$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad1eb262-a85d-49ea-b6a5-9603466c1860.roa File: ad1eb262-a85d-49ea-b6a5-9603466c1860.roa (raw, json) Hash identifier: GRj34A39sb4y8+bEThZHqQEFV/5hk+A/LmrRnMcsJF8= Subject key identifier: C0:30:D2:7F:51:90:14:22:92:22:4B:99:8B:15:B8:84:FA:5D:BA:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C661447BC7269FEA4CDFE514454D02969DF22DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad1eb262-a85d-49ea-b6a5-9603466c1860.roa Signing time: Tue 12 Nov 2024 00:00:00 +0000 ROA not before: Tue 12 Nov 2024 00:00:00 +0000 ROA not after: Tue 17 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.99.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:66:14:47:bc:72:69:fe:a4:cd:fe:51:44:54:d0:29:69:df:22:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 12 00:00:00 2024 GMT Not After : Dec 17 23:59:59 2024 GMT Subject: serialNumber=0edefd418f37b4d89d193266bc4a221c97afb4932e8b9603b381c6c503722f20, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:28:66:60:92:1d:8e:2f:9d:c0:be:d5:a5:b3: 3a:af:0a:8a:60:17:36:d6:39:92:4e:cb:d6:13:82: a1:7a:85:04:ce:77:ff:b0:07:5e:76:8b:df:57:8d: 0f:34:30:f5:4f:22:28:ff:c5:13:a4:65:c1:8a:20: 26:17:58:c3:cc:ec:ef:aa:19:0f:32:da:82:36:c5: b0:bc:c9:bd:13:8b:cb:49:54:ce:16:af:b6:72:61: 2c:9a:f9:84:be:c2:7c:d8:69:51:d3:12:55:52:36: cc:76:96:c2:c7:72:99:cd:2d:3f:90:b4:12:dc:12: 14:95:72:98:25:ab:8e:83:b1:8f:5d:1d:45:7f:f1: a2:55:bb:f1:28:ad:fd:dc:08:bc:d0:96:b3:2c:b1: e5:26:81:5d:ec:8e:43:40:0d:40:2a:a0:b5:5d:6a: 03:6c:d2:5a:28:76:04:c3:89:6c:9c:d9:b2:d5:c4: 85:6a:0c:44:77:bf:9e:f5:56:0a:7f:cf:22:8b:16: 14:30:0a:80:24:67:a1:7e:d0:3f:bd:3c:73:79:e6: 74:36:f1:52:fc:33:67:ba:bf:d7:29:4a:29:34:3d: 54:5e:02:68:9f:7e:50:f8:04:57:45:45:7a:72:ef: 6a:4e:76:bb:a0:65:12:59:7e:86:c4:6d:48:15:2f: f7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:30:D2:7F:51:90:14:22:92:22:4B:99:8B:15:B8:84:FA:5D:BA:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad1eb262-a85d-49ea-b6a5-9603466c1860.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.99.0.0/16 Signature Algorithm: sha256WithRSAEncryption 86:df:39:7c:79:b0:66:8b:c3:0e:15:71:6a:bd:6e:72:3a:fb: 42:cb:23:b9:87:fa:78:f5:a2:dc:be:3b:ca:36:49:79:7e:a6: 8c:e2:15:ae:27:23:85:ca:51:63:a3:71:f8:4d:58:0f:4f:bf: 90:ce:eb:c2:0a:d7:9d:1f:74:31:36:52:0c:b5:06:db:56:5e: 5e:d0:46:86:9a:92:29:c3:77:51:f7:d3:72:49:be:8d:02:27: da:c5:e8:f2:e9:9c:57:03:2c:27:50:fc:20:7f:fc:4d:15:22: 64:b9:1c:a1:e0:32:3e:14:1c:8b:cf:92:64:e9:d7:f3:92:ce: bc:1b:a5:55:8d:08:05:71:3b:0a:45:ae:0a:b7:79:b5:32:51: ba:fe:e2:e3:85:4b:7c:db:6e:fc:15:99:7b:6f:4b:b1:99:aa: fc:21:29:6f:70:16:51:4e:35:8c:cc:37:ef:50:a7:f3:cc:c5: cd:97:53:5b:c3:ea:b9:cc:21:3c:d4:50:72:d5:43:15:c6:29: bc:9c:c8:e5:1f:34:47:4c:c4:3d:b3:19:93:86:55:91:f3:ad: 6a:f5:0b:34:dc:2d:9c:4a:11:83:5f:e5:fe:eb:4f:03:96:1d: 98:2b:b8:14:0f:f7:ed:f4:77:32:37:d4:04:a6:da:e3:2d:2b: da:77:26:b8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTGYUR7xyaf6kzf5RRFTQKWnfIt8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTEyMDAwMDAwWhcNMjQxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWRlZmQ0MThmMzdiNGQ4OWQxOTMyNjZiYzRhMjIxYzk3 YWZiNDkzMmU4Yjk2MDNiMzgxYzZjNTAzNzIyZjIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCKGZgkh2OL53AvtWlszqvCopgFzbWOZJOy9YTgqF6hQTO d/+wB152i99XjQ80MPVPIij/xROkZcGKICYXWMPM7O+qGQ8y2oI2xbC8yb0Ti8tJ VM4Wr7ZyYSya+YS+wnzYaVHTElVSNsx2lsLHcpnNLT+QtBLcEhSVcpglq46DsY9d HUV/8aJVu/Eorf3cCLzQlrMsseUmgV3sjkNADUAqoLVdagNs0loodgTDiWyc2bLV xIVqDER3v571Vgp/zyKLFhQwCoAkZ6F+0D+9PHN55nQ28VL8M2e6v9cpSik0PVRe AmifflD4BFdFRXpy72pOdrugZRJZfobEbUgVL/eFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwDDSf1GQFCKSIkuZixW4hPpdusUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkMWViMjYyLWE4NWQtNDllYS1iNmE1LTk2MDM0NjZjMTg2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4YzANBgkqhkiG9w0BAQsFAAOCAQEAht85fHmwZovDDhVxar1ucjr7Qssj uYf6ePWi3L47yjZJeX6mjOIVricjhcpRY6Nx+E1YD0+/kM7rwgrXnR90MTZSDLUG 21ZeXtBGhpqSKcN3UffTckm+jQIn2sXo8umcVwMsJ1D8IH/8TRUiZLkcoeAyPhQc i8+SZOnX85LOvBulVY0IBXE7CkWuCrd5tTJRuv7i44VLfNtu/BWZe29LsZmq/CEp b3AWUU41jMw371Cn88zFzZdTW8PqucwhPNRQctVDFcYpvJzI5R80R0zEPbMZk4ZV kfOtavULNNwtnEoRg1/l/utPA5YdmCu4FA/37fR3MjfUBKba4y0r2ncmuA== -----END CERTIFICATE-----Generated at Fri Nov 22 04:03:04 2024 by rpki-client on console-ams.rpki-client.org