$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/990a335e-9ae1-4df4-aa20-800ded31c4e3.roa File: 990a335e-9ae1-4df4-aa20-800ded31c4e3.roa (raw, json) Hash identifier: ErzLbFHdWdMbXh2xUNsP7IxbndEAyLEqqP/d1fg8Ph4= Subject key identifier: 43:84:DC:03:63:6A:5A:DB:F4:9E:3D:DC:0B:EE:6B:90:73:9B:A8:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F26CE64C3B40E29578F028DB5A1AA6EAE18A725 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/990a335e-9ae1-4df4-aa20-800ded31c4e3.roa Signing time: Wed 06 Nov 2024 00:00:00 +0000 ROA not before: Wed 06 Nov 2024 00:00:00 +0000 ROA not after: Wed 11 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:26:ce:64:c3:b4:0e:29:57:8f:02:8d:b5:a1:aa:6e:ae:18:a7:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 6 00:00:00 2024 GMT Not After : Dec 11 23:59:59 2024 GMT Subject: serialNumber=ddfe3b7bc9f160a874eb776ed11d0d31f585c6b0efc3ea2d010d51c7e8033f13, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2b:bf:d5:13:5d:bb:ba:14:19:d9:d3:a6:be: 1d:33:54:51:75:7d:53:a5:ca:53:11:71:79:b1:8d: b0:c9:dc:92:54:16:c2:14:32:0f:a3:ba:5c:ff:b0: c1:14:fe:88:ca:19:ef:d4:bb:dc:a3:52:7a:35:d5: cb:fa:ed:f5:26:37:f1:31:b5:1d:72:e6:20:28:6d: 33:2e:f9:2e:a6:0e:46:0c:57:81:10:0d:d2:a9:cc: 15:f4:0c:b7:bf:27:e0:95:d1:ef:b0:46:b6:22:b1: 21:0a:a8:7f:18:c0:51:82:fc:b0:8f:a2:59:84:f9: 1a:80:ea:cb:e4:8e:23:cd:79:20:c4:ca:e8:2c:0c: 99:ff:6e:8a:d0:d6:f3:b1:21:05:0e:b5:98:44:4b: 39:0d:5c:d5:c9:f2:07:b3:41:dc:74:36:2e:bf:59: 18:95:ef:70:d2:1d:97:ec:b3:86:f0:97:3f:67:f1: 84:cd:98:a0:b3:ef:65:4b:f0:cb:13:a7:c8:6c:b5: dc:91:45:df:9f:2b:76:f5:ba:98:93:31:e9:e6:e2: 09:a5:f4:18:da:32:ad:ea:80:65:da:3d:16:99:4b: 4c:e8:e9:13:37:a3:08:b6:d7:9d:12:ad:a3:94:45: 56:95:89:7f:88:1e:53:8d:39:19:9a:35:99:0a:65: 3b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:84:DC:03:63:6A:5A:DB:F4:9E:3D:DC:0B:EE:6B:90:73:9B:A8:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/990a335e-9ae1-4df4-aa20-800ded31c4e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.24.0/21 Signature Algorithm: sha256WithRSAEncryption 5b:76:0f:9e:de:ca:fd:43:b8:be:02:d9:74:93:c8:99:75:b9: 79:b8:bb:b6:cf:9d:53:ee:07:04:4e:96:70:8c:33:81:74:3f: bf:a5:35:26:9c:fd:3b:94:ef:4a:a5:90:7c:19:4e:f5:22:e3: 1d:d5:29:5e:8d:4d:e9:61:4b:d7:14:e0:94:ad:ff:93:1e:cb: c6:e9:05:9b:98:36:f3:9c:06:b0:aa:2a:84:b4:ff:1c:87:eb: a2:7c:f4:eb:1f:79:40:9c:33:ae:8a:48:07:72:fe:63:48:39: 0c:e6:d4:df:2e:ea:47:cf:e7:16:f8:d6:3b:9c:82:9c:c3:3a: 5f:67:fb:f3:4b:7c:c5:3f:4d:17:a5:b7:4e:f1:af:ea:65:f9: 0f:e6:8f:17:04:28:27:3e:6e:17:f8:55:23:8c:63:28:40:ba: a9:4f:94:6b:bd:a5:a6:6b:c7:7d:74:c0:9c:62:79:09:2f:06: 64:ed:c8:5d:1d:15:48:55:8d:4b:86:bd:e3:43:80:ad:df:12: 2f:91:41:41:22:76:8e:70:95:46:ce:49:8c:d5:a7:5e:14:b8: 82:a1:78:1b:22:3e:5d:7f:b5:d5:a0:e7:3c:f4:a6:24:c7:30: 45:b8:05:52:54:42:a3:cc:9c:d8:be:e7:ea:e2:83:ac:fc:76: 99:32:8f:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXybOZMO0DilXjwKNtaGqbq4YpyUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA2MDAwMDAwWhcNMjQxMjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGZlM2I3YmM5ZjE2MGE4NzRlYjc3NmVkMTFkMGQzMWY1 ODVjNmIwZWZjM2VhMmQwMTBkNTFjN2U4MDMzZjEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrK7/VE127uhQZ2dOmvh0zVFF1fVOlylMRcXmxjbDJ3JJU FsIUMg+julz/sMEU/ojKGe/Uu9yjUno11cv67fUmN/ExtR1y5iAobTMu+S6mDkYM V4EQDdKpzBX0DLe/J+CV0e+wRrYisSEKqH8YwFGC/LCPolmE+RqA6svkjiPNeSDE yugsDJn/borQ1vOxIQUOtZhESzkNXNXJ8gezQdx0Ni6/WRiV73DSHZfss4bwlz9n 8YTNmKCz72VL8MsTp8hstdyRRd+fK3b1upiTMenm4gml9BjaMq3qgGXaPRaZS0zo 6RM3owi2150SraOURVaViX+IHlONORmaNZkKZTvbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQ4TcA2NqWtv0nj3cC+5rkHObqLowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5MGEzMzVlLTlhZTEtNGRmNC1hYTIwLTgwMGRlZDMxYzRlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMQDBgwDQYJKoZIhvcNAQELBQADggEBAFt2D57eyv1DuL4C2XSTyJl1uXm4 u7bPnVPuBwROlnCMM4F0P7+lNSac/TuU70qlkHwZTvUi4x3VKV6NTelhS9cU4JSt /5Mey8bpBZuYNvOcBrCqKoS0/xyH66J89OsfeUCcM66KSAdy/mNIOQzm1N8u6kfP 5xb41jucgpzDOl9n+/NLfMU/TRelt07xr+pl+Q/mjxcEKCc+bhf4VSOMYyhAuqlP lGu9paZrx310wJxieQkvBmTtyF0dFUhVjUuGveNDgK3fEi+RQUEido5wlUbOSYzV p14UuIKheBsiPl1/tdWg5zz0piTHMEW4BVJUQqPMnNi+5+rig6z8dpkyj1M= -----END CERTIFICATE-----Generated at Mon Nov 25 02:46:48 2024 by rpki-client on console-ams.rpki-client.org