$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cbf4543b-cacd-429e-afa8-304971d8f9e8.roa File: cbf4543b-cacd-429e-afa8-304971d8f9e8.roa (raw, json) Hash identifier: 8bclftiAzjYjZkJ9c6NWz7kVc/3DEGO3bmQcXLSNsJw= Subject key identifier: 90:84:E7:8C:EB:4B:9D:4F:53:8B:1A:9E:1C:67:A3:C9:41:08:5B:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40E5501CA36F4666B5D85D5F043A9F5E3FB7DC4E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cbf4543b-cacd-429e-afa8-304971d8f9e8.roa Signing time: Wed 13 Nov 2024 00:00:00 +0000 ROA not before: Wed 13 Nov 2024 00:00:00 +0000 ROA not after: Wed 18 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 150.103.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:e5:50:1c:a3:6f:46:66:b5:d8:5d:5f:04:3a:9f:5e:3f:b7:dc:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 13 00:00:00 2024 GMT Not After : Dec 18 23:59:59 2024 GMT Subject: serialNumber=1c92278580ccc12d9aeb31a3d8e07e78f69277b5547c443e683d3d5e986c0289, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:36:66:7d:66:d6:34:8a:6a:e5:58:d5:d7:ea: 52:99:19:8f:f8:b7:30:98:c1:fd:e6:ef:5a:83:a0: 36:30:c5:fb:a5:69:34:95:f1:c2:c7:a8:62:70:c6: 5b:5a:fe:9a:05:8c:a2:75:7c:bc:e0:8a:3d:15:49: 00:ec:c8:29:31:74:7b:58:12:1e:3a:c9:7e:3b:f4: 83:5c:5a:bc:d9:66:db:89:4e:5d:3a:98:a6:03:c8: 9e:12:0d:5d:8f:77:fd:8f:bb:bc:64:e7:d5:ca:df: 4b:b9:d6:4f:d6:e7:82:d9:8c:af:2a:2c:e5:dc:61: 11:9f:76:a5:96:40:2d:91:7a:a3:de:61:64:3e:ed: 0c:0b:47:ea:9c:32:d1:f9:10:6b:8f:72:c3:9f:45: f2:7e:48:f9:97:7f:f0:58:af:9f:27:09:55:a1:d7: 27:1e:7f:4a:96:f1:0e:47:36:db:a6:9c:ba:4f:c0: 4c:70:87:13:e5:8e:37:e0:21:d0:6c:c0:98:2b:ba: 4f:27:a5:c6:e0:6b:cf:3b:78:d4:6c:ec:30:3a:00: 36:43:e4:b8:27:ae:77:42:e1:9d:02:ab:01:80:79: a0:d4:a8:f5:e2:dc:d7:c5:b9:52:84:e0:2d:63:3c: 50:b8:e7:ae:1d:64:3b:68:d5:26:15:c8:8e:21:7e: 89:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:84:E7:8C:EB:4B:9D:4F:53:8B:1A:9E:1C:67:A3:C9:41:08:5B:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cbf4543b-cacd-429e-afa8-304971d8f9e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.103.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4e:c0:d4:a8:7a:ca:da:12:2c:2c:94:79:a5:b4:64:71:c7:91: f0:26:e8:69:d7:e4:ce:df:1d:eb:ba:38:6b:08:aa:65:6a:bd: 86:f8:7b:62:83:45:9f:20:44:21:91:da:52:ba:7a:19:11:07: e2:06:59:94:b1:70:f8:48:1f:49:ed:35:23:df:77:c0:3e:7d: d3:96:f5:5b:c2:e6:84:b4:c3:b3:2a:5d:a4:e7:37:0b:5c:39: a7:0c:8a:9a:ce:c1:4f:8c:00:61:dd:ff:6b:3c:a7:d3:ed:ba: fb:b1:74:28:85:46:f9:98:9c:f6:df:06:8e:b6:5b:5e:9d:6a: 5e:cc:68:00:10:c4:96:59:d1:99:89:18:9c:f9:47:de:61:99: 10:c0:d7:83:21:87:60:db:11:c0:a6:93:74:d5:4f:bb:54:b5: 86:79:ae:73:bb:a8:3e:03:34:ca:43:cd:81:4a:d5:59:ec:50: da:25:53:48:3b:20:45:8c:de:2e:e7:32:59:c9:df:62:e4:fd: a4:d1:c9:ec:bb:29:8d:96:3a:43:f1:21:5f:64:42:84:16:ba: ac:52:6b:30:bb:70:96:3f:31:88:fe:7c:39:74:04:b8:49:63: 67:f9:82:bb:5f:0c:54:56:cc:2f:f9:56:f2:92:32:11:01:54: aa:ea:93:5b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQOVQHKNvRma12F1fBDqfXj+33E4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTEzMDAwMDAwWhcNMjQxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzkyMjc4NTgwY2NjMTJkOWFlYjMxYTNkOGUwN2U3OGY2 OTI3N2I1NTQ3YzQ0M2U2ODNkM2Q1ZTk4NmMwMjg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDANmZ9ZtY0imrlWNXX6lKZGY/4tzCYwf3m71qDoDYwxful aTSV8cLHqGJwxlta/poFjKJ1fLzgij0VSQDsyCkxdHtYEh46yX479INcWrzZZtuJ Tl06mKYDyJ4SDV2Pd/2Pu7xk59XK30u51k/W54LZjK8qLOXcYRGfdqWWQC2ReqPe YWQ+7QwLR+qcMtH5EGuPcsOfRfJ+SPmXf/BYr58nCVWh1ycef0qW8Q5HNtumnLpP wExwhxPljjfgIdBswJgruk8npcbga887eNRs7DA6ADZD5LgnrndC4Z0CqwGAeaDU qPXi3NfFuVKE4C1jPFC4564dZDto1SYVyI4hfomrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkITnjOtLnU9TixqeHGejyUEIW2UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiZjQ1NDNiLWNhY2QtNDI5ZS1hZmE4LTMwNDk3MWQ4ZjllOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCWZzANBgkqhkiG9w0BAQsFAAOCAQEATsDUqHrK2hIsLJR5pbRkcceR8Cbo adfkzt8d67o4awiqZWq9hvh7YoNFnyBEIZHaUrp6GREH4gZZlLFw+EgfSe01I993 wD5905b1W8LmhLTDsypdpOc3C1w5pwyKms7BT4wAYd3/azyn0+26+7F0KIVG+Zic 9t8GjrZbXp1qXsxoABDEllnRmYkYnPlH3mGZEMDXgyGHYNsRwKaTdNVPu1S1hnmu c7uoPgM0ykPNgUrVWexQ2iVTSDsgRYzeLucyWcnfYuT9pNHJ7LspjZY6Q/EhX2RC hBa6rFJrMLtwlj8xiP58OXQEuEljZ/mCu18MVFbML/lW8pIyEQFUquqTWw== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:31 2024 by rpki-client on console-ams.rpki-client.org