$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a716bb3-3393-4099-b3fa-5100d90efa6c.roa File: 8a716bb3-3393-4099-b3fa-5100d90efa6c.roa (raw, json) Hash identifier: XSFbRnAnXWiKKkocG+DnPBLW0jDhEHJSeRRTr71kcp4= Subject key identifier: F2:96:E7:35:2B:AF:C0:4D:1D:2B:42:E4:4C:1E:47:40:64:47:43:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04E8B4EB5300D21E3CC45C878800151CDA153CDF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a716bb3-3393-4099-b3fa-5100d90efa6c.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 157.123.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:e8:b4:eb:53:00:d2:1e:3c:c4:5c:87:88:00:15:1c:da:15:3c:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=2dcda74fb860b55b5a61cdfdf8aa82298dfad86032565dd72f06a25c221fe0cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:19:98:9e:f1:0b:78:b6:b7:ae:e0:f5:3c:f3: dc:88:d8:6d:54:92:a5:1f:cb:e5:db:ae:25:3a:46: 21:3e:86:9a:6e:df:d0:16:c8:d1:37:86:42:cc:f3: 12:1d:30:f9:85:aa:07:c2:03:bf:74:c2:b0:f9:7c: 9d:84:dd:48:bc:55:72:13:de:3b:cb:94:3a:c6:8d: 62:c9:dd:ac:90:38:11:53:1c:ad:b9:e0:e7:ce:18: fe:29:e4:f8:a5:72:b2:60:98:d2:bd:04:60:5c:97: c6:e1:e8:c9:b5:0b:91:32:51:db:10:a4:1b:2a:d6: 7b:32:1f:67:32:8f:d5:fc:73:4a:d2:14:f0:32:a6: 02:ce:ee:2e:52:16:dd:05:ca:57:62:4d:73:e6:c0: 7c:4a:37:2e:ac:1d:cd:bd:d2:63:d5:ad:16:56:1b: d8:bc:dc:1c:d7:4b:f1:5e:a4:56:d8:8d:67:f3:ef: 0f:72:c8:22:b9:ba:5f:54:df:e6:c5:41:b3:28:58: 93:92:ee:e9:22:5a:68:ec:b4:9e:70:cd:d3:c7:19: 5d:aa:3a:b2:8e:da:ce:92:5d:42:d9:ca:dc:b3:73: da:4d:83:fa:42:17:4c:32:5c:00:c3:5a:21:c0:e2: 4d:f1:6c:f0:79:19:f9:12:24:a6:31:1a:ca:3b:ab: b6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:96:E7:35:2B:AF:C0:4D:1D:2B:42:E4:4C:1E:47:40:64:47:43:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a716bb3-3393-4099-b3fa-5100d90efa6c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.123.0.0/16 Signature Algorithm: sha256WithRSAEncryption 66:db:d0:69:9c:20:6f:fe:b6:3e:56:9f:29:ca:e6:89:35:14: 21:46:c3:1c:36:aa:62:30:fc:e2:dc:fc:64:6c:c5:83:b3:a6: 80:e2:34:99:b1:97:ab:06:7b:85:a4:f2:a4:d6:e1:73:71:23: 9e:b6:0f:fc:59:70:ff:54:9c:74:f8:4e:b6:b1:0a:58:20:da: 00:a7:1f:34:15:ce:71:80:94:b9:69:c7:76:c4:e0:e9:ee:87: 1b:a3:d7:d6:3b:f3:b6:5f:38:cc:e6:6a:25:76:ec:2f:ee:fd: 85:af:51:b2:e9:57:4c:70:f6:60:22:78:52:b7:12:5c:40:bd: 22:55:c8:33:d1:c8:ba:49:76:63:a6:9b:3d:6c:67:e3:dd:66: 6e:6c:0e:08:03:82:cf:b4:14:1d:e1:79:a8:b1:1b:7b:1d:ef: 3c:87:d6:91:ad:f3:83:ee:1b:ef:09:d8:a9:ac:c0:6a:76:bc: bb:85:42:49:3b:c5:25:20:e0:34:9b:f3:90:8e:95:70:5e:b8: 31:ee:9f:23:0f:be:97:e4:46:db:0e:42:75:f2:f7:89:13:78: e2:27:8a:43:a7:fd:ec:e5:61:aa:e8:88:27:bf:a8:a0:10:6f: 8b:99:8b:d4:61:c3:e4:15:f0:fa:ee:53:c9:ee:6d:f7:db:48: 0c:86:ff:9d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBOi061MA0h48xFyHiAAVHNoVPN8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZGNkYTc0ZmI4NjBiNTViNWE2MWNkZmRmOGFhODIyOThk ZmFkODYwMzI1NjVkZDcyZjA2YTI1YzIyMWZlMGNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTGZie8Qt4treu4PU889yI2G1UkqUfy+XbriU6RiE+hppu 39AWyNE3hkLM8xIdMPmFqgfCA790wrD5fJ2E3Ui8VXIT3jvLlDrGjWLJ3ayQOBFT HK254OfOGP4p5PilcrJgmNK9BGBcl8bh6Mm1C5EyUdsQpBsq1nsyH2cyj9X8c0rS FPAypgLO7i5SFt0FyldiTXPmwHxKNy6sHc290mPVrRZWG9i83BzXS/FepFbYjWfz 7w9yyCK5ul9U3+bFQbMoWJOS7ukiWmjstJ5wzdPHGV2qOrKO2s6SXULZytyzc9pN g/pCF0wyXADDWiHA4k3xbPB5GfkSJKYxGso7q7bXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8pbnNSuvwE0dK0LkTB5HQGRHQ8gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhNzE2YmIzLTMzOTMtNDA5OS1iM2ZhLTUxMDBkOTBlZmE2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCdezANBgkqhkiG9w0BAQsFAAOCAQEAZtvQaZwgb/62PlafKcrmiTUUIUbD HDaqYjD84tz8ZGzFg7OmgOI0mbGXqwZ7haTypNbhc3EjnrYP/Flw/1ScdPhOtrEK WCDaAKcfNBXOcYCUuWnHdsTg6e6HG6PX1jvztl84zOZqJXbsL+79ha9RsulXTHD2 YCJ4UrcSXEC9IlXIM9HIukl2Y6abPWxn491mbmwOCAOCz7QUHeF5qLEbex3vPIfW ka3zg+4b7wnYqazAana8u4VCSTvFJSDgNJvzkI6VcF64Me6fIw++l+RG2w5CdfL3 iRN44ieKQ6f97OVhquiIJ7+ooBBvi5mL1GHD5BXw+u5Tye5t99tIDIb/nQ== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:15 2024 by rpki-client on console-ams.rpki-client.org