$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854b0ccc-21b0-4120-9690-48e4d8492039.roa File: 854b0ccc-21b0-4120-9690-48e4d8492039.roa (raw, json) Hash identifier: wtQurlsKJB1dqNIVW9W5MWo3WX09nwo1ttYNXayJFyU= Subject key identifier: BA:41:AC:5C:A0:EF:CD:48:7C:BF:93:B8:12:DE:55:73:B3:85:AD:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63CE971E4DE2E615D9DF37719D83259603C44A40 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854b0ccc-21b0-4120-9690-48e4d8492039.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 164.152.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:ce:97:1e:4d:e2:e6:15:d9:df:37:71:9d:83:25:96:03:c4:4a:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=3e84b63629cf080efa9c301bde19b325dd41faeb3a4794ecc844895605643f51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a4:f3:6b:28:0e:07:22:a7:e4:ab:73:40:ef: 06:35:55:ae:d9:ee:f4:09:bb:1a:54:79:21:99:5b: ae:e2:fc:77:6f:b3:5f:02:ff:2d:63:67:fd:bc:64: e0:c8:b9:00:3f:9e:d7:26:51:88:1b:58:fb:32:82: a2:ef:09:bf:d9:9d:90:6d:75:5e:ba:d4:0c:c0:8f: 7a:a5:5f:ea:fa:51:86:35:05:83:ba:20:9d:0c:5c: da:3c:1f:4e:4d:bb:17:87:dd:1d:6c:95:8d:3c:83: a3:a5:18:ac:7e:d9:38:4b:79:ee:b1:91:04:97:ec: da:24:bb:04:be:c3:7f:0e:da:03:7c:c2:4a:26:12: 32:5d:4a:09:d8:7a:ed:0b:12:ec:63:a0:0a:4c:88: 5b:0f:ef:24:c2:bf:de:6d:c8:66:0f:e0:71:18:d5: 62:43:e7:9d:25:c7:cd:7f:b3:6a:94:1f:1e:fb:0b: 25:9b:24:ec:83:22:86:ff:7c:8b:ff:91:95:9f:46: 25:ef:0f:c8:e3:9c:32:50:0e:7a:10:00:4d:93:cd: fb:3a:2a:15:80:db:63:21:47:2c:82:ad:ff:7d:ad: d3:cf:4c:66:12:d7:5a:6f:15:60:4d:50:27:b7:e4: aa:79:e3:2e:b3:8f:90:36:c7:bc:64:d6:1d:b7:51: c4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:41:AC:5C:A0:EF:CD:48:7C:BF:93:B8:12:DE:55:73:B3:85:AD:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854b0ccc-21b0-4120-9690-48e4d8492039.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.228.0/22 Signature Algorithm: sha256WithRSAEncryption 93:e1:de:ae:26:e0:81:4e:ea:eb:cc:bf:dd:70:fb:e7:82:5f: 02:4e:dd:a0:33:f0:dc:54:6d:fb:50:3f:ec:be:ab:a0:0e:2c: d1:bd:01:61:20:82:e2:b1:7b:a9:87:69:cd:b1:6a:2b:69:c3: db:8a:8d:e4:0d:ca:f8:35:f5:12:4b:74:20:c8:1b:08:00:1a: c6:cc:a3:0a:5d:b6:cd:f6:69:b2:04:88:05:6c:37:c6:48:89: c9:ec:36:67:1d:02:54:57:b7:25:f3:fb:78:65:4b:67:73:39: db:57:cc:b2:8f:03:22:22:c4:d4:bf:97:64:86:3b:56:91:d1: f7:16:82:cf:08:fc:d2:8a:8c:91:5a:ff:e5:53:9b:a7:d8:d3: 11:85:66:77:65:f7:2c:0e:8e:af:b1:7d:4a:6e:2e:9e:fd:a7: 53:ad:b9:15:ef:80:11:4d:1f:96:ab:d3:a7:4e:01:91:e2:f8: 06:5d:64:e7:01:42:5f:a9:7e:ff:39:c6:89:07:45:ac:00:7f: e4:62:12:07:ba:55:bb:b1:88:0a:2a:51:6f:85:79:9e:1a:01: 4b:d5:c3:79:ff:32:1d:cc:ea:ad:14:a2:93:48:83:2b:16:a1: cf:ad:67:8e:25:17:fd:a6:56:75:ad:eb:a8:c6:87:6d:46:d4: 6a:d6:8a:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY86XHk3i5hXZ3zdxnYMllgPESkAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTg0YjYzNjI5Y2YwODBlZmE5YzMwMWJkZTE5YjMyNWRk NDFmYWViM2E0Nzk0ZWNjODQ0ODk1NjA1NjQzZjUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEpPNrKA4HIqfkq3NA7wY1Va7Z7vQJuxpUeSGZW67i/Hdv s18C/y1jZ/28ZODIuQA/ntcmUYgbWPsygqLvCb/ZnZBtdV661AzAj3qlX+r6UYY1 BYO6IJ0MXNo8H05NuxeH3R1slY08g6OlGKx+2ThLee6xkQSX7NokuwS+w38O2gN8 wkomEjJdSgnYeu0LEuxjoApMiFsP7yTCv95tyGYP4HEY1WJD550lx81/s2qUHx77 CyWbJOyDIob/fIv/kZWfRiXvD8jjnDJQDnoQAE2Tzfs6KhWA22MhRyyCrf99rdPP TGYS11pvFWBNUCe35Kp54y6zj5A2x7xk1h23UcRrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUukGsXKDvzUh8v5O4Et5Vc7OFrR0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg1NGIwY2NjLTIxYjAtNDEyMC05NjkwLTQ4ZTRkODQ5MjAzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKkmOQwDQYJKoZIhvcNAQELBQADggEBAJPh3q4m4IFO6uvMv91w++eCXwJO 3aAz8NxUbftQP+y+q6AOLNG9AWEgguKxe6mHac2xaitpw9uKjeQNyvg19RJLdCDI GwgAGsbMowpdts32abIEiAVsN8ZIicnsNmcdAlRXtyXz+3hlS2dzOdtXzLKPAyIi xNS/l2SGO1aR0fcWgs8I/NKKjJFa/+VTm6fY0xGFZndl9ywOjq+xfUpuLp79p1Ot uRXvgBFNH5ar06dOAZHi+AZdZOcBQl+pfv85xokHRawAf+RiEge6VbuxiAoqUW+F eZ4aAUvVw3n/Mh3M6q0UopNIgysWoc+tZ44lF/2mVnWt66jGh21G1GrWikI= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:13 2024 by rpki-client on console-fra.rpki-client.org