCAQEAVr3DvPnxzQJjJSyAAITRwEnAcqtV lo22qV4/r9L5mMu9J1ITCYr2aD1x2MnKoWU8ye4k98AlPcmthW2RI4Mdz6g4UAUu 4lIGRc+EhWMP7x/9O2557lqSJpItxF7sH0VS08vHOHkYbfh5e/pzH0L2AEtBVRiM RfjZ8kj7kUpET5GCDMS3pVVQVcAIzTNJHci2r2jF0wHYzOk5V7TjCxO+HyFvYiwo YweMmXQKtR1EfMiHC3JAmuPFeYvL4Avsu3sOLAt6qKK1Qo/BbI7BtypYJkBJXyHB l7aAqjM2V7gLnmxIqb047CRiOZLHY0vfi0Jw1LugPDwewrvjuKhAHTYAuQ== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:48 2024 by rpki-client on console-ams.rpki-client.org