$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc24592b-b837-4433-a01c-d44a5b7e6a34.roa File: bc24592b-b837-4433-a01c-d44a5b7e6a34.roa (raw, json) Hash identifier: egO5SfB3ou6Q4cVcj4rWBQS5+MwQAHZb4MsZhG9F6Eg= Subject key identifier: 7C:2E:3A:A6:11:68:24:39:69:62:85:44:A7:87:76:81:1F:C5:35:14 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 093588E88D72A90E2D0094F63CF29DF2D6AD473D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc24592b-b837-4433-a01c-d44a5b7e6a34.roa Signing time: Sat 02 Nov 2024 00:00:00 +0000 ROA not before: Sat 02 Nov 2024 00:00:00 +0000 ROA not after: Sat 07 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 157.175.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:35:88:e8:8d:72:a9:0e:2d:00:94:f6:3c:f2:9d:f2:d6:ad:47:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 2 00:00:00 2024 GMT Not After : Dec 7 23:59:59 2024 GMT Subject: serialNumber=6f13e9e0240be747dd8e7552bf03ce3b9484c1c06d07bb337b53ae2f40424082, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ce:df:e1:1b:d7:3b:8f:ae:64:df:f8:2e:11: 8e:7f:38:25:c0:75:18:dc:7a:d4:f0:ac:ed:1c:34: a4:33:d9:76:a1:0b:95:3d:8c:73:9d:f1:80:68:3f: ca:cb:2f:61:1c:75:27:e0:48:8d:28:be:67:9f:99: fe:2e:99:bd:83:13:41:5a:a8:db:72:f0:f1:1a:39: b1:83:46:73:6a:33:cf:c2:cf:2c:d6:a1:de:85:53: 6b:2f:d5:ce:34:cc:47:45:c5:c0:bb:0b:81:e4:17: 5b:ad:8f:cd:d6:b7:6a:ac:ab:39:92:7c:be:c2:b2: 4e:3a:a5:c2:b2:b8:14:6e:fc:64:cc:b5:b7:6b:35: a9:3e:a3:b9:25:01:08:14:36:12:26:00:b4:9f:0a: 6c:15:92:32:3a:ff:be:c6:2d:af:bf:a6:09:a2:17: 68:df:9b:fa:8b:00:85:d5:17:c6:ca:3a:80:50:03: 76:6b:54:cf:fa:4c:a4:67:40:44:19:66:b2:49:3d: e7:6e:37:ac:b5:b8:7e:b7:cc:39:78:56:4b:47:0b: 1c:2f:e4:1e:6b:54:7d:fd:4b:7d:a8:49:f7:c2:71: ad:26:12:fd:01:3d:80:a7:01:ab:5c:f7:bc:be:9a: e5:89:14:31:8e:08:ba:b3:9b:9c:2e:7f:77:05:87: 57:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:2E:3A:A6:11:68:24:39:69:62:85:44:A7:87:76:81:1F:C5:35:14 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc24592b-b837-4433-a01c-d44a5b7e6a34.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.175.0.0/16 Signature Algorithm: sha256WithRSAEncryption 99:6a:73:73:1d:de:7e:c1:a1:65:ec:ff:14:a3:2c:2c:1c:4f: 75:a7:9f:34:5b:52:d3:d1:ca:2f:5a:1a:3a:97:20:92:b4:01: 0a:3b:cb:65:bf:7f:c5:8b:e9:01:ab:10:d0:0b:1d:38:15:3f: db:55:d1:1a:7f:c1:1b:ab:27:26:8a:d4:42:90:0b:33:6b:7b: 7d:cc:2a:cf:54:69:ef:7e:41:b9:e3:6c:7c:c1:7d:6b:eb:c1: 8c:da:27:16:82:03:08:ab:56:b9:83:5e:c7:4f:df:f0:13:b5: 14:e5:50:e6:67:9c:55:14:e2:f0:ee:9d:18:ce:ee:8a:b7:26: 3c:41:ae:09:da:4b:2d:fa:f7:9b:9b:d6:e8:e0:12:70:bb:bb: c3:ab:9c:5e:63:53:43:9a:92:d5:fb:47:f7:6a:90:16:fd:d8: da:79:32:38:f4:13:2f:b6:e1:01:81:7a:37:27:7c:5b:4b:fe: 1e:a9:93:0f:13:51:b5:bf:f8:81:bd:75:7f:c2:88:f9:f0:77: 29:92:97:b5:a9:97:2d:8d:4c:1d:70:ad:23:7b:dd:4d:6a:29: 58:80:05:f7:ca:ee:48:e4:22:46:44:e7:3a:af:d3:3c:da:63: 72:61:c5:f7:62:d6:a5:85:c4:64:6e:58:67:47:0c:29:5a:0f: 1a:d8:ef:13 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCTWI6I1yqQ4tAJT2PPKd8tatRz0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAyMDAwMDAwWhcNMjQxMjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZjEzZTllMDI0MGJlNzQ3ZGQ4ZTc1NTJiZjAzY2UzYjk0 ODRjMWMwNmQwN2JiMzM3YjUzYWUyZjQwNDI0MDgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1zt/hG9c7j65k3/guEY5/OCXAdRjcetTwrO0cNKQz2Xah C5U9jHOd8YBoP8rLL2EcdSfgSI0ovmefmf4umb2DE0FaqNty8PEaObGDRnNqM8/C zyzWod6FU2sv1c40zEdFxcC7C4HkF1utj83Wt2qsqzmSfL7Csk46pcKyuBRu/GTM tbdrNak+o7klAQgUNhImALSfCmwVkjI6/77GLa+/pgmiF2jfm/qLAIXVF8bKOoBQ A3ZrVM/6TKRnQEQZZrJJPeduN6y1uH63zDl4VktHCxwv5B5rVH39S32oSffCca0m Ev0BPYCnAatc97y+muWJFDGOCLqzm5wuf3cFh1dDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfC46phFoJDlpYoVEp4d2gR/FNRQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjMjQ1OTJiLWI4MzctNDQzMy1hMDFjLWQ0NGE1YjdlNmEzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCdrzANBgkqhkiG9w0BAQsFAAOCAQEAmWpzcx3efsGhZez/FKMsLBxPdaef NFtS09HKL1oaOpcgkrQBCjvLZb9/xYvpAasQ0AsdOBU/21XRGn/BG6snJorUQpAL M2t7fcwqz1Rp735BueNsfMF9a+vBjNonFoIDCKtWuYNex0/f8BO1FOVQ5mecVRTi 8O6dGM7uircmPEGuCdpLLfr3m5vW6OAScLu7w6ucXmNTQ5qS1ftH92qQFv3Y2nky OPQTL7bhAYF6Nyd8W0v+HqmTDxNRtb/4gb11f8KI+fB3KZKXtamXLY1MHXCtI3vd TWopWIAF98ruSOQiRkTnOq/TPNpjcmHF92LWpYXEZG5YZ0cMKVoPGtjvEw== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:27 2024 by rpki-client on console-ams.rpki-client.org