$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d86172d-b742-4059-8c77-b1f0a8aec0c7.roa File: 9d86172d-b742-4059-8c77-b1f0a8aec0c7.roa (raw, json) Hash identifier: UE2Bo+Li7pniu6YOxSY2Nj3PZS3dEJg2c7l5217FGUk= Subject key identifier: D3:94:A3:D2:34:86:4A:45:65:4B:E2:1F:A3:BA:93:45:7A:6C:76:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CCB0103FFBC8B6F08F33817143B939D63A909FA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d86172d-b742-4059-8c77-b1f0a8aec0c7.roa Signing time: Wed 13 Nov 2024 00:00:00 +0000 ROA not before: Wed 13 Nov 2024 00:00:00 +0000 ROA not after: Wed 18 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 150.247.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:cb:01:03:ff:bc:8b:6f:08:f3:38:17:14:3b:93:9d:63:a9:09:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 13 00:00:00 2024 GMT Not After : Dec 18 23:59:59 2024 GMT Subject: serialNumber=7507cafb3538edb4168d5b484a7d7ef1e0b58688686dcde721eb53aac5d7dc66, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3d:56:95:ef:56:cd:9f:4d:f6:10:bd:00:2f: a1:de:2c:e3:c6:7e:fe:a4:05:e0:b8:60:fb:80:7e: bd:5a:aa:b5:82:35:9d:a3:77:f7:26:d4:5f:72:af: 5e:80:2d:c0:f6:99:f1:a1:2e:ae:fd:fa:c2:97:e8: 8f:cd:b7:b5:5e:d3:65:40:e2:b7:4a:e2:1b:c1:43: 8c:69:55:d6:d2:5b:a6:40:5f:ae:cc:cf:b3:10:ce: e7:b6:b6:41:f7:e5:2a:68:f2:d8:b7:9d:51:c4:3d: eb:49:df:d1:49:1c:40:b6:0e:f7:08:75:77:89:20: 65:1d:ac:4b:5b:c7:14:95:25:b7:f3:4e:df:b6:38: 68:20:0d:74:a4:21:bf:ed:1c:8e:59:e3:d5:0a:57: 58:91:77:a5:29:26:94:f0:a2:70:d6:7d:cd:2e:77: 36:43:6b:a9:00:5c:29:80:c2:9e:98:24:3e:31:3e: 23:35:1d:75:cd:ea:a1:9f:9c:81:f8:2b:95:fb:2f: e9:04:24:48:94:4c:8e:53:5d:61:39:8a:d1:42:62: 47:b9:07:a3:35:d1:ef:41:d7:7b:f4:df:dd:67:65: df:6f:17:b9:30:40:26:6a:0d:db:83:5f:ef:fa:b6: be:47:e9:d5:d0:a0:e7:ff:2a:50:39:3f:d0:2f:4f: cc:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:94:A3:D2:34:86:4A:45:65:4B:E2:1F:A3:BA:93:45:7A:6C:76:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d86172d-b742-4059-8c77-b1f0a8aec0c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.247.64.0/19 Signature Algorithm: sha256WithRSAEncryption 92:ca:0b:42:cb:88:23:6f:52:c0:97:82:f5:f1:d1:29:98:5d: 84:83:1d:ea:61:2a:ab:4d:18:e4:d7:75:2b:45:4f:88:f7:de: 4d:ba:25:c8:7c:28:b6:c0:9f:7e:ce:fc:a3:45:5c:0c:e9:1e: 72:11:bb:8b:aa:f9:95:b7:8a:31:e7:11:34:b7:98:8a:f4:ae: b5:9a:5b:97:f6:0d:d4:7f:ee:ef:d4:f2:52:71:b9:f4:6f:80: 30:03:27:74:93:82:79:a1:ed:39:f8:e2:e8:a2:4b:20:e6:60: 83:f0:9a:7d:8d:12:b8:73:9e:4b:37:ab:5e:96:ae:5e:21:e8: 0d:e4:35:3b:74:3d:cc:ee:59:5b:c1:68:2d:4a:70:79:05:1d: 2d:d4:ab:66:1f:38:c6:52:98:20:08:01:41:64:0c:95:d0:48: cb:8c:28:fe:9f:b5:41:40:16:53:0e:9d:59:ad:53:ce:be:87: 72:2a:90:c9:78:70:e9:0b:a0:33:d2:95:5f:47:1f:06:23:5e: 5f:41:78:cf:b2:b6:ed:65:17:76:39:36:94:ad:97:b2:2e:61: e2:0c:e4:2c:72:c9:10:c8:50:41:c7:15:e9:58:57:d0:89:00: 5d:a6:3e:ea:83:54:84:fb:eb:bd:51:ca:8f:59:c2:ad:e8:b5: ca:9a:c7:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfMsBA/+8i28I8zgXFDuTnWOpCfowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTEzMDAwMDAwWhcNMjQxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTA3Y2FmYjM1MzhlZGI0MTY4ZDViNDg0YTdkN2VmMWUw YjU4Njg4Njg2ZGNkZTcyMWViNTNhYWM1ZDdkYzY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyPVaV71bNn032EL0AL6HeLOPGfv6kBeC4YPuAfr1aqrWC NZ2jd/cm1F9yr16ALcD2mfGhLq79+sKX6I/Nt7Ve02VA4rdK4hvBQ4xpVdbSW6ZA X67Mz7MQzue2tkH35Spo8ti3nVHEPetJ39FJHEC2DvcIdXeJIGUdrEtbxxSVJbfz Tt+2OGggDXSkIb/tHI5Z49UKV1iRd6UpJpTwonDWfc0udzZDa6kAXCmAwp6YJD4x PiM1HXXN6qGfnIH4K5X7L+kEJEiUTI5TXWE5itFCYke5B6M10e9B13v0391nZd9v F7kwQCZqDduDX+/6tr5H6dXQoOf/KlA5P9AvT8xrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU05Sj0jSGSkVlS+Ifo7qTRXpsdmowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkODYxNzJkLWI3NDItNDA1OS04Yzc3LWIxZjBhOGFlYzBjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWW90AwDQYJKoZIhvcNAQELBQADggEBAJLKC0LLiCNvUsCXgvXx0SmYXYSD HephKqtNGOTXdStFT4j33k26Jch8KLbAn37O/KNFXAzpHnIRu4uq+ZW3ijHnETS3 mIr0rrWaW5f2DdR/7u/U8lJxufRvgDADJ3STgnmh7Tn44uiiSyDmYIPwmn2NErhz nks3q16Wrl4h6A3kNTt0PczuWVvBaC1KcHkFHS3Uq2YfOMZSmCAIAUFkDJXQSMuM KP6ftUFAFlMOnVmtU86+h3IqkMl4cOkLoDPSlV9HHwYjXl9BeM+ytu1lF3Y5NpSt l7IuYeIM5CxyyRDIUEHHFelYV9CJAF2mPuqDVIT7671Ryo9Zwq3otcqax/M= -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:21 2024 by rpki-client on console-ams.rpki-client.org