$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a52e7aa4-e000-4192-b992-596e524ca11b.roa File: a52e7aa4-e000-4192-b992-596e524ca11b.roa (raw, json) Hash identifier: k0XXNm6jD2U3YUtNAjpm7ebBvusQYEbc4pQjqloyR7I= Subject key identifier: A7:F5:CB:EB:ED:AA:57:C7:C7:8F:EB:67:50:18:28:46:54:20:5A:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BD2055B023914C7599070429DE12435C2474F82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a52e7aa4-e000-4192-b992-596e524ca11b.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 64.252.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d2:05:5b:02:39:14:c7:59:90:70:42:9d:e1:24:35:c2:47:4f:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=be07adce4728ec165e8ecc96c008e9338a43739a952b837899960df509d3fdc4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b8:3b:78:ee:08:91:18:d4:f3:69:1d:37:5e: e2:51:65:07:94:77:cf:63:85:84:67:9e:34:5b:5b: 95:e6:ba:d1:d3:f8:1a:3b:bb:99:f7:50:dc:03:4e: f1:be:e7:5e:a0:07:b6:55:5a:57:27:d9:2e:74:33: 47:77:3f:6e:55:dc:01:96:2b:3a:9a:ec:6c:9c:4a: 80:fb:d1:37:14:fe:16:d5:43:48:77:e2:6b:e2:27: 9c:eb:19:9c:8e:d9:23:38:87:d3:cb:59:c4:a6:f6: 43:2f:8a:8b:96:4d:33:69:e8:62:db:d4:8f:7a:14: 39:2f:68:79:36:0f:52:d9:b8:31:ba:22:13:e6:4d: b6:02:6f:0f:ae:a2:8d:ee:0a:0f:07:d1:54:31:31: 3b:b1:52:fd:77:46:10:50:a8:45:c7:22:0d:09:3c: 39:c4:44:2c:0a:3f:ce:30:5a:a7:c1:f1:93:fd:60: 6a:7a:64:7d:46:44:82:b7:bd:39:13:58:12:39:a1: 68:82:f0:df:c7:f3:06:75:49:bd:0f:62:ff:a1:37: 48:8c:8a:1b:a1:72:64:56:4c:5b:7d:d7:7a:b3:25: a3:7d:7b:0f:3c:e1:21:a5:79:90:e4:e9:96:07:1c: 96:b0:68:66:33:80:c3:ed:36:df:d3:1a:d1:25:e5: ba:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:F5:CB:EB:ED:AA:57:C7:C7:8F:EB:67:50:18:28:46:54:20:5A:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a52e7aa4-e000-4192-b992-596e524ca11b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.128.0/18 Signature Algorithm: sha256WithRSAEncryption b8:b2:d4:a3:77:1a:79:e8:b3:d1:b7:9a:aa:f5:c5:86:78:9c: 4c:40:e6:95:ca:07:17:39:04:79:c4:cd:ae:8e:a6:74:ad:41: c1:bc:de:77:09:25:ef:35:fe:3c:00:6f:b5:42:76:04:72:5f: 7f:24:fa:2b:3d:dd:7d:28:20:71:17:9d:6c:f5:f6:ad:5a:99: 9f:40:83:6b:fe:0f:0d:1c:c3:77:b6:a6:12:81:09:99:7f:16: 4e:b4:5e:d2:4f:35:b1:23:ea:ac:fa:10:0b:ea:96:39:e2:37: dc:ea:dc:1c:ab:19:3e:56:88:8e:57:da:44:c5:31:5e:fa:10: 62:63:d8:b2:6b:56:bf:53:f7:1f:ea:d7:37:67:cd:a3:57:6f: c9:6a:d0:c6:f6:d0:7a:8d:d3:bd:7e:ec:b1:94:95:5e:2e:30: c5:61:b8:44:1d:80:24:3b:0f:7b:7a:d1:e4:fa:4a:bc:5d:61: b0:83:73:4e:f0:7e:08:9c:b3:f5:77:a9:fb:24:ea:91:d8:da: 48:4e:90:ba:92:1c:4f:02:b1:7d:d4:e2:b0:21:04:89:3c:c9: c4:84:00:64:ff:41:50:46:fa:b9:ab:1d:6a:57:13:25:8d:f9: 45:65:a3:03:90:38:a8:21:81:52:e2:c2:0f:7b:7f:d5:36:92: f1:ce:21:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa9IFWwI5FMdZkHBCneEkNcJHT4IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTA3YWRjZTQ3MjhlYzE2NWU4ZWNjOTZjMDA4ZTkzMzhh NDM3MzlhOTUyYjgzNzg5OTk2MGRmNTA5ZDNmZGM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKuDt47giRGNTzaR03XuJRZQeUd89jhYRnnjRbW5XmutHT +Bo7u5n3UNwDTvG+516gB7ZVWlcn2S50M0d3P25V3AGWKzqa7GycSoD70TcU/hbV Q0h34mviJ5zrGZyO2SM4h9PLWcSm9kMviouWTTNp6GLb1I96FDkvaHk2D1LZuDG6 IhPmTbYCbw+uoo3uCg8H0VQxMTuxUv13RhBQqEXHIg0JPDnERCwKP84wWqfB8ZP9 YGp6ZH1GRIK3vTkTWBI5oWiC8N/H8wZ1Sb0PYv+hN0iMihuhcmRWTFt913qzJaN9 ew884SGleZDk6ZYHHJawaGYzgMPtNt/TGtEl5bovAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUp/XL6+2qV8fHj+tnUBgoRlQgWhMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1MmU3YWE0LWUwMDAtNDE5Mi1iOTkyLTU5NmU1MjRjYTExYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZA/IAwDQYJKoZIhvcNAQELBQADggEBALiy1KN3Gnnos9G3mqr1xYZ4nExA 5pXKBxc5BHnEza6OpnStQcG83ncJJe81/jwAb7VCdgRyX38k+is93X0oIHEXnWz1 9q1amZ9Ag2v+Dw0cw3e2phKBCZl/Fk60XtJPNbEj6qz6EAvqljniN9zq3ByrGT5W iI5X2kTFMV76EGJj2LJrVr9T9x/q1zdnzaNXb8lq0Mb20HqN071+7LGUlV4uMMVh uEQdgCQ7D3t60eT6SrxdYbCDc07wfgics/V3qfsk6pHY2khOkLqSHE8CsX3U4rAh BIk8ycSEAGT/QVBG+rmrHWpXEyWN+UVlowOQOKghgVLiwg97f9U2kvHOIcg= -----END CERTIFICATE-----Generated at Fri Nov 22 04:03:02 2024 by rpki-client on console-ams.rpki-client.org