$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/80797f8d-ac5f-4c02-960d-fe276367a5e4.roa File: 80797f8d-ac5f-4c02-960d-fe276367a5e4.roa (raw, json) Hash identifier: 01ueMSewlYpEYOmPyUkMjaftz6oYSqM9o68nh8GIOjU= Subject key identifier: E5:7A:D2:8A:B8:A3:EF:5A:7C:E4:1D:F8:8E:FC:F3:9E:2F:15:81:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15B953670F3773EB5C06F4A90A597578A0201B9C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/80797f8d-ac5f-4c02-960d-fe276367a5e4.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 107.20.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:b9:53:67:0f:37:73:eb:5c:06:f4:a9:0a:59:75:78:a0:20:1b:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=fc87d47d8c8ec912245536ab21933ec7b5273a26a48d7f90bf6bf9512097bc0f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:3b:55:0b:ca:41:c0:b1:fe:cc:0f:47:32:d4: 31:c1:8f:fd:a1:50:a3:00:8f:23:cc:cd:96:da:aa: f5:31:51:40:9c:01:ff:16:b0:71:72:1f:f1:09:5a: 5f:92:b7:c0:b5:fd:02:f8:98:c2:bf:2a:f5:fc:ae: 5c:ee:6f:09:f0:51:35:bb:a7:93:e2:60:88:10:10: 1d:9b:b6:7f:5a:63:fb:fe:fd:de:85:dd:5e:68:b5: f0:31:60:4e:c3:99:93:88:89:0f:ce:fe:81:3d:a1: b6:ba:fd:bb:59:6f:65:e8:20:7f:e5:e5:a7:bb:34: 19:ae:65:4e:f1:57:67:87:43:87:ef:c1:87:e0:2d: 9f:94:7b:7f:c7:07:8f:09:d0:54:ad:fa:6a:ff:36: 69:22:31:a9:ce:06:82:0b:23:8e:ab:f0:eb:c7:24: 60:81:fc:69:c3:51:23:c6:bf:8e:d1:61:e0:f3:be: d1:ba:f4:6b:35:01:cd:e6:21:51:ce:9f:a5:b9:ed: f9:22:51:62:ae:00:1c:c7:dd:05:3e:a1:2f:a1:c6: e1:a4:82:35:a0:65:cd:87:3e:33:22:2e:b8:28:18: 1a:26:51:45:7b:61:ce:3c:9a:5c:9a:c3:06:29:1a: f0:b3:78:10:0f:fe:dd:e1:7a:14:98:a3:c5:30:84: 70:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:7A:D2:8A:B8:A3:EF:5A:7C:E4:1D:F8:8E:FC:F3:9E:2F:15:81:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/80797f8d-ac5f-4c02-960d-fe276367a5e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.0.0/14 Signature Algorithm: sha256WithRSAEncryption cd:0c:6f:8a:7f:f1:6d:2f:20:35:c8:38:54:a2:d4:08:64:1f: 53:3c:dc:ad:eb:eb:a5:11:aa:32:c0:fc:f1:b9:dd:70:5c:94: 23:5c:8f:11:1e:f4:03:66:9c:07:65:4a:84:d7:75:26:c4:1d: 43:e0:39:c2:02:dc:70:c2:b8:12:30:40:d4:de:1d:78:98:f4: 32:11:14:a5:c4:e8:22:94:92:2a:1f:e9:2c:a3:e7:18:49:61: ed:a9:9d:70:0a:fd:f2:3e:cf:2c:a4:0a:46:a6:ee:f5:32:7a: c7:51:b2:b1:ae:13:75:1c:f7:29:bc:d2:f8:a3:4b:c2:c0:e1: 39:ff:c2:49:46:4f:a6:a9:e8:07:a4:eb:3e:bb:17:8d:65:be: 57:36:6a:e2:f5:5d:5e:b5:78:02:92:3a:dc:d3:a0:3d:c7:03: e0:cb:d1:99:1b:16:c0:10:8f:13:66:c6:9e:aa:d8:b4:e9:8d: de:e1:ed:53:a4:01:b5:c9:c4:4f:b2:da:e6:ab:37:e5:06:36: 0d:4a:88:16:30:1e:e8:34:a9:6c:7a:9d:36:2d:8e:d8:e4:3c: 24:1d:0e:25:20:a3:c8:a2:48:97:87:c0:b9:2b:04:a0:87:9a: 18:ea:a5:f8:06:26:c6:0d:74:a2:74:f9:b3:68:7c:fd:14:d3: 97:29:c1:99 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFblTZw83c+tcBvSpCll1eKAgG5wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYzg3ZDQ3ZDhjOGVjOTEyMjQ1NTM2YWIyMTkzM2VjN2I1 MjczYTI2YTQ4ZDdmOTBiZjZiZjk1MTIwOTdiYzBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPO1ULykHAsf7MD0cy1DHBj/2hUKMAjyPMzZbaqvUxUUCc Af8WsHFyH/EJWl+St8C1/QL4mMK/KvX8rlzubwnwUTW7p5PiYIgQEB2btn9aY/v+ /d6F3V5otfAxYE7DmZOIiQ/O/oE9oba6/btZb2XoIH/l5ae7NBmuZU7xV2eHQ4fv wYfgLZ+Ue3/HB48J0FSt+mr/NmkiManOBoILI46r8OvHJGCB/GnDUSPGv47RYeDz vtG69Gs1Ac3mIVHOn6W57fkiUWKuABzH3QU+oS+hxuGkgjWgZc2HPjMiLrgoGBom UUV7Yc48mlyawwYpGvCzeBAP/t3hehSYo8UwhHBDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5XrSirij71p85B34jvzzni8VgR4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgwNzk3ZjhkLWFjNWYtNGMwMi05NjBkLWZlMjc2MzY3YTVlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJrFDANBgkqhkiG9w0BAQsFAAOCAQEAzQxvin/xbS8gNcg4VKLUCGQfUzzc revrpRGqMsD88bndcFyUI1yPER70A2acB2VKhNd1JsQdQ+A5wgLccMK4EjBA1N4d eJj0MhEUpcToIpSSKh/pLKPnGElh7amdcAr98j7PLKQKRqbu9TJ6x1Gysa4TdRz3 KbzS+KNLwsDhOf/CSUZPpqnoB6TrPrsXjWW+VzZq4vVdXrV4ApI63NOgPccD4MvR mRsWwBCPE2bGnqrYtOmN3uHtU6QBtcnET7La5qs35QY2DUqIFjAe6DSpbHqdNi2O 2OQ8JB0OJSCjyKJIl4fAuSsEoIeaGOql+AYmxg10onT5s2h8/RTTlynBmQ== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:48 2024 by rpki-client on console-ams.rpki-client.org