$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e6168394-3be1-443a-877a-2631aa1a9b31.roa File: e6168394-3be1-443a-877a-2631aa1a9b31.roa (raw, json) Hash identifier: Mb3QW6FfFmjYcB+tVkbY13nSzG0xCWzNlRL8NDkgHXo= Subject key identifier: 1B:78:17:0C:0A:17:76:22:D5:27:5A:B9:0C:E5:78:29:57:5B:41:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0DA3E4410971144F00F0E81E674F59AEBBA7CBF1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e6168394-3be1-443a-877a-2631aa1a9b31.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 159.20.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:a3:e4:41:09:71:14:4f:00:f0:e8:1e:67:4f:59:ae:bb:a7:cb:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=6291f625773c84d2ce660a095d18d0aba4fb25d67771255793846ea20fa0ec8c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:da:61:db:79:82:85:24:03:69:c0:e6:e3:02: 53:c3:80:94:9c:bc:32:45:ac:ab:86:09:a4:11:ce: 81:83:4a:9f:20:8e:e3:65:16:ab:ab:36:c0:79:4c: b6:40:1a:b3:75:01:0f:45:4e:fa:83:39:8d:1f:84: 36:15:3f:00:d3:62:16:e4:05:cd:ae:09:63:f4:ef: ad:09:f3:cb:ae:07:26:d0:dd:52:95:eb:ec:e3:54: 2c:30:f3:00:ba:8a:60:d7:96:0c:e0:79:08:c8:b0: 96:db:0b:41:f5:14:f5:c1:4c:f4:8f:9d:b4:bc:63: a3:a9:cc:87:e7:88:ff:01:98:9f:3f:a7:97:33:a2: 85:8b:55:cf:83:9e:5f:42:6b:28:26:6d:ab:e2:b1: 65:b1:52:9f:2a:69:69:39:b6:8b:40:ca:4a:7e:c5: 7d:b3:d7:a4:e1:d2:7a:3b:1e:a3:48:53:a6:37:fd: 38:52:77:6b:c9:00:44:8d:ae:c3:d4:2d:de:68:d5: 04:e5:f7:38:6c:ce:df:df:e6:f5:70:08:cd:b8:76: c7:e8:e2:d7:d6:5c:a1:90:c8:bf:97:12:3a:6b:8b: 00:2f:6e:0b:31:2a:5c:54:4b:a8:f8:89:09:dd:fa: b9:7b:2e:b9:ec:55:12:de:ef:16:56:bd:e5:1e:c1: fe:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:78:17:0C:0A:17:76:22:D5:27:5A:B9:0C:E5:78:29:57:5B:41:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e6168394-3be1-443a-877a-2631aa1a9b31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.20.128.0/17 Signature Algorithm: sha256WithRSAEncryption 2b:68:54:0d:ff:c6:73:b6:dc:7d:84:b8:9b:68:c7:81:df:a6: b2:66:19:1a:89:e6:21:2f:2c:68:7a:ee:52:2b:a9:da:ff:71: 98:cb:15:38:e8:a4:53:c8:ee:b5:69:e3:39:6b:0d:b5:09:d1: 42:24:44:89:95:60:7b:a8:47:de:7b:67:0a:16:3f:71:20:31: 5d:04:7e:0b:5d:59:47:ea:5c:0d:c2:95:29:dd:54:9f:97:37: 34:e9:7a:3e:85:1c:bd:20:3c:22:64:dc:3f:4f:69:0e:af:c0: d5:71:d2:cd:53:c6:52:9a:cb:9c:89:83:95:98:eb:da:af:3f: db:75:36:8e:5d:91:aa:4a:8c:0f:c9:0c:6b:dc:9f:fd:10:b2: 8e:f6:cb:f3:db:94:3f:02:f9:ee:97:1f:8f:bb:71:5a:2b:b3: ce:dd:0a:14:4e:11:10:25:06:a6:e3:2c:49:da:46:ab:f1:c5: 20:61:4c:6b:67:87:07:a7:65:10:ac:6c:71:0b:9d:57:95:ce: 86:cf:03:25:a7:9a:ad:bb:d8:2f:1e:33:a4:3d:cc:df:6c:4d: 5a:dc:cc:1b:65:00:9e:dc:75:39:d7:1b:2e:ea:c8:0d:91:e4: 4b:81:0d:62:b2:9d:25:1b:7e:da:7d:96:97:d3:67:9a:29:d1: c5:83:ff:05 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDaPkQQlxFE8A8OgeZ09Zrruny/EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjkxZjYyNTc3M2M4NGQyY2U2NjBhMDk1ZDE4ZDBhYmE0 ZmIyNWQ2Nzc3MTI1NTc5Mzg0NmVhMjBmYTBlYzhjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC22mHbeYKFJANpwObjAlPDgJScvDJFrKuGCaQRzoGDSp8g juNlFqurNsB5TLZAGrN1AQ9FTvqDOY0fhDYVPwDTYhbkBc2uCWP0760J88uuBybQ 3VKV6+zjVCww8wC6imDXlgzgeQjIsJbbC0H1FPXBTPSPnbS8Y6OpzIfniP8BmJ8/ p5czooWLVc+Dnl9CaygmbavisWWxUp8qaWk5totAykp+xX2z16Th0no7HqNIU6Y3 /ThSd2vJAESNrsPULd5o1QTl9zhszt/f5vVwCM24dsfo4tfWXKGQyL+XEjpriwAv bgsxKlxUS6j4iQnd+rl7LrnsVRLe7xZWveUewf5hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG3gXDAoXdiLVJ1q5DOV4KVdbQSIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U2MTY4Mzk0LTNiZTEtNDQzYS04NzdhLTI2MzFhYTFhOWIzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAefFIAwDQYJKoZIhvcNAQELBQADggEBACtoVA3/xnO23H2EuJtox4HfprJm GRqJ5iEvLGh67lIrqdr/cZjLFTjopFPI7rVp4zlrDbUJ0UIkRImVYHuoR957ZwoW P3EgMV0EfgtdWUfqXA3ClSndVJ+XNzTpej6FHL0gPCJk3D9PaQ6vwNVx0s1TxlKa y5yJg5WY69qvP9t1No5dkapKjA/JDGvcn/0Qso72y/PblD8C+e6XH4+7cVors87d ChROERAlBqbjLEnaRqvxxSBhTGtnhwenZRCsbHELnVeVzobPAyWnmq272C8eM6Q9 zN9sTVrczBtlAJ7cdTnXGy7qyA2R5EuBDWKynSUbftp9lpfTZ5op0cWD/wU= -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:39 2024 by rpki-client on console-ams.rpki-client.org