$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee2fdf06-81e8-4e0a-8595-822d19ded480.roa File: ee2fdf06-81e8-4e0a-8595-822d19ded480.roa (raw, json) Hash identifier: wBNrY1IAwNP3pl5opjHXpS68LkzwOS2bdG2bi7fpWQc= Subject key identifier: 4B:AF:A7:F8:4A:EA:98:D0:96:BD:F1:D3:31:DB:3C:E1:63:27:F7:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7ACD5F19C5CB69E1C7F3B6E288418283459182A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee2fdf06-81e8-4e0a-8595-822d19ded480.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 74.127.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:cd:5f:19:c5:cb:69:e1:c7:f3:b6:e2:88:41:82:83:45:91:82:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=1cf1b1fd123c277ddba6e1a0af75ba054246847e00c45f22e45009b6aae54803, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2c:20:49:6f:af:4d:86:c4:89:ef:12:1d:09: ca:78:22:22:a4:59:11:8e:55:28:f0:21:fa:c2:8f: 54:62:46:6a:80:42:d5:88:0b:7c:64:b0:b1:00:74: f0:af:df:95:52:27:74:d9:51:c3:f7:c1:b9:22:89: a4:ba:e4:e8:d7:58:c9:c9:0b:4a:ea:cb:b0:09:8d: a2:b7:fc:59:4a:e8:10:d3:8d:a1:31:fd:d1:75:29: ac:a5:c4:43:a6:e5:0d:43:5f:b3:e7:6c:55:1d:30: b2:04:b2:84:1f:1f:e1:3b:30:40:30:6d:1c:5f:dd: 56:8a:0c:55:89:14:c2:55:4c:b4:85:5e:df:67:ee: 20:e4:9a:e7:b7:70:50:f9:dd:af:e0:39:13:2e:b9: 29:b0:59:ce:25:c7:7f:fe:a1:9f:be:6b:97:20:81: 8a:2c:bb:4a:ef:62:b4:e4:32:0f:ec:3a:9b:a5:4e: 55:02:55:cc:a6:c7:31:c9:36:86:ff:9f:1e:ad:80: 61:b9:1e:32:24:71:3e:f9:2f:2e:7f:5d:8e:38:9b: 0c:cc:04:42:3c:b8:71:d0:16:9a:6e:e6:9a:4b:c7: 64:53:50:3e:f9:cc:84:06:f5:86:85:b9:e1:83:7d: d8:72:e1:d3:67:f8:1a:1d:26:32:93:9a:6b:e5:15: 11:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:AF:A7:F8:4A:EA:98:D0:96:BD:F1:D3:31:DB:3C:E1:63:27:F7:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee2fdf06-81e8-4e0a-8595-822d19ded480.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.127.0.0/18 Signature Algorithm: sha256WithRSAEncryption 29:d0:dc:a3:d7:06:37:e0:76:52:b2:72:7d:62:48:7d:df:1b: cc:01:7f:c1:1b:9f:35:29:a9:17:7f:89:08:2d:20:c3:2c:22: 09:86:08:f3:9b:ba:f9:f0:05:42:be:57:12:6e:5d:ae:e0:e9: b0:ff:b8:27:71:55:b6:d1:27:79:13:d5:42:4c:fd:4a:6f:f9: b6:48:8c:3c:8f:d7:f3:8c:64:85:6a:b9:dd:ed:92:54:3b:28: 46:83:c9:d5:19:3b:8a:10:e1:c0:fb:2d:38:71:0e:99:70:3c: f6:09:8e:29:0d:56:c6:2c:dd:e2:41:82:ca:b0:e9:48:f7:8e: 2d:41:2d:21:ed:8b:18:4f:33:a6:8b:a5:ce:8c:60:53:c6:f7: 88:c7:57:a5:f0:7c:dd:5b:0c:6c:5e:0a:95:ba:27:d4:66:a5: 37:a5:00:e8:f3:a6:ed:b9:e3:5b:2f:e3:70:7e:32:4a:6b:cf: 01:4d:28:cc:d0:68:f6:76:1a:5e:24:e3:6f:3d:c9:40:d5:1b: d4:53:b6:94:df:e7:12:2b:4f:9f:1c:5e:e5:7b:e1:39:ce:b2: b9:05:bc:8d:a3:15:31:b7:ac:24:b2:47:ff:78:a9:35:13:65: aa:1b:a9:8c:db:c5:b2:e4:7b:0d:83:5b:44:46:2a:b4:d8:3b: 20:55:73:e7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUes1fGcXLaeHH87biiEGCg0WRgqEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2YxYjFmZDEyM2MyNzdkZGJhNmUxYTBhZjc1YmEwNTQy NDY4NDdlMDBjNDVmMjJlNDUwMDliNmFhZTU0ODAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyLCBJb69NhsSJ7xIdCcp4IiKkWRGOVSjwIfrCj1RiRmqA QtWIC3xksLEAdPCv35VSJ3TZUcP3wbkiiaS65OjXWMnJC0rqy7AJjaK3/FlK6BDT jaEx/dF1KaylxEOm5Q1DX7PnbFUdMLIEsoQfH+E7MEAwbRxf3VaKDFWJFMJVTLSF Xt9n7iDkmue3cFD53a/gORMuuSmwWc4lx3/+oZ++a5cggYosu0rvYrTkMg/sOpul TlUCVcymxzHJNob/nx6tgGG5HjIkcT75Ly5/XY44mwzMBEI8uHHQFppu5ppLx2RT UD75zIQG9YaFueGDfdhy4dNn+BodJjKTmmvlFRGjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS6+n+ErqmNCWvfHTMds84WMn914wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlMmZkZjA2LTgxZTgtNGUwYS04NTk1LTgyMmQxOWRlZDQ4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZKfwAwDQYJKoZIhvcNAQELBQADggEBACnQ3KPXBjfgdlKycn1iSH3fG8wB f8EbnzUpqRd/iQgtIMMsIgmGCPObuvnwBUK+VxJuXa7g6bD/uCdxVbbRJ3kT1UJM /Upv+bZIjDyP1/OMZIVqud3tklQ7KEaDydUZO4oQ4cD7LThxDplwPPYJjikNVsYs 3eJBgsqw6Uj3ji1BLSHtixhPM6aLpc6MYFPG94jHV6XwfN1bDGxeCpW6J9RmpTel AOjzpu2541sv43B+MkprzwFNKMzQaPZ2Gl4k4289yUDVG9RTtpTf5xIrT58cXuV7 4TnOsrkFvI2jFTG3rCSyR/94qTUTZaobqYzbxbLkew2DW0RGKrTYOyBVc+c= -----END CERTIFICATE-----Generated at Fri Nov 22 04:03:23 2024 by rpki-client on console-ams.rpki-client.org