$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a65d7099-0914-499d-9137-bf42fd9891b6.roa File: a65d7099-0914-499d-9137-bf42fd9891b6.roa (raw, json) Hash identifier: 6FEQE0ucjrBNG97GzG4fVm41Ey0GH6JO1m6tOZPkuhs= Subject key identifier: 53:AA:5C:2F:72:EA:75:02:19:B0:BF:FC:80:CE:0D:EC:5D:D7:A5:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41B14128B31343C73C3988AF3CCC444D560531C6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a65d7099-0914-499d-9137-bf42fd9891b6.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 35.52.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:b1:41:28:b3:13:43:c7:3c:39:88:af:3c:cc:44:4d:56:05:31:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=b14f64efcb77597813c54e6386dbde90c681767e367881d2687089dcf519df23, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:04:97:fe:d9:b3:ba:69:4d:41:f0:f3:ed:b7: e6:a7:f4:33:92:5a:25:dd:10:20:41:fa:44:2f:1c: 85:6e:ab:21:20:0c:f8:55:fb:bc:be:a7:4e:91:c2: 43:af:20:2b:ae:74:2f:71:2d:af:7d:d2:37:3e:51: 4e:78:b3:82:b9:7a:0b:4f:8a:e0:1f:4b:89:9a:9d: 7e:96:b5:47:a1:bd:8f:3d:19:44:2a:e1:fa:0c:02: 1b:12:bd:6b:b7:36:ea:25:07:75:4b:da:97:7f:cb: 1e:0b:0d:5e:0c:c7:a2:4c:d8:2d:60:14:56:d7:df: 96:87:72:9e:48:c0:da:50:23:5b:e6:89:9d:32:b2: a1:a1:04:2b:04:8b:d6:a3:9c:2e:4d:9a:de:36:b3: c0:42:2a:04:f9:cf:b2:6d:84:ac:83:19:25:77:15: c7:a4:13:1e:69:79:60:d6:a3:8b:2d:ff:22:a9:00: ba:18:b6:80:cb:82:e3:00:73:be:64:bd:b8:e6:4a: 4a:52:9e:3a:b2:78:a2:76:87:f9:d9:bb:8b:e2:d5: 35:fa:a5:f4:cd:43:78:88:62:42:e9:70:26:0a:c3: dc:56:6f:dc:74:dd:2a:05:fe:9c:01:3e:c4:ba:3e: 94:3f:13:b4:d8:0b:6d:92:eb:98:b4:d9:bd:96:b3: 50:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:AA:5C:2F:72:EA:75:02:19:B0:BF:FC:80:CE:0D:EC:5D:D7:A5:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a65d7099-0914-499d-9137-bf42fd9891b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.52.0.0/15 Signature Algorithm: sha256WithRSAEncryption b0:dc:88:a8:30:5d:95:da:fa:22:fb:e8:d3:80:92:39:d3:f2: d0:bd:f2:ba:ac:4f:bb:fd:f4:97:12:c5:ff:c4:17:dc:52:ed: a9:92:5e:80:3c:cd:c5:ee:bd:63:cb:cd:45:03:c5:28:6d:de: 00:f5:1c:e3:1b:1b:39:73:68:d3:b1:0c:aa:81:64:aa:f7:33: d9:cb:77:be:ca:31:52:a7:fa:9d:8b:e3:3f:26:31:d2:c7:dd: d8:34:92:52:98:80:5a:31:1d:f3:f9:c3:ed:fc:e8:1a:24:8b: c5:02:ce:e3:ca:4e:71:f4:96:5b:44:53:a5:69:a2:76:3f:11: 3f:bf:3a:b6:80:1e:76:5a:ae:38:a3:eb:a8:53:f7:9c:a4:dd: da:6b:19:8b:1b:fc:37:7e:ad:f8:78:22:bf:0b:e1:7e:2b:b2: 8b:59:d5:74:a9:68:ba:30:f6:bc:d3:59:e6:d3:df:ba:27:9d: 84:a4:db:20:67:db:11:42:1e:57:7e:cc:09:71:3b:a5:8b:77: 7f:1e:db:1c:2d:fa:1f:8a:14:cb:24:c4:44:f4:12:30:b3:ef: a1:0b:dd:bc:fe:39:f0:fd:ed:6b:bf:dc:3d:f7:fe:3f:03:04: ed:32:c4:b5:1f:9a:33:b7:15:1c:87:a0:d7:32:e7:01:0b:09: e4:0f:c7:4c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQbFBKLMTQ8c8OYivPMxETVYFMcYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTRmNjRlZmNiNzc1OTc4MTNjNTRlNjM4NmRiZGU5MGM2 ODE3NjdlMzY3ODgxZDI2ODcwODlkY2Y1MTlkZjIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+BJf+2bO6aU1B8PPtt+an9DOSWiXdECBB+kQvHIVuqyEg DPhV+7y+p06RwkOvICuudC9xLa990jc+UU54s4K5egtPiuAfS4manX6WtUehvY89 GUQq4foMAhsSvWu3NuolB3VL2pd/yx4LDV4Mx6JM2C1gFFbX35aHcp5IwNpQI1vm iZ0ysqGhBCsEi9ajnC5Nmt42s8BCKgT5z7JthKyDGSV3FcekEx5peWDWo4st/yKp ALoYtoDLguMAc75kvbjmSkpSnjqyeKJ2h/nZu4vi1TX6pfTNQ3iIYkLpcCYKw9xW b9x03SoF/pwBPsS6PpQ/E7TYC22S65i02b2Ws1CtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUU6pcL3LqdQIZsL/8gM4N7F3XpXMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2NWQ3MDk5LTA5MTQtNDk5ZC05MTM3LWJmNDJmZDk4OTFiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjNDANBgkqhkiG9w0BAQsFAAOCAQEAsNyIqDBdldr6Ivvo04CSOdPy0L3y uqxPu/30lxLF/8QX3FLtqZJegDzNxe69Y8vNRQPFKG3eAPUc4xsbOXNo07EMqoFk qvcz2ct3vsoxUqf6nYvjPyYx0sfd2DSSUpiAWjEd8/nD7fzoGiSLxQLO48pOcfSW W0RTpWmidj8RP786toAedlquOKPrqFP3nKTd2msZixv8N36t+Hgivwvhfiuyi1nV dKloujD2vNNZ5tPfuiedhKTbIGfbEUIeV37MCXE7pYt3fx7bHC36H4oUyyTERPQS MLPvoQvdvP458P3ta7/cPff+PwME7TLEtR+aM7cVHIeg1zLnAQsJ5A/HTA== -----END CERTIFICATE-----Generated at Fri Nov 22 04:03:02 2024 by rpki-client on console-ams.rpki-client.org