$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3612cb8-e230-409a-8185-edc9e3d38cfe.roa File: a3612cb8-e230-409a-8185-edc9e3d38cfe.roa (raw, json) Hash identifier: 9q2SBFUKHl04CXcg6/acfdRzH5NxhQRdjSKVWd++8g8= Subject key identifier: 86:E8:F1:E8:BE:F5:00:81:AE:08:F1:52:D4:AA:E5:8C:85:97:6D:D1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02584663E4AEC8C6AD86EB12538B5FE3F6D0BF1A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3612cb8-e230-409a-8185-edc9e3d38cfe.roa Signing time: Mon 11 Nov 2024 00:00:00 +0000 ROA not before: Mon 11 Nov 2024 00:00:00 +0000 ROA not after: Mon 16 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.186.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:58:46:63:e4:ae:c8:c6:ad:86:eb:12:53:8b:5f:e3:f6:d0:bf:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 11 00:00:00 2024 GMT Not After : Dec 16 23:59:59 2024 GMT Subject: serialNumber=ec6b899e8d22d89bfca39f9c8585477444012b467543562d31eb83c0cb459b38, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a5:40:33:e0:b8:2a:51:fe:7b:c0:83:85:0e: 74:94:86:10:6d:16:6b:17:49:b7:a1:a2:6e:20:7a: 21:01:83:d2:9e:e4:b2:05:6d:14:f9:00:a9:25:c0: a0:60:67:fd:82:a9:09:29:f9:98:90:63:9d:61:37: 2e:ab:3f:cc:11:30:d1:bd:60:fe:14:03:23:86:7e: f3:89:32:49:94:be:9d:04:3e:00:3d:20:28:14:2e: f7:6b:c9:f5:a2:5c:f7:33:7b:9f:8a:7a:dd:2e:17: c8:c8:ac:39:8c:6b:a6:32:0c:d2:65:4e:1d:d7:af: d9:f1:e0:4c:e4:c4:5e:d2:81:84:cc:1f:a7:c5:41: 46:3f:b3:fd:81:ec:a5:52:0d:9a:d1:ee:da:25:8c: 9a:71:65:9c:2b:34:45:28:de:4b:44:3d:3a:2f:4e: 24:08:cf:f1:04:fb:b3:fd:d5:de:57:1a:77:c7:97: ac:0f:1f:72:e8:e9:8e:50:10:8a:dd:0d:60:36:8f: 1b:3c:06:ca:78:eb:f1:3a:84:30:04:3d:6e:a1:66: 25:f8:8e:28:ef:12:22:a1:a5:c0:56:d3:dd:6b:79: 5b:94:f2:9d:6e:9a:32:3f:02:24:3a:5e:7c:c1:b9: a2:fb:68:52:fc:c7:4c:ae:16:4a:70:62:a1:a2:5f: d5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E8:F1:E8:BE:F5:00:81:AE:08:F1:52:D4:AA:E5:8C:85:97:6D:D1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3612cb8-e230-409a-8185-edc9e3d38cfe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.186.0.0/16 Signature Algorithm: sha256WithRSAEncryption 31:58:a7:8f:40:33:43:f0:f4:cb:aa:8a:33:a4:61:55:d8:c9: 76:76:94:46:11:85:ea:de:ff:7c:23:e1:0e:62:b3:31:89:6c: 31:81:2a:e4:32:46:c2:2f:12:36:68:f1:89:06:8b:c2:75:6f: 87:85:02:6a:c0:90:00:6a:21:3f:f5:17:25:cb:72:e6:91:12: 7e:2e:78:14:26:fb:89:72:98:28:87:c4:cb:53:bf:69:69:59: a3:4c:cc:7a:68:df:ef:8d:40:b5:ad:30:ff:91:5a:61:72:35: 8b:ef:dd:bf:c1:8d:7e:b8:1d:d9:89:23:9d:0d:8d:70:98:56: ed:3a:ef:57:76:5f:b5:ca:7b:78:35:fd:56:25:07:ad:8b:3f: 7a:3c:dc:ca:a2:99:ff:37:e3:6e:09:51:9b:fa:38:63:97:4c: 6f:80:9d:58:e7:47:ad:eb:90:86:e3:dd:26:23:e4:e9:fe:bb: d6:c1:8d:39:81:26:0d:72:85:17:99:46:85:5f:1f:ec:03:3d: da:8b:f6:fe:d5:df:76:8f:da:4c:a9:18:c4:1e:fa:37:24:92: 29:fd:6d:29:6d:44:3d:87:b2:3f:87:7d:dc:16:24:1c:35:c5: c1:82:50:a0:0a:fa:64:78:d8:fe:43:8c:a9:a6:be:2b:a1:f3: 8a:e5:e7:4e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAlhGY+SuyMathusSU4tf4/bQvxowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTExMDAwMDAwWhcNMjQxMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzZiODk5ZThkMjJkODliZmNhMzlmOWM4NTg1NDc3NDQ0 MDEyYjQ2NzU0MzU2MmQzMWViODNjMGNiNDU5YjM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+pUAz4LgqUf57wIOFDnSUhhBtFmsXSbehom4geiEBg9Ke 5LIFbRT5AKklwKBgZ/2CqQkp+ZiQY51hNy6rP8wRMNG9YP4UAyOGfvOJMkmUvp0E PgA9ICgULvdryfWiXPcze5+Ket0uF8jIrDmMa6YyDNJlTh3Xr9nx4EzkxF7SgYTM H6fFQUY/s/2B7KVSDZrR7toljJpxZZwrNEUo3ktEPTovTiQIz/EE+7P91d5XGnfH l6wPH3Lo6Y5QEIrdDWA2jxs8Bsp46/E6hDAEPW6hZiX4jijvEiKhpcBW091reVuU 8p1umjI/AiQ6XnzBuaL7aFL8x0yuFkpwYqGiX9V9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhujx6L71AIGuCPFS1KrljIWXbdEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzNjEyY2I4LWUyMzAtNDA5YS04MTg1LWVkYzllM2QzOGNmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQujANBgkqhkiG9w0BAQsFAAOCAQEAMVinj0AzQ/D0y6qKM6RhVdjJdnaU RhGF6t7/fCPhDmKzMYlsMYEq5DJGwi8SNmjxiQaLwnVvh4UCasCQAGohP/UXJcty 5pESfi54FCb7iXKYKIfEy1O/aWlZo0zMemjf741Ata0w/5FaYXI1i+/dv8GNfrgd 2YkjnQ2NcJhW7TrvV3Zftcp7eDX9ViUHrYs/ejzcyqKZ/zfjbglRm/o4Y5dMb4Cd WOdHreuQhuPdJiPk6f671sGNOYEmDXKFF5lGhV8f7AM92ov2/tXfdo/aTKkYxB76 NySSKf1tKW1EPYeyP4d93BYkHDXFwYJQoAr6ZHjY/kOMqaa+K6HziuXnTg== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:21 2024 by rpki-client on console-ams.rpki-client.org