$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f09b41b9-1746-42a6-a74b-8ab258b99e97.roa File: f09b41b9-1746-42a6-a74b-8ab258b99e97.roa (raw, json) Hash identifier: 73aGEna3IHkTQ+GY84QwvP9sZ3MqZgZZm7mtc/I9L5k= Subject key identifier: 8F:3D:3E:94:C4:1B:A4:EF:CB:7F:00:6C:E6:EF:56:05:AD:B6:CD:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D2028168DFDB5707DB4C33613F1E339EA2A842C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f09b41b9-1746-42a6-a74b-8ab258b99e97.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 70.232.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:20:28:16:8d:fd:b5:70:7d:b4:c3:36:13:f1:e3:39:ea:2a:84:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=2f34d09fe84bea410064904e06baaa175d59aa91d25f68d4d075c2da6a5561e5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:50:fd:ea:83:d5:93:a3:db:ff:60:6d:70:b9: 65:72:b3:39:2c:8d:11:a2:c0:42:b7:2c:b6:6d:f5: fe:82:a5:7f:85:49:db:9a:40:8a:6b:d7:3d:4b:8e: 13:43:08:24:48:c8:2e:81:7b:50:5b:1c:41:ca:b4: b0:ce:6d:96:20:80:d1:6a:d1:76:98:31:c4:87:fb: a4:96:2c:60:98:d4:dc:d0:34:41:63:7d:d9:d3:02: 26:92:fe:de:a0:fe:0c:2e:0f:e5:6b:6c:24:22:f6: 2a:22:b4:bd:d8:01:0f:35:01:67:3d:ae:87:57:ad: 23:bd:5d:48:04:5b:42:5c:60:85:d3:97:99:63:6c: f9:96:2c:e1:11:93:da:6b:dc:8e:29:73:48:47:45: fa:5f:99:dc:f5:a8:83:22:41:10:e4:b1:1c:38:34: 2f:94:a8:cf:db:de:03:a8:a3:08:d5:c0:4a:67:b4: 7e:dd:78:df:e4:e2:d3:83:11:c9:1e:1b:08:43:68: f6:51:96:65:78:dd:9d:3b:4d:7e:69:7c:bd:c9:8b: 10:b8:85:4e:62:ea:c7:2b:39:0e:90:db:c3:11:0d: 14:98:22:9d:54:86:b0:04:31:93:c2:e7:87:6e:54: 85:1b:02:fc:aa:5f:4f:12:f9:5a:40:12:34:4c:8d: 00:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:3D:3E:94:C4:1B:A4:EF:CB:7F:00:6C:E6:EF:56:05:AD:B6:CD:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f09b41b9-1746-42a6-a74b-8ab258b99e97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.64.0/18 Signature Algorithm: sha256WithRSAEncryption 98:2a:3b:09:19:92:b2:79:94:90:26:96:b0:f9:e0:1c:74:60: 16:ea:73:53:bd:71:d3:63:ed:9f:65:53:8f:6b:f0:14:86:71: cf:c7:e1:70:50:2d:3f:ec:f6:92:96:84:51:3c:d0:0e:4b:b4: d4:b5:78:91:0d:69:45:99:d3:3d:e1:ee:f4:bb:c1:ff:a1:8c: 90:2e:5f:85:21:8f:a9:b4:6b:f0:d2:bb:06:5d:26:99:2d:4a: b9:da:de:51:f6:cc:49:99:6a:95:96:9c:a1:b5:3d:83:56:ab: 7d:4c:5e:fc:42:37:aa:6f:35:d3:91:8a:07:45:fa:b5:1f:39: 42:dd:ab:c2:9a:d7:82:09:97:3b:97:eb:23:a8:b3:3c:77:48: 53:62:2b:53:0b:a7:40:60:f8:cb:9d:9d:cc:b3:35:42:09:a1: 5b:89:23:d2:f5:cb:56:a7:bb:56:49:30:84:9b:a3:a6:84:a9: 37:d5:f8:59:46:37:09:50:a6:7f:0d:f0:fb:d2:14:f6:3e:67: 0d:e3:33:60:f8:d2:22:be:1f:f9:10:f9:a0:b2:76:30:60:af: 11:ea:e3:74:27:07:d2:80:66:ad:9c:15:38:9d:54:b6:42:7f: a3:97:41:00:e2:80:1c:d4:a7:37:6c:f4:6b:16:32:24:d0:51: 3c:aa:e9:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbSAoFo39tXB9tMM2E/HjOeoqhCwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjM0ZDA5ZmU4NGJlYTQxMDA2NDkwNGUwNmJhYWExNzVk NTlhYTkxZDI1ZjY4ZDRkMDc1YzJkYTZhNTU2MWU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSUP3qg9WTo9v/YG1wuWVyszksjRGiwEK3LLZt9f6CpX+F SduaQIpr1z1LjhNDCCRIyC6Be1BbHEHKtLDObZYggNFq0XaYMcSH+6SWLGCY1NzQ NEFjfdnTAiaS/t6g/gwuD+VrbCQi9ioitL3YAQ81AWc9rodXrSO9XUgEW0JcYIXT l5ljbPmWLOERk9pr3I4pc0hHRfpfmdz1qIMiQRDksRw4NC+UqM/b3gOoowjVwEpn tH7deN/k4tODEckeGwhDaPZRlmV43Z07TX5pfL3JixC4hU5i6scrOQ6Q28MRDRSY Ip1UhrAEMZPC54duVIUbAvyqX08S+VpAEjRMjQAlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjz0+lMQbpO/LfwBs5u9WBa22zXYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwOWI0MWI5LTE3NDYtNDJhNi1hNzRiLThhYjI1OGI5OWU5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZG6EAwDQYJKoZIhvcNAQELBQADggEBAJgqOwkZkrJ5lJAmlrD54Bx0YBbq c1O9cdNj7Z9lU49r8BSGcc/H4XBQLT/s9pKWhFE80A5LtNS1eJENaUWZ0z3h7vS7 wf+hjJAuX4Uhj6m0a/DSuwZdJpktSrna3lH2zEmZapWWnKG1PYNWq31MXvxCN6pv NdORigdF+rUfOULdq8Ka14IJlzuX6yOoszx3SFNiK1MLp0Bg+MudncyzNUIJoVuJ I9L1y1anu1ZJMISbo6aEqTfV+FlGNwlQpn8N8PvSFPY+Zw3jM2D40iK+H/kQ+aCy djBgrxHq43QnB9KAZq2cFTidVLZCf6OXQQDigBzUpzds9GsWMiTQUTyq6TE= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:43 2024 by rpki-client on console-ams.rpki-client.org