$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa File: aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa (raw, json) Hash identifier: 8d+yMVwlnelaqSgt56idWwhgzVRr7sovDAqCe+vIzxE= Subject key identifier: 84:D5:5E:62:38:F9:2C:C8:35:AE:32:D1:97:B3:57:57:1A:F5:BE:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63E4001602A690983691B7A67A751428C03C0446 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 20.142.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e4:00:16:02:a6:90:98:36:91:b7:a6:7a:75:14:28:c0:3c:04:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=2b00b5d6f66002f740438aa293c05c3dc55b0f2ff2201d2a343e541b608db26d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e3:33:1d:2c:58:a9:56:24:b1:4f:2f:7a:13: 0f:a4:f0:4b:71:4f:f7:6e:dc:ef:f7:e6:63:03:2f: 49:62:07:38:37:59:d6:0b:b7:e0:90:25:bf:6e:5d: 9c:22:31:d2:22:a9:b7:fb:06:ff:bd:ba:fe:36:60: b8:ec:de:88:30:29:ca:aa:44:58:41:66:4a:08:ce: 1c:6b:95:1d:56:2f:85:43:e1:43:a7:c9:c8:24:ea: f1:c0:5b:35:b7:9e:90:91:f3:cc:58:0d:67:fb:9b: cc:a0:d2:18:4d:fe:19:b4:70:59:01:72:21:34:8f: 48:a4:d7:d6:d0:af:66:7e:7b:89:96:e4:dd:8e:59: b1:6f:d0:35:69:c6:63:5f:5b:e6:9c:66:b2:7c:22: 7a:c8:8a:e9:78:e0:c0:19:98:04:b1:ed:63:5e:82: 1d:c1:b7:0d:2b:76:09:c4:1e:3c:e9:09:c3:72:11: 42:69:a2:2d:da:af:be:f1:57:85:50:07:ef:18:f2: 73:d7:7d:31:24:45:85:7d:02:43:9b:b9:5f:ee:50: a8:95:5f:ee:10:eb:47:f4:7e:fd:8c:40:6c:4d:c2: f5:0b:8c:fa:0f:ef:2c:7f:fc:6f:66:0d:ac:b3:29: 91:a9:b6:7d:c5:2e:73:f4:8c:d2:db:09:ce:18:88: bc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D5:5E:62:38:F9:2C:C8:35:AE:32:D1:97:B3:57:57:1A:F5:BE:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 20.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8b:04:81:f5:3a:2a:e5:f2:be:50:4e:8d:a1:61:4d:05:ee:c4: 63:41:21:08:e5:45:3d:42:aa:97:1e:ec:90:cf:d8:92:8c:2d: e0:6c:4b:b5:98:19:70:96:36:9e:88:6c:e1:fc:6d:71:c9:79: a2:25:88:27:40:bc:d0:d6:9d:0c:39:1b:ff:40:4d:fc:5c:db: 53:60:9b:6f:61:ca:bc:26:5f:31:c4:2e:35:bb:ac:15:37:c4: 65:33:9a:60:84:01:2d:f3:d3:82:51:2a:10:a5:c4:eb:a4:28: 9f:4b:f1:4a:10:8a:51:f8:22:85:9f:ac:cf:51:27:0f:fb:7d: bd:5e:a0:f2:58:a6:ba:b8:99:e2:24:1c:81:34:e6:2c:34:30: d3:1b:eb:8a:a5:6e:0e:8c:e6:f8:cf:fc:12:10:1b:c8:89:30: 8f:30:48:f8:6a:ec:7b:2d:e3:92:a9:b5:1d:fb:00:f3:3d:2c: 3f:b2:0f:59:d9:f7:03:98:08:ea:b6:21:0b:e6:7b:34:93:bd: 0f:3d:8f:18:ec:53:c7:ab:d7:47:dc:31:c4:f7:b6:c8:d9:1a: bf:4e:a9:ee:0a:aa:40:9e:9d:a8:3b:6c:58:87:5c:86:ff:12: d3:56:13:5b:52:49:e1:98:94:73:86:4e:76:1d:bb:1e:59:9c: e2:e0:60:a8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUY+QAFgKmkJg2kbemenUUKMA8BEYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjAwYjVkNmY2NjAwMmY3NDA0MzhhYTI5M2MwNWMzZGM1 NWIwZjJmZjIyMDFkMmEzNDNlNTQxYjYwOGRiMjZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf4zMdLFipViSxTy96Ew+k8EtxT/du3O/35mMDL0liBzg3 WdYLt+CQJb9uXZwiMdIiqbf7Bv+9uv42YLjs3ogwKcqqRFhBZkoIzhxrlR1WL4VD 4UOnycgk6vHAWzW3npCR88xYDWf7m8yg0hhN/hm0cFkBciE0j0ik19bQr2Z+e4mW 5N2OWbFv0DVpxmNfW+acZrJ8InrIiul44MAZmASx7WNegh3Btw0rdgnEHjzpCcNy EUJpoi3ar77xV4VQB+8Y8nPXfTEkRYV9AkObuV/uUKiVX+4Q60f0fv2MQGxNwvUL jPoP7yx//G9mDayzKZGptn3FLnP0jNLbCc4YiLw9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhNVeYjj5LMg1rjLRl7NXVxr1vgMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlZDg3ZTYyLTBmNjUtNGI3Yi1hMTc2LWExNTIyYzZlM2QxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAUjjANBgkqhkiG9w0BAQsFAAOCAQEAiwSB9Toq5fK+UE6NoWFNBe7EY0Eh COVFPUKqlx7skM/Ykowt4GxLtZgZcJY2nohs4fxtccl5oiWIJ0C80NadDDkb/0BN /FzbU2Cbb2HKvCZfMcQuNbusFTfEZTOaYIQBLfPTglEqEKXE66Qon0vxShCKUfgi hZ+sz1EnD/t9vV6g8limuriZ4iQcgTTmLDQw0xvriqVuDozm+M/8EhAbyIkwjzBI +Grsey3jkqm1HfsA8z0sP7IPWdn3A5gI6rYhC+Z7NJO9Dz2PGOxTx6vXR9wxxPe2 yNkav06p7gqqQJ6dqDtsWIdchv8S01YTW1JJ4ZiUc4ZOdh27Hlmc4uBgqA== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:25 2024 by rpki-client on console-ams.rpki-client.org