$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0c31e326-0aee-467a-b5cc-74481606ea24.roa File: 0c31e326-0aee-467a-b5cc-74481606ea24.roa (raw, json) Hash identifier: gS+OPPS0Lh5qP+Y8QOqCwW+QyVoAyLVUUOaZfDe8nr4= Subject key identifier: 2E:D7:69:2A:44:BA:F1:6D:CD:1E:F1:84:3D:93:36:55:4F:4E:5C:FA Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 13217B784D6C7645B8FE54F2D3881ED6C3F894DC Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0c31e326-0aee-467a-b5cc-74481606ea24.roa Signing time: Fri 16 Aug 2024 00:00:00 +0000 ROA not before: Fri 16 Aug 2024 00:00:00 +0000 ROA not after: Fri 20 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Sep 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:21:7b:78:4d:6c:76:45:b8:fe:54:f2:d3:88:1e:d6:c3:f8:94:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 16 00:00:00 2024 GMT Not After : Sep 20 23:59:59 2024 GMT Subject: serialNumber=220692eb61b9076c6131600d145b1ffd11da296a73e43d6fbf8506c16e4dae80, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3d:93:a8:9b:3a:47:21:66:9a:46:ca:fe:e4: c5:19:99:48:a0:f3:8c:9b:e8:4c:58:0c:b9:46:ac: 0b:10:c6:40:6f:88:66:13:07:46:a0:ec:e2:5f:2c: c9:3c:3f:46:20:c9:3a:bc:cd:fc:34:a3:e0:fe:5a: c7:9b:b2:93:07:25:df:50:f2:7a:fa:88:f9:35:ed: 05:f8:ce:97:a6:31:11:23:3c:32:01:8c:52:cf:6f: d1:e0:75:f7:1e:37:7e:52:24:3d:17:8c:b5:43:e4: 8d:4d:93:41:1d:e4:bf:5f:b2:2a:4f:df:d0:de:95: b7:7f:cb:4f:82:4c:14:ad:de:b1:7e:95:40:01:a5: eb:29:6d:37:7a:66:9b:30:77:43:01:03:56:d5:34: f6:6d:d2:73:b3:6e:af:cc:01:20:8a:27:4a:62:4d: 0d:6a:5b:77:ab:6f:c3:b9:1b:52:b7:e4:64:48:ca: 78:af:1e:77:7e:56:5b:e3:32:35:8f:a5:0e:c8:ab: c9:1c:5e:ab:45:13:77:2b:5c:d3:b6:f1:07:25:1e: 25:82:3a:aa:c3:6d:f1:5c:58:1e:ea:6c:11:a6:ea: 73:5b:e1:06:78:0b:9b:df:ce:af:4d:2a:81:e1:e3: 47:04:bf:07:fc:af:ed:be:e1:a2:68:6c:30:3e:7e: 30:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:D7:69:2A:44:BA:F1:6D:CD:1E:F1:84:3D:93:36:55:4F:4E:5C:FA X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0c31e326-0aee-467a-b5cc-74481606ea24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.48.0/20 Signature Algorithm: sha256WithRSAEncryption 62:d0:99:63:c0:5b:cc:ba:17:ae:3f:cf:17:d4:9a:8d:7e:ff: 3d:80:de:eb:d1:fb:ba:23:56:b1:5d:ec:5c:ff:d3:42:e5:40: bd:87:da:ec:4c:5e:fa:b0:1a:68:24:7c:fc:6c:91:4b:4f:0c: b4:0f:4f:7f:24:90:c1:f7:eb:f4:78:7b:dc:7c:83:d4:51:58: fc:04:17:b1:ec:3d:a1:19:1d:c9:1a:42:22:76:1c:77:c8:51: 76:32:bb:c7:aa:7d:20:01:b5:a3:21:b6:76:52:85:92:28:6e: df:ed:d5:b6:ad:91:d5:da:35:9c:57:45:b3:5d:0b:46:24:bc: 78:3d:ed:df:09:d6:23:d8:e0:a4:b9:b8:b3:3e:61:15:fd:d0: 69:5c:cd:c8:c8:21:ad:9b:f1:73:3a:34:c5:d0:6d:49:af:e6: 40:a9:4c:43:e1:55:04:2c:76:23:82:26:cc:9b:09:43:e1:57: f9:25:3a:f3:63:0b:dd:41:f5:5c:2f:58:f4:f1:01:3e:0e:0d: f2:02:1a:81:a1:ee:31:94:41:de:a0:f3:de:e6:77:75:48:25: 72:b5:b1:65:c3:99:28:2b:ab:d7:26:1c:b2:3c:c2:20:1c:28: b2:cd:22:25:b8:6b:d8:3f:0f:ef:21:80:6f:66:5f:5f:64:92: 2c:2c:6c:df -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEyF7eE1sdkW4/lTy04ge1sP4lNwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQwODE2MDAwMDAwWhcNMjQwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjA2OTJlYjYxYjkwNzZjNjEzMTYwMGQxNDViMWZmZDEx ZGEyOTZhNzNlNDNkNmZiZjg1MDZjMTZlNGRhZTgwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLPZOomzpHIWaaRsr+5MUZmUig84yb6ExYDLlGrAsQxkBv iGYTB0ag7OJfLMk8P0YgyTq8zfw0o+D+WsebspMHJd9Q8nr6iPk17QX4zpemMREj PDIBjFLPb9HgdfceN35SJD0XjLVD5I1Nk0Ed5L9fsipP39Delbd/y0+CTBSt3rF+ lUABpespbTd6Zpswd0MBA1bVNPZt0nOzbq/MASCKJ0piTQ1qW3erb8O5G1K35GRI ynivHnd+VlvjMjWPpQ7Iq8kcXqtFE3crXNO28QclHiWCOqrDbfFcWB7qbBGm6nNb 4QZ4C5vfzq9NKoHh40cEvwf8r+2+4aJobDA+fjB5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULtdpKkS68W3NHvGEPZM2VU9OXPowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBjMzFlMzI2LTBhZWUtNDY3YS1iNWNjLTc0NDgxNjA2ZWEyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYDAwDQYJKoZIhvcNAQELBQADggEBAGLQmWPAW8y6F64/zxfUmo1+/z2A 3uvR+7ojVrFd7Fz/00LlQL2H2uxMXvqwGmgkfPxskUtPDLQPT38kkMH36/R4e9x8 g9RRWPwEF7HsPaEZHckaQiJ2HHfIUXYyu8eqfSABtaMhtnZShZIobt/t1batkdXa NZxXRbNdC0YkvHg97d8J1iPY4KS5uLM+YRX90GlczcjIIa2b8XM6NMXQbUmv5kCp TEPhVQQsdiOCJsybCUPhV/klOvNjC91B9VwvWPTxAT4ODfICGoGh7jGUQd6g897m d3VIJXK1sWXDmSgrq9cmHLI8wiAcKLLNIiW4a9g/D+8hgG9mX19kkiwsbN8= -----END CERTIFICATE-----Generated at Sat Sep 7 16:47:10 2024 by rpki-client on console-fra.rpki-client.org