$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bdc72e72-b460-42f1-bf2c-6b34dbfd59f5.roa File: bdc72e72-b460-42f1-bf2c-6b34dbfd59f5.roa (raw, json) Hash identifier: c0IcPpFIu7BQGxViy6G+raXcxmfOy2qsFFZCPBUP/KY= Subject key identifier: EB:06:FA:F3:6C:D5:FB:1B:F8:A0:B7:4E:7C:23:2A:F7:1D:9F:AA:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2381F2E7F0238E261BF09B72EA648188246D2F4F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bdc72e72-b460-42f1-bf2c-6b34dbfd59f5.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 40.234.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:81:f2:e7:f0:23:8e:26:1b:f0:9b:72:ea:64:81:88:24:6d:2f:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=72837ca1370f2955df0cdc02dc11ee787451f8de482dfc6af420c33f2b3c9574, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7b:d1:f6:2f:88:01:89:1f:5f:39:c9:01:e8: a1:bd:58:42:35:35:a9:21:07:87:53:56:8b:f1:8e: eb:12:e1:be:13:ad:ef:8f:ba:19:0e:2c:ff:b4:fd: 2a:33:bc:12:5a:b4:34:78:af:80:48:a6:5f:f6:0d: ee:7c:46:83:ce:9a:35:4e:48:94:a4:bd:31:03:9c: b2:bb:16:e2:c5:23:7c:dc:0e:b4:37:a6:4b:0e:a7: 8e:46:6a:a7:d9:03:1c:8c:b9:16:d0:1a:b3:f8:92: 33:30:c6:fe:6f:37:66:d1:65:85:35:75:f4:41:ea: fb:07:cf:bd:fc:10:90:7d:f2:f4:1a:08:5a:06:7c: b1:0f:05:6a:23:34:84:5a:0f:de:3b:87:ae:59:2b: 4a:a4:48:96:eb:86:1e:7f:47:de:69:c3:26:e0:b1: e0:de:0e:19:8f:ed:27:0a:bd:f8:52:1a:99:1d:54: ee:1f:aa:df:60:cd:9a:ac:93:34:b8:31:a4:75:06: de:8e:ed:aa:f5:40:b9:fc:34:84:9a:6f:42:2b:a8: b1:d6:57:f4:e5:f3:8c:a3:20:f2:db:f4:3f:d2:67: 06:c6:6d:1a:6f:4c:59:fe:7a:13:9a:de:ee:e1:27: 3f:52:45:e3:21:a7:13:15:e5:d3:ec:73:37:f0:3c: dd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:06:FA:F3:6C:D5:FB:1B:F8:A0:B7:4E:7C:23:2A:F7:1D:9F:AA:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bdc72e72-b460-42f1-bf2c-6b34dbfd59f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.234.0.0/16 Signature Algorithm: sha256WithRSAEncryption a4:6a:d7:a5:66:cc:ec:c6:23:4a:0b:4d:e6:82:69:05:c0:65: bd:dc:18:94:74:91:c5:53:ea:0c:ba:c1:98:28:f3:1b:50:27: 43:3a:56:22:38:7f:bb:be:92:c8:b4:89:cb:14:23:48:a2:73: 5d:b4:e7:42:14:98:a9:41:9d:a7:0c:98:eb:3e:ab:c6:18:14: 2c:99:f8:08:63:50:77:36:47:f2:6b:d6:3d:38:5d:99:0a:b4: ce:2b:66:30:12:60:e1:84:07:0c:8a:a9:db:6c:21:e8:fa:8a: b2:e6:f2:33:4f:4d:a4:91:e1:5f:ab:39:d5:62:bd:53:f3:71: 31:71:91:34:34:d1:f5:aa:9d:1a:ba:37:42:c6:27:3c:24:26: 2e:e9:f1:4a:79:6d:60:f5:c8:87:8d:9e:9e:31:5b:54:33:26: 36:26:92:f7:fc:c1:ec:f4:a3:33:62:7d:fd:81:3b:94:16:13: 9f:73:0f:05:5b:ac:d7:18:9f:42:1b:34:11:98:d9:7b:b7:57: 1d:a9:f1:22:36:73:af:4d:4c:3b:4d:95:ad:f9:b0:79:d0:6a: 20:b0:51:a4:ae:aa:65:47:16:a1:00:44:f4:b1:82:ba:58:a5: 8a:6a:a5:e1:95:53:93:45:1d:9a:d1:26:5b:d0:5f:a7:c4:01: 66:c8:4a:d7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI4Hy5/AjjiYb8Jty6mSBiCRtL08wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjgzN2NhMTM3MGYyOTU1ZGYwY2RjMDJkYzExZWU3ODc0 NTFmOGRlNDgyZGZjNmFmNDIwYzMzZjJiM2M5NTc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDge9H2L4gBiR9fOckB6KG9WEI1NakhB4dTVovxjusS4b4T re+PuhkOLP+0/SozvBJatDR4r4BIpl/2De58RoPOmjVOSJSkvTEDnLK7FuLFI3zc DrQ3pksOp45GaqfZAxyMuRbQGrP4kjMwxv5vN2bRZYU1dfRB6vsHz738EJB98vQa CFoGfLEPBWojNIRaD947h65ZK0qkSJbrhh5/R95pwybgseDeDhmP7ScKvfhSGpkd VO4fqt9gzZqskzS4MaR1Bt6O7ar1QLn8NISab0IrqLHWV/Tl84yjIPLb9D/SZwbG bRpvTFn+ehOa3u7hJz9SReMhpxMV5dPsczfwPN0dAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6wb682zV+xv4oLdOfCMq9x2fqh4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JkYzcyZTcyLWI0NjAtNDJmMS1iZjJjLTZiMzRkYmZkNTlmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo6jANBgkqhkiG9w0BAQsFAAOCAQEApGrXpWbM7MYjSgtN5oJpBcBlvdwY lHSRxVPqDLrBmCjzG1AnQzpWIjh/u76SyLSJyxQjSKJzXbTnQhSYqUGdpwyY6z6r xhgULJn4CGNQdzZH8mvWPThdmQq0zitmMBJg4YQHDIqp22wh6PqKsubyM09NpJHh X6s51WK9U/NxMXGRNDTR9aqdGro3QsYnPCQmLunxSnltYPXIh42enjFbVDMmNiaS 9/zB7PSjM2J9/YE7lBYTn3MPBVus1xifQhs0EZjZe7dXHanxIjZzr01MO02Vrfmw edBqILBRpK6qZUcWoQBE9LGCulilimql4ZVTk0UdmtEmW9Bfp8QBZshK1w== -----END CERTIFICATE-----Generated at Fri Nov 22 04:03:08 2024 by rpki-client on console-ams.rpki-client.org