$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/81a9c4df-9112-467a-b220-12fccff4c1b9.roa File: 81a9c4df-9112-467a-b220-12fccff4c1b9.roa (raw, json) Hash identifier: w/CbjQeWL5JMBg8RzLhvuoZ102JO80rPaHVB0qJF9Ps= Subject key identifier: 87:D5:64:81:4A:06:F9:D7:89:8B:7B:8A:2C:97:81:7C:28:C2:35:2D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D8EC5E3035EB87CFDD4194460625E570F2E17BB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/81a9c4df-9112-467a-b220-12fccff4c1b9.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 131.127.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:8e:c5:e3:03:5e:b8:7c:fd:d4:19:44:60:62:5e:57:0f:2e:17:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=6e335c1c65728085ea9f2a9ea74056744a4f6b21dac120198bf351a9e591da69, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cd:08:21:fe:e7:38:14:3e:8c:d9:82:3a:88: 95:a7:eb:d1:f3:18:47:db:d5:ec:00:a4:54:60:11: b1:05:5a:3c:d0:b3:24:c9:f1:1c:f5:f4:d5:3a:29: f3:24:90:0a:d9:3f:05:59:32:b4:e9:71:7b:07:54: ee:03:dd:89:d5:b4:da:47:0c:16:19:7b:ab:4b:5f: 5b:f9:de:18:64:97:10:50:2d:94:13:11:b1:04:7e: 4d:31:e8:ce:3e:3f:17:d9:bf:4c:3c:52:9b:31:31: 7e:e2:87:bc:5e:21:79:ff:5b:45:96:a1:56:13:0a: 00:0e:ac:fc:1b:e0:3a:59:41:7a:c4:d5:dc:12:99: 1e:e9:b3:19:92:a5:05:ee:c0:b1:ed:47:28:7c:c5: fc:10:e1:06:2a:35:3b:4b:81:8e:c6:c4:41:ff:30: 31:e9:b1:73:46:00:e4:56:e3:a3:2d:02:ad:71:8c: d6:bd:da:d9:36:a9:3f:f7:f8:14:60:39:8a:12:33: 4a:02:fb:9b:90:f6:99:91:62:20:f4:b4:ac:81:cf: 69:4c:bd:0c:39:f4:33:d8:c3:50:36:41:b9:d0:b7: 88:43:9e:c4:b3:e5:14:98:5f:0e:78:d3:0e:b8:24: 30:e2:e7:ab:e9:2a:98:be:af:e2:8f:2b:f1:91:0a: 84:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:D5:64:81:4A:06:F9:D7:89:8B:7B:8A:2C:97:81:7C:28:C2:35:2D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/81a9c4df-9112-467a-b220-12fccff4c1b9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 131.127.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7d:4a:0f:41:fe:1c:aa:14:a0:77:ae:79:b7:0e:cc:94:b4:00: 05:8f:01:6b:bb:b9:9c:85:ae:ab:da:58:a3:b5:09:2a:ef:ce: 48:88:26:85:d9:10:b0:5d:15:59:89:fc:a2:08:39:5e:fc:71: 5c:62:b2:11:c7:9e:66:a6:5d:18:e2:89:65:ac:c8:20:14:e7: 76:84:45:f3:19:d4:e1:18:0b:67:92:08:5f:9f:52:ad:4a:95: 64:67:bb:f6:5a:c8:bd:4c:8f:34:a7:6b:5e:7d:0f:56:44:5b: 91:d3:12:e6:19:7e:63:a4:e6:90:86:8a:d9:1d:0c:c6:d6:1b: 39:b0:7f:68:ea:46:cc:36:46:60:9c:e5:c0:85:58:66:c4:66: 2d:3e:39:7a:27:7d:49:18:25:a0:f2:ca:d2:43:ed:0b:f2:d1: 77:f8:6e:3c:56:aa:8d:cc:2b:08:fa:fe:f8:3f:fc:87:aa:f3: d4:03:ff:c6:76:10:53:34:4a:cd:65:0e:18:74:2f:c6:16:3e: d6:c0:94:12:ae:19:1d:3e:f6:9d:2b:e4:6d:10:10:de:ae:3f: bd:57:24:c5:72:39:3b:c9:3a:ef:2f:86:b8:b6:ff:13:8a:e5: c9:93:e9:0a:e8:cc:6e:0e:79:b5:18:20:b9:a4:a3:b6:db:df: c6:78:cd:c1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXY7F4wNeuHz91BlEYGJeVw8uF7swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTMzNWMxYzY1NzI4MDg1ZWE5ZjJhOWVhNzQwNTY3NDRh NGY2YjIxZGFjMTIwMTk4YmYzNTFhOWU1OTFkYTY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1zQgh/uc4FD6M2YI6iJWn69HzGEfb1ewApFRgEbEFWjzQ syTJ8Rz19NU6KfMkkArZPwVZMrTpcXsHVO4D3YnVtNpHDBYZe6tLX1v53hhklxBQ LZQTEbEEfk0x6M4+PxfZv0w8UpsxMX7ih7xeIXn/W0WWoVYTCgAOrPwb4DpZQXrE 1dwSmR7psxmSpQXuwLHtRyh8xfwQ4QYqNTtLgY7GxEH/MDHpsXNGAORW46MtAq1x jNa92tk2qT/3+BRgOYoSM0oC+5uQ9pmRYiD0tKyBz2lMvQw59DPYw1A2QbnQt4hD nsSz5RSYXw540w64JDDi56vpKpi+r+KPK/GRCoStAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUh9VkgUoG+deJi3uKLJeBfCjCNS0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxYTljNGRmLTkxMTItNDY3YS1iMjIwLTEyZmNjZmY0YzFiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCDfzANBgkqhkiG9w0BAQsFAAOCAQEAfUoPQf4cqhSgd655tw7MlLQABY8B a7u5nIWuq9pYo7UJKu/OSIgmhdkQsF0VWYn8ogg5XvxxXGKyEceeZqZdGOKJZazI IBTndoRF8xnU4RgLZ5IIX59SrUqVZGe79lrIvUyPNKdrXn0PVkRbkdMS5hl+Y6Tm kIaK2R0MxtYbObB/aOpGzDZGYJzlwIVYZsRmLT45eid9SRgloPLK0kPtC/LRd/hu PFaqjcwrCPr++D/8h6rz1AP/xnYQUzRKzWUOGHQvxhY+1sCUEq4ZHT72nSvkbRAQ 3q4/vVckxXI5O8k67y+GuLb/E4rlyZPpCujMbg55tRgguaSjttvfxnjNwQ== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:14 2024 by rpki-client on console-ams.rpki-client.org