$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c204c245-81a8-4ecc-8710-73a58cce8ccf.roa File: c204c245-81a8-4ecc-8710-73a58cce8ccf.roa (raw, json) Hash identifier: jRVoDDrRj1PxdhoOaaoY4yMsmAgYlSIVN3QdjR4cA04= Subject key identifier: A8:F2:FF:C1:32:2C:C9:78:73:30:EC:49:26:08:16:22:24:5C:E8:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43B675EC5AA90FCCE593B3853219DF4F6EE4944A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c204c245-81a8-4ecc-8710-73a58cce8ccf.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.20.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:b6:75:ec:5a:a9:0f:cc:e5:93:b3:85:32:19:df:4f:6e:e4:94:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=f898c1259160aaa0bd6cf105f95925e653e9f8c714745afbb169ad08157c2086, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:04:82:cf:49:18:57:60:81:e3:38:77:c9:32: cc:18:2d:5e:dd:07:16:47:6a:85:c5:e5:28:88:6d: 61:f7:0c:79:f0:e7:b6:31:ee:4b:b1:50:e7:7a:6d: fd:c4:d1:9b:6f:c6:b4:a5:57:ec:bc:00:55:c3:0f: 80:5c:f5:11:7e:d9:bb:7f:6f:60:d8:a0:a2:e8:87: 13:91:f3:3b:8a:47:20:7e:59:36:36:53:c6:d3:89: 4c:31:49:38:7f:50:ed:a0:e9:75:00:a7:57:19:25: 56:19:87:e9:2f:1e:ec:b5:bc:b9:4f:e9:59:02:66: 0c:c3:c8:10:b5:50:c5:19:44:99:93:c6:76:ad:93: 84:46:94:c1:55:be:69:ae:de:a1:04:cb:05:9f:81: f6:55:dd:27:5f:4c:f6:7d:aa:92:d7:25:0d:2d:06: 17:c8:ad:7c:20:53:c9:fc:97:3d:f1:16:67:d8:7c: 14:ef:20:3b:4b:fd:a0:b8:0a:d8:56:4d:18:2a:b2: 5f:d0:bb:4c:cc:36:b5:82:de:a4:a7:19:7a:2b:02: d6:c5:ca:e8:62:27:c9:4f:04:ad:d4:ff:46:3b:3c: ce:2e:88:5e:74:70:5c:a7:2d:33:88:ab:a3:94:af: 44:c8:8e:ac:09:fb:3d:1a:4c:dd:e7:96:d9:88:3a: e4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F2:FF:C1:32:2C:C9:78:73:30:EC:49:26:08:16:22:24:5C:E8:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c204c245-81a8-4ecc-8710-73a58cce8ccf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 55:6c:5f:a0:02:9d:57:81:ce:d4:f6:e4:0f:87:b8:79:9f:f0: 90:bc:2c:a1:5a:08:28:a6:38:02:1e:0f:81:45:69:fa:87:52: 26:e0:51:0c:76:2e:c3:b8:ac:4a:da:d1:44:cc:f3:13:66:a4: e9:a1:44:e7:a0:ed:b1:c5:02:69:e2:0e:33:56:57:64:58:99: 2a:ce:94:5f:d4:fa:00:3c:bc:f6:21:0e:fe:02:92:d8:b8:61: 81:70:cd:1a:71:0f:55:2f:6e:c6:51:e5:26:08:a3:d3:1a:8e: 55:eb:9f:59:cf:5a:7d:b2:8a:d2:65:45:08:15:74:ff:df:00: 6e:1b:86:ee:9a:23:00:a7:45:03:89:c1:42:0f:fa:1f:3a:9c: 90:b1:f0:e1:97:f6:57:93:7c:08:ad:32:9b:4b:1e:2e:28:bd: f7:39:27:47:8d:d0:09:dc:28:db:6b:31:c7:29:0b:50:2e:27: 3a:1b:e8:fa:5e:14:b6:fe:a4:60:b1:32:45:6f:9c:1c:a2:11: af:a8:99:18:1e:62:54:1a:8f:c2:73:a7:97:78:5d:bd:ee:7b: cf:1b:f1:2e:ad:ff:ff:71:c2:4a:b0:04:92:21:e4:77:04:63: 54:bb:36:8b:2c:59:18:f3:14:5b:df:6d:7a:9d:2b:48:e5:30: f3:c9:0e:f4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQ7Z17FqpD8zlk7OFMhnfT27klEowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmODk4YzEyNTkxNjBhYWEwYmQ2Y2YxMDVmOTU5MjVlNjUz ZTlmOGM3MTQ3NDVhZmJiMTY5YWQwODE1N2MyMDg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2BILPSRhXYIHjOHfJMswYLV7dBxZHaoXF5SiIbWH3DHnw 57Yx7kuxUOd6bf3E0ZtvxrSlV+y8AFXDD4Bc9RF+2bt/b2DYoKLohxOR8zuKRyB+ WTY2U8bTiUwxSTh/UO2g6XUAp1cZJVYZh+kvHuy1vLlP6VkCZgzDyBC1UMUZRJmT xnatk4RGlMFVvmmu3qEEywWfgfZV3SdfTPZ9qpLXJQ0tBhfIrXwgU8n8lz3xFmfY fBTvIDtL/aC4CthWTRgqsl/Qu0zMNrWC3qSnGXorAtbFyuhiJ8lPBK3U/0Y7PM4u iF50cFynLTOIq6OUr0TIjqwJ+z0aTN3nltmIOuRfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqPL/wTIsyXhzMOxJJggWIiRc6LAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMDRjMjQ1LTgxYTgtNGVjYy04NzEwLTczYTU4Y2NlOGNjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFDANBgkqhkiG9w0BAQsFAAOCAQEAVWxfoAKdV4HO1PbkD4e4eZ/wkLws oVoIKKY4Ah4PgUVp+odSJuBRDHYuw7isStrRRMzzE2ak6aFE56DtscUCaeIOM1ZX ZFiZKs6UX9T6ADy89iEO/gKS2LhhgXDNGnEPVS9uxlHlJgij0xqOVeufWc9afbKK 0mVFCBV0/98AbhuG7pojAKdFA4nBQg/6HzqckLHw4Zf2V5N8CK0ym0seLii99zkn R43QCdwo22sxxykLUC4nOhvo+l4Utv6kYLEyRW+cHKIRr6iZGB5iVBqPwnOnl3hd ve57zxvxLq3//3HCSrAEkiHkdwRjVLs2iyxZGPMUW99tep0rSOUw88kO9A== -----END CERTIFICATE-----Generated at Fri Nov 22 04:03:09 2024 by rpki-client on console-ams.rpki-client.org