$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca78e594-acaa-4280-9b9e-9f698472d6cb.roa File: ca78e594-acaa-4280-9b9e-9f698472d6cb.roa (raw, json) Hash identifier: /8wgTzrYlymhu2lc+dwoGHTh3ChrixO+1Lf2TORoNXA= Subject key identifier: 7F:C8:F5:4A:C1:82:51:8A:33:75:14:BE:52:22:F5:E2:FA:03:19:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1474E328FB47D5EE3462CB72331DE1A5776722F1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca78e594-acaa-4280-9b9e-9f698472d6cb.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 96.45.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:74:e3:28:fb:47:d5:ee:34:62:cb:72:33:1d:e1:a5:77:67:22:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=66d7ba4309d511c3db9a2aab323e5d6d687c0b0d9b43355a02a15a21dbb647b6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c4:55:c2:47:a6:23:f9:85:ba:a0:d9:d0:67: 7f:6a:13:9e:2e:66:5a:05:49:50:48:71:33:11:fc: a7:cd:ef:78:b7:0f:f5:11:b7:03:77:d0:c4:03:83: 94:ec:21:b3:a1:b3:4f:96:ec:00:15:66:98:ed:f1: 69:66:30:cc:ad:70:83:10:9e:88:d7:b7:a7:8f:7b: c4:f4:8b:9c:e2:72:8c:5a:2d:27:7a:0e:6d:b3:74: 96:1e:46:da:1b:47:c9:dd:60:06:86:75:14:bb:e1: 33:b3:db:2f:e9:e7:ed:81:df:1e:73:eb:f7:43:94: fc:f4:3b:20:0b:84:58:e8:67:4f:0e:f8:ae:9c:df: 4c:af:bd:75:a1:60:62:b8:66:17:72:ee:ef:e1:fe: c2:cf:8a:f4:77:79:e7:0c:c8:e6:2e:57:15:55:98: e5:65:3e:5d:26:f9:ed:d7:46:9e:c3:31:3d:a7:a6: 90:c6:d7:19:07:b3:f2:f8:09:ed:19:4e:e4:32:50: 0b:23:53:a5:86:24:2f:d8:f1:26:82:ce:58:83:a1: 91:5e:0a:e9:19:79:fb:32:2a:6a:df:25:88:33:44: f6:64:29:0a:46:f0:55:4c:6f:c5:d5:3f:4e:f9:52: 78:d1:e1:b8:d1:a5:76:8f:8f:a7:68:c9:43:df:38: 26:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C8:F5:4A:C1:82:51:8A:33:75:14:BE:52:22:F5:E2:FA:03:19:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca78e594-acaa-4280-9b9e-9f698472d6cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.45.160.0/20 Signature Algorithm: sha256WithRSAEncryption 5d:7f:89:69:8c:13:2e:48:3b:54:9a:a7:49:c6:d0:7f:ed:dc: 18:7d:8b:01:68:00:2b:bc:0d:b4:b8:63:ea:74:88:66:c5:67: d0:de:14:66:09:7c:2f:64:32:f2:bb:11:9e:eb:05:aa:ee:9a: 89:8e:ea:ef:cb:91:53:1e:b8:15:ba:82:02:1f:1c:99:1f:c3: 24:92:5e:25:51:06:3d:15:90:eb:e0:bb:2a:4a:13:ce:27:cb: 04:cd:05:3f:2c:f0:05:f5:f0:dc:59:06:55:d1:89:c6:7e:ea: 2e:33:41:44:83:48:cb:ed:26:f5:86:64:6e:8b:66:86:00:f5: 30:db:5e:55:cc:ea:21:c8:ca:d6:a4:ad:a6:a1:21:8a:a1:87: 61:94:64:ff:ec:8d:6b:b1:65:67:e3:ef:b1:66:47:d4:a4:53: 79:12:bf:8f:2e:32:7b:d4:98:a4:ad:51:33:62:99:37:74:85: f4:ca:da:18:ea:e5:de:cf:8c:eb:58:67:43:ae:67:5d:17:b2: df:3a:67:82:73:2b:76:27:e0:e2:9f:8d:f8:f2:30:0b:c0:d7: 3b:21:39:16:d0:86:31:8f:e7:1b:4a:33:72:76:f0:5a:43:f1: a6:ed:91:15:72:86:95:35:54:1f:da:49:bf:f0:04:61:0b:da: 9a:c4:ba:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFHTjKPtH1e40YstyMx3hpXdnIvEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NmQ3YmE0MzA5ZDUxMWMzZGI5YTJhYWIzMjNlNWQ2ZDY4 N2MwYjBkOWI0MzM1NWEwMmExNWEyMWRiYjY0N2I2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhxFXCR6Yj+YW6oNnQZ39qE54uZloFSVBIcTMR/KfN73i3 D/URtwN30MQDg5TsIbOhs0+W7AAVZpjt8WlmMMytcIMQnojXt6ePe8T0i5zicoxa LSd6Dm2zdJYeRtobR8ndYAaGdRS74TOz2y/p5+2B3x5z6/dDlPz0OyALhFjoZ08O +K6c30yvvXWhYGK4Zhdy7u/h/sLPivR3eecMyOYuVxVVmOVlPl0m+e3XRp7DMT2n ppDG1xkHs/L4Ce0ZTuQyUAsjU6WGJC/Y8SaCzliDoZFeCukZefsyKmrfJYgzRPZk KQpG8FVMb8XVP075UnjR4bjRpXaPj6doyUPfOCY1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf8j1SsGCUYozdRS+UiL14voDGcUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NhNzhlNTk0LWFjYWEtNDI4MC05YjllLTlmNjk4NDcyZDZjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARgLaAwDQYJKoZIhvcNAQELBQADggEBAF1/iWmMEy5IO1Sap0nG0H/t3Bh9 iwFoACu8DbS4Y+p0iGbFZ9DeFGYJfC9kMvK7EZ7rBarumomO6u/LkVMeuBW6ggIf HJkfwySSXiVRBj0VkOvguypKE84nywTNBT8s8AX18NxZBlXRicZ+6i4zQUSDSMvt JvWGZG6LZoYA9TDbXlXM6iHIytakraahIYqhh2GUZP/sjWuxZWfj77FmR9SkU3kS v48uMnvUmKStUTNimTd0hfTK2hjq5d7PjOtYZ0OuZ10Xst86Z4JzK3Yn4OKfjfjy MAvA1zshORbQhjGP5xtKM3J28FpD8abtkRVyhpU1VB/aSb/wBGEL2prEukk= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:30 2024 by rpki-client on console-ams.rpki-client.org