$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd01c2db-e036-4f0b-aaba-01e6262c8428.roa File: cd01c2db-e036-4f0b-aaba-01e6262c8428.roa (raw, json) Hash identifier: YCfYA+JoW2xx25XNT51OuECSqqcnlaqPrau2VIR4IlE= Subject key identifier: 31:9C:22:5D:3A:D7:D1:42:92:17:73:10:4A:D0:3B:5D:57:FD:7B:8D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 79CCB190D10B19D2BAF905798A7E88E55F9C0E59 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd01c2db-e036-4f0b-aaba-01e6262c8428.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 160.223.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:cc:b1:90:d1:0b:19:d2:ba:f9:05:79:8a:7e:88:e5:5f:9c:0e:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=9982fcc1d89df9ad25c0bdbd8694eb484132158cc028bbcfe7e4d136f044a2b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d9:d6:39:55:6b:31:55:49:58:0f:2a:d1:db: 35:73:74:86:23:0d:71:ec:61:3d:87:45:e3:b4:63: 0d:81:8b:f5:9a:fc:ca:67:5b:d8:b8:50:eb:cf:67: b8:1e:41:55:6a:61:17:4c:44:bd:26:b7:9c:f9:dd: e4:77:57:44:d6:fb:32:e0:4c:b2:7e:58:a2:a3:ce: 57:ff:15:b6:58:54:c0:35:3d:0c:1d:be:30:ee:bd: 65:51:97:e5:59:77:c3:cf:ee:80:6b:63:9f:bd:e8: ff:01:6b:99:53:bf:e7:05:63:c0:0b:c6:eb:81:82: f2:6f:35:91:97:8e:04:74:62:03:11:e8:9e:85:9b: eb:2d:b0:3e:1f:b8:17:1a:52:45:d5:95:22:4c:4c: 99:be:44:59:da:00:41:6e:7c:61:8a:1e:35:c9:5c: 54:55:24:e3:67:2a:68:ff:78:e5:e9:21:1c:38:f1: 56:27:42:93:f3:b3:9a:d5:15:7c:6d:18:21:23:95: ed:9b:3a:01:e2:ed:86:11:98:8c:f5:fa:51:51:22: 32:6e:8f:4e:34:09:50:92:17:7d:4f:6c:5e:c5:0a: d2:5b:6c:7d:48:8e:04:2b:06:92:a4:64:e9:01:e7: 89:f0:f2:d5:92:a0:74:97:f5:d4:74:9a:c7:20:25: 29:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9C:22:5D:3A:D7:D1:42:92:17:73:10:4A:D0:3B:5D:57:FD:7B:8D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd01c2db-e036-4f0b-aaba-01e6262c8428.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.223.0.0/17 Signature Algorithm: sha256WithRSAEncryption 7e:81:77:87:19:bf:66:07:fc:fa:23:23:8b:8e:c1:90:d6:15: cf:e7:19:ce:fd:5e:a3:aa:dd:14:52:4b:2a:24:66:9c:ff:97: d2:0c:be:90:1e:79:bc:f2:6d:93:67:41:49:92:25:0e:a8:7a: 9c:df:96:82:26:ce:bb:5c:fe:bf:a7:5a:66:77:d4:5a:ab:4b: 7a:73:11:69:a6:d5:ed:c7:83:05:2f:b1:cf:aa:6d:f0:62:45: 96:7b:97:27:98:8a:4c:2e:a8:01:00:a9:2a:6e:1b:6f:0a:71: f9:eb:b0:40:29:e5:77:c1:c0:53:a2:5c:14:c2:5f:cb:d4:d3: 7e:52:f1:6c:68:51:bc:f5:27:32:91:88:9c:34:27:9a:58:1e: 27:fa:da:0f:d3:d0:8d:36:9a:26:62:2c:2e:18:a4:1e:cf:27: c3:c2:0d:56:f7:28:4b:72:47:2a:4d:53:11:d2:36:09:47:85: 6b:0e:96:99:b2:64:f0:b8:dc:f5:b5:66:ea:8e:3c:1a:0c:cc: 0a:7a:ed:a5:34:ec:0d:16:47:84:64:a7:26:3c:77:fe:98:71: 95:13:fc:f6:e2:be:12:20:ee:14:39:79:cc:07:cb:18:b9:a3: 2b:7c:d1:1b:ed:c4:ef:a3:e3:fc:7c:46:fb:ba:fe:e9:4e:76: 61:4e:28:bb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUecyxkNELGdK6+QV5in6I5V+cDlkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTgyZmNjMWQ4OWRmOWFkMjVjMGJkYmQ4Njk0ZWI0ODQx MzIxNThjYzAyOGJiY2ZlN2U0ZDEzNmYwNDRhMmI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH2dY5VWsxVUlYDyrR2zVzdIYjDXHsYT2HReO0Yw2Bi/Wa /MpnW9i4UOvPZ7geQVVqYRdMRL0mt5z53eR3V0TW+zLgTLJ+WKKjzlf/FbZYVMA1 PQwdvjDuvWVRl+VZd8PP7oBrY5+96P8Ba5lTv+cFY8ALxuuBgvJvNZGXjgR0YgMR 6J6Fm+stsD4fuBcaUkXVlSJMTJm+RFnaAEFufGGKHjXJXFRVJONnKmj/eOXpIRw4 8VYnQpPzs5rVFXxtGCEjle2bOgHi7YYRmIz1+lFRIjJuj040CVCSF31PbF7FCtJb bH1IjgQrBpKkZOkB54nw8tWSoHSX9dR0mscgJSmjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMZwiXTrX0UKSF3MQStA7XVf9e40wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkMDFjMmRiLWUwMzYtNGYwYi1hYWJhLTAxZTYyNjJjODQyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeg3wAwDQYJKoZIhvcNAQELBQADggEBAH6Bd4cZv2YH/PojI4uOwZDWFc/n Gc79XqOq3RRSSyokZpz/l9IMvpAeebzybZNnQUmSJQ6oepzfloImzrtc/r+nWmZ3 1FqrS3pzEWmm1e3HgwUvsc+qbfBiRZZ7lyeYikwuqAEAqSpuG28KcfnrsEAp5XfB wFOiXBTCX8vU035S8WxoUbz1JzKRiJw0J5pYHif62g/T0I02miZiLC4YpB7PJ8PC DVb3KEtyRypNUxHSNglHhWsOlpmyZPC43PW1ZuqOPBoMzAp67aU07A0WR4RkpyY8 d/6YcZUT/PbivhIg7hQ5ecwHyxi5oyt80RvtxO+j4/x8Rvu6/ulOdmFOKLs= -----END CERTIFICATE-----Generated at Fri Nov 22 04:03:13 2024 by rpki-client on console-ams.rpki-client.org