$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7356e20-34b3-4ead-a435-c95c6ca47073.roa File: f7356e20-34b3-4ead-a435-c95c6ca47073.roa (raw, json) Hash identifier: Yxt2/MNaPz/r2MEcEN+wgT2w/TMxXbdtX7NQpi3qtYc= Subject key identifier: FB:BD:2C:80:F3:3B:F2:3D:96:6A:34:02:FD:2C:8C:67:49:E5:BE:3D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 033E2BA4E877A1D27E674A13106C5733FBF51A9D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7356e20-34b3-4ead-a435-c95c6ca47073.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:3e:2b:a4:e8:77:a1:d2:7e:67:4a:13:10:6c:57:33:fb:f5:1a:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=4be98455e59e7c023b15fb3b9dbaa8e1f279d84e0d31e117b670bd32d919f782, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:03:a0:6a:1a:ee:48:ac:70:22:bb:e9:ab:0b: 56:5c:1b:09:46:79:0a:10:3b:34:68:ec:6e:24:3e: b9:25:21:81:43:2d:86:18:ab:58:bc:26:61:e5:84: bf:12:ae:93:ea:84:52:29:9b:f6:e7:88:ac:b9:38: 4b:e6:fe:fb:dc:f4:67:88:7f:5d:10:12:9f:74:2b: 06:61:02:e8:e2:4c:d9:e6:f6:19:49:83:84:8c:42: fe:73:c0:f5:d3:ac:e0:f9:10:dd:d4:c8:9d:e6:3c: a8:3b:c6:52:c0:8d:17:46:c8:8e:9f:a8:3b:bf:43: b4:06:c4:5f:de:06:b8:13:9d:a4:7e:6c:17:c7:f7: d0:47:a4:bb:af:ac:c4:84:0f:dd:f8:ff:cd:b3:95: e1:ab:2e:09:59:65:d2:9c:90:a8:36:f3:86:b5:17: dc:a5:95:71:44:69:20:a7:6b:ab:d7:92:ff:67:9a: f0:3e:0e:6f:30:8f:84:9f:26:0e:6a:0c:aa:bb:b4: 68:54:e4:b1:85:db:8e:af:94:c2:86:de:c3:e6:25: c2:9f:64:b6:20:94:25:e4:18:c0:5f:de:fa:f1:f3: 6b:20:a9:2b:a0:57:44:74:89:21:9e:e5:e4:12:c3: 84:6f:fb:9d:20:60:9e:db:95:c6:d4:de:f1:71:24: df:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:BD:2C:80:F3:3B:F2:3D:96:6A:34:02:FD:2C:8C:67:49:E5:BE:3D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7356e20-34b3-4ead-a435-c95c6ca47073.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.112.0/24 Signature Algorithm: sha256WithRSAEncryption cb:3b:f8:21:e5:32:46:78:ae:57:0a:35:7c:b7:4f:c9:84:a0: 6e:02:69:8a:8b:60:22:47:ed:66:fb:a4:ef:f4:c6:f6:a4:b8: 8d:7f:78:aa:c1:68:3c:ff:fb:17:0e:b9:ee:69:7d:89:27:b4: 96:42:a4:d0:b4:29:6b:cc:a7:9b:6b:5a:4e:8a:7f:57:0c:80: f2:91:88:a0:1a:32:dd:92:b7:fe:fd:d1:06:5b:81:4a:83:a0: 63:ce:0f:15:74:c2:6f:3d:5a:74:6f:a5:16:c9:ea:d3:e2:3a: 0b:4f:5b:a9:02:88:a8:83:08:c2:e5:5d:34:4a:09:ad:07:98: 22:63:2e:ec:66:48:e7:2a:70:d9:8e:98:2d:6b:63:38:41:79: 27:29:6d:94:34:d0:31:d4:fb:04:08:ff:53:52:97:e2:43:25: d7:4a:5f:98:40:12:02:ea:54:bc:f8:4e:5c:2f:8d:99:c9:d6: 00:f8:cd:3a:6e:3e:22:b6:76:45:92:2c:d8:95:1a:de:0d:d1: 3e:37:58:cf:55:11:3d:b3:d3:6d:22:42:69:0e:e3:93:28:8e: 45:a2:fb:26:8d:80:10:01:7c:bc:5b:5a:e1:de:4a:81:89:7c: 8d:90:eb:fd:91:1a:64:56:f5:e4:2b:d0:5d:60:6e:36:aa:73: 3b:d0:4e:af -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAz4rpOh3odJ+Z0oTEGxXM/v1Gp0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YmU5ODQ1NWU1OWU3YzAyM2IxNWZiM2I5ZGJhYThlMWYy NzlkODRlMGQzMWUxMTdiNjcwYmQzMmQ5MTlmNzgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpA6BqGu5IrHAiu+mrC1ZcGwlGeQoQOzRo7G4kPrklIYFD LYYYq1i8JmHlhL8SrpPqhFIpm/bniKy5OEvm/vvc9GeIf10QEp90KwZhAujiTNnm 9hlJg4SMQv5zwPXTrOD5EN3UyJ3mPKg7xlLAjRdGyI6fqDu/Q7QGxF/eBrgTnaR+ bBfH99BHpLuvrMSED934/82zleGrLglZZdKckKg284a1F9yllXFEaSCna6vXkv9n mvA+Dm8wj4SfJg5qDKq7tGhU5LGF246vlMKG3sPmJcKfZLYglCXkGMBf3vrx82sg qSugV0R0iSGe5eQSw4Rv+50gYJ7blcbU3vFxJN/DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+70sgPM78j2WajQC/SyMZ0nlvj0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y3MzU2ZTIwLTM0YjMtNGVhZC1hNDM1LWM5NWM2Y2E0NzA3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HAwDQYJKoZIhvcNAQELBQADggEBAMs7+CHlMkZ4rlcKNXy3T8mEoG4C aYqLYCJH7Wb7pO/0xvakuI1/eKrBaDz/+xcOue5pfYkntJZCpNC0KWvMp5trWk6K f1cMgPKRiKAaMt2St/790QZbgUqDoGPODxV0wm89WnRvpRbJ6tPiOgtPW6kCiKiD CMLlXTRKCa0HmCJjLuxmSOcqcNmOmC1rYzhBeScpbZQ00DHU+wQI/1NSl+JDJddK X5hAEgLqVLz4TlwvjZnJ1gD4zTpuPiK2dkWSLNiVGt4N0T43WM9VET2z020iQmkO 45MojkWi+yaNgBABfLxbWuHeSoGJfI2Q6/2RGmRW9eQr0F1gbjaqczvQTq8= -----END CERTIFICATE-----Generated at Fri Nov 22 01:34:44 2024 by rpki-client on console-ams.rpki-client.org