$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa File: 957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa (raw, json) Hash identifier: cW7+f2qNXtmqa/JQDtSqMfMZA/7VhnEJY4wYdCZ1Ydg= Subject key identifier: 8C:C0:A0:14:B9:1E:7D:CC:C7:F5:92:5A:71:CB:2C:50:C7:1B:B5:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5454E718D6A39246DA1370A341982BCE84CAF94C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa Signing time: Tue 12 Nov 2024 00:00:00 +0000 ROA not before: Tue 12 Nov 2024 00:00:00 +0000 ROA not after: Tue 17 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.97.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:54:e7:18:d6:a3:92:46:da:13:70:a3:41:98:2b:ce:84:ca:f9:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 12 00:00:00 2024 GMT Not After : Dec 17 23:59:59 2024 GMT Subject: serialNumber=1afdb1a39b26b23fb603520db1fe45123e2123949edb3a9029eb0d3e9a4fc76f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bb:bb:a8:04:bd:79:1b:a0:93:4b:29:a0:b9: de:05:38:53:df:f7:31:a1:33:ba:f3:f5:9c:9e:18: 45:7a:92:e6:fd:49:b4:50:df:c2:c0:d5:02:95:8d: 27:0e:fb:c6:3a:e3:d2:f5:bf:d5:e8:54:66:9e:c9: 21:9b:34:29:15:3f:e8:0b:97:21:ff:fc:00:ff:d2: a2:ec:f9:ee:ab:5d:d6:72:d7:a2:50:89:b2:32:ab: 6e:86:1f:69:68:a9:a9:c9:54:56:c6:b8:09:41:2b: 63:21:a4:6c:7b:5b:05:3d:14:1a:4e:1e:4b:d7:c4: ef:f5:79:81:67:ff:2c:dd:b4:51:70:09:e4:1e:16: 87:43:e5:24:22:a3:66:85:2f:32:17:d9:d6:2b:c6: 5c:ba:2a:8e:5b:f8:28:79:69:e3:5e:87:78:13:5d: e1:24:eb:03:17:08:59:16:7e:2c:46:23:46:9d:00: 61:68:f4:a9:10:f2:9a:f7:cd:e0:c8:f4:c1:c5:f8: c1:fc:02:13:6e:df:35:00:39:f8:41:6d:01:e4:b2: b9:4f:e7:22:8c:11:d2:2b:7a:9e:73:d8:90:a5:f3: d5:31:16:c3:9b:51:e5:b5:7d:7c:de:f6:f0:3a:dd: 71:b7:9d:b0:66:50:6c:e9:30:8f:49:58:a9:94:a8: f2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:C0:A0:14:B9:1E:7D:CC:C7:F5:92:5A:71:CB:2C:50:C7:1B:B5:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3b:ca:ff:ad:4a:16:b7:9f:2a:94:3a:7a:f3:62:11:b8:d4:97: d3:8f:e7:ad:0c:44:cd:a5:f2:8e:0f:bf:f7:09:99:ab:32:1e: 59:9b:7f:9e:1b:67:84:53:73:35:c6:e2:cc:96:b8:9f:2e:23: 29:0d:5f:f5:b8:e3:ec:1b:90:a8:90:bb:98:54:a3:2e:54:c0: 6f:cb:c6:67:5c:e1:7c:8a:ff:9c:95:d6:18:01:a4:92:bf:cb: 4a:46:dd:34:f9:8a:6c:e7:81:49:b0:0d:d4:9f:be:72:8e:c8: b8:10:72:67:21:b8:75:d0:14:c4:6f:89:a1:22:ab:92:c9:a7: 12:84:57:b2:66:cb:c0:50:61:f9:6f:0b:6c:ce:5d:d6:14:76: 35:08:34:ab:51:65:50:d8:67:9a:09:18:75:64:b9:76:6b:f8: 00:48:a9:d2:14:fb:ed:2e:6c:0b:a3:b8:c2:51:82:5c:b6:68: 43:26:15:20:54:ce:2a:9e:aa:ec:8f:3d:14:1f:3d:07:88:f4: 3e:c3:29:ec:f1:16:30:e7:af:42:e2:cf:33:6b:1b:36:d9:34: 7b:bf:87:e8:5b:f2:7a:c8:43:95:6e:d0:4b:43:87:b0:5e:4a: bd:84:07:70:de:a4:05:88:cf:af:eb:87:27:e0:18:5d:ce:dc: d2:e8:99:ae -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVFTnGNajkkbaE3CjQZgrzoTK+UwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTEyMDAwMDAwWhcNMjQxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWZkYjFhMzliMjZiMjNmYjYwMzUyMGRiMWZlNDUxMjNl MjEyMzk0OWVkYjNhOTAyOWViMGQzZTlhNGZjNzZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtu7uoBL15G6CTSymgud4FOFPf9zGhM7rz9ZyeGEV6kub9 SbRQ38LA1QKVjScO+8Y649L1v9XoVGaeySGbNCkVP+gLlyH//AD/0qLs+e6rXdZy 16JQibIyq26GH2loqanJVFbGuAlBK2MhpGx7WwU9FBpOHkvXxO/1eYFn/yzdtFFw CeQeFodD5SQio2aFLzIX2dYrxly6Ko5b+Ch5aeNeh3gTXeEk6wMXCFkWfixGI0ad AGFo9KkQ8pr3zeDI9MHF+MH8AhNu3zUAOfhBbQHksrlP5yKMEdIrep5z2JCl89Ux FsObUeW1fXze9vA63XG3nbBmUGzpMI9JWKmUqPL/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjMCgFLkefczH9ZJaccssUMcbtWswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1N2YwYTc1LTJmZWEtNGZkNi1hYzU3LTFjODc3OTlkYzRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4YTANBgkqhkiG9w0BAQsFAAOCAQEAO8r/rUoWt58qlDp682IRuNSX04/n rQxEzaXyjg+/9wmZqzIeWZt/nhtnhFNzNcbizJa4ny4jKQ1f9bjj7BuQqJC7mFSj LlTAb8vGZ1zhfIr/nJXWGAGkkr/LSkbdNPmKbOeBSbAN1J++co7IuBByZyG4ddAU xG+JoSKrksmnEoRXsmbLwFBh+W8LbM5d1hR2NQg0q1FlUNhnmgkYdWS5dmv4AEip 0hT77S5sC6O4wlGCXLZoQyYVIFTOKp6q7I89FB89B4j0PsMp7PEWMOevQuLPM2sb Ntk0e7+H6FvyeshDlW7QS0OHsF5KvYQHcN6kBYjPr+uHJ+AYXc7c0uiZrg== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:20 2024 by rpki-client on console-ams.rpki-client.org