$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b321cf91-4773-42bb-b05a-a6eee24370ac.roa File: b321cf91-4773-42bb-b05a-a6eee24370ac.roa (raw, json) Hash identifier: IzwvBvdgIpRrXv9KnOtd1r3rezu6VkqKRL4Wq0T4iI8= Subject key identifier: 28:3D:E1:84:8F:1B:7F:E5:38:DF:DE:23:96:71:1B:23:F8:30:7D:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59CC05629A12971DDA5D8BC6ABAECB7729B73A6F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b321cf91-4773-42bb-b05a-a6eee24370ac.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 135.140.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:cc:05:62:9a:12:97:1d:da:5d:8b:c6:ab:ae:cb:77:29:b7:3a:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=c462c24eb98fb38d1fdbb316fe5c62169143c4306449b4d47ff7e4de5739e54e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a8:3d:e4:b6:05:45:94:c1:aa:cd:ae:d1:05: 7b:da:0d:95:a5:a3:32:25:a3:a0:f1:fb:c4:c2:33: 4e:fe:8d:19:6d:73:05:43:51:8f:15:98:2f:05:e1: 7a:ee:75:c3:40:34:15:6b:fa:f8:ba:0e:be:9d:e8: a8:c7:af:15:6c:1d:cd:7c:3e:43:99:30:43:88:97: 61:fb:1d:af:d5:7e:00:ad:73:d2:15:50:4a:03:ec: a6:f4:14:00:67:f4:0e:4a:b2:7b:34:81:42:ae:f4: 48:ff:cc:ad:41:f1:6a:a9:a5:ed:b1:07:27:2e:ae: 0e:d5:23:47:76:42:f0:6f:c1:f1:c5:5a:ac:e8:77: 3a:e6:45:cd:ad:34:c5:f5:39:a1:25:d6:d7:15:e7: e7:23:69:b1:f3:1a:04:a4:d3:74:e6:ff:c9:8f:d6: 77:89:41:4c:83:97:01:ff:6e:43:8a:3f:a8:51:14: a2:d4:77:db:22:be:5b:4b:be:a5:bb:05:31:19:55: 9d:57:92:3d:25:e0:2a:7d:50:29:be:e8:66:5b:55: a7:26:61:7d:71:e2:e4:5a:ab:9d:45:eb:5d:38:1d: 67:b7:8a:ed:e6:af:b3:9e:c5:c1:e6:1b:d7:29:e7: cd:3b:44:3a:24:05:8a:6b:19:fd:3a:79:7c:a5:f0: c1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:3D:E1:84:8F:1B:7F:E5:38:DF:DE:23:96:71:1B:23:F8:30:7D:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b321cf91-4773-42bb-b05a-a6eee24370ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 135.140.0.0/16 Signature Algorithm: sha256WithRSAEncryption 32:0f:db:70:60:05:37:72:f3:20:fe:03:87:1a:96:e8:d5:28: ce:fc:e9:d4:99:1e:58:14:f9:a1:11:40:ca:2e:4a:fa:ee:e0: ae:84:a0:c5:b2:9f:b6:24:e6:22:eb:74:b8:f9:1e:66:b7:96: 92:d7:36:c7:8b:ef:44:05:e2:2e:32:c6:76:d1:b5:d7:7f:ec: 2b:07:a1:88:19:51:46:14:58:b9:63:ba:d2:ce:6c:50:27:66: 08:c8:b1:03:24:24:d0:32:2e:73:03:52:5c:55:ae:d4:b2:d0: da:d7:ab:0c:1b:d5:0b:8f:54:6e:65:87:4b:39:78:20:b0:f7: 5f:62:55:d2:a2:04:56:ff:0c:08:8f:07:21:91:43:84:da:65: 2e:d9:af:9b:fa:7c:8d:1a:0e:ed:ec:1d:83:19:49:54:b0:40: 77:47:31:39:78:82:2b:ba:5e:e1:43:ed:50:71:97:d5:02:79: 0e:e9:e4:8e:81:06:46:b0:03:0e:d5:c2:f0:50:f0:77:3f:58: 26:6c:c1:3a:af:ad:d0:9a:0e:18:82:00:71:28:d4:55:c1:2e: b5:9d:ea:5a:d6:06:fb:da:d4:6d:52:0d:cd:df:59:36:6b:cd: 4f:0b:c6:0f:ec:8e:b3:a1:f5:ca:9a:28:eb:81:7c:eb:0b:31: 2d:f5:82:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWcwFYpoSlx3aXYvGq67Ldym3Om8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDYyYzI0ZWI5OGZiMzhkMWZkYmIzMTZmZTVjNjIxNjkx NDNjNDMwNjQ0OWI0ZDQ3ZmY3ZTRkZTU3MzllNTRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7qD3ktgVFlMGqza7RBXvaDZWlozIlo6Dx+8TCM07+jRlt cwVDUY8VmC8F4XrudcNANBVr+vi6Dr6d6KjHrxVsHc18PkOZMEOIl2H7Ha/VfgCt c9IVUEoD7Kb0FABn9A5Ksns0gUKu9Ej/zK1B8Wqppe2xBycurg7VI0d2QvBvwfHF WqzodzrmRc2tNMX1OaEl1tcV5+cjabHzGgSk03Tm/8mP1neJQUyDlwH/bkOKP6hR FKLUd9sivltLvqW7BTEZVZ1Xkj0l4Cp9UCm+6GZbVacmYX1x4uRaq51F6104HWe3 iu3mr7OexcHmG9cp5807RDokBYprGf06eXyl8MH3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKD3hhI8bf+U4394jlnEbI/gwffkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzMjFjZjkxLTQ3NzMtNDJiYi1iMDVhLWE2ZWVlMjQzNzBhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCHjDANBgkqhkiG9w0BAQsFAAOCAQEAMg/bcGAFN3LzIP4DhxqW6NUozvzp 1JkeWBT5oRFAyi5K+u7groSgxbKftiTmIut0uPkeZreWktc2x4vvRAXiLjLGdtG1 13/sKwehiBlRRhRYuWO60s5sUCdmCMixAyQk0DIucwNSXFWu1LLQ2terDBvVC49U bmWHSzl4ILD3X2JV0qIEVv8MCI8HIZFDhNplLtmvm/p8jRoO7ewdgxlJVLBAd0cx OXiCK7pe4UPtUHGX1QJ5DunkjoEGRrADDtXC8FDwdz9YJmzBOq+t0JoOGIIAcSjU VcEutZ3qWtYG+9rUbVINzd9ZNmvNTwvGD+yOs6H1ypoo64F86wsxLfWCQg== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:24 2024 by rpki-client on console-ams.rpki-client.org