$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa File: 8bae045f-365b-43cf-99fc-12cbcbce5f67.roa (raw, json) Hash identifier: RsAqTj7FN8vPHH93vmh3+AedJLP+HCE/OVrgta4NGVs= Subject key identifier: 8E:9A:34:4E:AE:E0:5A:88:20:03:7C:72:A9:D8:50:68:89:C3:54:53 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 126ADD6031702D1066265A9BA2A887AD9370B348 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:6a:dd:60:31:70:2d:10:66:26:5a:9b:a2:a8:87:ad:93:70:b3:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=7e0f3174e092e6b27abf0d103b9254df452c449aad0129a1b96ba01709c68bf1, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:76:7c:c8:55:51:39:2d:d4:f7:64:cc:cb:6e: 4d:67:11:4c:a8:a9:0f:1b:f6:1a:27:b7:69:44:5b: 6b:cd:90:23:d2:3b:3a:08:78:ef:9b:c2:11:c2:f4: de:1a:ec:90:53:b5:46:8e:0b:18:70:15:69:15:f1: 3e:58:d3:cd:89:5b:8e:a7:d8:4f:75:9a:05:55:28: 60:10:42:98:e7:e4:17:2b:33:2c:e3:73:e3:d7:6a: 0a:9e:af:bd:b0:23:b9:ea:ae:74:6c:bc:3b:52:a5: a9:60:f3:c5:d5:8c:fc:b4:7f:bd:83:d0:ae:e5:46: f8:a0:d5:44:ef:fe:98:29:61:15:4c:a5:35:f9:eb: 8c:0f:07:26:1e:5d:b8:f4:ec:7c:24:05:5b:de:9f: 7b:9a:8a:01:c2:ae:a1:dc:08:f3:a2:6d:41:1e:59: 09:51:c9:91:c8:4a:fd:38:35:5a:6a:1e:be:11:37: 76:f2:8d:39:2b:36:48:dc:53:7d:33:8c:72:be:e3: 18:3a:02:ea:c9:3a:2f:45:c9:1b:58:ff:fb:1c:0a: 42:fb:37:b2:25:b6:7d:f5:fa:18:94:f8:dd:42:ec: 3a:0d:0d:71:ad:6d:5d:8d:bc:fa:c1:4b:31:26:65: 2e:de:66:87:1f:45:b2:62:cc:65:e0:84:27:4e:ee: 13:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9A:34:4E:AE:E0:5A:88:20:03:7C:72:A9:D8:50:68:89:C3:54:53 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.104.0/21 Signature Algorithm: sha256WithRSAEncryption 31:06:e0:98:2e:2d:15:c3:f0:1d:a1:10:3e:bb:2b:9c:aa:cf: a1:1e:3f:e9:df:cf:54:0f:6c:93:ef:fa:c2:a8:12:07:a4:02: 57:30:5c:c7:e3:44:85:5e:de:2c:92:9a:58:28:6d:43:e8:60: 2e:b2:8e:1b:aa:0a:ed:c4:f2:cd:02:7c:86:ed:7c:76:ad:cb: ab:4b:1f:11:e0:60:89:dd:1e:22:a2:a0:b7:db:4d:64:cc:35: 29:28:a2:92:a2:88:df:3c:c0:43:95:e1:c3:e7:06:6c:d0:2a: 0a:e5:56:01:07:7d:85:b6:62:1a:3f:ef:32:40:9d:b5:c0:d2: 12:45:57:80:f9:cb:a7:ea:d6:7b:c0:ae:e4:b7:a6:97:d4:a1: b2:bf:a3:bb:21:8c:05:f7:8f:f0:69:ae:6b:a3:11:64:29:cf: 41:43:64:80:a5:1a:64:83:b0:3f:b9:91:3d:6f:71:a5:51:5b: ee:0b:52:60:75:80:9b:5e:4e:8a:3f:fb:c3:85:a3:b5:d4:3b: 49:99:a9:50:2a:f7:97:89:57:77:74:e6:27:97:dc:4b:b9:86: 84:63:f0:e8:3c:b5:0f:6c:0b:3f:4f:b1:a5:07:bf:9d:1d:a3: 1e:1c:c5:99:1a:a5:c5:04:f2:a1:1f:34:77:4a:f8:57:80:c2: c1:22:3b:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEmrdYDFwLRBmJlqboqiHrZNws0gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTBmMzE3NGUwOTJlNmIyN2FiZjBkMTAzYjkyNTRkZjQ1 MmM0NDlhYWQwMTI5YTFiOTZiYTAxNzA5YzY4YmYxMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLdnzIVVE5LdT3ZMzLbk1nEUyoqQ8b9hont2lEW2vNkCPS OzoIeO+bwhHC9N4a7JBTtUaOCxhwFWkV8T5Y082JW46n2E91mgVVKGAQQpjn5Bcr Myzjc+PXagqer72wI7nqrnRsvDtSpalg88XVjPy0f72D0K7lRvig1UTv/pgpYRVM pTX564wPByYeXbj07HwkBVven3uaigHCrqHcCPOibUEeWQlRyZHISv04NVpqHr4R N3byjTkrNkjcU30zjHK+4xg6AurJOi9FyRtY//scCkL7N7Iltn31+hiU+N1C7DoN DXGtbV2NvPrBSzEmZS7eZocfRbJizGXghCdO7hO5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjpo0Tq7gWoggA3xyqdhQaInDVFMwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzhiYWUwNDVmLTM2NWItNDNjZi05OWZjLTEyY2JjYmNlNWY2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsYGgwDQYJKoZIhvcNAQELBQADggEBADEG4JguLRXD8B2hED67K5yqz6Ee P+nfz1QPbJPv+sKoEgekAlcwXMfjRIVe3iySmlgobUPoYC6yjhuqCu3E8s0CfIbt fHaty6tLHxHgYIndHiKioLfbTWTMNSkoopKiiN88wEOV4cPnBmzQKgrlVgEHfYW2 Yho/7zJAnbXA0hJFV4D5y6fq1nvAruS3ppfUobK/o7shjAX3j/BprmujEWQpz0FD ZIClGmSDsD+5kT1vcaVRW+4LUmB1gJteToo/+8OFo7XUO0mZqVAq95eJV3d05ieX 3Eu5hoRj8Og8tQ9sCz9PsaUHv50dox4cxZkapcUE8qEfNHdK+FeAwsEiO9c= -----END CERTIFICATE-----Generated at Mon Nov 25 02:58:23 2024 by rpki-client on console-fra.rpki-client.org