$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a180719e-5fd3-4143-88a0-9cbf81c0885d.roa File: a180719e-5fd3-4143-88a0-9cbf81c0885d.roa (raw, json) Hash identifier: /ze/5e4Mh7/62RX/0rIHNqZIP/QnAKscdr6nnvevx+k= Subject key identifier: 53:9F:44:A8:0F:5B:7F:61:9C:85:50:AC:80:4E:86:D1:94:DA:71:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B6D4973C2948CD029E2E4AA99160A462D92817C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a180719e-5fd3-4143-88a0-9cbf81c0885d.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:6d:49:73:c2:94:8c:d0:29:e2:e4:aa:99:16:0a:46:2d:92:81:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=f6f46301c22c258c77609f4704375324a08dab91b9a181db7721f6d49c338ed1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1e:db:32:f3:e7:63:1a:27:16:18:1d:50:c1: 55:29:38:ad:8b:a3:01:07:da:7f:f4:9d:e8:56:be: 35:4b:3a:39:28:f0:08:e8:7c:7a:5a:4c:07:41:fc: 78:4d:78:f1:d9:ef:b3:8e:13:2d:32:98:cb:3e:15: f2:f0:dc:b3:df:e3:7a:d1:c4:c4:b6:15:6b:4f:dc: 33:7e:3c:37:13:8d:f5:3c:2f:89:78:76:9c:41:7d: 6b:a4:ba:31:bc:c6:40:17:53:94:1f:69:5e:50:ab: 5d:e8:23:3b:8f:aa:f2:c1:c6:3e:35:1c:42:ae:69: de:b8:f0:ed:91:8e:49:3c:74:cb:11:b8:88:e4:4f: 7e:c1:3a:ef:6d:0d:24:fa:3b:4e:2a:34:34:9d:b1: 30:df:a8:81:db:0b:45:c5:f9:9e:41:25:b2:e0:0b: fa:f6:ee:3c:33:13:65:0d:c5:1b:f0:04:67:a0:df: a5:a3:16:d0:28:4f:36:f2:89:5d:01:e0:35:09:e6: e8:56:c5:da:53:59:b2:86:79:72:bb:7d:df:b9:43: 7f:92:68:39:d2:99:af:cc:43:55:64:ff:07:2d:1e: 6d:e6:61:0d:01:34:09:8e:75:5a:b2:b3:e9:31:32: 75:04:66:fa:8a:ec:6a:fd:84:9c:92:2b:d1:0e:68: 49:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9F:44:A8:0F:5B:7F:61:9C:85:50:AC:80:4E:86:D1:94:DA:71:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a180719e-5fd3-4143-88a0-9cbf81c0885d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.77.0/24 Signature Algorithm: sha256WithRSAEncryption bc:03:83:37:02:ca:d6:05:52:86:51:aa:1f:a9:65:85:76:8a: 54:7c:cb:13:7d:ee:6f:40:47:60:ee:cf:52:bc:ba:77:4c:42: 78:f6:38:b0:01:86:21:31:b0:7d:58:5a:e2:93:90:8a:32:64: f2:5d:f4:cd:2d:b7:6c:1a:26:33:c2:4a:52:69:83:e6:34:0b: a0:7b:20:8d:43:8a:7d:95:a2:1a:02:a8:d4:76:c8:95:93:2b: 87:b8:2d:16:1b:c5:2f:0c:85:b8:f0:d6:1a:ef:d1:77:8f:0d: 35:9a:ae:97:55:3d:1d:4e:33:2e:a2:f9:c6:d2:87:0b:7b:5d: 63:7a:d6:f0:0a:69:90:ec:31:a4:27:09:32:6b:95:68:9a:d6: ff:05:1e:e7:fc:54:b6:1e:86:df:21:19:5d:1e:ba:75:26:79: cb:5f:a4:51:c5:cb:e5:5d:f3:b1:0d:63:66:ef:b6:dc:8f:98: d8:73:8a:fc:b5:68:ac:ec:f6:ed:0c:fc:e6:aa:74:16:65:8b: 5e:b2:ca:20:cd:ff:a6:43:25:cc:63:c6:ec:96:fb:49:32:05: aa:a4:f4:1c:8c:a8:24:eb:35:20:5e:e3:25:0f:b9:97:8b:2d: 9d:eb:83:b6:29:ce:60:d5:81:9b:12:ae:dd:52:d3:d0:76:de: f2:ef:99:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK21Jc8KUjNAp4uSqmRYKRi2SgXwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNmY0NjMwMWMyMmMyNThjNzc2MDlmNDcwNDM3NTMyNGEw OGRhYjkxYjlhMTgxZGI3NzIxZjZkNDljMzM4ZWQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqHtsy8+djGicWGB1QwVUpOK2LowEH2n/0nehWvjVLOjko 8AjofHpaTAdB/HhNePHZ77OOEy0ymMs+FfLw3LPf43rRxMS2FWtP3DN+PDcTjfU8 L4l4dpxBfWukujG8xkAXU5QfaV5Qq13oIzuPqvLBxj41HEKuad648O2Rjkk8dMsR uIjkT37BOu9tDST6O04qNDSdsTDfqIHbC0XF+Z5BJbLgC/r27jwzE2UNxRvwBGeg 36WjFtAoTzbyiV0B4DUJ5uhWxdpTWbKGeXK7fd+5Q3+SaDnSma/MQ1Vk/wctHm3m YQ0BNAmOdVqys+kxMnUEZvqK7Gr9hJySK9EOaElvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUU59EqA9bf2GchVCsgE6G0ZTaceIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ExODA3MTllLTVmZDMtNDE0My04OGEwLTljYmY4MWMwODg1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/E0wDQYJKoZIhvcNAQELBQADggEBALwDgzcCytYFUoZRqh+pZYV2ilR8 yxN97m9AR2Duz1K8undMQnj2OLABhiExsH1YWuKTkIoyZPJd9M0tt2waJjPCSlJp g+Y0C6B7II1Din2VohoCqNR2yJWTK4e4LRYbxS8Mhbjw1hrv0XePDTWarpdVPR1O My6i+cbShwt7XWN61vAKaZDsMaQnCTJrlWia1v8FHuf8VLYeht8hGV0eunUmectf pFHFy+Vd87ENY2bvttyPmNhzivy1aKzs9u0M/OaqdBZli16yyiDN/6ZDJcxjxuyW +0kyBaqk9ByMqCTrNSBe4yUPuZeLLZ3rg7YpzmDVgZsSrt1S09B23vLvmQE= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:20 2024 by rpki-client on console-ams.rpki-client.org