$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd5be52a-f3b1-4656-9436-d20a6bb64562.roa File: cd5be52a-f3b1-4656-9436-d20a6bb64562.roa (raw, json) Hash identifier: /y+R67pu+BqqxIaqAYrrgQfY1fRq8BdFIt7k8A8PEiw= Subject key identifier: FC:EA:3D:9C:84:9F:55:BF:2D:35:8C:03:51:FD:DD:EA:07:94:DF:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 28EB58785FF2B55AD7F39B0D2CE91CFF8CE66757 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd5be52a-f3b1-4656-9436-d20a6bb64562.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:eb:58:78:5f:f2:b5:5a:d7:f3:9b:0d:2c:e9:1c:ff:8c:e6:67:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=556726773fbb16141a6307231ba8f35168a5e2dd1b60d1cef4ca20b23482317d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:00:7e:46:a0:a4:d0:bf:04:63:7f:42:1a:a8: b9:a4:9f:e5:16:16:f0:75:cc:d3:75:74:5a:bf:a6: be:8f:6c:77:19:cc:d8:c0:37:e1:b6:cc:e5:8f:98: db:90:9f:15:d8:83:40:fa:b1:cd:95:cb:01:8c:c5: 97:77:65:67:76:05:19:3d:20:7e:7b:27:2c:8d:01: dd:19:7e:44:05:68:d8:ef:fd:09:1c:37:56:25:43: 2c:b1:48:54:e8:a3:f5:c7:4e:a8:5d:31:97:e7:34: 5f:9a:db:c2:fe:09:28:e2:a5:63:17:69:fe:7e:73: df:f2:dd:30:ed:b4:b6:60:bb:4c:8c:cc:e4:e7:85: 07:a8:5a:94:70:9c:a3:5a:a3:3b:33:2f:a8:50:54: 4d:14:2a:81:8c:ce:d8:e3:d0:e4:a3:ac:c4:2a:cb: 62:12:36:d2:47:27:98:6f:b5:ac:70:eb:8e:72:30: a2:95:d1:79:56:7a:b5:63:9c:0e:2e:78:f2:e2:38: 74:52:81:1e:03:77:4a:87:c2:82:bd:20:8d:4f:2f: 39:e0:df:c2:ed:67:2d:c1:16:6a:7e:fc:65:d9:d2: f9:8b:fd:97:6d:7f:81:99:d1:b0:48:46:00:fa:b9: 59:07:bb:d4:a4:7c:b8:78:11:99:a0:97:8a:13:42: 3e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:EA:3D:9C:84:9F:55:BF:2D:35:8C:03:51:FD:DD:EA:07:94:DF:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd5be52a-f3b1-4656-9436-d20a6bb64562.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption 48:9d:a3:e3:c3:e3:c2:e6:a3:11:9d:ea:d8:da:23:98:9d:d8: f8:3f:72:85:a6:e9:ea:02:05:cc:36:4c:ff:fa:15:c1:7d:58: 60:a9:1b:f2:fc:70:88:2a:d7:e4:06:1d:5e:a9:4a:da:eb:11: d6:30:d8:14:cf:cb:6f:21:84:ae:26:78:48:42:01:0e:7e:b5: 6e:82:11:70:0b:05:b6:76:39:bf:ab:ee:ea:92:8a:41:97:d1: 08:02:77:af:82:48:40:1a:fc:fa:5f:7d:b6:0b:3e:1f:ca:e4: ef:38:fe:dd:b9:d6:e7:c7:77:10:4a:cf:50:fa:e7:2c:fa:d1: 36:bf:0e:ae:b9:08:0f:bd:59:24:fa:f9:cb:3f:26:b3:4e:42: 04:1a:35:7f:8e:d8:e2:f1:31:82:38:af:c0:d3:48:f8:31:d3: ec:75:a8:14:20:5d:3d:19:ee:f9:c5:48:2d:c3:a6:52:16:1b: 29:a6:8d:33:d6:81:bc:21:cd:f4:f4:a4:e3:5e:fa:9f:96:47: 5b:01:c0:d0:bb:a6:e5:9c:bb:33:72:6f:58:35:be:dd:3d:87: 53:af:b5:4c:c9:86:dd:ef:58:36:c3:a3:c2:d9:c7:c6:78:d8: 39:1e:76:b1:2f:63:e6:4f:3f:7a:9d:f2:1e:c3:cd:c5:a1:08: b1:b0:60:ef -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKOtYeF/ytVrX85sNLOkc/4zmZ1cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTY3MjY3NzNmYmIxNjE0MWE2MzA3MjMxYmE4ZjM1MTY4 YTVlMmRkMWI2MGQxY2VmNGNhMjBiMjM0ODIzMTdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9AH5GoKTQvwRjf0IaqLmkn+UWFvB1zNN1dFq/pr6PbHcZ zNjAN+G2zOWPmNuQnxXYg0D6sc2VywGMxZd3ZWd2BRk9IH57JyyNAd0ZfkQFaNjv /QkcN1YlQyyxSFToo/XHTqhdMZfnNF+a28L+CSjipWMXaf5+c9/y3TDttLZgu0yM zOTnhQeoWpRwnKNaozszL6hQVE0UKoGMztjj0OSjrMQqy2ISNtJHJ5hvtaxw645y MKKV0XlWerVjnA4uePLiOHRSgR4Dd0qHwoK9II1PLzng38LtZy3BFmp+/GXZ0vmL /Zdtf4GZ0bBIRgD6uVkHu9SkfLh4EZmgl4oTQj7tAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/Oo9nISfVb8tNYwDUf3d6geU3wIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkNWJlNTJhLWYzYjEtNDY1Ni05NDM2LWQyMGE2YmI2NDU2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFTANBgkqhkiG9w0BAQsFAAOCAQEASJ2j48PjwuajEZ3q2NojmJ3Y+D9y habp6gIFzDZM//oVwX1YYKkb8vxwiCrX5AYdXqlK2usR1jDYFM/LbyGEriZ4SEIB Dn61boIRcAsFtnY5v6vu6pKKQZfRCAJ3r4JIQBr8+l99tgs+H8rk7zj+3bnW58d3 EErPUPrnLPrRNr8OrrkID71ZJPr5yz8ms05CBBo1f47Y4vExgjivwNNI+DHT7HWo FCBdPRnu+cVILcOmUhYbKaaNM9aBvCHN9PSk4176n5ZHWwHA0Lum5Zy7M3JvWDW+ 3T2HU6+1TMmG3e9YNsOjwtnHxnjYOR52sS9j5k8/ep3yHsPNxaEIsbBg7w== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:33 2024 by rpki-client on console-ams.rpki-client.org