$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc33ca23-2bdf-4a84-bbda-84a13b753114.roa File: cc33ca23-2bdf-4a84-bbda-84a13b753114.roa (raw, json) Hash identifier: kwwDmP0e8g2fdR+d3uMmNnheqafWusL3hKB4Z6AB1Xk= Subject key identifier: 1D:45:F8:41:94:27:DD:33:4F:AB:14:3A:2A:19:1B:1B:C9:77:CC:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A05630DB56B4763751021353B9C945520C6888D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc33ca23-2bdf-4a84-bbda-84a13b753114.roa Signing time: Mon 21 Oct 2024 00:00:00 +0000 ROA not before: Mon 21 Oct 2024 00:00:00 +0000 ROA not after: Mon 25 Nov 2024 23:59:59 +0000 asID: 14618 IP address blocks: 107.152.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Oct 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:05:63:0d:b5:6b:47:63:75:10:21:35:3b:9c:94:55:20:c6:88:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 21 00:00:00 2024 GMT Not After : Nov 25 23:59:59 2024 GMT Subject: serialNumber=7e1fe8e7b9e33e8bfc2d4716f922f953a121d485d3c571f7ee3e99a6fd9edd52, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f1:70:84:99:3a:7e:bc:66:df:8f:58:45:e9: 4d:c7:e7:81:94:2c:d1:48:f6:46:ce:1e:29:2c:5a: b1:87:f6:14:ea:b9:d8:d3:63:b2:0d:e7:db:84:74: 8b:51:fd:93:1b:1e:f9:f7:44:18:58:56:62:5d:f4: 4f:d5:d7:ef:b7:08:a7:f5:6d:82:eb:6b:ae:08:ca: 22:fd:27:78:33:4b:d6:a5:74:57:b0:f7:58:17:e0: 17:45:f3:f5:03:2a:7a:f0:84:53:a2:83:db:43:16: 82:67:65:81:2c:49:b5:09:9d:04:7c:b1:3d:98:2e: 2a:f6:d1:f0:9c:e4:3c:3b:61:ce:f3:71:e2:a8:da: dd:31:a2:ce:0d:bd:15:76:05:a6:a8:46:63:a6:e0: ae:30:0d:56:ee:bf:32:33:73:1c:98:23:39:3f:97: 43:72:62:b6:80:35:4f:b1:73:76:e2:15:9c:63:e1: 7b:23:0c:d1:da:a6:ab:a4:31:bc:cb:10:99:05:7e: 34:c5:70:47:90:70:23:f2:8c:cf:d7:5e:2c:0c:62: 9e:47:69:d1:fa:f5:15:6f:3c:66:39:13:73:5d:48: ba:5c:a9:f7:21:bf:94:e5:14:57:8a:50:66:ed:89: e8:27:a3:db:78:f4:aa:9d:df:d0:79:f5:4a:c1:41: 45:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:45:F8:41:94:27:DD:33:4F:AB:14:3A:2A:19:1B:1B:C9:77:CC:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc33ca23-2bdf-4a84-bbda-84a13b753114.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.152.132.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:33:e5:bc:1b:ec:ef:77:d0:cc:ec:13:68:f8:2e:fc:51:eb: e4:7c:e8:56:9c:f9:68:be:c1:b9:42:cb:2a:2b:33:3c:5b:0c: e2:dc:cc:ab:33:71:79:86:4c:bd:70:07:8c:29:e6:ed:99:e0: f6:5a:74:95:ed:59:79:12:37:68:15:7a:e7:88:79:f5:9f:74: 3d:68:9d:a6:38:73:15:8e:78:9b:93:a5:e6:16:33:2f:a7:04: c8:2f:82:88:22:35:fa:e1:f7:9d:20:20:d8:4b:3d:3d:dc:88: 3c:e4:62:d7:8d:0e:01:e7:7c:13:87:52:07:fd:1e:ca:bb:cc: 82:09:41:15:95:6a:17:78:c6:90:b7:a6:bd:a7:c2:71:94:19: db:9e:b3:e1:50:3e:75:9c:5b:cb:ad:40:d4:af:61:7f:ff:db: 37:2d:26:d2:62:07:0e:ef:2a:ad:43:7f:de:3c:71:0e:97:8b: f2:da:ed:72:84:f1:b8:7c:af:f6:00:97:ae:a4:79:07:76:18: 7f:58:73:5b:15:56:e2:fd:d5:07:a3:82:e2:d0:84:61:46:bc: d6:51:1c:40:7e:f6:1f:ce:7b:b4:1e:64:74:27:3a:65:6a:f9: a7:75:72:e0:6a:2c:e6:81:5b:0f:10:a1:2e:e1:86:08:f1:ed: d2:b4:7e:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGgVjDbVrR2N1ECE1O5yUVSDGiI0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDIxMDAwMDAwWhcNMjQxMTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTFmZThlN2I5ZTMzZThiZmMyZDQ3MTZmOTIyZjk1M2Ex MjFkNDg1ZDNjNTcxZjdlZTNlOTlhNmZkOWVkZDUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC68XCEmTp+vGbfj1hF6U3H54GULNFI9kbOHiksWrGH9hTq udjTY7IN59uEdItR/ZMbHvn3RBhYVmJd9E/V1++3CKf1bYLra64IyiL9J3gzS9al dFew91gX4BdF8/UDKnrwhFOig9tDFoJnZYEsSbUJnQR8sT2YLir20fCc5Dw7Yc7z ceKo2t0xos4NvRV2BaaoRmOm4K4wDVbuvzIzcxyYIzk/l0NyYraANU+xc3biFZxj 4XsjDNHapqukMbzLEJkFfjTFcEeQcCPyjM/XXiwMYp5HadH69RVvPGY5E3NdSLpc qfchv5TlFFeKUGbtiegno9t49Kqd39B59UrBQUVTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHUX4QZQn3TNPqxQ6KhkbG8l3zGQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjMzNjYTIzLTJiZGYtNGE4NC1iYmRhLTg0YTEzYjc1MzExNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrmIQwDQYJKoZIhvcNAQELBQADggEBAG4z5bwb7O930MzsE2j4LvxR6+R8 6Fac+Wi+wblCyyorMzxbDOLczKszcXmGTL1wB4wp5u2Z4PZadJXtWXkSN2gVeueI efWfdD1onaY4cxWOeJuTpeYWMy+nBMgvgogiNfrh950gINhLPT3ciDzkYteNDgHn fBOHUgf9Hsq7zIIJQRWVahd4xpC3pr2nwnGUGdues+FQPnWcW8utQNSvYX//2zct JtJiBw7vKq1Df948cQ6Xi/La7XKE8bh8r/YAl66keQd2GH9Yc1sVVuL91QejguLQ hGFGvNZRHEB+9h/Oe7QeZHQnOmVq+ad1cuBqLOaBWw8QoS7hhgjx7dK0fmg= -----END CERTIFICATE-----Generated at Tue Oct 22 01:38:28 2024 by rpki-client on console-ams.rpki-client.org