$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa File: 22f66e2d-2753-44a1-9aec-16b69cdffad1.roa (raw, json) Hash identifier: VqCCwh4bdHD2fLIBvRPUXJc6Rww4Fwkvqk8oukY+grw= Subject key identifier: 77:E5:D2:56:47:3B:BB:2B:3D:86:3E:BC:A9:83:27:22:95:EC:59:7F Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 01370C37A3E979745D373ABAB0DB899CD4F9DAB3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa Signing time: Mon 04 Nov 2024 00:00:00 +0000 ROA not before: Mon 04 Nov 2024 00:00:00 +0000 ROA not after: Mon 09 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:37:0c:37:a3:e9:79:74:5d:37:3a:ba:b0:db:89:9c:d4:f9:da:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 4 00:00:00 2024 GMT Not After : Dec 9 23:59:59 2024 GMT Subject: serialNumber=2206fbdc6e3dbc43ff20b3d97d28685588066ecad71c252729a2e72cb79a0d64, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3d:e6:45:a1:7c:68:0a:54:6f:32:fe:0c:eb: 4a:88:87:b7:bf:4d:64:20:0a:70:a7:1a:2c:68:e7: 30:f2:d6:8b:ae:0c:32:a1:e4:66:c2:1c:0d:cd:46: a9:5c:65:d1:a0:34:cc:49:9e:26:ba:72:b5:29:a7: 0b:6c:c3:1e:5c:9c:b7:1d:23:08:ec:fd:de:28:49: 20:6f:7b:63:af:46:3d:ae:f9:43:a9:f1:37:d0:cf: 95:82:fb:fa:2e:e7:7f:89:d1:55:76:fa:4c:ba:1d: 3f:75:f9:4b:cd:f7:d4:b8:87:17:b7:bf:7b:5b:f9: d9:7f:e0:be:69:6c:a9:48:6e:c0:00:ec:4f:33:83: 05:1f:a4:d9:f1:3b:2f:6d:e4:08:98:3a:d8:72:34: 5b:85:88:c7:8f:d1:9f:0e:e6:04:9b:c8:58:15:4e: 69:90:0a:45:b1:b2:67:73:a2:45:c6:23:be:d0:93: 38:df:60:b9:95:76:78:a6:fa:62:d2:40:3e:db:5c: 48:20:26:e9:db:8b:9d:9e:b6:b9:40:8d:74:ef:9b: d0:b5:3c:23:fa:3e:ab:29:a7:30:7e:17:fc:c8:24: 5e:d3:36:48:a3:9c:18:af:f6:4b:57:52:2f:b7:27: 00:dd:2c:44:29:7d:c8:9c:b5:2a:6e:7f:92:73:04: 94:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E5:D2:56:47:3B:BB:2B:3D:86:3E:BC:A9:83:27:22:95:EC:59:7F X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.1.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:45:6d:3c:e3:21:b6:6a:32:39:0f:89:ac:a1:59:62:21:a0: cd:f2:e9:16:ac:9b:cf:ae:01:cb:a4:75:1e:26:f4:4e:61:b0: 08:63:1d:71:1f:b7:bd:3b:a8:44:8d:dc:30:cb:b1:a5:8c:61: 24:3e:d7:2d:17:3f:4b:f6:35:0b:ca:e6:22:63:5a:95:3c:f7: 15:6b:66:96:c8:d3:a1:93:9e:4b:d0:56:0e:0a:5e:2d:69:d0: 06:9e:1c:5f:d1:9b:3f:a9:d1:16:af:d8:95:a5:fd:3c:3e:f1: 39:a5:e3:fb:de:f4:aa:2c:37:93:20:de:d8:15:57:f6:83:d1: 3c:02:da:8a:e3:fe:23:12:10:28:5b:33:90:64:dc:a2:7f:5b: b8:47:da:4c:6b:b4:da:6c:40:dc:35:cd:75:ff:a8:90:01:a0: 91:67:f4:59:4a:a0:f0:13:43:29:aa:29:65:57:57:38:8f:47: 26:42:fb:92:f8:f5:43:94:16:0d:56:9e:19:5e:b0:f3:a2:9e: ec:b7:08:b2:89:b0:0c:e7:6f:92:56:ce:26:78:b8:4a:91:7e: 05:2c:3a:f9:bc:ad:a9:cf:74:5a:22:55:fc:6f:81:a0:2d:b2: 90:72:6e:c3:9d:28:88:ef:84:88:24:02:a1:95:4c:db:f3:94: 54:c8:1c:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUATcMN6PpeXRdNzq6sNuJnNT52rMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQxMTA0MDAwMDAwWhcNMjQxMjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjA2ZmJkYzZlM2RiYzQzZmYyMGIzZDk3ZDI4Njg1NTg4 MDY2ZWNhZDcxYzI1MjcyOWEyZTcyY2I3OWEwZDY0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwPeZFoXxoClRvMv4M60qIh7e/TWQgCnCnGixo5zDy1ouu DDKh5GbCHA3NRqlcZdGgNMxJnia6crUppwtswx5cnLcdIwjs/d4oSSBve2OvRj2u +UOp8TfQz5WC+/ou53+J0VV2+ky6HT91+UvN99S4hxe3v3tb+dl/4L5pbKlIbsAA 7E8zgwUfpNnxOy9t5AiYOthyNFuFiMeP0Z8O5gSbyFgVTmmQCkWxsmdzokXGI77Q kzjfYLmVdnim+mLSQD7bXEggJunbi52etrlAjXTvm9C1PCP6PqsppzB+F/zIJF7T NkijnBiv9ktXUi+3JwDdLEQpfcictSpuf5JzBJQRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUd+XSVkc7uys9hj68qYMnIpXsWX8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzIyZjY2ZTJkLTI3NTMtNDRhMS05YWVjLTE2YjY5Y2RmZmFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAEwDQYJKoZIhvcNAQELBQADggEBAD1FbTzjIbZqMjkPiayhWWIhoM3y 6Rasm8+uAcukdR4m9E5hsAhjHXEft707qESN3DDLsaWMYSQ+1y0XP0v2NQvK5iJj WpU89xVrZpbI06GTnkvQVg4KXi1p0AaeHF/Rmz+p0Rav2JWl/Tw+8Tml4/ve9Kos N5Mg3tgVV/aD0TwC2orj/iMSEChbM5Bk3KJ/W7hH2kxrtNpsQNw1zXX/qJABoJFn 9FlKoPATQymqKWVXVziPRyZC+5L49UOUFg1WnhlesPOinuy3CLKJsAznb5JWziZ4 uEqRfgUsOvm8ranPdFoiVfxvgaAtspBybsOdKIjvhIgkAqGVTNvzlFTIHCc= -----END CERTIFICATE-----Generated at Thu Nov 21 18:50:39 2024 by rpki-client on console-ams.rpki-client.org