$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a0ff88c0-98f9-4e7d-8bc0-b0f93736f563.roa File: a0ff88c0-98f9-4e7d-8bc0-b0f93736f563.roa (raw, json) Hash identifier: kCrFGFfCwhtR2dhNn6Z2/d70UFoN86v/s2kGXi6kmJ8= Subject key identifier: 87:9B:32:D9:56:5C:B7:0D:43:FF:8F:26:E4:51:3D:39:B8:81:48:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63025B12A86E0091A81BBCCAA4CB9294DD2E16B9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a0ff88c0-98f9-4e7d-8bc0-b0f93736f563.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:02:5b:12:a8:6e:00:91:a8:1b:bc:ca:a4:cb:92:94:dd:2e:16:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=f18e49d1bcf8b2c068313eb94d4a9850326279c9c2e403d3835c9f52bb48af43, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:dd:e0:06:a3:ef:81:5e:81:88:c2:bd:b4:49: c1:c0:51:88:60:23:c6:69:10:c5:62:40:85:3d:af: 74:5e:77:53:7e:62:9d:d0:45:43:74:36:0d:bd:63: 39:dd:24:62:cb:53:02:48:53:45:70:49:25:8a:4d: 83:e7:e5:86:7c:2c:41:b3:67:52:78:e2:55:cc:70: f0:08:14:0a:9e:fe:fa:fb:3a:08:7d:a0:2f:a8:76: bd:de:45:db:36:35:54:d9:d8:33:99:71:07:8d:0a: 5a:13:f1:4b:89:bc:79:ec:e4:32:74:db:0c:8d:07: 6f:c1:e6:08:b9:bf:88:19:f6:ac:e2:4f:77:8e:e6: e8:b7:f0:b0:74:88:d8:56:5d:67:c3:1f:b2:43:9a: 7f:6e:a5:90:95:3a:0b:b6:c4:fe:2a:72:fe:6b:8b: 5f:97:eb:26:9b:c9:9e:b1:f2:a1:e6:46:0b:f5:80: b4:88:9e:a2:5a:95:27:07:12:72:92:51:f2:d7:de: 7a:76:5b:32:e3:67:b8:38:13:e3:78:ce:42:f6:b4: 43:b9:58:35:5a:7b:da:41:84:62:ac:89:77:8e:3e: a3:55:6e:c5:c6:17:f8:1b:91:41:c1:62:9d:a5:32: 9e:f9:d2:58:f9:33:37:61:0d:33:5d:88:23:2b:d2: 02:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:9B:32:D9:56:5C:B7:0D:43:FF:8F:26:E4:51:3D:39:B8:81:48:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a0ff88c0-98f9-4e7d-8bc0-b0f93736f563.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.144.0/21 Signature Algorithm: sha256WithRSAEncryption 80:68:f6:78:60:c5:22:7e:2b:a4:9b:ce:86:24:27:70:eb:13: b9:ee:59:22:ce:6c:0e:90:ee:bd:71:bf:9e:14:15:ec:8e:9a: df:48:ea:8e:ce:4b:d1:b0:b3:ee:ba:84:b8:de:be:4f:16:4e: c1:d5:9a:0b:fe:03:91:a8:9f:68:ef:c1:b2:15:59:75:21:a5: 50:6c:43:11:02:5a:2b:c1:be:45:a9:03:e1:a5:b8:8d:7f:34: 1c:f7:79:6b:99:9f:9b:5e:76:7d:58:0f:40:e0:0d:84:39:cd: 14:ac:c4:f7:21:72:f0:62:83:55:4e:42:2f:06:4e:c6:57:7b: 35:90:92:73:45:d5:f6:60:9c:40:13:7e:12:63:61:0d:82:a5: 8e:fc:50:cc:4c:6b:09:25:74:22:a7:b6:cf:af:57:ce:43:25: 1f:d6:eb:c3:ea:a8:e8:0a:7b:dd:e5:dd:8b:47:83:66:e2:bc: d6:ff:b0:06:c1:e8:2b:83:d0:63:31:bd:16:9d:dd:fd:1d:c8: 87:c6:fc:46:62:da:5b:ae:3b:53:12:8a:9a:fb:8b:b9:5a:06: 0f:7a:31:53:db:f4:3a:a1:85:2e:90:b1:a9:39:15:2f:a4:c4: a7:16:9d:21:59:27:ed:78:41:b0:c5:ed:7f:d4:bb:eb:03:40: e5:c3:6c:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYwJbEqhuAJGoG7zKpMuSlN0uFrkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMThlNDlkMWJjZjhiMmMwNjgzMTNlYjk0ZDRhOTg1MDMy NjI3OWM5YzJlNDAzZDM4MzVjOWY1MmJiNDhhZjQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe3eAGo++BXoGIwr20ScHAUYhgI8ZpEMViQIU9r3Red1N+ Yp3QRUN0Ng29YzndJGLLUwJIU0VwSSWKTYPn5YZ8LEGzZ1J44lXMcPAIFAqe/vr7 Ogh9oC+odr3eRds2NVTZ2DOZcQeNCloT8UuJvHns5DJ02wyNB2/B5gi5v4gZ9qzi T3eO5ui38LB0iNhWXWfDH7JDmn9upZCVOgu2xP4qcv5ri1+X6yabyZ6x8qHmRgv1 gLSInqJalScHEnKSUfLX3np2WzLjZ7g4E+N4zkL2tEO5WDVae9pBhGKsiXeOPqNV bsXGF/gbkUHBYp2lMp750lj5MzdhDTNdiCMr0gKfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUh5sy2VZctw1D/48m5FE9ObiBSJUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwZmY4OGMwLTk4ZjktNGU3ZC04YmMwLWIwZjkzNzM2ZjU2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgAJAwDQYJKoZIhvcNAQELBQADggEBAIBo9nhgxSJ+K6SbzoYkJ3DrE7nu WSLObA6Q7r1xv54UFeyOmt9I6o7OS9Gws+66hLjevk8WTsHVmgv+A5Gon2jvwbIV WXUhpVBsQxECWivBvkWpA+GluI1/NBz3eWuZn5tedn1YD0DgDYQ5zRSsxPchcvBi g1VOQi8GTsZXezWQknNF1fZgnEATfhJjYQ2CpY78UMxMawkldCKnts+vV85DJR/W 68PqqOgKe93l3YtHg2bivNb/sAbB6CuD0GMxvRad3f0dyIfG/EZi2luuO1MSipr7 i7laBg96MVPb9DqhhS6Qsak5FS+kxKcWnSFZJ+14QbDF7X/Uu+sDQOXDbLY= -----END CERTIFICATE-----Generated at Mon Nov 25 02:46:50 2024 by rpki-client on console-ams.rpki-client.org