$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c150e7f4-181f-445e-802b-e1f3b4d4acd5.roa File: c150e7f4-181f-445e-802b-e1f3b4d4acd5.roa (raw, json) Hash identifier: 7Hxxzg9rEx46wgOt6sdzNDoJWUEmJWnA5sjmyBuWxaQ= Subject key identifier: 36:C9:A4:EE:40:53:74:AC:FA:89:7B:B3:F4:0D:5B:66:1C:8C:A1:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63B6075D5BF9E0B89ABC9A7C65B9C93225C410A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c150e7f4-181f-445e-802b-e1f3b4d4acd5.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 128.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:b6:07:5d:5b:f9:e0:b8:9a:bc:9a:7c:65:b9:c9:32:25:c4:10:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=70fc1214166475ff32acd1074bbd2d1a6477c7df01308f5fffcfa0c40a910fc3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:82:5e:45:29:43:be:61:6b:f1:43:35:34:82: b9:2d:b2:ca:ae:1f:6b:62:87:80:fc:fc:f0:a5:03: 61:ca:ba:92:44:4a:5b:28:b7:08:bd:a8:2e:3e:b5: 4f:58:89:d6:42:df:c2:98:f0:dc:11:af:aa:f5:0f: e9:75:57:2d:04:ec:48:e8:b1:6d:ee:e8:79:5f:3d: d1:74:ae:53:0a:9a:b1:a8:90:31:ed:cf:e0:c9:0d: e8:b2:ad:76:20:54:9b:8a:eb:e8:85:21:92:ef:a1: ff:d1:57:b6:60:aa:b0:32:68:36:65:cc:c6:cb:ed: 74:1d:14:e4:5f:fe:40:d1:fb:5a:73:53:21:14:62: 65:7c:51:7f:a3:3b:eb:53:af:c8:4e:a6:5e:5c:63: f6:fc:e3:80:f0:22:ba:eb:bf:25:6b:8d:80:eb:88: 72:95:40:48:2a:33:ab:f2:17:88:a8:e2:65:ce:7c: f4:49:5b:80:25:28:0a:bb:f2:fb:07:97:0d:6d:78: 3f:7b:68:bc:35:49:29:fc:8e:6c:b4:bd:f2:4d:1c: 42:6b:5d:c7:c3:f1:36:ad:5b:5d:3c:3d:26:42:81: d1:6d:a2:72:1e:4b:b9:b1:83:fe:e3:66:62:bd:c6: cb:65:5f:71:c6:30:68:f3:14:3b:d0:ff:89:35:7e: bd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C9:A4:EE:40:53:74:AC:FA:89:7B:B3:F4:0D:5B:66:1C:8C:A1:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c150e7f4-181f-445e-802b-e1f3b4d4acd5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7f:21:f5:1f:d4:c1:69:90:87:dc:a2:51:6b:ee:2e:cb:d8:d6: ca:ca:11:dc:e4:34:80:11:a9:0d:d3:24:b8:2f:58:2d:d1:98: 1b:eb:a6:31:9b:66:97:8b:71:d4:14:59:b4:98:91:9d:19:92: 8e:2f:e4:ba:20:c6:c1:56:08:0f:93:7a:46:b5:d4:de:4a:5a: 6f:39:cd:e6:b0:5c:e6:9d:d7:2f:25:06:24:11:51:f6:9c:b1: 99:79:7d:bd:ae:77:88:56:b9:13:b1:18:ed:7d:01:36:14:67: b0:94:be:65:aa:f7:2b:11:4f:b3:e1:a1:2d:ff:8e:61:4d:5c: 38:15:f4:c1:89:58:e1:4a:97:d4:93:77:dc:8d:fa:55:55:0d: 32:8b:00:9e:db:fb:7c:b3:29:b1:86:c5:50:e8:1b:3c:d5:8b: 36:8b:7c:65:a3:36:e5:2f:69:69:fc:56:f1:a3:6f:9c:00:fe: 21:5f:c9:e1:d6:91:7c:2c:ab:2b:d8:9a:4c:10:07:ff:c2:ee: d8:cc:dd:10:00:18:93:8b:92:23:7b:b1:82:7c:b2:79:58:25: 87:09:32:20:1c:5c:d1:42:6f:14:e8:e7:ed:72:9d:9f:ea:56: 57:62:20:56:c4:d3:01:ea:91:f6:14:4a:6f:6e:11:37:64:52: e2:e3:40:f3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUY7YHXVv54LiavJp8ZbnJMiXEEKAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MGZjMTIxNDE2NjQ3NWZmMzJhY2QxMDc0YmJkMmQxYTY0 NzdjN2RmMDEzMDhmNWZmZmNmYTBjNDBhOTEwZmMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNgl5FKUO+YWvxQzU0grktssquH2tih4D8/PClA2HKupJE Slsotwi9qC4+tU9YidZC38KY8NwRr6r1D+l1Vy0E7EjosW3u6HlfPdF0rlMKmrGo kDHtz+DJDeiyrXYgVJuK6+iFIZLvof/RV7ZgqrAyaDZlzMbL7XQdFORf/kDR+1pz UyEUYmV8UX+jO+tTr8hOpl5cY/b844DwIrrrvyVrjYDriHKVQEgqM6vyF4io4mXO fPRJW4AlKAq78vsHlw1teD97aLw1SSn8jmy0vfJNHEJrXcfD8TatW108PSZCgdFt onIeS7mxg/7jZmK9xstlX3HGMGjzFDvQ/4k1fr1tAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNsmk7kBTdKz6iXuz9A1bZhyMoeAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxNTBlN2Y0LTE4MWYtNDQ1ZS04MDJiLWUxZjNiNGQ0YWNkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCAFTANBgkqhkiG9w0BAQsFAAOCAQEAfyH1H9TBaZCH3KJRa+4uy9jWysoR 3OQ0gBGpDdMkuC9YLdGYG+umMZtml4tx1BRZtJiRnRmSji/kuiDGwVYID5N6RrXU 3kpabznN5rBc5p3XLyUGJBFR9pyxmXl9va53iFa5E7EY7X0BNhRnsJS+Zar3KxFP s+GhLf+OYU1cOBX0wYlY4UqX1JN33I36VVUNMosAntv7fLMpsYbFUOgbPNWLNot8 ZaM25S9pafxW8aNvnAD+IV/J4daRfCyrK9iaTBAH/8Lu2MzdEAAYk4uSI3uxgnyy eVglhwkyIBxc0UJvFOjn7XKdn+pWV2IgVsTTAeqR9hRKb24RN2RS4uNA8w== -----END CERTIFICATE-----Generated at Fri Nov 22 04:03:09 2024 by rpki-client on console-ams.rpki-client.org