$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d877b319-6b7e-4002-a764-eae7f98a0674.roa File: d877b319-6b7e-4002-a764-eae7f98a0674.roa (raw, json) Hash identifier: 5bI4dYrwFDYClttfeKe+lKdFicE9yAiRdHcE++zZP2M= Subject key identifier: B0:21:76:94:46:8E:D8:55:73:22:F8:32:33:65:4F:A8:DE:E0:5C:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E5E6A08264FE2675797764A36C17E6D75194804 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d877b319-6b7e-4002-a764-eae7f98a0674.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 32.240.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:5e:6a:08:26:4f:e2:67:57:97:76:4a:36:c1:7e:6d:75:19:48:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=e571b0b66410d00460e92f0e420ca4f7db98838d70a0f8c74d7f6ae6951568c8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d3:6c:20:a9:13:93:87:03:5a:74:4a:38:83: 85:93:28:5b:5f:2a:b1:75:3e:0f:5e:0e:3a:39:ad: 5d:2a:86:59:16:33:e2:9f:4e:b1:36:4b:3a:9a:8e: 04:48:8f:7d:f0:9a:d5:d6:d2:77:61:62:3c:66:64: 88:dc:e0:96:d2:46:87:00:4e:9b:3c:fe:61:ed:57: 81:4e:0c:9d:9c:90:5c:70:11:b3:12:22:92:0f:8b: 9b:f3:cc:de:48:cf:6d:c9:63:b5:26:3d:c6:10:a8: 2a:16:da:04:4d:ea:81:c5:cc:2d:8a:86:5e:54:d9: b4:23:e5:d5:66:45:55:0b:eb:35:9d:20:8d:78:12: 93:28:7f:3a:2b:1d:d8:e1:22:1f:b3:23:a8:06:db: 6c:d6:79:4a:4a:78:49:ce:d5:2f:b1:18:19:60:6e: c0:78:0e:88:53:fc:2f:3c:73:5e:8d:c7:cd:c8:25: 73:6d:f5:ef:c9:06:45:72:96:32:b9:e4:ed:f2:8d: 81:02:eb:3e:b7:09:dc:28:f0:dd:99:9f:06:03:de: 47:3f:7a:26:dc:16:98:50:8d:6d:cd:05:14:3b:19: e1:2f:2f:2b:da:b3:68:c2:31:ae:88:ab:0a:25:52: 3b:3d:c8:6e:1a:86:c3:18:95:ae:96:90:1f:66:0b: 81:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:21:76:94:46:8E:D8:55:73:22:F8:32:33:65:4F:A8:DE:E0:5C:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d877b319-6b7e-4002-a764-eae7f98a0674.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.240.0.0/15 Signature Algorithm: sha256WithRSAEncryption 2d:02:96:50:77:97:f4:89:43:71:91:52:7e:80:88:9e:a1:4b: a3:11:d6:9b:87:29:b4:17:58:72:c3:93:f8:51:5b:cc:12:5e: 0f:29:ea:b5:97:44:4f:8d:6a:8a:a0:4c:d1:64:52:3f:ad:c8: 33:50:51:c8:49:38:02:49:a4:71:95:bd:9a:de:89:47:75:15: 13:db:00:e7:97:ff:86:10:d2:a0:29:8c:0d:57:7f:47:6d:dd: 62:c6:6a:51:fb:d3:c7:40:bf:2d:58:b0:f4:f8:52:40:d0:59: d6:45:36:58:f7:a0:ae:3b:c9:e9:f5:bc:7c:47:ff:19:09:b0: 45:43:64:61:26:89:6a:6d:7f:10:ac:5b:77:b3:aa:a7:ef:46: 34:8d:2b:31:3f:2e:d4:e5:21:a7:c1:95:06:01:b5:39:7a:9b: 7a:ef:20:f8:a4:9c:2f:3a:e1:fe:0c:2c:f4:88:be:45:b0:17: 00:07:a8:06:ad:a1:4c:00:d1:09:53:4c:c6:f1:e1:36:68:02: 66:36:0f:e5:a8:c3:79:5a:96:ce:38:c3:ff:07:85:8b:51:20: 51:90:3b:db:38:c9:9e:86:1f:d5:f1:61:37:7a:f4:33:19:7c: ab:49:ad:4b:65:9f:62:c4:54:92:07:e6:1f:b8:be:71:06:6c: 52:22:5a:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfl5qCCZP4mdXl3ZKNsF+bXUZSAQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTcxYjBiNjY0MTBkMDA0NjBlOTJmMGU0MjBjYTRmN2Ri OTg4MzhkNzBhMGY4Yzc0ZDdmNmFlNjk1MTU2OGM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDk02wgqROThwNadEo4g4WTKFtfKrF1Pg9eDjo5rV0qhlkW M+KfTrE2SzqajgRIj33wmtXW0ndhYjxmZIjc4JbSRocATps8/mHtV4FODJ2ckFxw EbMSIpIPi5vzzN5Iz23JY7UmPcYQqCoW2gRN6oHFzC2Khl5U2bQj5dVmRVUL6zWd II14EpMofzorHdjhIh+zI6gG22zWeUpKeEnO1S+xGBlgbsB4DohT/C88c16Nx83I JXNt9e/JBkVyljK55O3yjYEC6z63Cdwo8N2ZnwYD3kc/eibcFphQjW3NBRQ7GeEv Lyvas2jCMa6IqwolUjs9yG4ahsMYla6WkB9mC4GfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsCF2lEaO2FVzIvgyM2VPqN7gXC4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4NzdiMzE5LTZiN2UtNDAwMi1hNzY0LWVhZTdmOThhMDY3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEg8DANBgkqhkiG9w0BAQsFAAOCAQEALQKWUHeX9IlDcZFSfoCInqFLoxHW m4cptBdYcsOT+FFbzBJeDynqtZdET41qiqBM0WRSP63IM1BRyEk4AkmkcZW9mt6J R3UVE9sA55f/hhDSoCmMDVd/R23dYsZqUfvTx0C/LViw9PhSQNBZ1kU2WPegrjvJ 6fW8fEf/GQmwRUNkYSaJam1/EKxbd7Oqp+9GNI0rMT8u1OUhp8GVBgG1OXqbeu8g +KScLzrh/gws9Ii+RbAXAAeoBq2hTADRCVNMxvHhNmgCZjYP5ajDeVqWzjjD/weF i1EgUZA72zjJnoYf1fFhN3r0Mxl8q0mtS2WfYsRUkgfmH7i+cQZsUiJamA== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:36 2024 by rpki-client on console-ams.rpki-client.org