$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc33ca23-2bdf-4a84-bbda-84a13b753114.roa File: cc33ca23-2bdf-4a84-bbda-84a13b753114.roa (raw, json) Hash identifier: UmABGx/CJW37zvZFnfXJpJGM1OUP2tCZF5POdhC0Sf8= Subject key identifier: DD:27:FD:1B:06:FD:37:F2:B2:BD:7F:7B:CE:06:F1:23:8B:22:3F:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0557B53A895544C500F5A977D0584E61BADE64D7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc33ca23-2bdf-4a84-bbda-84a13b753114.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 107.152.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:57:b5:3a:89:55:44:c5:00:f5:a9:77:d0:58:4e:61:ba:de:64:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=1e4813d74b02e55f1790c821820a041e23e431229a6363b22d2c6578ba3ba3e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:92:3d:5d:f2:c9:86:3f:52:71:34:95:71:07: 45:94:36:3f:a7:9b:35:70:fe:ee:e7:0c:ed:8b:4b: 33:26:4b:a0:22:cf:93:4d:51:88:3b:04:a7:9d:05: 7b:a7:83:27:5e:28:cf:05:fe:23:33:d4:a3:dc:7d: 4d:3b:b2:40:bc:a1:a9:ec:c5:64:e0:ff:4f:ed:03: 76:65:66:42:1a:e2:19:98:9d:ae:49:41:4a:87:b9: 8e:49:b5:5a:8f:53:b9:52:f0:3c:2f:c3:03:7d:62: 6a:aa:d4:33:95:47:a1:fd:17:0a:bd:43:24:88:8e: be:2f:8f:0a:1e:d0:d1:40:10:19:78:b6:9b:f5:1f: 36:99:99:05:54:83:6d:4f:bc:76:44:3f:41:b5:6f: b6:36:92:a0:90:cf:b5:d0:e0:f0:f2:3b:70:fc:5a: 38:0c:af:98:03:52:70:a6:bf:96:a6:87:14:48:45: 1f:21:87:41:7e:8e:78:6a:16:1f:bc:01:67:8c:e5: 07:5b:e4:8d:28:1c:95:01:40:65:14:79:7f:14:8f: 4f:34:79:e0:8e:94:06:97:35:1d:63:cb:fa:f2:90: 4a:69:e8:fe:6f:20:36:35:22:58:29:10:5b:b6:49: dc:02:10:00:4a:be:5f:a5:63:53:e0:17:e3:7f:46: 61:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:27:FD:1B:06:FD:37:F2:B2:BD:7F:7B:CE:06:F1:23:8B:22:3F:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc33ca23-2bdf-4a84-bbda-84a13b753114.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.152.132.0/22 Signature Algorithm: sha256WithRSAEncryption b9:2b:6d:05:3e:62:68:cf:22:94:81:1c:cb:1d:8c:01:f6:eb: fa:b0:43:43:85:e6:8d:db:a3:9c:56:e2:69:9f:ee:1f:c7:7f: 41:b5:57:13:1e:59:7b:e7:47:6b:a1:75:c1:e5:95:92:24:6b: 55:b4:5b:39:d3:9d:16:7d:e1:9c:e0:29:07:74:0e:bc:45:c6: 73:20:2c:5b:eb:76:3a:ea:7a:25:75:7a:9e:dd:8b:c6:aa:d7: 82:75:da:fe:b3:26:cb:96:cf:f6:93:54:85:c8:06:59:f3:0d: b8:bb:86:ca:dc:d1:eb:60:89:86:98:1c:5a:e2:9d:d0:02:19: 67:53:37:b1:2f:25:df:0f:15:b9:9f:c7:ec:f9:e3:b2:02:86: bd:e2:3d:85:c7:f0:c4:b7:89:e6:56:72:60:5f:76:ca:af:11: ab:38:d0:9d:35:fe:98:99:af:66:84:f4:fe:98:36:fd:9b:a6: 6f:b1:11:c4:16:6d:7a:96:2f:d7:66:06:c6:a5:99:df:9d:de: 48:a1:00:b6:91:e2:12:f7:a6:c9:7d:87:c4:5c:bc:1e:1d:48: 2a:24:f9:e6:df:78:e1:0e:4b:8c:b3:0f:f6:47:d8:db:14:56: 5a:17:0a:33:1d:9f:16:f5:0f:63:9d:00:84:8c:8d:76:71:de: af:c2:97:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBVe1OolVRMUA9al30FhOYbreZNcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTQ4MTNkNzRiMDJlNTVmMTc5MGM4MjE4MjBhMDQxZTIz ZTQzMTIyOWE2MzYzYjIyZDJjNjU3OGJhM2JhM2U2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfkj1d8smGP1JxNJVxB0WUNj+nmzVw/u7nDO2LSzMmS6Ai z5NNUYg7BKedBXungydeKM8F/iMz1KPcfU07skC8oansxWTg/0/tA3ZlZkIa4hmY na5JQUqHuY5JtVqPU7lS8DwvwwN9Ymqq1DOVR6H9Fwq9QySIjr4vjwoe0NFAEBl4 tpv1HzaZmQVUg21PvHZEP0G1b7Y2kqCQz7XQ4PDyO3D8WjgMr5gDUnCmv5amhxRI RR8hh0F+jnhqFh+8AWeM5Qdb5I0oHJUBQGUUeX8Uj080eeCOlAaXNR1jy/rykEpp 6P5vIDY1IlgpEFu2SdwCEABKvl+lY1PgF+N/RmGbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3Sf9Gwb9N/KyvX97zgbxI4siPw0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjMzNjYTIzLTJiZGYtNGE4NC1iYmRhLTg0YTEzYjc1MzExNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrmIQwDQYJKoZIhvcNAQELBQADggEBALkrbQU+YmjPIpSBHMsdjAH26/qw Q0OF5o3bo5xW4mmf7h/Hf0G1VxMeWXvnR2uhdcHllZIka1W0WznTnRZ94ZzgKQd0 DrxFxnMgLFvrdjrqeiV1ep7di8aq14J12v6zJsuWz/aTVIXIBlnzDbi7hsrc0etg iYaYHFrindACGWdTN7EvJd8PFbmfx+z547IChr3iPYXH8MS3ieZWcmBfdsqvEas4 0J01/piZr2aE9P6YNv2bpm+xEcQWbXqWL9dmBsalmd+d3kihALaR4hL3psl9h8Rc vB4dSCok+ebfeOEOS4yzD/ZH2NsUVloXCjMdnxb1D2OdAISMjXZx3q/Cl4Q= -----END CERTIFICATE-----Generated at Fri Nov 22 02:08:30 2024 by rpki-client on console-fra.rpki-client.org