$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa File: daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa (raw, json) Hash identifier: LUZvXoFuC73r4nV1qzXE8teR+ntWK7tSP2dBA/WBYqY= Subject key identifier: 00:9B:62:8B:0B:CC:B8:DD:5E:83:95:B2:12:65:4D:BB:AB:82:21:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 13A1A227F17FEBD29B49F7EE00C1FCD19F2F5595 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:a1:a2:27:f1:7f:eb:d2:9b:49:f7:ee:00:c1:fc:d1:9f:2f:55:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=7fe280275aa9f9c7a0127e51b8a188d4c2849f6ea06a9900cba6fc41789bbe1f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:af:b6:ae:50:23:e1:a5:fe:e7:4f:78:89:20: 06:39:b4:84:2f:4a:58:c2:15:38:b9:9a:39:4b:0f: d2:67:2c:36:33:32:0a:5a:d8:01:9b:1a:6d:a1:94: 42:36:bd:df:47:63:e5:5e:62:8c:b6:ad:5d:a2:c6: cc:be:a9:98:5a:f0:65:99:66:06:e5:ed:33:17:ef: 64:f9:02:a3:c0:02:cb:63:01:c1:49:30:e2:5c:2d: b7:98:1d:04:ee:ed:21:8a:81:81:1a:d8:75:72:45: cd:32:1a:52:2c:30:b5:23:03:7f:e5:9a:5b:d5:4b: 25:3e:83:99:27:7b:a8:20:37:54:e2:b3:47:82:71: 7f:ec:44:6e:76:24:17:6b:db:c4:6f:1b:da:ec:67: 57:f2:16:5a:34:91:21:4a:d5:e4:f8:e3:1e:ad:90: f8:43:d7:ab:ec:3c:11:ad:fa:65:2d:89:81:e8:6b: c4:ff:27:a2:62:f3:43:dc:b8:cc:d0:e8:26:58:32: e3:29:85:57:39:0a:16:49:1e:c3:58:ff:c5:0c:a1: 32:5c:6b:c0:13:c6:52:5b:30:ed:eb:ae:6d:f7:d3: 40:51:d9:b0:cc:98:62:8b:87:df:50:fe:8f:76:8a: 63:30:71:07:0e:c7:b0:87:7c:04:b6:19:5e:8f:11: 7e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:9B:62:8B:0B:CC:B8:DD:5E:83:95:B2:12:65:4D:BB:AB:82:21:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.16.0/21 Signature Algorithm: sha256WithRSAEncryption 02:18:97:19:11:15:05:76:0b:df:0d:cc:a8:33:dd:46:44:e3: ef:7c:18:b5:48:f1:d6:96:17:df:dc:97:05:e7:ac:7e:9f:ca: 2e:5e:d9:77:60:b9:5b:af:a6:48:ad:bc:62:e0:91:d6:2b:26: 13:6f:2c:3f:3a:1f:6b:55:9a:fc:8e:5b:22:e3:a1:dc:2b:18: f7:75:06:a5:5c:82:f2:5c:0d:9f:9d:91:c4:52:b3:0d:eb:52: 79:df:a4:72:c8:be:5d:16:f9:44:83:a2:4a:f7:b1:61:b6:3a: 97:df:80:43:5d:4d:a2:a2:04:c7:cd:82:53:a3:1c:65:73:c5: b8:3d:77:a7:17:30:4e:c1:7c:1c:5f:45:61:c6:81:f8:e4:0a: f2:3a:26:ab:9a:dd:c6:f7:01:40:41:e0:17:d9:f3:10:11:87: 03:89:fa:dc:c0:15:d0:cc:c2:88:38:ee:e0:3b:a8:11:89:3d: b2:b8:88:c1:43:f6:6f:73:23:55:50:85:1d:06:58:3d:ed:45: d7:9e:b0:8d:75:95:dd:91:02:f9:a5:d2:68:90:43:f8:e7:e5: 52:4c:63:17:10:5b:81:7c:d3:38:39:d9:50:ee:fc:6f:d3:5c: e0:a5:08:b9:0e:a6:c3:d6:04:f4:c9:92:fe:fd:45:19:5f:87: 37:61:b0:98 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE6GiJ/F/69KbSffuAMH80Z8vVZUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZmUyODAyNzVhYTlmOWM3YTAxMjdlNTFiOGExODhkNGMy ODQ5ZjZlYTA2YTk5MDBjYmE2ZmM0MTc4OWJiZTFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfr7auUCPhpf7nT3iJIAY5tIQvSljCFTi5mjlLD9JnLDYz Mgpa2AGbGm2hlEI2vd9HY+VeYoy2rV2ixsy+qZha8GWZZgbl7TMX72T5AqPAAstj AcFJMOJcLbeYHQTu7SGKgYEa2HVyRc0yGlIsMLUjA3/lmlvVSyU+g5kne6ggN1Ti s0eCcX/sRG52JBdr28RvG9rsZ1fyFlo0kSFK1eT44x6tkPhD16vsPBGt+mUtiYHo a8T/J6Ji80PcuMzQ6CZYMuMphVc5ChZJHsNY/8UMoTJca8ATxlJbMO3rrm3300BR 2bDMmGKLh99Q/o92imMwcQcOx7CHfAS2GV6PEX4RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAJtiiwvMuN1eg5WyEmVNu6uCIeYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhYTI1ZjIyLTliN2MtNGM5Yi04YjJkLTcxZmJiOTgwMWYzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjlhAwDQYJKoZIhvcNAQELBQADggEBAAIYlxkRFQV2C98NzKgz3UZE4+98 GLVI8daWF9/clwXnrH6fyi5e2XdguVuvpkitvGLgkdYrJhNvLD86H2tVmvyOWyLj odwrGPd1BqVcgvJcDZ+dkcRSsw3rUnnfpHLIvl0W+USDokr3sWG2OpffgENdTaKi BMfNglOjHGVzxbg9d6cXME7BfBxfRWHGgfjkCvI6Jqua3cb3AUBB4BfZ8xARhwOJ +tzAFdDMwog47uA7qBGJPbK4iMFD9m9zI1VQhR0GWD3tRdeesI11ld2RAvml0miQ Q/jn5VJMYxcQW4F80zg52VDu/G/TXOClCLkOpsPWBPTJkv79RRlfhzdhsJg= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:35 2024 by rpki-client on console-ams.rpki-client.org