$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0aa379ee-fdba-407b-a393-51b27b3d01f8.roa File: 0aa379ee-fdba-407b-a393-51b27b3d01f8.roa (raw, json) Hash identifier: xgvrznnu3/QUnsWnTeEQ1ghzpY1VCAyRIShDYIv4cZ4= Subject key identifier: 12:C3:F2:12:3C:7E:A4:95:33:EC:1A:AE:9D:B0:DC:C8:A9:47:BF:FE Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6ADE15F62D0E8430FA0D71D60A63659F06F5A94C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0aa379ee-fdba-407b-a393-51b27b3d01f8.roa Signing time: Fri 16 Aug 2024 00:00:00 +0000 ROA not before: Fri 16 Aug 2024 00:00:00 +0000 ROA not after: Fri 20 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Sep 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:de:15:f6:2d:0e:84:30:fa:0d:71:d6:0a:63:65:9f:06:f5:a9:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 16 00:00:00 2024 GMT Not After : Sep 20 23:59:59 2024 GMT Subject: serialNumber=75f014655b0872c7ee8b732c3957797f6b6ccd3593b366c8446c9c37bf438249, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9f:fb:94:ae:86:a4:a1:21:91:ac:fc:11:6f: c0:84:ea:e0:24:57:4f:75:8f:57:1f:53:78:25:c0: 66:8b:7e:6c:db:1c:34:ed:4a:0a:35:ac:b5:72:9a: 36:48:b1:65:86:dd:59:19:2a:f1:c0:bf:65:f2:3f: 90:56:41:c4:88:ad:f2:f3:52:a9:4d:15:33:ba:15: f8:10:8c:0d:b2:77:38:04:d1:46:f5:a6:71:29:5d: 4e:57:e3:47:77:0f:fa:bc:81:1a:b7:17:b4:1e:de: d6:17:d9:6b:1f:8a:28:37:76:3e:fa:e5:eb:50:fe: f5:70:3b:c2:9f:ce:db:09:ae:0e:ca:76:48:66:59: 66:97:8e:c7:e6:6f:0b:ba:35:73:cc:dc:f9:e8:c6: 48:17:08:0f:60:9e:86:44:c0:24:a7:9d:54:fd:15: da:bc:54:37:3a:94:71:b4:db:af:1a:21:23:3d:3a: ae:5e:1f:1f:d7:dd:da:02:1d:47:64:5c:e9:23:93: 29:47:87:4a:ec:e1:48:c2:6c:13:4c:8b:82:3f:42: b4:46:41:57:0f:a1:e1:f1:6b:51:7e:fe:b7:d6:af: 39:ac:1a:41:b6:21:85:5c:07:31:7f:bf:6a:e4:56: e5:ad:cf:c0:cd:f1:60:de:94:55:cb:05:16:31:06: d5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C3:F2:12:3C:7E:A4:95:33:EC:1A:AE:9D:B0:DC:C8:A9:47:BF:FE X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0aa379ee-fdba-407b-a393-51b27b3d01f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.80.0/20 Signature Algorithm: sha256WithRSAEncryption 5e:f4:77:f9:73:0c:25:e6:3e:29:a4:12:1d:89:59:97:25:9a: c5:99:88:ee:58:66:0a:41:cd:f6:ce:3d:cc:24:dc:81:15:46: 07:be:51:18:39:ba:76:dc:95:4b:b5:17:45:c4:ab:b2:d7:3f: 73:7a:fe:7a:c1:8f:6a:80:8a:b3:b6:70:09:f2:1b:3d:2d:32: a8:41:9a:e2:de:02:ee:75:64:86:3b:82:4d:d1:39:55:45:bb: d6:d1:7a:de:57:9b:a3:a2:71:22:de:46:e8:f9:50:ac:da:22: 8d:53:34:50:47:89:d1:62:d5:69:98:96:d5:a7:d2:25:03:64: c1:03:cd:44:09:e0:72:c2:cb:2f:06:35:3a:eb:4e:c1:8c:2f: c2:6a:b3:bd:56:89:88:ba:5d:4b:10:60:fb:21:10:7f:1b:1f: e0:0e:08:94:09:ef:2e:80:3b:97:90:82:16:5f:3d:0f:40:bf: 12:a5:4e:5b:7e:aa:8b:28:a5:52:af:8f:a4:f4:49:f1:90:e7: 8c:8b:cd:18:0a:39:65:33:85:60:1f:ac:85:f1:f9:0c:77:26: 87:a5:e3:0c:21:fa:d4:a0:11:f0:f0:74:7f:be:8c:a5:1e:c8: 63:18:14:57:b8:70:2b:03:17:93:80:73:35:87:26:1a:0b:a9: fe:a4:6d:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUat4V9i0OhDD6DXHWCmNlnwb1qUwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQwODE2MDAwMDAwWhcNMjQwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NWYwMTQ2NTViMDg3MmM3ZWU4YjczMmMzOTU3Nzk3ZjZi NmNjZDM1OTNiMzY2Yzg0NDZjOWMzN2JmNDM4MjQ5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvn/uUroakoSGRrPwRb8CE6uAkV091j1cfU3glwGaLfmzb HDTtSgo1rLVymjZIsWWG3VkZKvHAv2XyP5BWQcSIrfLzUqlNFTO6FfgQjA2ydzgE 0Ub1pnEpXU5X40d3D/q8gRq3F7Qe3tYX2Wsfiig3dj765etQ/vVwO8KfztsJrg7K dkhmWWaXjsfmbwu6NXPM3PnoxkgXCA9gnoZEwCSnnVT9Fdq8VDc6lHG0268aISM9 Oq5eHx/X3doCHUdkXOkjkylHh0rs4UjCbBNMi4I/QrRGQVcPoeHxa1F+/rfWrzms GkG2IYVcBzF/v2rkVuWtz8DN8WDelFXLBRYxBtWTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEsPyEjx+pJUz7BqunbDcyKlHv/4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBhYTM3OWVlLWZkYmEtNDA3Yi1hMzkzLTUxYjI3YjNkMDFmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYFAwDQYJKoZIhvcNAQELBQADggEBAF70d/lzDCXmPimkEh2JWZclmsWZ iO5YZgpBzfbOPcwk3IEVRge+URg5unbclUu1F0XEq7LXP3N6/nrBj2qAirO2cAny Gz0tMqhBmuLeAu51ZIY7gk3ROVVFu9bRet5Xm6OicSLeRuj5UKzaIo1TNFBHidFi 1WmYltWn0iUDZMEDzUQJ4HLCyy8GNTrrTsGML8Jqs71WiYi6XUsQYPshEH8bH+AO CJQJ7y6AO5eQghZfPQ9AvxKlTlt+qosopVKvj6T0SfGQ54yLzRgKOWUzhWAfrIXx +Qx3Joel4wwh+tSgEfDwdH++jKUeyGMYFFe4cCsDF5OAczWHJhoLqf6kbfA= -----END CERTIFICATE-----Generated at Sat Sep 7 16:47:10 2024 by rpki-client on console-fra.rpki-client.org