$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa File: 22f66e2d-2753-44a1-9aec-16b69cdffad1.roa (raw, json) Hash identifier: oxTgW2YYlx55ZRK+/l+weKf0L1hsBx6Rgj+QWo6Suhw= Subject key identifier: 4D:F2:A9:52:89:78:B6:06:D8:23:6D:DA:5E:BC:CE:C1:23:2B:E1:92 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7858BC1EEA54860F56D57BA971CF5EBB77B9BAC2 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa Signing time: Mon 19 Aug 2024 00:00:00 +0000 ROA not before: Mon 19 Aug 2024 00:00:00 +0000 ROA not after: Mon 23 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Sep 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:58:bc:1e:ea:54:86:0f:56:d5:7b:a9:71:cf:5e:bb:77:b9:ba:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 00:00:00 2024 GMT Not After : Sep 23 23:59:59 2024 GMT Subject: serialNumber=ebc2cff4d9184818be1eb210997cdf0677eff75f55bf98fbee298fe063d2d0f2, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0c:02:11:70:eb:d8:1b:66:41:b3:79:ad:e4: 48:31:a2:4d:a8:66:c2:2e:b8:ca:5c:88:83:d1:52: e1:fb:4d:a7:13:f1:b7:09:10:d5:9b:79:25:af:dd: 51:8f:9e:d5:46:7c:ac:32:39:1e:7d:91:bb:fb:0f: 08:22:53:ad:4e:de:26:b8:3b:d1:07:02:8b:ca:a5: 52:2e:72:f1:15:e1:6c:8f:71:a3:dd:13:57:7d:8e: a4:e5:d5:26:b4:42:8a:62:78:d9:0b:5c:df:9e:78: a0:1e:88:1e:9d:ea:35:07:82:78:7e:89:d7:ee:14: a9:e0:85:aa:6c:58:9b:b8:77:87:9f:aa:7d:68:75: 07:f3:bf:62:da:d7:b0:b1:c8:44:f6:be:3a:3f:da: 5f:21:97:8c:ab:fa:dd:06:f5:4f:38:41:f9:16:6c: 90:d0:8b:80:ba:3c:63:2a:95:59:c9:ff:81:00:af: 1a:c3:19:8c:7f:43:43:6d:80:ac:c2:99:ca:fa:b3: 53:86:e7:b2:b8:a0:7f:49:3a:eb:e8:cd:81:86:86: b6:f1:76:c1:d9:67:d2:4a:f2:39:e1:1f:9e:92:6e: df:4b:57:c4:cf:57:38:de:34:7a:88:10:7e:fd:13: f5:d6:ee:e5:c2:ee:81:b1:34:7d:a8:cb:c1:2c:16: 0d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F2:A9:52:89:78:B6:06:D8:23:6D:DA:5E:BC:CE:C1:23:2B:E1:92 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.1.0/24 Signature Algorithm: sha256WithRSAEncryption 06:9a:34:8a:d3:9c:40:c1:79:93:3c:a4:e5:0f:ff:bc:f5:9f: ea:66:35:75:3c:da:1b:75:09:00:b5:27:06:4c:1f:05:ec:41: 7f:9a:e0:d0:2e:b4:68:ee:0f:d8:6a:af:08:91:8b:89:ca:2a: 8f:7b:af:9c:aa:5c:77:0e:2c:ae:b4:4b:68:f9:af:9a:4e:02: 2d:93:3c:44:4c:f5:cd:b1:35:ca:68:6b:81:ec:a3:2c:34:83: 18:01:12:46:01:5b:12:55:38:2e:e2:b4:5e:61:3e:bb:19:ce: 4a:ab:69:06:49:01:49:b6:7f:d5:86:ca:0d:ff:ab:ad:3b:d8: 55:70:e0:42:52:03:a8:bf:26:00:8c:65:d9:bf:c7:4e:e2:89: ad:d3:35:42:e3:ce:95:af:6a:98:58:14:9a:86:07:08:29:b0: a2:da:16:b5:7f:87:6b:98:51:27:09:6f:b6:56:df:2d:0e:72: ce:48:8a:4f:c7:22:a2:4c:b8:02:d4:22:79:69:f6:6d:fe:b9: 5d:99:12:8f:5d:d8:c8:cd:b5:e6:5b:e4:96:52:3d:d0:9f:1a: 34:93:85:7e:ca:f0:2a:f7:d1:75:fa:8e:a0:cf:c7:b2:4b:9a: a8:66:6b:82:dd:7f:86:c7:64:82:72:14:75:39:93:79:64:7e: 6c:e0:8b:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeFi8HupUhg9W1Xupcc9eu3e5usIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQwODE5MDAwMDAwWhcNMjQwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmMyY2ZmNGQ5MTg0ODE4YmUxZWIyMTA5OTdjZGYwNjc3 ZWZmNzVmNTViZjk4ZmJlZTI5OGZlMDYzZDJkMGYyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwDAIRcOvYG2ZBs3mt5Egxok2oZsIuuMpciIPRUuH7TacT 8bcJENWbeSWv3VGPntVGfKwyOR59kbv7DwgiU61O3ia4O9EHAovKpVIucvEV4WyP caPdE1d9jqTl1Sa0QopieNkLXN+eeKAeiB6d6jUHgnh+idfuFKnghapsWJu4d4ef qn1odQfzv2La17CxyET2vjo/2l8hl4yr+t0G9U84QfkWbJDQi4C6PGMqlVnJ/4EA rxrDGYx/Q0NtgKzCmcr6s1OG57K4oH9JOuvozYGGhrbxdsHZZ9JK8jnhH56Sbt9L V8TPVzjeNHqIEH79E/XW7uXC7oGxNH2oy8EsFg0nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTfKpUol4tgbYI23aXrzOwSMr4ZIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzIyZjY2ZTJkLTI3NTMtNDRhMS05YWVjLTE2YjY5Y2RmZmFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAEwDQYJKoZIhvcNAQELBQADggEBAAaaNIrTnEDBeZM8pOUP/7z1n+pm NXU82ht1CQC1JwZMHwXsQX+a4NAutGjuD9hqrwiRi4nKKo97r5yqXHcOLK60S2j5 r5pOAi2TPERM9c2xNcpoa4Hsoyw0gxgBEkYBWxJVOC7itF5hPrsZzkqraQZJAUm2 f9WGyg3/q6072FVw4EJSA6i/JgCMZdm/x07iia3TNULjzpWvaphYFJqGBwgpsKLa FrV/h2uYUScJb7ZW3y0Ocs5Iik/HIqJMuALUInlp9m3+uV2ZEo9d2MjNteZb5JZS PdCfGjSThX7K8Cr30XX6jqDPx7JLmqhma4Ldf4bHZIJyFHU5k3lkfmzgixU= -----END CERTIFICATE-----Generated at Sat Sep 7 16:36:30 2024 by rpki-client on console-ams.rpki-client.org