$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e9c88b8-0479-4aad-933a-66c192cc65c9.roa File: 9e9c88b8-0479-4aad-933a-66c192cc65c9.roa (raw, json) Hash identifier: K4GtB+gR/N8pm/xTqDTBiUN0YwUKQP3D6cyKsLGgjWA= Subject key identifier: 2E:35:6D:66:C4:F1:B4:D5:ED:71:27:81:1E:2C:A9:E6:9B:1C:71:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D7DB9DB098506297AAB0220AEB4D176B85F35 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e9c88b8-0479-4aad-933a-66c192cc65c9.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.20.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:7d:b9:db:09:85:06:29:7a:ab:02:20:ae:b4:d1:76:b8:5f:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=9caea594a969dea078d6d4509bdc4e07191803ea8038bcd6d7632f32908ce231, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6b:5a:40:8c:ce:82:20:34:ff:89:8f:35:1d: 54:96:03:75:a9:9b:8b:8a:1e:03:76:67:a4:41:f3: 1d:ae:5e:be:f8:79:07:3c:27:5e:93:3f:d1:ef:d2: b1:b4:f1:d9:48:e7:14:ed:de:11:e8:6c:57:d6:6b: 48:e1:41:58:02:77:01:49:89:fb:5f:fa:49:52:4b: 25:8f:bd:1c:f2:f2:25:37:04:07:f0:11:d4:96:6e: 8f:eb:54:3a:69:1b:dc:f0:14:cb:39:c4:5b:2f:40: b2:ba:eb:f7:86:ef:3a:08:79:5f:6c:d7:e3:86:ac: fe:24:89:09:78:5e:c4:9d:49:51:cb:51:be:d2:9c: e5:f3:85:96:a6:75:a5:ee:2b:6a:f7:8c:80:7a:b2: 58:ad:a0:7e:f3:88:e9:cd:39:ec:4f:00:82:38:3f: d4:4d:f8:af:c2:97:52:55:ab:90:b6:c9:04:ab:79: c0:50:46:02:1b:83:84:b1:f7:e7:a8:65:60:8d:f0: 5d:ba:47:cf:c8:7f:2e:ea:7d:3d:66:7a:ae:da:90: cd:c6:af:3d:15:90:6f:29:08:b6:3d:77:8c:53:6c: a0:2a:da:fe:ec:87:40:ef:f1:6a:f7:26:09:08:21: a2:82:25:a5:39:ba:a0:ca:01:f1:77:17:11:d5:b6: c1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:35:6D:66:C4:F1:B4:D5:ED:71:27:81:1E:2C:A9:E6:9B:1C:71:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e9c88b8-0479-4aad-933a-66c192cc65c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.232.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:c6:8b:be:c5:72:73:db:ec:96:4b:c4:56:f5:38:f0:03:1a: ce:48:e7:ff:e2:96:f1:ca:34:94:16:ba:8f:a7:03:55:f6:88: ef:84:6e:a8:82:03:7e:02:c8:03:47:dc:f3:ee:53:7a:e4:e7: c1:5c:51:5e:8d:c3:2d:9d:ee:9d:1f:0a:a5:88:b6:15:b8:f4: ff:95:f6:f3:7e:12:fe:22:13:4a:f1:6c:41:b7:4e:82:c0:f4: a0:87:ed:21:63:4e:ae:82:5a:28:dd:be:3a:58:cb:d7:09:bd: d2:dd:2c:d9:88:54:44:3c:58:10:d3:8a:19:46:3d:b3:45:9e: 9a:97:ec:1d:22:5a:29:10:59:fc:1f:6f:01:f3:ea:41:dc:78: ad:01:dc:be:ed:4a:ec:ba:93:56:09:c5:f2:ad:0c:a1:9c:0d: 01:80:d4:e3:a5:1b:d7:9d:3f:a0:cf:53:c1:40:b6:98:79:b7: 97:15:e9:95:a8:48:ff:3a:26:39:34:d6:c5:e0:b1:ba:d8:c4: 01:c9:ba:50:a7:ce:a1:0f:c6:3a:bb:d8:1b:58:15:5b:86:b3: fe:35:8a:8c:2d:df:58:19:1f:7e:97:be:e5:6f:7c:c2:d3:37: ab:41:72:60:d8:0b:95:e1:15:1c:a4:29:ae:9a:d2:6a:16:58: fe:7f:c4:1e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITHX252wmFBil6qwIgrrTRdrhfNTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDExMDIwMDAwMDBaFw0yNDEyMDcyMzU5NTla MHoxSTBHBgNVBAUTQDljYWVhNTk0YTk2OWRlYTA3OGQ2ZDQ1MDliZGM0ZTA3MTkx ODAzZWE4MDM4YmNkNmQ3NjMyZjMyOTA4Y2UyMzExLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAO9rWkCMzoIgNP+JjzUdVJYDdambi4oeA3ZnpEHzHa5evvh5 BzwnXpM/0e/SsbTx2UjnFO3eEehsV9ZrSOFBWAJ3AUmJ+1/6SVJLJY+9HPLyJTcE B/AR1JZuj+tUOmkb3PAUyznEWy9Asrrr94bvOgh5X2zX44as/iSJCXhexJ1JUctR vtKc5fOFlqZ1pe4raveMgHqyWK2gfvOI6c057E8Agjg/1E34r8KXUlWrkLbJBKt5 wFBGAhuDhLH356hlYI3wXbpHz8h/Lup9PWZ6rtqQzcavPRWQbykItj13jFNsoCra /uyHQO/xavcmCQghooIlpTm6oMoB8XcXEdW2wbUCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQuNW1mxPG01e1xJ4EeLKnmmxxxPzAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvOWU5Yzg4YjgtMDQ3OS00YWFkLTkzM2EtNjZjMTkyY2M2NWM5LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAhAU6DANBgkqhkiG9w0BAQsFAAOCAQEAG8aLvsVyc9vslkvEVvU48AMazkjn /+KW8co0lBa6j6cDVfaI74RuqIIDfgLIA0fc8+5TeuTnwVxRXo3DLZ3unR8KpYi2 Fbj0/5X2834S/iITSvFsQbdOgsD0oIftIWNOroJaKN2+OljL1wm90t0s2YhURDxY ENOKGUY9s0WempfsHSJaKRBZ/B9vAfPqQdx4rQHcvu1K7LqTVgnF8q0MoZwNAYDU 46Ub150/oM9TwUC2mHm3lxXplahI/zomOTTWxeCxutjEAcm6UKfOoQ/GOrvYG1gV W4az/jWKjC3fWBkffpe+5W98wtM3q0FyYNgLleEVHKQprprSahZY/n/EHg== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:19 2024 by rpki-client on console-ams.rpki-client.org