$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b482a701-b585-4388-b9c8-e05a3a240f2d.roa File: b482a701-b585-4388-b9c8-e05a3a240f2d.roa (raw, json) Hash identifier: jKaD1OzEGt4Ok1DHoE/YvTCpE85+7kboV6G7PwezAyg= Subject key identifier: 7D:52:12:55:FE:F1:5F:0B:8C:B0:F9:2D:7C:DA:C8:4E:CD:D7:0B:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46E12589AB728C6AAD2CE615A4E6141D4CD40F8D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b482a701-b585-4388-b9c8-e05a3a240f2d.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:e1:25:89:ab:72:8c:6a:ad:2c:e6:15:a4:e6:14:1d:4c:d4:0f:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=62ab650a2a1f45ae74d8bcc9544874a8e6aaf7c758dacafd5581cea23cd5c39e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:02:1a:33:06:11:77:fc:0e:07:83:4e:68:16: e0:fa:d2:68:4b:9c:c6:8f:10:62:64:fb:76:e2:a5: 52:95:b2:6c:b0:e8:5c:bd:fa:56:8f:f1:c8:20:c2: d9:47:cb:5e:87:d8:90:ba:5d:72:c6:d1:76:b9:28: 12:5f:be:e7:f7:51:2b:71:42:b0:b7:64:ea:21:46: 0c:24:d8:4a:27:31:db:49:de:f0:34:56:10:77:c4: fa:22:14:ea:2b:04:5a:ab:c6:e1:4c:15:4a:ab:64: 03:f2:29:7a:08:24:e3:20:f1:e7:b8:2f:ca:92:94: fc:7c:55:67:65:97:45:47:58:b4:09:62:7f:6d:4f: ce:bb:4d:1e:15:c1:9c:e5:67:1a:92:bf:24:b6:1b: 2f:7b:3a:f5:db:5b:7a:36:41:61:d1:85:3c:9d:18: f2:3a:12:a1:ca:52:39:b6:67:1e:96:4f:ce:fe:36: ef:dc:6b:ed:67:44:5a:4d:4f:1e:66:67:b7:be:58: c4:88:2b:b4:4f:9f:9e:f0:3d:2a:29:b8:eb:09:17: be:44:69:20:c0:8c:a3:08:08:38:b2:e4:99:b0:5a: 8a:7f:6f:d6:2c:25:59:2c:bf:32:59:4b:9b:e1:7a: 0a:85:63:fd:a0:b3:a8:9f:52:ae:54:fa:5e:a1:55: 86:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:52:12:55:FE:F1:5F:0B:8C:B0:F9:2D:7C:DA:C8:4E:CD:D7:0B:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b482a701-b585-4388-b9c8-e05a3a240f2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.23.0/24 Signature Algorithm: sha256WithRSAEncryption 83:62:61:f0:53:2c:33:a1:cb:57:2d:d0:24:9a:61:aa:9d:bb: 79:bd:8e:d5:86:99:ce:a7:22:9e:47:5b:d2:5a:5b:c4:2b:e7: c7:df:88:03:eb:28:85:07:60:b8:c7:b7:3a:df:13:85:39:e7: a8:31:d2:05:68:a6:89:27:4e:87:61:c0:5c:0c:e4:0e:4b:4a: 77:04:df:f7:87:8a:2e:3c:27:fe:65:63:47:c0:3d:b0:6f:86: 37:4e:42:ce:7d:42:de:fa:ad:2c:f6:41:29:3a:47:e8:17:07: 9e:fb:d9:e7:a2:ca:2a:e5:b4:82:9e:57:d3:de:17:c7:12:87: 9a:97:e5:37:74:55:9f:25:bf:da:21:91:df:29:b9:04:7a:09: 3b:6a:2d:07:a9:ca:d9:74:8a:a3:8c:61:bb:3b:ed:c2:63:cc: 60:23:80:ca:7a:74:6f:76:3d:d0:18:f9:9a:38:6a:79:88:e5: 5b:3c:22:c8:8f:b1:74:12:81:54:80:1f:42:ae:f0:35:e3:1c: e4:c3:61:9d:2d:a4:5f:64:19:3b:22:c9:69:43:d3:15:71:d8: df:2b:90:87:03:82:86:a8:67:48:b9:cd:82:0f:7f:fa:f4:28: 24:a5:54:3f:df:f0:88:4a:86:15:be:58:49:75:f7:ac:fb:93: 95:8c:12:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURuEliatyjGqtLOYVpOYUHUzUD40wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MmFiNjUwYTJhMWY0NWFlNzRkOGJjYzk1NDQ4NzRhOGU2 YWFmN2M3NThkYWNhZmQ1NTgxY2VhMjNjZDVjMzllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiAhozBhF3/A4Hg05oFuD60mhLnMaPEGJk+3bipVKVsmyw 6Fy9+laP8cggwtlHy16H2JC6XXLG0Xa5KBJfvuf3UStxQrC3ZOohRgwk2EonMdtJ 3vA0VhB3xPoiFOorBFqrxuFMFUqrZAPyKXoIJOMg8ee4L8qSlPx8VWdll0VHWLQJ Yn9tT867TR4VwZzlZxqSvyS2Gy97OvXbW3o2QWHRhTydGPI6EqHKUjm2Zx6WT87+ Nu/ca+1nRFpNTx5mZ7e+WMSIK7RPn57wPSopuOsJF75EaSDAjKMICDiy5JmwWop/ b9YsJVksvzJZS5vhegqFY/2gs6ifUq5U+l6hVYaDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfVISVf7xXwuMsPktfNrITs3XC44wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0ODJhNzAxLWI1ODUtNDM4OC1iOWM4LWUwNWEzYTI0MGYyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEhcwDQYJKoZIhvcNAQELBQADggEBAINiYfBTLDOhy1ct0CSaYaqdu3m9 jtWGmc6nIp5HW9JaW8Qr58ffiAPrKIUHYLjHtzrfE4U556gx0gVopoknTodhwFwM 5A5LSncE3/eHii48J/5lY0fAPbBvhjdOQs59Qt76rSz2QSk6R+gXB5772eeiyirl tIKeV9PeF8cSh5qX5Td0VZ8lv9ohkd8puQR6CTtqLQepytl0iqOMYbs77cJjzGAj gMp6dG92PdAY+Zo4anmI5Vs8IsiPsXQSgVSAH0Ku8DXjHOTDYZ0tpF9kGTsiyWlD 0xVx2N8rkIcDgoaoZ0i5zYIPf/r0KCSlVD/f8IhKhhW+WEl196z7k5WMEns= -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:27 2024 by rpki-client on console-ams.rpki-client.org