$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa File: e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa (raw, json) Hash identifier: 1Is1yPolS407+hP2jntV0vo6gxRSIC8P4nGzxF1X+js= Subject key identifier: 90:7C:A1:22:73:AC:3D:00:60:0F:EE:7B:4A:4E:E7:CB:86:DD:B5:42 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 5ABFB1EFF85DB7D7F8C05387D5A837CD94CC4273 Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa Signing time: Fri 30 Aug 2024 00:00:00 +0000 ROA not before: Fri 30 Aug 2024 00:00:00 +0000 ROA not after: Fri 04 Oct 2024 23:59:59 +0000 asID: 16509 IP address blocks: 173.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Sep 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:bf:b1:ef:f8:5d:b7:d7:f8:c0:53:87:d5:a8:37:cd:94:cc:42:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Aug 30 00:00:00 2024 GMT Not After : Oct 4 23:59:59 2024 GMT Subject: serialNumber=c1dd0af84a18d455be73f106975eac5f8f35a39215a67d92466e67f335631b58, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e0:d1:42:fb:aa:51:85:4b:ee:dc:55:16:81: 96:87:d3:5e:2e:16:6f:32:1d:4a:20:df:7a:5b:4f: 25:1a:0d:f2:d8:d1:ca:34:75:38:e4:24:fe:98:83: a2:a6:75:e8:37:d9:c1:9c:88:e0:26:e2:24:3e:a8: 7a:75:f7:7b:cf:4f:8e:73:29:46:cc:31:81:e9:22: 4c:ad:b1:a2:67:31:97:a3:b6:c5:48:7f:39:2d:3c: 08:f5:d9:ab:03:b3:a3:cc:0c:fb:91:9a:8e:e7:be: de:ad:d4:4b:ef:69:8c:01:9e:4f:44:0f:44:ca:ed: d3:62:c2:dd:58:1b:92:86:55:fe:38:1e:6d:bd:60: e1:2c:ae:ba:3a:16:38:2f:58:06:24:92:3e:c8:70: 51:7b:8d:e9:4c:f4:0b:2c:65:ed:00:7d:b7:95:14: b3:a9:88:36:41:59:db:6d:ae:19:11:c3:71:8c:a8: 83:a2:a2:a5:da:41:d5:70:55:e9:35:82:4b:93:08: 39:fc:7b:7e:7b:3b:d7:8e:49:fd:17:2c:a8:d5:ae: 48:2f:df:53:4c:93:b5:58:40:ec:01:6d:9f:96:32: e5:74:22:16:28:7e:ea:4e:06:2a:dd:d9:c7:93:71: 57:ee:45:2e:ea:7d:8b:58:fa:99:99:2d:7d:27:02: 85:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:7C:A1:22:73:AC:3D:00:60:0F:EE:7B:4A:4E:E7:CB:86:DD:B5:42 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e41be3ce-ed0e-4c7e-a9fd-4114901fa40b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption a8:a8:17:cd:c1:0f:67:29:4c:8d:c9:7f:52:6f:54:f8:5c:43: 96:4e:d0:9a:e7:b6:26:cb:ef:63:e9:8b:22:e4:0a:fa:b8:27: 8e:fe:6d:b1:19:be:f8:f5:1c:11:f2:ec:91:8b:52:69:be:a9: a7:ff:ae:43:c3:ed:44:e6:03:d9:0f:6b:25:24:3d:17:51:ea: 8f:ff:39:b6:af:b6:64:54:b5:ea:b5:53:6b:e6:35:5f:3b:e2: b3:11:74:23:98:4c:77:ec:31:a9:c3:66:27:2d:c6:93:8a:29: c6:c2:2e:db:f4:46:94:7d:2e:ac:45:fa:b6:a4:c1:2b:57:88: 7e:dd:c8:c2:f9:ac:c6:b0:18:2b:f6:0a:a6:8c:74:5e:b1:aa: 28:ed:d9:41:c6:e6:63:23:1b:d6:aa:86:6a:4d:07:35:39:39: 40:29:54:c6:19:a3:3c:31:e9:ac:ce:e4:72:6e:c4:65:bf:73: ec:0f:a7:3d:dc:a0:93:b2:f3:7e:de:c0:38:14:e3:09:e6:1e: 0a:84:8f:88:f2:90:9f:57:40:c1:70:67:85:1a:95:cc:76:42: e7:91:55:dc:ce:84:b2:4c:a8:0f:de:c5:6d:78:26:ad:32:5a: 96:fe:9b:e0:02:c3:44:0f:4c:f3:25:f0:14:58:87:00:54:68: b4:d5:4c:3d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWr+x7/hdt9f4wFOH1ag3zZTMQnMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwODMwMDAwMDAwWhcNMjQxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWRkMGFmODRhMThkNDU1YmU3M2YxMDY5NzVlYWM1Zjhm MzVhMzkyMTVhNjdkOTI0NjZlNjdmMzM1NjMxYjU4MS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK4NFC+6pRhUvu3FUWgZaH014uFm8yHUog33pbTyUaDfLY 0co0dTjkJP6Yg6Kmdeg32cGciOAm4iQ+qHp193vPT45zKUbMMYHpIkytsaJnMZej tsVIfzktPAj12asDs6PMDPuRmo7nvt6t1EvvaYwBnk9ED0TK7dNiwt1YG5KGVf44 Hm29YOEsrro6FjgvWAYkkj7IcFF7jelM9AssZe0AfbeVFLOpiDZBWdttrhkRw3GM qIOioqXaQdVwVek1gkuTCDn8e357O9eOSf0XLKjVrkgv31NMk7VYQOwBbZ+WMuV0 IhYofupOBird2ceTcVfuRS7qfYtY+pmZLX0nAoU1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkHyhInOsPQBgD+57Sk7ny4bdtUIwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiL2U0MWJlM2NlLWVkMGUtNGM3ZS1hOWZkLTQxMTQ5MDFmYTQwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCtUjANBgkqhkiG9w0BAQsFAAOCAQEAqKgXzcEPZylMjcl/Um9U+FxDlk7Q mue2JsvvY+mLIuQK+rgnjv5tsRm++PUcEfLskYtSab6pp/+uQ8PtROYD2Q9rJSQ9 F1Hqj/85tq+2ZFS16rVTa+Y1XzvisxF0I5hMd+wxqcNmJy3Gk4opxsIu2/RGlH0u rEX6tqTBK1eIft3IwvmsxrAYK/YKpox0XrGqKO3ZQcbmYyMb1qqGak0HNTk5QClU xhmjPDHprM7kcm7EZb9z7A+nPdygk7Lzft7AOBTjCeYeCoSPiPKQn1dAwXBnhRqV zHZC55FV3M6EskyoD97FbXgmrTJalv6b4ALDRA9M8yXwFFiHAFRotNVMPQ== -----END CERTIFICATE-----Generated at Sat Sep 7 23:18:38 2024 by rpki-client on console-fra.rpki-client.org