$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8a1d699-66bf-4eac-bb45-6e3527625d81.roa File: b8a1d699-66bf-4eac-bb45-6e3527625d81.roa (raw, json) Hash identifier: tRed3arZs+gzdaPyzlrf1q8oV5mwgYrHvGSeYzLR/Lk= Subject key identifier: CC:2D:EB:03:48:DC:96:78:3A:17:17:F0:AF:D3:14:25:2D:EF:2C:74 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D1036BDE428B4EBBB1B715D6EE13534D8FB2092 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8a1d699-66bf-4eac-bb45-6e3527625d81.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 192.43.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:10:36:bd:e4:28:b4:eb:bb:1b:71:5d:6e:e1:35:34:d8:fb:20:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=5ab3ff28a3015afb402498a04341ca9383fecb019c84d4cbeb903fd8e900336c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d8:6d:87:60:d1:2b:06:0a:6d:6c:8e:2b:ad: 0b:71:53:f1:85:b7:df:13:33:b2:f9:14:89:6b:3c: 77:19:fa:45:cb:37:7e:db:07:c0:c1:12:85:dc:90: d3:52:a1:2c:bd:2c:28:c0:b1:c0:ba:75:f0:96:44: 74:83:6c:b1:e8:53:bb:7b:54:74:52:dd:65:56:59: b2:19:92:b6:23:5a:93:cc:1b:3b:96:f7:0a:64:64: 27:34:a6:23:20:cf:3a:57:1a:19:fb:6b:99:19:19: 19:06:92:fd:c4:65:58:56:7b:2a:a9:a2:77:2f:d6: 8c:bf:90:74:3b:60:54:36:57:1c:59:ad:6e:2c:41: 3f:cf:eb:1c:2c:96:f5:a3:7f:f0:55:e3:d1:c0:ee: 33:0d:d6:fd:63:99:41:79:a9:ad:6e:27:e0:21:c4: e0:fa:50:4d:4d:48:68:72:ce:05:93:ad:1b:c5:47: ab:72:b2:cf:ab:47:cd:ce:19:9b:07:dd:a4:3f:8e: 22:fa:15:ae:a9:17:2e:94:f6:b9:18:96:62:7a:af: 0f:f6:a2:69:4a:aa:fe:21:53:c0:10:2b:4c:18:2e: ad:2e:0c:5c:ad:46:7a:f0:7d:fe:10:2d:bc:36:74: 01:98:8f:3d:74:f0:1b:6b:34:95:67:06:1d:60:cf: 0d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:2D:EB:03:48:DC:96:78:3A:17:17:F0:AF:D3:14:25:2D:EF:2C:74 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8a1d699-66bf-4eac-bb45-6e3527625d81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.43.184.0/24 Signature Algorithm: sha256WithRSAEncryption d3:31:24:58:f4:38:86:c5:ca:cf:a3:aa:4e:14:97:8f:03:81: db:17:b0:30:82:89:63:ce:ca:b2:81:13:f2:41:a3:2c:31:39: 7f:da:b8:03:49:c1:55:45:e1:47:81:27:ee:f8:ce:2e:ac:55: 26:fb:04:16:41:aa:6b:0a:62:41:76:8e:1a:68:23:17:95:a2: 26:38:d7:90:58:cc:f9:00:8c:0d:42:02:7f:66:7c:a9:97:7a: e7:9c:4d:74:79:2e:1b:d8:d5:69:35:57:00:9d:6a:f2:7a:91: ef:d6:b8:83:b9:20:23:28:f3:4e:06:5a:cf:1c:f1:a5:b4:ee: 3a:28:8f:b0:82:3c:88:da:74:f8:56:13:cc:10:91:df:b7:58: 85:3c:78:ca:2c:57:18:bb:c9:38:95:01:30:a1:6f:15:74:a3: 16:fd:77:a5:f9:08:01:72:f1:33:61:ab:03:05:25:f9:e5:7f: 2f:f3:5c:cb:b0:30:df:ae:cb:b5:6d:84:a2:5f:aa:41:b9:37: 6b:2f:fe:c5:f6:e0:9c:9e:73:6d:92:90:27:71:ff:e7:7a:a6: ae:18:2f:e1:b2:22:1e:a9:35:ab:0e:7b:ba:19:38:1a:6f:f1: 5d:16:49:1d:3e:83:9f:9f:19:88:a7:e6:d6:a0:e7:53:b4:2f: e0:72:cd:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTRA2veQotOu7G3FdbuE1NNj7IJIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YWIzZmYyOGEzMDE1YWZiNDAyNDk4YTA0MzQxY2E5Mzgz ZmVjYjAxOWM4NGQ0Y2JlYjkwM2ZkOGU5MDAzMzZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl2G2HYNErBgptbI4rrQtxU/GFt98TM7L5FIlrPHcZ+kXL N37bB8DBEoXckNNSoSy9LCjAscC6dfCWRHSDbLHoU7t7VHRS3WVWWbIZkrYjWpPM GzuW9wpkZCc0piMgzzpXGhn7a5kZGRkGkv3EZVhWeyqponcv1oy/kHQ7YFQ2VxxZ rW4sQT/P6xwslvWjf/BV49HA7jMN1v1jmUF5qa1uJ+AhxOD6UE1NSGhyzgWTrRvF R6tyss+rR83OGZsH3aQ/jiL6Fa6pFy6U9rkYlmJ6rw/2omlKqv4hU8AQK0wYLq0u DFytRnrwff4QLbw2dAGYjz108BtrNJVnBh1gzw3/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzC3rA0jclng6Fxfwr9MUJS3vLHQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4YTFkNjk5LTY2YmYtNGVhYy1iYjQ1LTZlMzUyNzYyNWQ4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAK7gwDQYJKoZIhvcNAQELBQADggEBANMxJFj0OIbFys+jqk4Ul48DgdsX sDCCiWPOyrKBE/JBoywxOX/auANJwVVF4UeBJ+74zi6sVSb7BBZBqmsKYkF2jhpo IxeVoiY415BYzPkAjA1CAn9mfKmXeuecTXR5LhvY1Wk1VwCdavJ6ke/WuIO5ICMo 804GWs8c8aW07jooj7CCPIjadPhWE8wQkd+3WIU8eMosVxi7yTiVATChbxV0oxb9 d6X5CAFy8TNhqwMFJfnlfy/zXMuwMN+uy7VthKJfqkG5N2sv/sX24Jyec22SkCdx /+d6pq4YL+GyIh6pNasOe7oZOBpv8V0WSR0+g5+fGYin5tag51O0L+Byzas= -----END CERTIFICATE-----Generated at Fri Nov 22 04:03:07 2024 by rpki-client on console-ams.rpki-client.org