$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87966aa0-29fc-4d5a-857a-c8beff6b182c.roa File: 87966aa0-29fc-4d5a-857a-c8beff6b182c.roa (raw, json) Hash identifier: rPP1ekKQoFsx+ak6xsOqQqMNUSnTriEJ0ZELtIz+8Os= Subject key identifier: BF:74:4E:34:DE:CE:85:63:0C:65:92:29:E4:06:DB:6C:7F:70:70:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A304EF85D50728D9707A111BD39EF0E8BBEAB71 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87966aa0-29fc-4d5a-857a-c8beff6b182c.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 72.41.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:30:4e:f8:5d:50:72:8d:97:07:a1:11:bd:39:ef:0e:8b:be:ab:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=2a41baa912262143c25e267e463d0e24d2765438dcfba85a7ef19a5c17d00c05, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e1:72:87:13:a9:0d:9a:e0:60:5d:c8:2e:6c: f2:17:8a:10:bd:60:25:45:57:b8:f7:43:21:b1:05: 23:eb:2d:d3:9d:3c:01:64:1c:67:cf:57:74:e8:77: 57:bc:cb:ac:9e:f4:bd:23:e0:f2:fd:f3:eb:a0:7a: 6f:af:5f:ac:86:e5:8d:da:94:a7:fa:d9:b4:e7:a4: 37:af:87:7b:c7:39:0a:e8:7c:a9:d3:2d:99:be:82: 9d:1d:a1:fe:57:e0:6b:27:05:c0:9c:33:f1:f0:45: d4:cc:e7:50:9b:95:3a:c9:39:90:5d:49:78:98:59: ce:07:dc:41:eb:b7:78:91:4c:79:d6:10:dc:0c:d1: c8:e5:ab:f1:e9:01:b8:09:5b:02:7f:f5:c1:52:7a: bd:3a:7f:1a:5b:a3:5e:64:47:d9:94:a0:26:86:53: ba:42:8d:04:19:7e:f4:10:75:55:be:20:78:87:c3: 0c:cd:62:84:a9:39:75:02:ce:8b:bb:bb:65:10:7c: 24:8d:e5:3e:43:74:8c:05:fe:ec:97:b8:26:f0:0b: 61:7a:62:b5:bc:2b:72:41:21:17:49:86:d8:88:98: df:88:18:b7:e9:59:a0:31:68:8d:73:5b:36:44:19: 52:de:8e:85:d2:91:d9:43:fa:04:ad:ec:fe:25:08: 58:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:74:4E:34:DE:CE:85:63:0C:65:92:29:E4:06:DB:6C:7F:70:70:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87966aa0-29fc-4d5a-857a-c8beff6b182c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.41.0.0/16 Signature Algorithm: sha256WithRSAEncryption 30:83:f8:1a:24:d6:18:b5:ef:87:28:d1:d5:24:37:3a:f1:dd: a4:5d:32:39:b1:cd:ba:76:dd:fc:6b:7b:fb:ca:c5:87:84:eb: ec:ed:5a:3c:56:84:61:4b:a4:48:95:58:a8:e2:29:b5:7c:de: 6a:62:41:9f:32:41:a2:9b:67:60:d6:49:ac:11:28:cb:89:b7: 8f:b1:db:b8:f2:fc:69:b8:60:44:02:a1:bf:17:df:0f:09:0d: 9b:10:32:5a:76:d4:6d:c4:9d:63:48:af:bc:cc:e9:80:62:df: e9:ce:39:93:8b:ee:5b:95:a4:c2:28:fa:6f:c5:ce:09:87:8b: dc:84:b3:13:e4:ea:a7:3c:e1:6e:d3:ac:9c:6b:58:27:0a:0c: 36:f2:86:03:8d:70:c9:5a:ed:fd:47:59:ad:30:28:f2:36:07: d9:66:a0:6b:eb:9a:b0:72:1b:99:ce:6b:b3:00:a6:9c:12:ae: a0:db:25:41:f8:b5:af:c3:ae:36:b3:3d:59:ea:24:0e:07:b1: c3:4b:50:46:19:a5:a4:64:9f:23:8d:e1:c3:df:97:de:93:70: 10:0e:71:fa:c4:c2:f3:c0:a2:4d:9e:dd:29:0d:f8:5b:6a:bc: e3:37:8e:a7:b8:07:1e:32:ff:32:75:1c:98:a0:9f:3f:6c:32: 8e:f1:a9:d5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWjBO+F1Qco2XB6ERvTnvDou+q3EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTQxYmFhOTEyMjYyMTQzYzI1ZTI2N2U0NjNkMGUyNGQy NzY1NDM4ZGNmYmE4NWE3ZWYxOWE1YzE3ZDAwYzA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM4XKHE6kNmuBgXcgubPIXihC9YCVFV7j3QyGxBSPrLdOd PAFkHGfPV3Tod1e8y6ye9L0j4PL98+ugem+vX6yG5Y3alKf62bTnpDevh3vHOQro fKnTLZm+gp0dof5X4GsnBcCcM/HwRdTM51CblTrJOZBdSXiYWc4H3EHrt3iRTHnW ENwM0cjlq/HpAbgJWwJ/9cFSer06fxpbo15kR9mUoCaGU7pCjQQZfvQQdVW+IHiH wwzNYoSpOXUCzou7u2UQfCSN5T5DdIwF/uyXuCbwC2F6YrW8K3JBIRdJhtiImN+I GLfpWaAxaI1zWzZEGVLejoXSkdlD+gSt7P4lCFgLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUv3RONN7OhWMMZZIp5AbbbH9wcC4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg3OTY2YWEwLTI5ZmMtNGQ1YS04NTdhLWM4YmVmZjZiMTgyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBIKTANBgkqhkiG9w0BAQsFAAOCAQEAMIP4GiTWGLXvhyjR1SQ3OvHdpF0y ObHNunbd/Gt7+8rFh4Tr7O1aPFaEYUukSJVYqOIptXzeamJBnzJBoptnYNZJrBEo y4m3j7HbuPL8abhgRAKhvxffDwkNmxAyWnbUbcSdY0ivvMzpgGLf6c45k4vuW5Wk wij6b8XOCYeL3ISzE+TqpzzhbtOsnGtYJwoMNvKGA41wyVrt/UdZrTAo8jYH2Wag a+uasHIbmc5rswCmnBKuoNslQfi1r8OuNrM9WeokDgexw0tQRhmlpGSfI43hw9+X 3pNwEA5x+sTC88CiTZ7dKQ34W2q84zeOp7gHHjL/MnUcmKCfP2wyjvGp1Q== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:15 2024 by rpki-client on console-ams.rpki-client.org