$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83e17373-cd6a-4f46-a2f4-b432f18efd7c.roa File: 83e17373-cd6a-4f46-a2f4-b432f18efd7c.roa (raw, json) Hash identifier: QhPtKczxjD9EteeBxdI250FzilfoNdP9Hir9KP07OuI= Subject key identifier: 51:8E:03:77:AC:C5:ED:80:5C:B5:FE:9C:3A:09:D8:0B:B2:C3:33:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 60B0D202E053436B72644770F4A72FDCCAD3211B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83e17373-cd6a-4f46-a2f4-b432f18efd7c.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:b0:d2:02:e0:53:43:6b:72:64:47:70:f4:a7:2f:dc:ca:d3:21:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=5749b224a4d6e8c90d5d2c7e397550c9089c386b9486a1ac98a2bb1ae8e3b8ce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ba:b1:5e:e4:64:a1:00:00:aa:6b:60:3d:74: 71:ac:0e:39:0a:05:6b:e3:6b:af:56:80:66:44:28: fd:65:83:a2:45:f8:61:b5:59:7e:c6:b9:a1:31:2d: 6a:4b:07:e2:e2:6f:25:29:de:1b:67:6f:80:10:fe: 33:59:08:76:68:57:e8:04:03:aa:00:5a:8b:ed:83: d3:11:58:c3:f2:3f:f4:ac:d6:63:1e:3c:a2:2d:61: 8f:fd:8a:62:d6:58:1d:9c:6a:6e:19:27:d7:53:2f: 14:cf:74:5d:87:fc:a2:cf:e0:f8:d1:61:83:6f:85: e0:67:5d:f1:35:e9:df:59:bb:9f:ba:b8:61:e2:e0: a8:26:95:0c:85:09:4d:6d:0c:f5:26:48:3d:94:58: dd:15:43:15:50:29:5a:f2:72:50:b7:40:98:f6:fe: 2a:ed:3c:37:f1:21:7e:11:84:ba:a1:fe:3b:56:ca: 85:c3:45:08:91:72:a4:59:e8:1e:9b:7c:59:ad:63: 0f:16:ac:02:7c:7a:ff:f2:2a:bb:82:d9:22:c4:6d: 9c:5d:d4:86:e5:fa:a6:61:90:2b:57:df:25:ce:ef: 04:db:bf:a2:55:12:99:7e:75:e2:7c:9c:1c:9b:06: 12:be:e6:f1:6a:da:e3:ce:df:0b:83:0a:df:ee:c7: 42:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:8E:03:77:AC:C5:ED:80:5C:B5:FE:9C:3A:09:D8:0B:B2:C3:33:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83e17373-cd6a-4f46-a2f4-b432f18efd7c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.94.0/23 Signature Algorithm: sha256WithRSAEncryption a2:ee:bb:55:3d:ea:3c:f9:b0:08:cc:73:d9:a3:57:69:3d:87: 5f:43:33:a3:6f:67:08:2a:c2:69:4d:42:c6:ee:30:a3:6f:4d: e3:9c:9a:87:5d:d7:31:77:aa:25:e9:fd:2c:a6:08:54:e2:30: 47:75:56:fc:22:c2:89:ca:91:1a:54:15:06:9c:bd:40:54:84: 6a:10:4b:75:4a:79:c7:f2:ad:94:25:e1:72:35:93:63:7d:f5: 2e:fe:c7:0a:6b:81:1c:11:4e:b7:74:79:ae:ee:1e:3a:49:30: 93:d8:3a:52:ae:f2:ed:0a:ad:2d:22:70:3e:89:73:36:d0:28: f7:27:07:7a:65:b7:40:d8:3d:4b:07:de:bb:76:81:40:50:d3: f2:0d:6a:2d:56:c6:c6:5b:3d:6e:6e:f3:b5:ac:db:11:ee:25: 42:22:bb:9a:e2:70:87:45:ff:6f:4c:3f:b3:b1:f5:06:e0:a1: d4:ed:6a:cd:5f:f9:4c:3d:b1:c1:8b:07:90:d8:fa:3d:fb:65: 66:46:8c:4d:e2:43:01:3d:37:a0:9d:dc:90:23:f5:e8:42:e7: 4d:70:ef:9f:39:fe:5e:d9:73:df:fa:9d:5e:9d:cb:20:6e:ab: b7:26:94:06:ba:d0:5c:50:38:e3:94:fb:3d:6e:f8:1d:6c:5d: 25:3f:5b:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYLDSAuBTQ2tyZEdw9Kcv3MrTIRswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzQ5YjIyNGE0ZDZlOGM5MGQ1ZDJjN2UzOTc1NTBjOTA4 OWMzODZiOTQ4NmExYWM5OGEyYmIxYWU4ZTNiOGNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9urFe5GShAACqa2A9dHGsDjkKBWvja69WgGZEKP1lg6JF +GG1WX7GuaExLWpLB+LibyUp3htnb4AQ/jNZCHZoV+gEA6oAWovtg9MRWMPyP/Ss 1mMePKItYY/9imLWWB2cam4ZJ9dTLxTPdF2H/KLP4PjRYYNvheBnXfE16d9Zu5+6 uGHi4KgmlQyFCU1tDPUmSD2UWN0VQxVQKVryclC3QJj2/irtPDfxIX4RhLqh/jtW yoXDRQiRcqRZ6B6bfFmtYw8WrAJ8ev/yKruC2SLEbZxd1Ibl+qZhkCtX3yXO7wTb v6JVEpl+deJ8nBybBhK+5vFq2uPO3wuDCt/ux0JDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUY4Dd6zF7YBctf6cOgnYC7LDM5cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgzZTE3MzczLWNkNmEtNGY0Ni1hMmY0LWI0MzJmMThlZmQ3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgAF4wDQYJKoZIhvcNAQELBQADggEBAKLuu1U96jz5sAjMc9mjV2k9h19D M6NvZwgqwmlNQsbuMKNvTeOcmodd1zF3qiXp/SymCFTiMEd1VvwiwonKkRpUFQac vUBUhGoQS3VKecfyrZQl4XI1k2N99S7+xwprgRwRTrd0ea7uHjpJMJPYOlKu8u0K rS0icD6JczbQKPcnB3plt0DYPUsH3rt2gUBQ0/INai1WxsZbPW5u87Ws2xHuJUIi u5ricIdF/29MP7Ox9QbgodTtas1f+Uw9scGLB5DY+j37ZWZGjE3iQwE9N6Cd3JAj 9ehC501w7585/l7Zc9/6nV6dyyBuq7cmlAa60FxQOOOU+z1u+B1sXSU/W8s= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:14 2024 by rpki-client on console-ams.rpki-client.org