$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4a0f84e-6c7f-4ea6-ae50-ccb0347d3b06.roa File: a4a0f84e-6c7f-4ea6-ae50-ccb0347d3b06.roa (raw, json) Hash identifier: nng3+nBFG62t7G86qHRhQ0Wq3aZHoRH7df5OPuolAVM= Subject key identifier: 7D:B9:C1:AE:F4:0C:FB:CF:71:5D:3B:62:2C:70:F1:1A:1D:9E:69:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35AAF83D40A47B6C8E58BAF36C2013C8E738375F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4a0f84e-6c7f-4ea6-ae50-ccb0347d3b06.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 23.20.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:aa:f8:3d:40:a4:7b:6c:8e:58:ba:f3:6c:20:13:c8:e7:38:37:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=3fdf871e75a1d3470915a96f3c6d49cec7351ad88df4bc344f3d080d88c70306, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4d:87:f4:4f:05:16:34:8b:85:be:cf:09:9f: 81:ae:29:68:03:08:d7:fe:28:c4:55:ba:46:a6:c5: 10:67:d2:c0:6f:9b:fe:f6:06:f2:85:af:e2:b6:f4: 42:dc:5a:11:85:dd:22:38:8c:ca:c5:fd:6c:53:ad: 7c:78:95:6f:21:47:ba:e4:7a:c7:59:45:ee:02:9f: dc:6c:47:47:8e:e0:77:be:f5:55:04:a6:a9:05:c9: 39:e5:01:97:4f:23:00:41:87:b7:d4:98:94:96:80: 44:53:a9:06:b0:d8:83:66:71:c9:ce:36:ae:81:0f: cf:bd:70:ef:b7:c4:c2:72:5e:78:52:ae:19:8f:50: 59:f8:a9:4f:62:01:3a:4e:10:6b:73:8c:1a:c9:b3: 57:aa:43:6c:da:3b:a4:11:b1:cb:57:10:ba:3e:ed: 7d:ab:bb:3f:85:2d:cf:e0:63:aa:9a:8c:15:34:5a: b3:7e:f9:09:22:5a:62:f4:d2:4d:5d:87:2c:00:e4: 3c:49:a7:ff:05:a3:93:36:8e:ee:42:55:18:b8:5c: 93:bf:13:d2:d8:a5:3a:c9:d2:37:61:0f:40:77:3a: 30:79:e3:e6:7c:90:2f:c0:bf:de:03:e9:04:00:2e: 15:a2:f7:87:42:36:e0:fc:03:17:c0:84:72:f5:29: 22:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B9:C1:AE:F4:0C:FB:CF:71:5D:3B:62:2C:70:F1:1A:1D:9E:69:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4a0f84e-6c7f-4ea6-ae50-ccb0347d3b06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.20.0.0/14 Signature Algorithm: sha256WithRSAEncryption 63:2e:eb:22:76:e0:79:d5:1b:2f:76:e4:db:02:87:c7:d7:66: 5e:19:cf:86:d4:7a:a7:ed:c5:fb:8e:c7:89:91:c7:73:d4:42: d1:e9:ca:bc:29:8d:13:cf:7c:b3:b6:44:5a:af:42:9d:67:0e: f4:60:03:ae:5c:59:99:aa:38:eb:56:eb:08:e9:d8:ac:61:68: 58:28:9d:5f:b5:66:8c:8a:ac:07:87:c8:e8:08:74:46:ae:eb: bc:23:5d:0f:47:11:24:39:37:b3:3b:c0:ae:f4:36:46:4b:34: 2d:96:8b:82:ae:da:54:a4:15:5c:3b:a7:43:60:02:dc:0c:02: d9:e2:0f:82:95:50:5e:dc:08:6b:fb:1a:24:60:1d:4d:96:a6: 13:31:b1:8e:74:9d:a2:69:f5:6c:b5:b8:95:cc:6c:c5:56:09: a8:8d:f7:18:bd:3b:ba:9e:47:8f:f1:a8:08:60:95:f6:a3:df: 1d:1d:5e:1b:fe:f6:5b:52:1e:23:4d:d1:57:e8:24:bc:5c:f6: ff:5e:81:d5:70:35:1b:e3:5a:7c:aa:c6:dd:23:8c:6b:52:2f: 43:98:65:cc:4d:f1:4d:95:62:67:60:7d:a6:2a:52:53:26:7a: 92:d1:44:29:10:2d:8f:f4:c9:08:51:85:cf:27:63:c1:7e:8f: 67:cd:ac:9b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNar4PUCke2yOWLrzbCATyOc4N18wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZmRmODcxZTc1YTFkMzQ3MDkxNWE5NmYzYzZkNDljZWM3 MzUxYWQ4OGRmNGJjMzQ0ZjNkMDgwZDg4YzcwMzA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4TYf0TwUWNIuFvs8Jn4GuKWgDCNf+KMRVukamxRBn0sBv m/72BvKFr+K29ELcWhGF3SI4jMrF/WxTrXx4lW8hR7rkesdZRe4Cn9xsR0eO4He+ 9VUEpqkFyTnlAZdPIwBBh7fUmJSWgERTqQaw2INmccnONq6BD8+9cO+3xMJyXnhS rhmPUFn4qU9iATpOEGtzjBrJs1eqQ2zaO6QRsctXELo+7X2ruz+FLc/gY6qajBU0 WrN++QkiWmL00k1dhywA5DxJp/8Fo5M2ju5CVRi4XJO/E9LYpTrJ0jdhD0B3OjB5 4+Z8kC/Av94D6QQALhWi94dCNuD8AxfAhHL1KSKlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfbnBrvQM+89xXTtiLHDxGh2eaaEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E0YTBmODRlLTZjN2YtNGVhNi1hZTUwLWNjYjAzNDdkM2IwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIXFDANBgkqhkiG9w0BAQsFAAOCAQEAYy7rInbgedUbL3bk2wKHx9dmXhnP htR6p+3F+47HiZHHc9RC0enKvCmNE898s7ZEWq9CnWcO9GADrlxZmao461brCOnY rGFoWCidX7VmjIqsB4fI6Ah0Rq7rvCNdD0cRJDk3szvArvQ2Rks0LZaLgq7aVKQV XDunQ2AC3AwC2eIPgpVQXtwIa/saJGAdTZamEzGxjnSdomn1bLW4lcxsxVYJqI33 GL07up5Hj/GoCGCV9qPfHR1eG/72W1IeI03RV+gkvFz2/16B1XA1G+NafKrG3SOM a1IvQ5hlzE3xTZViZ2B9pipSUyZ6ktFEKRAtj/TJCFGFzydjwX6PZ82smw== -----END CERTIFICATE-----Generated at Fri Nov 22 04:03:01 2024 by rpki-client on console-ams.rpki-client.org