$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2cbf48f-091c-4637-b88f-49c63017d8c8.roa File: c2cbf48f-091c-4637-b88f-49c63017d8c8.roa (raw, json) Hash identifier: 1Nsl0nLMKVtzygJ2XLl3YDyqUY6ydO91qinKDr+pqSQ= Subject key identifier: 77:A7:99:D0:74:DC:09:85:19:98:E7:BC:42:D2:00:25:26:44:31:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 728D8D5B9E9BC257FC84C36884E567A72565F4E0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2cbf48f-091c-4637-b88f-49c63017d8c8.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:8d:8d:5b:9e:9b:c2:57:fc:84:c3:68:84:e5:67:a7:25:65:f4:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=fdcbd039855101c7f18a44c0f2a98c4227cb6771e6b3aa4681b3b2033446285b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b1:b0:3f:5f:26:d1:34:f3:7d:97:73:56:82: ab:0f:a1:82:3c:9f:86:fa:54:b0:68:e6:6e:e6:10: 25:ad:d9:99:7f:0c:48:d3:10:b4:c9:b0:21:ff:bd: b0:c5:c6:5b:9b:80:34:4d:0d:be:1a:c9:c1:59:f5: da:b3:11:2c:01:31:94:33:e8:f4:ff:ae:fb:2e:d9: 44:72:fb:d9:d2:83:cf:f4:6a:29:bf:bc:85:12:6e: 82:c7:05:d7:b0:b4:09:bb:26:da:35:d1:ec:69:48: 21:ec:2f:b1:0e:e2:f5:d8:b2:2e:62:fc:df:fb:69: 0d:05:81:c0:66:45:32:8f:c3:7d:6e:3a:5e:42:ed: ef:10:77:01:09:35:fe:17:89:99:37:fe:b6:66:63: 02:91:54:79:dc:91:7d:5b:fd:f5:d4:cf:49:b2:34: bb:71:eb:69:9e:c5:0d:c4:e9:74:ed:b4:a9:98:29: c9:4a:18:04:98:5d:c1:b6:bf:2b:88:84:d5:09:e2: 4c:aa:6d:2a:d5:f0:9d:8e:e2:5c:cb:93:ea:f4:5c: 6e:95:6e:be:fb:dc:81:cc:80:0d:3b:96:33:fb:e7: 1a:a7:8d:c8:75:ca:d3:49:64:15:a8:f2:f2:04:23: 56:9e:37:b0:65:57:2a:ee:17:7b:93:2c:58:6e:0f: 68:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A7:99:D0:74:DC:09:85:19:98:E7:BC:42:D2:00:25:26:44:31:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2cbf48f-091c-4637-b88f-49c63017d8c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.40.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:3b:c2:86:03:2b:f5:4b:c3:d6:c2:67:5f:c4:b5:72:33:6a: ef:c6:cc:76:fd:d2:b7:d7:d1:48:10:99:38:d3:37:1a:82:52: 91:80:87:e3:7d:00:56:0b:22:39:15:ae:c0:b6:c8:3b:4c:37: 8d:69:76:cd:37:ba:c4:bb:90:52:ca:02:81:d4:8b:ff:30:94: 68:94:6f:77:3b:0b:7e:4c:24:79:99:08:16:cc:5f:4a:9e:19: 41:34:63:54:fb:4a:42:32:9f:45:f5:5e:b8:88:bb:05:81:1b: c8:55:4b:62:dc:65:81:8e:e9:e9:2c:82:f5:ea:55:ed:4a:08: 22:a4:30:f3:4b:09:9f:9b:18:b5:71:82:1f:81:65:73:5a:5e: 09:9b:a3:67:73:9c:9d:5f:bb:86:b1:75:9a:4f:5e:f2:81:14: 47:d0:16:11:9f:50:39:bb:b9:ae:83:bc:32:28:c8:e1:fd:3d: e4:37:8d:a0:33:cc:46:30:62:c7:bb:eb:69:f3:32:f9:f9:a6: ca:bf:44:fc:37:a6:7a:7c:43:2a:c0:86:85:78:c9:d7:f1:d6: cb:d0:d7:4d:f2:21:60:44:bf:46:95:1c:72:8f:0c:72:15:f7: 0d:65:25:f4:1b:0f:ab:96:bb:8e:c9:37:df:f9:c3:5a:b9:7b: 5a:e9:af:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUco2NW56bwlf8hMNohOVnpyVl9OAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZGNiZDAzOTg1NTEwMWM3ZjE4YTQ0YzBmMmE5OGM0MjI3 Y2I2NzcxZTZiM2FhNDY4MWIzYjIwMzM0NDYyODViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYsbA/XybRNPN9l3NWgqsPoYI8n4b6VLBo5m7mECWt2Zl/ DEjTELTJsCH/vbDFxlubgDRNDb4aycFZ9dqzESwBMZQz6PT/rvsu2URy+9nSg8/0 aim/vIUSboLHBdewtAm7Jto10expSCHsL7EO4vXYsi5i/N/7aQ0FgcBmRTKPw31u Ol5C7e8QdwEJNf4XiZk3/rZmYwKRVHnckX1b/fXUz0myNLtx62mexQ3E6XTttKmY KclKGASYXcG2vyuIhNUJ4kyqbSrV8J2O4lzLk+r0XG6Vbr773IHMgA07ljP75xqn jch1ytNJZBWo8vIEI1aeN7BlVyruF3uTLFhuD2iLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUd6eZ0HTcCYUZmOe8QtIAJSZEMQUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyY2JmNDhmLTA5MWMtNDYzNy1iODhmLTQ5YzYzMDE3ZDhjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEQDCgwDQYJKoZIhvcNAQELBQADggEBAA87woYDK/VLw9bCZ1/EtXIzau/G zHb90rfX0UgQmTjTNxqCUpGAh+N9AFYLIjkVrsC2yDtMN41pds03usS7kFLKAoHU i/8wlGiUb3c7C35MJHmZCBbMX0qeGUE0Y1T7SkIyn0X1XriIuwWBG8hVS2LcZYGO 6eksgvXqVe1KCCKkMPNLCZ+bGLVxgh+BZXNaXgmbo2dznJ1fu4axdZpPXvKBFEfQ FhGfUDm7ua6DvDIoyOH9PeQ3jaAzzEYwYse762nzMvn5psq/RPw3pnp8QyrAhoV4 ydfx1svQ103yIWBEv0aVHHKPDHIV9w1lJfQbD6uWu47JN9/5w1q5e1rpr70= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:28 2024 by rpki-client on console-ams.rpki-client.org