$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de5dd6d4-c289-407a-b099-6e04ecbae72c.roa File: de5dd6d4-c289-407a-b099-6e04ecbae72c.roa (raw, json) Hash identifier: fWpyVkFeMMYAtSW9li96VTiSy6CTjgtdtGRVBYqJ7OI= Subject key identifier: D3:64:6B:7F:F1:1F:23:1D:99:B6:2A:0A:77:AA:BC:51:9D:3A:AF:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 239CDA2F8BEA386C2D2A5E03F4E469271C35E316 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de5dd6d4-c289-407a-b099-6e04ecbae72c.roa Signing time: Mon 28 Oct 2024 00:00:00 +0000 ROA not before: Mon 28 Oct 2024 00:00:00 +0000 ROA not after: Mon 02 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.35.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:9c:da:2f:8b:ea:38:6c:2d:2a:5e:03:f4:e4:69:27:1c:35:e3:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Oct 28 00:00:00 2024 GMT Not After : Dec 2 23:59:59 2024 GMT Subject: serialNumber=62a300a5b2e2c03afce745c309d581cd748db0314e8b04d32b1b5b2d3c92f15f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:51:4e:c6:85:cb:7d:18:87:cf:e0:ef:d3:90: 1f:68:79:ed:9f:b6:f1:42:4d:b5:d9:35:50:0d:ac: 2e:d7:86:78:7a:7a:f9:77:5f:61:58:40:f5:4a:44: 10:06:a5:3e:7a:f7:74:d8:5f:89:a7:0c:fd:96:08: 6a:06:b3:f3:1e:0f:46:e1:75:1d:b2:e3:e9:61:8f: b4:0a:cb:56:d7:d3:9e:b9:86:8a:ac:66:10:b6:54: 97:a2:14:dd:3c:d0:fd:62:b9:b4:a6:bb:1d:4e:3d: b8:a8:6a:5a:b0:38:cd:d3:f8:d0:1b:89:5e:69:61: dd:b7:93:57:f4:86:fe:84:6c:f7:f5:45:51:17:05: d1:c1:de:94:6a:f4:0a:b2:b7:bd:14:6f:cc:ae:bb: 91:18:4a:44:36:8c:a5:c3:46:ea:17:67:35:95:da: b1:7e:16:8c:b7:bb:49:5d:fa:78:f6:92:e8:e4:dc: f3:0c:07:09:88:40:69:64:a3:7f:3f:dd:8c:0b:a8: 04:24:da:ea:eb:d0:04:2a:96:ea:2c:17:ec:57:62: d5:5b:ae:97:1c:06:0e:ff:c5:20:19:c4:1e:e3:3f: 41:44:4a:df:8e:f0:e1:bf:4b:00:35:b5:3b:2c:4d: 12:9b:d1:69:ac:c5:6d:8c:e8:ac:05:a4:74:19:c5: 4c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:64:6B:7F:F1:1F:23:1D:99:B6:2A:0A:77:AA:BC:51:9D:3A:AF:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de5dd6d4-c289-407a-b099-6e04ecbae72c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.35.0.0/16 Signature Algorithm: sha256WithRSAEncryption b4:6c:f9:d3:a4:6b:11:e1:be:b5:46:a8:26:5d:da:ac:77:4b: 13:dc:25:a8:6c:f9:6c:dc:76:ad:91:67:0c:2b:46:39:79:89: d9:34:e2:39:e1:08:ba:01:39:db:46:a7:29:a7:16:7c:a6:32: 61:f4:38:11:ec:b2:80:b5:f8:8c:c6:40:c4:00:69:8a:32:62: 0d:01:1f:ba:2b:d6:81:bd:46:6a:49:95:6b:22:bf:30:eb:a8: d2:86:44:6e:29:6d:39:1c:49:cd:55:20:2a:51:0f:7e:6c:f3: ec:e6:18:7e:5f:85:5b:96:2b:7f:00:5b:8b:4d:2a:b1:a7:f0: 0b:84:f4:7f:f2:d8:a0:41:1d:e2:6c:cb:27:09:f8:7e:7c:1c: de:d5:82:d0:66:e8:3d:67:23:3e:e2:5b:ea:bb:f4:b8:0d:cd: ab:f7:41:b1:90:bf:7f:7a:b8:7f:78:d7:fc:ce:a6:6c:d4:c5: ba:43:60:08:ef:b1:c0:b4:f7:17:41:09:5c:49:4c:fe:18:e6: 97:21:85:55:ee:60:60:5c:a2:ca:6f:dc:60:05:31:65:92:75: 8a:8d:19:56:7c:8d:bf:f6:fe:1a:72:a4:0a:d4:68:39:e2:97: 1f:3b:e2:fc:1d:b6:dd:73:09:2a:b1:47:d0:47:1d:2f:4f:ad: a4:10:69:d5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI5zaL4vqOGwtKl4D9ORpJxw14xYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMDI4MDAwMDAwWhcNMjQxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MmEzMDBhNWIyZTJjMDNhZmNlNzQ1YzMwOWQ1ODFjZDc0 OGRiMDMxNGU4YjA0ZDMyYjFiNWIyZDNjOTJmMTVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYUU7Ghct9GIfP4O/TkB9oee2ftvFCTbXZNVANrC7Xhnh6 evl3X2FYQPVKRBAGpT5693TYX4mnDP2WCGoGs/MeD0bhdR2y4+lhj7QKy1bX0565 hoqsZhC2VJeiFN080P1iubSmux1OPbioalqwOM3T+NAbiV5pYd23k1f0hv6EbPf1 RVEXBdHB3pRq9Aqyt70Ub8yuu5EYSkQ2jKXDRuoXZzWV2rF+Foy3u0ld+nj2kujk 3PMMBwmIQGlko38/3YwLqAQk2urr0AQqluosF+xXYtVbrpccBg7/xSAZxB7jP0FE St+O8OG/SwA1tTssTRKb0WmsxW2M6KwFpHQZxUxVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU02Rrf/EfIx2ZtioKd6q8UZ06rxwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RlNWRkNmQ0LWMyODktNDA3YS1iMDk5LTZlMDRlY2JhZTcyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoIzANBgkqhkiG9w0BAQsFAAOCAQEAtGz506RrEeG+tUaoJl3arHdLE9wl qGz5bNx2rZFnDCtGOXmJ2TTiOeEIugE520anKacWfKYyYfQ4EeyygLX4jMZAxABp ijJiDQEfuivWgb1GakmVayK/MOuo0oZEbiltORxJzVUgKlEPfmzz7OYYfl+FW5Yr fwBbi00qsafwC4T0f/LYoEEd4mzLJwn4fnwc3tWC0GboPWcjPuJb6rv0uA3Nq/dB sZC/f3q4f3jX/M6mbNTFukNgCO+xwLT3F0EJXElM/hjmlyGFVe5gYFyiym/cYAUx ZZJ1io0ZVnyNv/b+GnKkCtRoOeKXHzvi/B223XMJKrFH0EcdL0+tpBBp1Q== -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:36 2024 by rpki-client on console-ams.rpki-client.org