$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0aa379ee-fdba-407b-a393-51b27b3d01f8.roa File: 0aa379ee-fdba-407b-a393-51b27b3d01f8.roa (raw, json) Hash identifier: mFMfxyGt81nJSvdoGCzt3jo8X1GfVen/tMU3EvRAxu8= Subject key identifier: EF:8D:F0:CC:F9:B5:42:51:15:ED:4B:0A:99:4E:BF:BB:3E:18:8B:E4 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6B92F0BA2E4477ACDE0382F14EC4414B0CE7CA75 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0aa379ee-fdba-407b-a393-51b27b3d01f8.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:92:f0:ba:2e:44:77:ac:de:03:82:f1:4e:c4:41:4b:0c:e7:ca:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=836f086928a9aff03fbe3669bed3cf8dd7cf72d599f121c4c37687c7366fcbb5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fa:a5:ec:bb:ce:09:d3:2d:19:35:0f:cd:54: 9c:0e:c8:ab:e2:6c:42:1f:ff:56:0f:64:c2:b4:89: b5:a4:a7:23:5f:ab:02:ce:d9:dd:8f:a8:0d:95:8e: bd:82:c9:4c:e8:99:80:41:46:af:f5:d9:03:fe:91: 67:fa:94:b2:ad:58:cc:48:1c:9c:90:5e:c7:05:76: 61:64:85:35:8f:b7:15:c2:b2:44:05:01:ca:2d:4a: b8:59:c9:ad:70:94:63:d3:27:5a:c6:45:77:c2:a7: 24:84:9c:94:a6:e6:16:71:56:89:b7:46:1a:90:74: ed:6c:27:f1:29:55:23:6c:e2:6c:c6:12:d9:f7:f8: c3:35:14:cb:4a:f7:35:2d:c8:e3:7a:87:ba:9f:21: 37:f6:45:74:86:ae:6f:f1:61:b9:56:76:76:d9:d4: 47:08:a6:ec:aa:8d:f0:20:02:7f:84:40:44:73:cc: c9:bf:38:87:28:5c:3e:c8:14:72:0f:44:85:e7:31: fb:3f:4a:14:e9:09:4e:35:cd:6c:bf:12:7e:c4:2b: 8c:21:ce:7a:f7:75:e4:87:9e:cc:68:bb:f1:ba:0d: 50:e7:7e:7a:61:7e:7b:bd:e4:ae:e1:7e:4c:2b:01: ee:14:58:17:03:69:12:a2:c9:76:0b:27:bf:83:7e: 10:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:8D:F0:CC:F9:B5:42:51:15:ED:4B:0A:99:4E:BF:BB:3E:18:8B:E4 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0aa379ee-fdba-407b-a393-51b27b3d01f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.80.0/20 Signature Algorithm: sha256WithRSAEncryption 23:49:98:34:51:f4:65:a7:bd:7e:b5:65:a1:25:fe:8b:73:99: 96:2d:9a:8b:40:4d:1c:1d:d6:17:05:02:d2:7d:ef:da:f7:e5: ec:2d:9c:59:bc:f6:fb:44:1f:07:72:38:27:c5:a7:fd:ea:4a: bd:6b:25:71:be:55:87:3b:e5:80:2e:29:47:05:85:49:1e:4d: b7:60:46:cd:e1:d5:2a:16:a6:8a:58:0f:ea:46:d0:6f:b5:b8: 12:85:34:8e:1a:e2:e8:13:74:98:59:69:8c:c3:f6:59:34:22: 6e:c3:46:2d:51:8e:b4:83:ec:b9:38:57:5a:26:d5:b4:0a:fd: 9c:24:2d:15:6a:e1:65:fa:ea:00:13:30:a5:f4:25:52:38:97: be:d1:e3:d3:63:3c:b2:9a:44:96:11:c7:1a:41:98:e5:c0:61: 23:09:25:48:05:f4:29:ae:a1:8d:ee:77:c6:7c:41:00:a5:02: e1:b9:ee:9d:b4:4e:c7:01:56:b2:2b:7c:43:de:11:77:a1:4b: df:e8:7b:38:b0:e1:fa:96:d9:0d:cf:bf:0b:5a:23:c7:6c:32: 69:14:f5:d0:93:4a:c9:11:b4:0e:d6:a8:db:e1:52:36:45:4d: ec:ab:4e:4e:b1:e2:a0:9f:f5:14:0e:89:cb:1f:70:6c:5a:60: df:96:9c:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa5Lwui5Ed6zeA4LxTsRBSwznynUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzZmMDg2OTI4YTlhZmYwM2ZiZTM2NjliZWQzY2Y4ZGQ3 Y2Y3MmQ1OTlmMTIxYzRjMzc2ODdjNzM2NmZjYmI1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI+qXsu84J0y0ZNQ/NVJwOyKvibEIf/1YPZMK0ibWkpyNf qwLO2d2PqA2Vjr2CyUzomYBBRq/12QP+kWf6lLKtWMxIHJyQXscFdmFkhTWPtxXC skQFAcotSrhZya1wlGPTJ1rGRXfCpySEnJSm5hZxVom3RhqQdO1sJ/EpVSNs4mzG Etn3+MM1FMtK9zUtyON6h7qfITf2RXSGrm/xYblWdnbZ1EcIpuyqjfAgAn+EQERz zMm/OIcoXD7IFHIPRIXnMfs/ShTpCU41zWy/En7EK4whznr3deSHnsxou/G6DVDn fnphfnu95K7hfkwrAe4UWBcDaRKiyXYLJ7+DfhAjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU743wzPm1QlEV7UsKmU6/uz4Yi+QwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBhYTM3OWVlLWZkYmEtNDA3Yi1hMzkzLTUxYjI3YjNkMDFmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYFAwDQYJKoZIhvcNAQELBQADggEBACNJmDRR9GWnvX61ZaEl/otzmZYt motATRwd1hcFAtJ979r35ewtnFm89vtEHwdyOCfFp/3qSr1rJXG+VYc75YAuKUcF hUkeTbdgRs3h1SoWpopYD+pG0G+1uBKFNI4a4ugTdJhZaYzD9lk0Im7DRi1RjrSD 7Lk4V1om1bQK/ZwkLRVq4WX66gATMKX0JVI4l77R49NjPLKaRJYRxxpBmOXAYSMJ JUgF9CmuoY3ud8Z8QQClAuG57p20TscBVrIrfEPeEXehS9/oeziw4fqW2Q3Pvwta I8dsMmkU9dCTSskRtA7WqNvhUjZFTeyrTk6x4qCf9RQOicsfcGxaYN+WnJw= -----END CERTIFICATE-----Generated at Sun Nov 24 20:09:41 2024 by rpki-client on console-ams.rpki-client.org