$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2657b36-9417-4838-b13e-541841e2a18f.roa File: c2657b36-9417-4838-b13e-541841e2a18f.roa (raw, json) Hash identifier: lcduCfI/gTPvDavGWaBonDbFi0c2TKBEvqjzMI2lqb0= Subject key identifier: 46:E9:11:FA:5B:7F:40:FE:46:C7:70:4B:AE:B3:5F:5B:BB:10:84:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A232CFA02F2DD3FD6C4FA1D36FD839E16B13BBC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2657b36-9417-4838-b13e-541841e2a18f.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 216.182.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:23:2c:fa:02:f2:dd:3f:d6:c4:fa:1d:36:fd:83:9e:16:b1:3b:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=82b03d6bb4d64cde529e3ad69ed674158441df6806c7a1eee2923f12162360a1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d7:76:2e:53:74:83:1d:15:f2:ab:04:b7:fe: 45:e6:e9:24:09:7b:c7:98:42:5e:1d:53:68:1f:5e: 32:7f:6b:4d:3f:9e:5e:76:62:c1:31:7a:ec:e6:12: 77:d0:20:8b:5f:f8:8f:8d:f3:0f:b9:ae:07:01:44: dc:a4:7b:db:e7:eb:49:7c:a7:70:68:09:a4:4e:dc: ac:eb:7b:ad:98:e1:5f:98:0c:3f:a9:f1:8d:27:a1: 31:b3:b7:fd:6e:6f:48:d9:1f:8b:ae:e5:f6:89:15: b2:38:ea:6c:71:91:71:c5:49:e5:01:0f:3a:83:09: fd:47:46:78:78:3f:ad:fc:7f:c8:6e:62:e6:2f:ac: e9:bb:30:c3:67:23:88:a2:c3:b4:21:ea:a0:f5:d5: 88:3a:1c:dc:bc:46:ed:a4:e4:da:eb:e0:90:da:d4: 90:57:c5:25:c7:7f:c2:e0:d4:56:93:c7:73:c1:e4: 54:83:45:bd:d7:c4:ec:a6:a6:c7:ca:34:54:a6:77: 13:91:9d:e3:be:75:dc:77:ca:5f:29:41:60:44:44: da:a9:b1:83:98:2a:69:13:99:da:36:8e:18:53:29: 6c:04:58:61:5e:11:4c:16:a1:53:e4:53:bb:c0:8b: b1:39:54:81:de:90:67:c5:ca:a0:a1:56:33:71:a8: 88:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E9:11:FA:5B:7F:40:FE:46:C7:70:4B:AE:B3:5F:5B:BB:10:84:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2657b36-9417-4838-b13e-541841e2a18f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.182.224.0/20 Signature Algorithm: sha256WithRSAEncryption bf:42:cf:e9:0c:61:5f:bd:69:97:7a:d9:cb:6f:b1:a1:bd:28: 56:4e:25:ea:7d:cc:72:fc:2e:69:b9:cc:cc:4d:b4:60:31:fa: f4:19:ed:ad:9b:06:ff:09:b9:a2:e2:15:2e:ba:2a:79:a0:9c: 42:14:83:07:0e:a6:ed:10:03:1d:52:2b:6f:b2:7a:f8:bc:09: 52:12:73:45:79:2a:fd:f6:60:f7:c1:e8:97:9d:f2:5b:53:86: 95:75:25:bd:95:1a:bf:f4:d6:fd:02:b6:78:96:97:f5:fa:e3: e7:df:56:23:b0:6f:3a:99:d5:d8:89:e4:bd:35:13:e2:e3:2e: d1:fe:11:b0:07:38:b3:87:d8:77:7f:6d:38:60:52:cb:31:23: e4:c0:75:d1:77:64:f7:01:dd:f2:60:07:5b:5c:65:fd:8c:fb: 54:e9:ab:37:29:60:77:e4:ec:ed:f4:75:bc:d3:6b:ea:c9:c5: 7e:4b:e6:d3:64:6d:52:07:87:12:57:1a:eb:25:88:c7:49:de: 03:b0:0e:84:a8:86:59:df:65:31:0a:88:7a:51:d2:17:34:d7: f7:1f:38:cd:1d:b4:b0:13:c7:d4:c3:dc:29:88:31:e3:bb:8f: 4f:11:49:86:bc:8b:08:94:61:3f:d1:c9:c2:e7:bd:56:ef:43: 20:36:f5:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGiMs+gLy3T/WxPodNv2DnhaxO7wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MmIwM2Q2YmI0ZDY0Y2RlNTI5ZTNhZDY5ZWQ2NzQxNTg0 NDFkZjY4MDZjN2ExZWVlMjkyM2YxMjE2MjM2MGExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt13YuU3SDHRXyqwS3/kXm6SQJe8eYQl4dU2gfXjJ/a00/ nl52YsExeuzmEnfQIItf+I+N8w+5rgcBRNyke9vn60l8p3BoCaRO3Kzre62Y4V+Y DD+p8Y0noTGzt/1ub0jZH4uu5faJFbI46mxxkXHFSeUBDzqDCf1HRnh4P638f8hu YuYvrOm7MMNnI4iiw7Qh6qD11Yg6HNy8Ru2k5Nrr4JDa1JBXxSXHf8Lg1FaTx3PB 5FSDRb3XxOympsfKNFSmdxORneO+ddx3yl8pQWBERNqpsYOYKmkTmdo2jhhTKWwE WGFeEUwWoVPkU7vAi7E5VIHekGfFyqChVjNxqIgBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURukR+lt/QP5Gx3BLrrNfW7sQhEMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyNjU3YjM2LTk0MTctNDgzOC1iMTNlLTU0MTg0MWUyYTE4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATYtuAwDQYJKoZIhvcNAQELBQADggEBAL9Cz+kMYV+9aZd62ctvsaG9KFZO Jep9zHL8Lmm5zMxNtGAx+vQZ7a2bBv8JuaLiFS66KnmgnEIUgwcOpu0QAx1SK2+y evi8CVISc0V5Kv32YPfB6Jed8ltThpV1Jb2VGr/01v0CtniWl/X64+ffViOwbzqZ 1diJ5L01E+LjLtH+EbAHOLOH2Hd/bThgUssxI+TAddF3ZPcB3fJgB1tcZf2M+1Tp qzcpYHfk7O30dbzTa+rJxX5L5tNkbVIHhxJXGusliMdJ3gOwDoSohlnfZTEKiHpR 0hc01/cfOM0dtLATx9TD3CmIMeO7j08RSYa8iwiUYT/RycLnvVbvQyA29f4= -----END CERTIFICATE-----Generated at Fri Nov 22 04:03:09 2024 by rpki-client on console-ams.rpki-client.org