$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9793ba84-5d98-4c2d-af7b-6723e2f6ea0a.roa File: 9793ba84-5d98-4c2d-af7b-6723e2f6ea0a.roa (raw, json) Hash identifier: Jldz65NrunWwG4i5UbwWMKwGxhgyJifpTmI9WY/q6rU= Subject key identifier: C3:AF:90:31:61:18:CF:00:3C:80:AB:3C:61:31:48:CB:DC:2F:0B:AA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1ADFBA28C84DC819D7F8632C2CC181FC94F79ABF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9793ba84-5d98-4c2d-af7b-6723e2f6ea0a.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 54.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:df:ba:28:c8:4d:c8:19:d7:f8:63:2c:2c:c1:81:fc:94:f7:9a:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=cc28afb827ffd046e9ed9673bedc0371f472270a8a0f841f0a9653bfa6278071, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:91:eb:bd:5b:6a:86:47:fb:62:22:ff:db:85: 50:89:17:5d:95:7f:af:dc:2c:ad:6d:c1:ff:29:80: d1:4c:87:18:2f:6e:2d:e9:10:97:c8:71:54:d7:c7: 9f:a8:77:30:a4:be:a4:03:5c:d1:39:df:06:07:e5: 09:4f:ab:e0:da:80:49:10:6a:7d:f7:e0:45:4a:d8: 65:27:7f:0c:4a:d9:40:18:f3:16:60:c8:a7:ed:d1: 3c:17:5a:c2:bb:6b:d5:cc:dd:99:34:42:df:97:37: 9d:c5:b8:1f:c0:bd:b1:fa:e4:fa:6d:c3:0e:8b:ff: db:68:47:5a:8b:2a:69:be:fb:fd:22:7e:de:60:3c: b4:e5:72:0f:e3:6e:22:22:fc:61:86:0b:e7:bc:df: ab:53:35:d7:b8:bc:a4:e1:7e:91:ff:08:87:ff:b7: ce:83:aa:1c:b9:8a:03:d5:9b:a0:03:14:1d:12:2a: ef:0b:c8:5d:17:7f:0b:30:9e:39:03:74:fe:df:e7: e4:cc:8a:a8:b6:4d:a3:ee:e0:b2:dd:e4:47:7c:5e: 1b:7f:30:a8:2f:25:0c:72:72:06:ae:5a:34:81:9b: 65:21:c2:70:6e:2e:31:56:42:af:12:65:ab:dd:ff: 8d:ff:fe:a7:1a:fc:56:21:7f:e4:04:67:74:fc:d7: e8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:AF:90:31:61:18:CF:00:3C:80:AB:3C:61:31:48:CB:DC:2F:0B:AA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9793ba84-5d98-4c2d-af7b-6723e2f6ea0a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 49:e5:d6:b3:0b:23:ba:55:16:06:24:f7:8e:76:02:93:8f:aa: 99:9f:88:78:be:17:40:2e:99:c7:eb:f3:1f:65:d3:0c:b8:0b: 6f:50:b3:ed:59:78:8f:dc:2f:73:1c:cf:46:96:99:67:5f:da: 9b:4b:05:7a:af:85:40:60:8e:a1:00:f5:f7:d7:51:e5:05:29: 58:c7:ee:36:5d:3d:82:a8:cc:41:1e:5a:fd:bf:ab:75:a9:72: 85:a9:38:cc:81:18:16:85:9f:e3:08:d8:36:63:84:41:f1:72: 8e:a8:20:57:c5:60:83:2e:7b:e9:f8:18:db:ef:d5:81:ac:4b: 3a:67:f7:07:93:dc:43:dc:6d:91:ab:d8:b8:2a:b4:74:fd:fa: bc:81:ba:3b:89:d1:d0:1e:f4:c9:ba:38:e1:ce:ca:96:b1:07: c0:cf:4f:9c:10:db:36:63:72:0b:37:e3:96:47:b9:f3:09:4e: a2:03:84:c0:4d:56:a1:a4:7c:16:37:e9:dd:0f:de:1b:fd:15: 90:1d:02:1b:8e:8f:f2:07:94:9b:b3:ae:31:0e:ca:46:db:14: 74:be:cb:57:21:40:ae:bd:0f:40:79:80:02:5d:b9:46:60:0b: 35:82:f4:09:3d:02:9a:e2:7e:61:5e:f2:a8:e0:b0:0c:5e:71: 59:06:90:f1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGt+6KMhNyBnX+GMsLMGB/JT3mr8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzI4YWZiODI3ZmZkMDQ2ZTllZDk2NzNiZWRjMDM3MWY0 NzIyNzBhOGEwZjg0MWYwYTk2NTNiZmE2Mjc4MDcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMkeu9W2qGR/tiIv/bhVCJF12Vf6/cLK1twf8pgNFMhxgv bi3pEJfIcVTXx5+odzCkvqQDXNE53wYH5QlPq+DagEkQan334EVK2GUnfwxK2UAY 8xZgyKft0TwXWsK7a9XM3Zk0Qt+XN53FuB/AvbH65Pptww6L/9toR1qLKmm++/0i ft5gPLTlcg/jbiIi/GGGC+e836tTNde4vKThfpH/CIf/t86Dqhy5igPVm6ADFB0S Ku8LyF0XfwswnjkDdP7f5+TMiqi2TaPu4LLd5Ed8Xht/MKgvJQxycgauWjSBm2Uh wnBuLjFWQq8SZavd/43//qca/FYhf+QEZ3T81+iXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUw6+QMWEYzwA8gKs8YTFIy9wvC6owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3OTNiYTg0LTVkOTgtNGMyZC1hZjdiLTY3MjNlMmY2ZWEwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2KzANBgkqhkiG9w0BAQsFAAOCAQEASeXWswsjulUWBiT3jnYCk4+qmZ+I eL4XQC6Zx+vzH2XTDLgLb1Cz7Vl4j9wvcxzPRpaZZ1/am0sFeq+FQGCOoQD199dR 5QUpWMfuNl09gqjMQR5a/b+rdalyhak4zIEYFoWf4wjYNmOEQfFyjqggV8Vggy57 6fgY2+/VgaxLOmf3B5PcQ9xtkavYuCq0dP36vIG6O4nR0B70ybo44c7KlrEHwM9P nBDbNmNyCzfjlke58wlOogOEwE1WoaR8Fjfp3Q/eG/0VkB0CG46P8geUm7OuMQ7K RtsUdL7LVyFArr0PQHmAAl25RmALNYL0CT0CmuJ+YV7yqOCwDF5xWQaQ8Q== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:57 2024 by rpki-client on console-ams.rpki-client.org