$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d7c7b68-5c04-4169-bd00-6fee1b5f66af.roa File: 8d7c7b68-5c04-4169-bd00-6fee1b5f66af.roa (raw, json) Hash identifier: aLobrPlGsACayQ1WGKA9AqjvRglpL0N8yU+GVXkGqB4= Subject key identifier: E2:42:43:0F:55:3A:B9:64:4C:8A:BE:DB:54:9E:6B:20:DD:8D:CA:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56F9CF04210C1BA8BF402B605A1551B8231545FB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d7c7b68-5c04-4169-bd00-6fee1b5f66af.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 204.15.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f9:cf:04:21:0c:1b:a8:bf:40:2b:60:5a:15:51:b8:23:15:45:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=cc8fd4aeb35263703f933ce3c5b0fac7d756b0f20baae2d63c7885be89a25c6b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ba:02:13:8d:c7:70:a4:35:f4:fc:f3:df:18: 4a:24:10:86:6a:3f:f7:0e:5d:11:88:26:c5:5c:db: 67:db:2a:5b:6e:0b:0b:29:79:56:c7:39:fc:f7:e1: f3:72:60:65:eb:02:f2:f5:19:20:9d:65:67:08:05: 7b:43:c2:28:90:0d:73:22:c4:e1:43:2e:02:44:fd: d2:2d:2c:af:1b:68:d2:b5:4f:04:85:7f:74:dc:c9: d8:7c:a6:e4:fd:f1:e4:d2:c1:84:6b:94:45:3f:ca: c9:4d:05:0e:a3:ec:8a:7b:01:03:9a:d1:34:82:10: a8:86:ab:8a:82:33:69:ae:5b:90:31:b9:d3:93:87: 04:ab:d4:ff:49:35:c2:a6:7d:5c:a5:68:6e:02:2a: 6b:0b:c4:e6:71:3c:9b:fc:e3:31:4d:c1:88:c8:dc: ea:80:d6:52:01:bf:ae:60:09:5f:da:9c:de:48:d0: 1f:a5:09:16:3b:3c:1b:8e:ed:59:73:7b:51:b0:35: ee:34:21:ea:5f:42:ac:9d:20:f7:1e:df:38:dd:e7: 3f:f0:be:85:8a:80:69:c0:5d:ef:19:7c:09:3f:14: de:e7:1c:e6:4d:f6:6f:eb:e0:49:af:94:07:75:72: e2:dd:c5:2d:2b:f1:08:37:95:a3:15:d4:a6:96:fd: d1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:42:43:0F:55:3A:B9:64:4C:8A:BE:DB:54:9E:6B:20:DD:8D:CA:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d7c7b68-5c04-4169-bd00-6fee1b5f66af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.15.72.0/21 Signature Algorithm: sha256WithRSAEncryption 3b:b3:c7:48:45:8e:69:e0:03:bc:1b:61:4a:27:97:e1:fd:ff: 7d:67:8a:f6:d9:f8:ae:a5:b4:81:42:7a:d9:ce:ba:e2:64:d4: 5c:06:f5:8c:05:20:95:55:a1:d5:64:e8:d3:a4:2f:3f:64:a1: b7:db:68:bd:13:c0:bf:e9:f4:51:35:27:f0:cd:7c:a5:6d:97: 97:f2:30:96:c4:58:44:00:78:c4:28:63:d5:d9:01:05:11:16: 1c:61:20:b2:3d:1d:3b:b2:79:cd:da:56:22:d5:e4:e6:d5:94: ac:d9:ba:bf:fb:8b:7b:bc:b9:ea:65:ca:16:65:39:ce:2b:97: a8:5a:da:9a:23:65:9a:e7:87:76:7a:84:27:32:2d:6d:e0:5f: a9:3d:22:f2:02:66:e6:30:5f:9b:ee:14:c9:29:52:ce:32:f1: 9f:ca:a2:e0:e1:f8:63:d8:a2:73:6a:30:59:e9:ac:16:da:dd: 7c:98:0e:18:50:14:90:49:a2:64:93:f1:ea:d9:85:69:30:a4: 39:87:4e:e1:66:3b:df:5e:fd:81:44:e4:55:3f:f9:f5:81:64: 01:07:79:9b:40:fc:06:c3:f0:d8:70:4f:df:f0:3f:19:63:56: d8:94:8e:e5:09:7a:fe:bc:af:f0:db:f0:44:2d:11:60:a6:62: ff:1f:d4:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVvnPBCEMG6i/QCtgWhVRuCMVRfswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzhmZDRhZWIzNTI2MzcwM2Y5MzNjZTNjNWIwZmFjN2Q3 NTZiMGYyMGJhYWUyZDYzYzc4ODViZTg5YTI1YzZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVugITjcdwpDX0/PPfGEokEIZqP/cOXRGIJsVc22fbKltu CwspeVbHOfz34fNyYGXrAvL1GSCdZWcIBXtDwiiQDXMixOFDLgJE/dItLK8baNK1 TwSFf3Tcydh8puT98eTSwYRrlEU/yslNBQ6j7Ip7AQOa0TSCEKiGq4qCM2muW5Ax udOThwSr1P9JNcKmfVylaG4CKmsLxOZxPJv84zFNwYjI3OqA1lIBv65gCV/anN5I 0B+lCRY7PBuO7Vlze1GwNe40IepfQqydIPce3zjd5z/wvoWKgGnAXe8ZfAk/FN7n HOZN9m/r4EmvlAd1cuLdxS0r8Qg3laMV1KaW/dGFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4kJDD1U6uWRMir7bVJ5rIN2Nyh0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkN2M3YjY4LTVjMDQtNDE2OS1iZDAwLTZmZWUxYjVmNjZhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPMD0gwDQYJKoZIhvcNAQELBQADggEBADuzx0hFjmngA7wbYUonl+H9/31n ivbZ+K6ltIFCetnOuuJk1FwG9YwFIJVVodVk6NOkLz9kobfbaL0TwL/p9FE1J/DN fKVtl5fyMJbEWEQAeMQoY9XZAQURFhxhILI9HTuyec3aViLV5ObVlKzZur/7i3u8 ueplyhZlOc4rl6ha2pojZZrnh3Z6hCcyLW3gX6k9IvICZuYwX5vuFMkpUs4y8Z/K ouDh+GPYonNqMFnprBba3XyYDhhQFJBJomST8erZhWkwpDmHTuFmO99e/YFE5FU/ +fWBZAEHeZtA/AbD8NhwT9/wPxljVtiUjuUJev68r/Db8EQtEWCmYv8f1Lg= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:16 2024 by rpki-client on console-ams.rpki-client.org