$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa File: 92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa (raw, json) Hash identifier: EfK312NxV1wBi9AggaA9vqNBJbYnxGqBMmtYSQoWHac= Subject key identifier: 09:5B:BA:29:D2:78:36:72:79:0A:3F:9F:5E:D8:30:FF:6F:F7:E5:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E5746C3C523868E1B8746B0A016E7955C600662 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:57:46:c3:c5:23:86:8e:1b:87:46:b0:a0:16:e7:95:5c:60:06:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=23c4a3ff7f9b3dc8c79cf021f6607afb68555d7b83e0b5a0101e3d801c7d4f0b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f9:27:26:64:ef:20:67:ad:d5:91:9d:6c:15: 12:de:f6:88:28:1e:6c:5d:5f:22:27:e0:82:fb:07: b9:97:25:28:8e:69:47:47:f9:97:0c:ac:75:12:c7: 16:d0:59:d0:9e:12:3f:cb:3d:e3:00:19:ee:00:06: fc:c5:47:db:0c:50:29:2a:a7:58:e4:b1:4b:70:c3: 32:83:45:7d:1b:5a:fd:f2:8d:08:e5:0f:ba:cd:88: 10:16:4c:63:25:3f:73:35:64:3f:fc:ff:ee:71:42: 2d:5f:e0:84:b0:fc:b1:55:04:b4:31:ae:80:37:23: ef:3d:ff:14:1f:98:3a:91:ca:21:40:7a:3e:17:2d: b6:71:92:99:a1:65:00:ac:f7:0e:15:16:17:25:96: be:b2:41:ca:41:8b:a8:6b:39:a1:cc:6a:e6:9e:de: e8:61:9a:be:7c:ad:b5:c7:0e:4e:63:71:54:17:72: 27:9f:eb:ac:3b:19:ba:f0:79:31:fc:55:19:50:ed: a0:df:3d:43:6e:34:34:29:a5:d0:0f:ef:55:0e:58: 8b:d0:e2:91:d2:e8:f3:37:e1:a3:77:7d:83:f0:fe: 64:f6:a0:51:d7:c7:8c:7c:03:ea:7e:cd:fe:9c:58: be:ec:f4:04:d0:14:48:26:3f:92:e5:ed:17:8f:7d: 39:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:5B:BA:29:D2:78:36:72:79:0A:3F:9F:5E:D8:30:FF:6F:F7:E5:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:8f:0d:52:6c:05:8c:5c:06:54:6d:a6:b0:5d:13:8e:45:95: a5:34:9f:5d:88:94:91:2c:88:a4:dc:1f:c6:51:f9:8e:0b:32: 5e:66:98:10:03:c7:3b:87:ee:f7:6d:4d:ef:bd:0b:6a:5b:12: 1d:9f:2d:49:0e:17:2f:2c:12:3b:0d:d2:07:e7:06:fd:95:e0: de:9c:89:54:76:21:76:9d:57:59:73:52:a4:1b:07:5c:7c:06: 3c:a7:9f:88:d2:c5:f2:c9:2f:ba:a2:52:58:ff:10:2f:c1:92: 19:1d:7b:ca:a1:15:13:be:61:e8:c8:fe:70:dc:cb:84:a0:65: d9:7d:c6:86:2e:2f:ba:da:f0:3f:5d:df:82:5c:be:a9:3d:42: f8:22:2e:45:56:31:1f:02:03:c9:b6:3d:5d:aa:91:c9:58:53: 75:a3:77:b0:99:e4:cd:f8:64:31:d1:dd:91:26:25:85:6e:9f: d1:03:6d:8c:03:42:d0:4f:0c:b0:2c:05:45:24:81:e1:e2:7b: f0:4b:12:37:c4:74:fd:98:11:52:f4:59:bc:da:bd:83:9f:1d: c4:fd:24:b9:05:4d:36:19:29:8a:0b:f6:d8:26:a1:8c:31:25: 65:52:6c:e6:a1:a7:f9:95:a6:97:23:e7:4a:99:63:70:c3:1f: de:92:8e:08 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTldGw8Ujho4bh0awoBbnlVxgBmIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2M0YTNmZjdmOWIzZGM4Yzc5Y2YwMjFmNjYwN2FmYjY4 NTU1ZDdiODNlMGI1YTAxMDFlM2Q4MDFjN2Q0ZjBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB+ScmZO8gZ63VkZ1sFRLe9ogoHmxdXyIn4IL7B7mXJSiO aUdH+ZcMrHUSxxbQWdCeEj/LPeMAGe4ABvzFR9sMUCkqp1jksUtwwzKDRX0bWv3y jQjlD7rNiBAWTGMlP3M1ZD/8/+5xQi1f4ISw/LFVBLQxroA3I+89/xQfmDqRyiFA ej4XLbZxkpmhZQCs9w4VFhcllr6yQcpBi6hrOaHMauae3uhhmr58rbXHDk5jcVQX cief66w7GbrweTH8VRlQ7aDfPUNuNDQppdAP71UOWIvQ4pHS6PM34aN3fYPw/mT2 oFHXx4x8A+p+zf6cWL7s9ATQFEgmP5Ll7RePfTmXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCVu6KdJ4NnJ5Cj+fXtgw/2/35fkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyZTMzODhhLTMzMjItNDRlYi05ZDcwLWE5YWJjN2EyNmZiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBjVjANBgkqhkiG9w0BAQsFAAOCAQEAAI8NUmwFjFwGVG2msF0TjkWVpTSf XYiUkSyIpNwfxlH5jgsyXmaYEAPHO4fu921N770LalsSHZ8tSQ4XLywSOw3SB+cG /ZXg3pyJVHYhdp1XWXNSpBsHXHwGPKefiNLF8skvuqJSWP8QL8GSGR17yqEVE75h 6Mj+cNzLhKBl2X3Ghi4vutrwP13fgly+qT1C+CIuRVYxHwIDybY9XaqRyVhTdaN3 sJnkzfhkMdHdkSYlhW6f0QNtjANC0E8MsCwFRSSB4eJ78EsSN8R0/ZgRUvRZvNq9 g58dxP0kuQVNNhkpigv22CahjDElZVJs5qGn+ZWmlyPnSpljcMMf3pKOCA== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:19 2024 by rpki-client on console-ams.rpki-client.org