$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f71b618-591d-482a-9df3-5520aa5a280d.roa File: 8f71b618-591d-482a-9df3-5520aa5a280d.roa (raw, json) Hash identifier: dYBawnQu3+gd049CLXADzlvjdOZk8mR6QYlOWxUJwiQ= Subject key identifier: DD:9A:29:AF:9E:82:20:AE:64:18:C3:E5:1B:21:71:6F:21:A5:D8:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DDD206C5F07CFF9F80F98CF358CAAA4E6F5E588 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f71b618-591d-482a-9df3-5520aa5a280d.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:dd:20:6c:5f:07:cf:f9:f8:0f:98:cf:35:8c:aa:a4:e6:f5:e5:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=e2373427eb665444964a1263b5cdcfd4b614b04e3a2459e58750836cd6ee7fb4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:33:d2:9e:01:a5:0a:b7:06:1f:c9:77:d4:d6: b3:70:46:ce:28:9a:e0:7a:95:d9:22:6e:5d:dc:80: b1:e9:14:ef:ad:3d:9c:0c:a0:da:62:5e:ab:5e:00: 66:ab:cf:d1:1a:0a:8b:81:07:6e:87:63:27:f2:e2: 27:5b:1d:ef:48:59:f1:37:5c:c7:bd:c3:3f:54:27: 29:57:6c:f4:d7:ff:bc:6d:d8:1c:69:e8:81:b0:ef: f3:3c:dc:d0:2d:25:36:18:0b:5e:28:ff:56:89:0c: ff:37:14:54:17:4e:de:77:98:9a:9e:06:11:36:fa: 95:39:af:cf:6e:61:64:e6:13:3f:f9:33:3a:eb:08: 5d:22:8e:4a:8b:af:7b:c8:d9:24:78:f0:b3:a5:4b: ed:24:23:00:72:6d:c0:eb:7d:db:be:da:40:bd:9d: 68:a6:1f:57:82:38:08:0f:b1:90:b6:02:8e:d1:ee: b2:ee:10:c7:44:d9:21:58:12:5c:42:d6:2a:f8:54: 2f:4b:7c:22:23:f6:3d:72:64:e5:3c:77:93:2f:e5: 59:d1:d6:67:34:2d:2d:fa:e4:39:54:f0:8c:e9:3a: 62:d0:18:02:fe:2d:89:ab:aa:4f:f2:88:f6:1f:13: fb:d8:59:03:7b:f5:37:a9:c5:ab:8c:49:c1:79:0c: db:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:9A:29:AF:9E:82:20:AE:64:18:C3:E5:1B:21:71:6F:21:A5:D8:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f71b618-591d-482a-9df3-5520aa5a280d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.32.0/19 Signature Algorithm: sha256WithRSAEncryption 66:e5:3b:67:25:60:54:55:b7:83:e4:14:05:53:45:50:2e:75: 95:ba:a9:18:e1:c1:90:0f:3d:c7:9b:d6:14:bb:80:3f:86:28: 7d:11:75:99:07:da:08:fe:09:28:6e:1b:ee:4f:0f:1c:fd:3a: 01:4f:c2:82:ed:33:9d:67:90:e2:ac:04:37:a2:91:56:58:bd: 34:f9:79:02:3c:91:48:a8:3f:b5:c5:15:88:6f:15:b7:8b:33: 53:33:7f:6e:10:de:4a:08:b2:9a:c6:50:56:12:dd:45:9f:c4: 34:31:71:98:93:36:c5:68:2e:fa:ac:d5:3b:b2:47:bc:2c:4e: ce:5d:ee:3d:c3:68:e8:16:c6:b5:0e:14:83:9f:b0:51:d4:0f: 96:15:b8:f7:ac:46:26:7b:8d:61:4f:7d:df:79:d3:f6:40:8c: cf:99:0c:06:d6:5f:4d:22:5e:95:09:f8:81:ed:f5:78:03:dd: 5c:d7:aa:3f:e8:5d:a5:ad:15:69:4b:a5:8c:e0:09:67:1f:bf: 5f:2c:b0:a9:bd:ea:01:ed:d6:40:c8:ba:d7:84:ad:9e:94:27: 02:6c:28:cb:69:2b:8f:63:5c:6b:f4:e4:ff:21:bb:3f:e2:30: 54:71:ae:df:07:81:22:3b:8c:8f:fb:e5:53:d6:99:4b:e7:1b: 51:ea:8a:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXd0gbF8Hz/n4D5jPNYyqpOb15YgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjM3MzQyN2ViNjY1NDQ0OTY0YTEyNjNiNWNkY2ZkNGI2 MTRiMDRlM2EyNDU5ZTU4NzUwODM2Y2Q2ZWU3ZmI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFM9KeAaUKtwYfyXfU1rNwRs4omuB6ldkibl3cgLHpFO+t PZwMoNpiXqteAGarz9EaCouBB26HYyfy4idbHe9IWfE3XMe9wz9UJylXbPTX/7xt 2Bxp6IGw7/M83NAtJTYYC14o/1aJDP83FFQXTt53mJqeBhE2+pU5r89uYWTmEz/5 MzrrCF0ijkqLr3vI2SR48LOlS+0kIwBybcDrfdu+2kC9nWimH1eCOAgPsZC2Ao7R 7rLuEMdE2SFYElxC1ir4VC9LfCIj9j1yZOU8d5Mv5VnR1mc0LS365DlU8IzpOmLQ GAL+LYmrqk/yiPYfE/vYWQN79TepxauMScF5DNuBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3Zopr56CIK5kGMPlGyFxbyGl2HkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmNzFiNjE4LTU5MWQtNDgyYS05ZGYzLTU1MjBhYTVhMjgwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUjNiAwDQYJKoZIhvcNAQELBQADggEBAGblO2clYFRVt4PkFAVTRVAudZW6 qRjhwZAPPceb1hS7gD+GKH0RdZkH2gj+CShuG+5PDxz9OgFPwoLtM51nkOKsBDei kVZYvTT5eQI8kUioP7XFFYhvFbeLM1Mzf24Q3koIsprGUFYS3UWfxDQxcZiTNsVo Lvqs1TuyR7wsTs5d7j3DaOgWxrUOFIOfsFHUD5YVuPesRiZ7jWFPfd950/ZAjM+Z DAbWX00iXpUJ+IHt9XgD3VzXqj/oXaWtFWlLpYzgCWcfv18ssKm96gHt1kDIuteE rZ6UJwJsKMtpK49jXGv05P8huz/iMFRxrt8HgSI7jI/75VPWmUvnG1HqilU= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:16 2024 by rpki-client on console-ams.rpki-client.org