$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da29a997-0e47-4721-ba0c-ccfed50a5876.roa File: da29a997-0e47-4721-ba0c-ccfed50a5876.roa (raw, json) Hash identifier: OVFYLXunVuk/WhRBg4IuyunWzKN1xjASCAFaR9M0em4= Subject key identifier: 2E:EE:58:49:44:F2:66:C3:53:4A:7E:F5:E6:B6:26:AD:6D:48:4F:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CACE3D86275755EEDC6F2F3296CBE07114C1F4D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da29a997-0e47-4721-ba0c-ccfed50a5876.roa Signing time: Wed 30 Oct 2024 00:00:00 +0000 ROA not before: Wed 30 Oct 2024 00:00:00 +0000 ROA not after: Wed 04 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 74.233.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:ac:e3:d8:62:75:75:5e:ed:c6:f2:f3:29:6c:be:07:11:4c:1f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 30 00:00:00 2024 GMT Not After : Dec 4 23:59:59 2024 GMT Subject: serialNumber=7bc2675918214868fc236d2c6b449368302bc4eedca4e4bf0db114145910fbe6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a4:d9:e7:b7:ba:8b:5d:0b:6c:2b:77:0e:62: 96:17:a6:65:05:eb:c2:d6:73:d7:62:cc:86:4b:7e: bb:db:77:19:fd:7d:78:77:60:53:a8:74:14:db:85: c4:96:fd:de:12:d6:41:6a:df:3b:b7:22:0a:cc:5c: 36:42:43:e4:e6:15:5b:49:66:a7:ee:8d:44:d4:06: d8:c2:3a:ea:92:d6:c3:cb:41:c9:06:dc:f3:c3:9c: 36:42:78:d4:9d:6e:3a:3c:21:9f:dd:b3:52:95:eb: 56:73:8f:b0:79:38:ab:f9:22:c9:95:6f:df:5f:48: ac:7c:2e:0f:6f:3b:c6:77:53:76:a8:28:92:1c:64: dd:b9:83:e2:d4:81:d2:88:3e:5d:ca:e6:c7:74:be: 59:96:eb:ce:21:15:54:59:b4:4f:16:c5:57:7f:1f: d0:2d:e2:fc:51:2e:b6:71:1e:6c:0c:56:4a:76:3d: 1a:59:e7:5e:87:06:00:eb:bf:08:5e:91:65:1c:d6: 6b:0b:ba:c7:0a:8e:e2:16:dc:e8:c7:46:6c:69:58: 1e:b9:fc:db:fd:bf:d5:c6:82:8c:fd:39:86:ac:e9: e2:4f:10:86:f0:46:51:1a:91:97:1d:0a:16:22:ff: db:e4:71:19:d6:53:ed:c4:c6:aa:fd:4b:98:91:75: f8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:EE:58:49:44:F2:66:C3:53:4A:7E:F5:E6:B6:26:AD:6D:48:4F:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da29a997-0e47-4721-ba0c-ccfed50a5876.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.233.0.0/16 Signature Algorithm: sha256WithRSAEncryption 89:fd:f0:0b:fa:01:ce:e1:97:ae:76:4b:e6:51:98:a7:b6:c5: fd:9e:22:ae:39:b1:b0:7f:5c:82:2a:96:a2:47:bf:b7:b2:c2: a3:04:0d:21:08:6d:86:c0:07:d1:79:47:14:26:e6:5e:f2:57: 5d:49:3e:11:09:eb:c9:46:81:2d:57:80:fc:07:5f:91:02:27: f9:cb:ee:71:9a:f0:83:cb:4d:1c:f4:1e:19:fe:58:a8:69:24: 94:b6:29:11:7f:d5:0a:7c:f8:20:c3:60:b3:bf:d8:e9:80:f9: b7:8c:09:51:12:87:51:d1:54:b4:a5:a3:a4:93:1f:b5:96:be: 5b:a0:13:ae:21:6b:34:06:a6:38:80:65:7a:53:46:07:a9:1f: 29:d4:74:25:b7:b2:c2:4e:10:8f:dc:0d:f9:0f:fa:9b:ea:d1: 6f:b4:27:ac:59:a5:42:14:df:fe:67:26:97:5e:2b:eb:02:7d: 30:bc:2d:00:3e:5c:db:4a:76:b3:b6:ce:49:c1:92:cc:59:c2: 2e:67:67:d4:11:2c:04:1e:7e:8a:3b:5a:8c:a9:73:01:5a:7c: ae:b9:0b:3c:5d:34:17:36:48:b9:04:39:2d:a7:51:d6:7e:1f: f3:77:7e:27:8e:6b:ad:b2:a8:d0:4b:29:87:ed:4d:c2:c5:47: 4e:43:ea:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbKzj2GJ1dV7txvLzKWy+BxFMH00wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDMwMDAwMDAwWhcNMjQxMjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YmMyNjc1OTE4MjE0ODY4ZmMyMzZkMmM2YjQ0OTM2ODMw MmJjNGVlZGNhNGU0YmYwZGIxMTQxNDU5MTBmYmU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJpNnnt7qLXQtsK3cOYpYXpmUF68LWc9dizIZLfrvbdxn9 fXh3YFOodBTbhcSW/d4S1kFq3zu3IgrMXDZCQ+TmFVtJZqfujUTUBtjCOuqS1sPL QckG3PPDnDZCeNSdbjo8IZ/ds1KV61Zzj7B5OKv5IsmVb99fSKx8Lg9vO8Z3U3ao KJIcZN25g+LUgdKIPl3K5sd0vlmW684hFVRZtE8WxVd/H9At4vxRLrZxHmwMVkp2 PRpZ516HBgDrvwhekWUc1msLuscKjuIW3OjHRmxpWB65/Nv9v9XGgoz9OYas6eJP EIbwRlEakZcdChYi/9vkcRnWU+3Exqr9S5iRdfidAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQULu5YSUTyZsNTSn715rYmrW1IT8wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhMjlhOTk3LTBlNDctNDcyMS1iYTBjLWNjZmVkNTBhNTg3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBK6TANBgkqhkiG9w0BAQsFAAOCAQEAif3wC/oBzuGXrnZL5lGYp7bF/Z4i rjmxsH9cgiqWoke/t7LCowQNIQhthsAH0XlHFCbmXvJXXUk+EQnryUaBLVeA/Adf kQIn+cvucZrwg8tNHPQeGf5YqGkklLYpEX/VCnz4IMNgs7/Y6YD5t4wJURKHUdFU tKWjpJMftZa+W6ATriFrNAamOIBlelNGB6kfKdR0Jbeywk4Qj9wN+Q/6m+rRb7Qn rFmlQhTf/mcml14r6wJ9MLwtAD5c20p2s7bOScGSzFnCLmdn1BEsBB5+ijtajKlz AVp8rrkLPF00FzZIuQQ5LadR1n4f83d+J45rrbKo0Esph+1NwsVHTkPqQQ== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:35 2024 by rpki-client on console-ams.rpki-client.org