$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e8474fb-456e-4959-83e8-4508d2c0ea83.roa File: 8e8474fb-456e-4959-83e8-4508d2c0ea83.roa (raw, json) Hash identifier: YW8Kbcpt1J1H+Ie4WzhXkejIdAhamrk6pIQ+zj9qbC8= Subject key identifier: E9:06:93:7E:D7:90:62:55:B9:8E:72:7A:C3:3A:B7:64:1F:8C:98:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C12E67FE02BA373873FADEC5187D9A84FE02487 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e8474fb-456e-4959-83e8-4508d2c0ea83.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 173.83.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:12:e6:7f:e0:2b:a3:73:87:3f:ad:ec:51:87:d9:a8:4f:e0:24:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=a3d98b46efb866e8757486c9f449725605d14d2dcf23d22c27e55beff0c7d59c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:71:40:03:25:df:da:96:0f:d1:44:20:99:b4: 1d:5e:4a:ef:a1:5a:01:65:49:6d:77:22:7b:42:53: e4:06:6b:b2:83:29:e1:b5:16:b3:d4:fd:22:28:e4: b2:3b:be:6c:4e:92:b1:86:2e:ac:c7:56:3d:1f:4e: 94:ee:57:64:ab:fe:8b:c1:82:cd:af:2c:7a:a2:cd: 8a:2f:d0:33:55:d1:52:23:d1:8a:f8:19:80:1e:c4: 22:9b:11:89:c5:57:81:87:a1:ba:bf:57:1f:21:1d: bd:49:aa:a6:45:56:36:50:fd:34:a3:c0:33:c9:fb: 84:3b:5a:de:e7:eb:00:52:99:8a:bf:97:3b:5d:e1: 58:c9:f3:ea:11:15:8b:ad:da:ea:13:cb:e5:d6:36: c2:49:4e:1d:d9:23:d6:3f:d0:87:63:f7:74:4b:08: af:2b:71:f1:27:83:4e:19:ee:3e:2f:67:dc:c7:19: aa:bc:01:82:46:b2:8c:43:46:29:ec:e6:c2:52:32: 2e:05:b6:23:c2:f7:d4:39:75:8b:af:10:28:21:ac: fe:78:26:ad:46:8a:66:79:b7:59:53:b0:01:ed:81: 20:fe:01:33:4d:49:36:4c:bc:e1:d0:fc:c7:b5:04: 4d:56:19:ae:85:c5:c4:7f:d4:6d:b3:dc:8c:58:97: d4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:06:93:7E:D7:90:62:55:B9:8E:72:7A:C3:3A:B7:64:1F:8C:98:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e8474fb-456e-4959-83e8-4508d2c0ea83.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.83.213.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:7b:7c:71:be:e1:ca:7d:90:b4:ab:0c:4a:be:e3:4e:b7:43: ca:47:30:a5:ca:ae:a1:05:3a:6e:b0:36:0a:6e:36:b4:9c:48: ff:2a:b4:5e:0e:46:66:84:ed:ac:be:92:bf:ed:7a:2e:f7:34: 04:9a:ea:cd:05:9b:0a:a5:d5:55:68:bd:9e:f5:20:54:a1:df: 3b:75:59:6f:9d:bc:9b:84:33:0a:56:ed:7d:c1:ca:1d:87:cc: 8e:9f:e5:94:9a:b7:ed:e4:bf:f4:f7:d9:99:f8:70:10:2b:a3: fa:06:1b:69:8a:79:93:82:db:c1:4f:bb:25:12:ad:a6:78:19: 42:e6:3f:2b:c9:c4:92:84:6d:6e:0d:03:ce:76:78:03:92:ae: c6:8b:27:88:63:cc:7c:31:1b:42:6e:91:49:ce:a8:b1:34:fe: da:cc:db:d1:3d:90:db:3f:14:0f:85:ca:cd:24:b5:94:fd:c7: 79:05:d8:b9:7e:93:ff:79:32:14:ac:1f:4c:5c:da:3c:f7:c7: d5:6a:55:4f:0a:ec:b1:6d:27:f5:02:9c:80:68:be:c0:40:33: d5:ec:b4:dc:a9:18:26:4d:36:4c:ed:af:0a:2e:58:ba:a5:b7: d7:45:ac:09:bd:75:47:4a:f5:1a:0c:21:8d:e0:a3:43:d3:e5: 9c:ca:c1:0a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPBLmf+Aro3OHP63sUYfZqE/gJIcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhM2Q5OGI0NmVmYjg2NmU4NzU3NDg2YzlmNDQ5NzI1NjA1 ZDE0ZDJkY2YyM2QyMmMyN2U1NWJlZmYwYzdkNTljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXcUADJd/alg/RRCCZtB1eSu+hWgFlSW13IntCU+QGa7KD KeG1FrPU/SIo5LI7vmxOkrGGLqzHVj0fTpTuV2Sr/ovBgs2vLHqizYov0DNV0VIj 0Yr4GYAexCKbEYnFV4GHobq/Vx8hHb1JqqZFVjZQ/TSjwDPJ+4Q7Wt7n6wBSmYq/ lztd4VjJ8+oRFYut2uoTy+XWNsJJTh3ZI9Y/0Idj93RLCK8rcfEng04Z7j4vZ9zH Gaq8AYJGsoxDRins5sJSMi4FtiPC99Q5dYuvECghrP54Jq1GimZ5t1lTsAHtgSD+ ATNNSTZMvOHQ/Me1BE1WGa6FxcR/1G2z3IxYl9TzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6QaTfteQYlW5jnJ6wzq3ZB+MmPEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlODQ3NGZiLTQ1NmUtNDk1OS04M2U4LTQ1MDhkMmMwZWE4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACtU9UwDQYJKoZIhvcNAQELBQADggEBAHx7fHG+4cp9kLSrDEq+4063Q8pH MKXKrqEFOm6wNgpuNrScSP8qtF4ORmaE7ay+kr/tei73NASa6s0Fmwql1VVovZ71 IFSh3zt1WW+dvJuEMwpW7X3Byh2HzI6f5ZSat+3kv/T32Zn4cBAro/oGG2mKeZOC 28FPuyUSraZ4GULmPyvJxJKEbW4NA852eAOSrsaLJ4hjzHwxG0JukUnOqLE0/trM 29E9kNs/FA+Fys0ktZT9x3kF2Ll+k/95MhSsH0xc2jz3x9VqVU8K7LFtJ/UCnIBo vsBAM9XstNypGCZNNkztrwouWLqlt9dFrAm9dUdK9RoMIY3go0PT5ZzKwQo= -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:18 2024 by rpki-client on console-ams.rpki-client.org