$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/914dcd7c-9706-465c-a376-cc7a3f6317f2.roa File: 914dcd7c-9706-465c-a376-cc7a3f6317f2.roa (raw, json) Hash identifier: 9cqv/PrOwjEIizko0PaW9Xh7LGDm3dT5SWP/oH0HoxM= Subject key identifier: CF:8C:F7:09:CB:09:ED:64:F4:FF:62:68:49:DE:17:CB:A8:AC:0C:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B5507DDC0BBC1DB44D8D96224F9A0FD68539B78 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/914dcd7c-9706-465c-a376-cc7a3f6317f2.roa Signing time: Sat 16 Nov 2024 00:00:00 +0000 ROA not before: Sat 16 Nov 2024 00:00:00 +0000 ROA not after: Sat 21 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:55:07:dd:c0:bb:c1:db:44:d8:d9:62:24:f9:a0:fd:68:53:9b:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 16 00:00:00 2024 GMT Not After : Dec 21 23:59:59 2024 GMT Subject: serialNumber=4d24ebbdcba442e71e3a6680c5decc318ffb5c845d46e09557ac9f7084810ef8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:74:81:38:0f:b9:67:84:1e:30:91:91:e5:38: 72:fb:c6:61:74:0a:1e:cf:3a:6f:26:54:d6:25:b6: 34:f9:2e:10:a7:a8:02:2a:93:80:55:73:80:5c:b9: bb:69:10:b2:6e:1c:37:8b:d1:a7:a4:29:f0:8b:67: cc:f5:73:b0:58:e3:5b:b9:b2:af:00:cf:19:c2:36: ea:a6:35:b9:94:b9:3d:38:2a:50:2d:85:a3:99:99: 01:b5:09:32:dd:62:6b:74:74:95:61:90:7d:0c:02: ea:b1:a8:ba:fd:10:1e:ba:bc:02:5b:54:12:ea:ab: 25:85:db:05:bb:af:86:c5:95:dd:5b:a6:28:28:a0: 2e:14:56:e1:90:ee:aa:6c:e7:48:50:62:fb:35:fb: d4:53:d9:95:de:91:d7:db:57:0c:50:2c:f7:85:24: fa:3d:da:9b:41:ca:4e:a7:3b:b9:2d:fe:be:89:a3: 2f:d2:d7:6d:a9:1d:49:16:a6:54:14:1a:60:13:4f: 7a:6b:c7:90:e4:02:bc:35:3d:d0:be:47:82:e4:d5: 30:37:cb:a3:fb:37:9c:ca:9e:5b:f7:04:20:98:15: fd:f0:d3:5d:71:44:72:2e:4d:67:22:b6:8a:fc:45: 86:8a:d2:7f:ee:8c:f3:f1:16:da:34:93:fe:38:8d: 9b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:8C:F7:09:CB:09:ED:64:F4:FF:62:68:49:DE:17:CB:A8:AC:0C:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/914dcd7c-9706-465c-a376-cc7a3f6317f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.128.0/17 Signature Algorithm: sha256WithRSAEncryption 49:8f:83:e9:7e:0a:b2:38:a8:9c:48:fc:6d:88:c7:7d:ce:80: 65:14:4d:20:51:8c:ec:e4:ea:2a:d9:02:ca:b2:83:2b:3c:27: fa:8c:0c:33:84:fb:cb:3b:1c:52:ed:da:ad:76:00:9f:c6:c6: 8c:f2:21:28:2f:a9:96:cb:e1:71:9f:54:09:a9:27:7a:39:3e: 3c:07:81:54:58:ad:8a:37:86:be:af:25:48:ad:ef:54:40:19: 2c:dc:98:95:a0:20:e9:b4:89:fe:e7:c0:4e:88:cf:6c:f2:63: 41:3e:38:d2:78:52:4f:f3:3f:ae:d0:9e:57:44:81:fb:67:23: 46:3b:3a:90:70:d0:ed:bb:04:54:5a:0a:47:b5:e0:43:33:39: 83:a5:69:d0:81:e7:20:e2:c9:2c:30:08:1c:5d:ef:e1:03:e8: f6:0c:ed:f3:0e:58:9b:84:bf:80:f2:94:92:00:a1:bd:d2:05: d5:3a:a4:28:23:47:4a:39:e8:3f:20:62:cf:bb:ca:0f:74:8f: 5d:65:5c:0a:6b:1a:35:45:ae:de:d4:37:3b:67:41:6c:fb:6d: 06:6a:96:01:35:77:80:60:75:a5:f1:1d:78:8c:16:3e:4f:35: 38:68:74:7a:5d:46:c2:67:44:d8:33:6e:3f:3e:dd:f8:ea:c2: 47:0a:6e:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa1UH3cC7wdtE2NliJPmg/WhTm3gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE2MDAwMDAwWhcNMjQxMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDI0ZWJiZGNiYTQ0MmU3MWUzYTY2ODBjNWRlY2MzMThm ZmI1Yzg0NWQ0NmUwOTU1N2FjOWY3MDg0ODEwZWY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1dIE4D7lnhB4wkZHlOHL7xmF0Ch7POm8mVNYltjT5LhCn qAIqk4BVc4BcubtpELJuHDeL0aekKfCLZ8z1c7BY41u5sq8AzxnCNuqmNbmUuT04 KlAthaOZmQG1CTLdYmt0dJVhkH0MAuqxqLr9EB66vAJbVBLqqyWF2wW7r4bFld1b pigooC4UVuGQ7qps50hQYvs1+9RT2ZXekdfbVwxQLPeFJPo92ptByk6nO7kt/r6J oy/S122pHUkWplQUGmATT3prx5DkArw1PdC+R4Lk1TA3y6P7N5zKnlv3BCCYFf3w 011xRHIuTWcitor8RYaK0n/ujPPxFto0k/44jZuHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUz4z3CcsJ7WT0/2JoSd4Xy6isDEUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxNGRjZDdjLTk3MDYtNDY1Yy1hMzc2LWNjN2EzZjYzMTdmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeIEoAwDQYJKoZIhvcNAQELBQADggEBAEmPg+l+CrI4qJxI/G2Ix33OgGUU TSBRjOzk6irZAsqygys8J/qMDDOE+8s7HFLt2q12AJ/GxozyISgvqZbL4XGfVAmp J3o5PjwHgVRYrYo3hr6vJUit71RAGSzcmJWgIOm0if7nwE6Iz2zyY0E+ONJ4Uk/z P67QnldEgftnI0Y7OpBw0O27BFRaCke14EMzOYOladCB5yDiySwwCBxd7+ED6PYM 7fMOWJuEv4DylJIAob3SBdU6pCgjR0o56D8gYs+7yg90j11lXAprGjVFrt7UNztn QWz7bQZqlgE1d4BgdaXxHXiMFj5PNThodHpdRsJnRNgzbj8+3fjqwkcKbq0= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:17 2024 by rpki-client on console-ams.rpki-client.org