$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/464fa32c-e2a6-4a57-a755-b1802ee7a1ff.roa File: 464fa32c-e2a6-4a57-a755-b1802ee7a1ff.roa (raw, json) Hash identifier: waHH0tE2XwQbgFVoJjXs3inkgCvVyDo5zYEi7VN6u98= Subject key identifier: 12:33:7A:0D:1D:B2:45:B3:2B:D0:30:82:DD:FA:FC:3C:69:BA:CB:9A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 729203816078796D5584888D185C4CAA9D4737D8 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/464fa32c-e2a6-4a57-a755-b1802ee7a1ff.roa Signing time: Fri 16 Aug 2024 00:00:00 +0000 ROA not before: Fri 16 Aug 2024 00:00:00 +0000 ROA not after: Fri 20 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Sep 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:92:03:81:60:78:79:6d:55:84:88:8d:18:5c:4c:aa:9d:47:37:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 16 00:00:00 2024 GMT Not After : Sep 20 23:59:59 2024 GMT Subject: serialNumber=8a4c7bf0d4cc4665305df7a9eb582722eec86d315d01c82b157fb8bc9b8d0aff, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6d:f6:88:40:6d:fb:a4:53:01:8e:05:bf:b3: f7:73:ee:7e:00:e8:32:c4:be:b6:e0:48:5b:6b:28: 4b:f2:0b:af:ed:37:7c:b0:d8:5b:fb:09:58:bd:a7: fd:51:4d:01:b0:8d:aa:20:0f:43:07:6e:22:75:65: c3:f6:fe:d7:d0:37:44:d0:72:81:f2:37:58:69:62: 33:7a:3d:b2:32:00:c2:a3:ba:08:bb:46:2c:8d:bf: 95:57:1d:b4:bf:1a:42:bd:76:91:3f:af:94:55:3b: b5:8e:4e:b2:76:f8:fa:58:2e:d4:c1:ee:c1:10:a5: 79:fe:35:1e:56:50:af:d2:f6:ca:59:22:2f:00:00: 5a:86:56:26:9a:91:7b:6e:3b:e7:d9:63:b2:ce:33: 13:b6:75:71:fa:1d:dc:c3:25:48:2f:4a:40:cd:0c: 64:bb:c7:50:ee:60:d2:bf:7c:fa:d6:d2:5f:2d:11: 1d:e4:4b:6e:f1:32:8f:a3:68:d4:39:b2:16:54:5b: 32:74:fc:39:5f:99:03:e9:67:a5:54:34:17:28:4f: 26:4f:41:c7:bc:a3:b4:4b:f4:41:b0:50:3d:a7:63: 69:c2:4b:e4:41:56:57:d3:76:f1:61:d7:fe:39:9a: ff:d3:eb:14:7e:0c:fc:20:a1:b0:a0:d5:1d:16:4f: 9b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:33:7A:0D:1D:B2:45:B3:2B:D0:30:82:DD:FA:FC:3C:69:BA:CB:9A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/464fa32c-e2a6-4a57-a755-b1802ee7a1ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.0.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:24:50:6f:3a:5c:ec:a7:a4:02:ba:28:09:00:c3:87:f2:42: b1:2e:ba:a5:13:39:6f:1a:b6:74:f2:cf:b7:a6:9c:8e:fa:cf: 13:af:03:63:80:30:4e:7f:19:3a:dd:ba:c2:c8:e7:52:f4:27: e8:7c:af:b1:fa:91:22:50:61:61:c5:b7:8c:3e:6e:be:f5:d9: 2e:13:dc:a1:6c:c4:27:c8:de:2b:78:c7:07:57:00:58:fc:d6: f5:3a:a8:1b:9e:3e:a9:05:9f:f3:12:61:26:d7:2d:c8:28:06: b8:7a:80:b4:60:5d:25:26:c6:97:27:61:d8:2f:14:ba:f5:cb: 52:a2:27:5b:5d:67:37:31:2f:3b:5b:cf:49:c7:3e:8c:56:bd: 92:88:f4:ca:7a:10:33:ed:f9:ef:a4:5d:25:07:52:9f:37:a1: 99:49:db:51:56:a6:18:3e:fe:36:5f:11:42:bd:29:c6:e7:44: aa:77:ac:e9:ce:26:7a:e5:39:a3:e0:25:87:03:38:c4:8f:16: a4:6f:15:d6:b5:98:de:9f:2e:e3:5e:e4:24:29:75:4a:d2:a3: 5b:a2:3d:8c:03:35:6c:1b:23:83:10:60:1c:eb:bc:58:85:b4: db:d0:6b:d4:c0:5c:4a:e8:78:19:d5:f9:06:cd:fb:a8:cc:6a: d7:44:1e:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcpIDgWB4eW1VhIiNGFxMqp1HN9gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQwODE2MDAwMDAwWhcNMjQwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTRjN2JmMGQ0Y2M0NjY1MzA1ZGY3YTllYjU4MjcyMmVl Yzg2ZDMxNWQwMWM4MmIxNTdmYjhiYzliOGQwYWZmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDebfaIQG37pFMBjgW/s/dz7n4A6DLEvrbgSFtrKEvyC6/t N3yw2Fv7CVi9p/1RTQGwjaogD0MHbiJ1ZcP2/tfQN0TQcoHyN1hpYjN6PbIyAMKj ugi7RiyNv5VXHbS/GkK9dpE/r5RVO7WOTrJ2+PpYLtTB7sEQpXn+NR5WUK/S9spZ Ii8AAFqGViaakXtuO+fZY7LOMxO2dXH6HdzDJUgvSkDNDGS7x1DuYNK/fPrW0l8t ER3kS27xMo+jaNQ5shZUWzJ0/DlfmQPpZ6VUNBcoTyZPQce8o7RL9EGwUD2nY2nC S+RBVlfTdvFh1/45mv/T6xR+DPwgobCg1R0WT5v1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEjN6DR2yRbMr0DCC3fr8PGm6y5owHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzQ2NGZhMzJjLWUyYTYtNGE1Ny1hNzU1LWIxODAyZWU3YTFmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAAwDQYJKoZIhvcNAQELBQADggEBAFwkUG86XOynpAK6KAkAw4fyQrEu uqUTOW8atnTyz7emnI76zxOvA2OAME5/GTrdusLI51L0J+h8r7H6kSJQYWHFt4w+ br712S4T3KFsxCfI3it4xwdXAFj81vU6qBuePqkFn/MSYSbXLcgoBrh6gLRgXSUm xpcnYdgvFLr1y1KiJ1tdZzcxLztbz0nHPoxWvZKI9Mp6EDPt+e+kXSUHUp83oZlJ 21FWphg+/jZfEUK9KcbnRKp3rOnOJnrlOaPgJYcDOMSPFqRvFda1mN6fLuNe5CQp dUrSo1uiPYwDNWwbI4MQYBzrvFiFtNvQa9TAXEroeBnV+QbN+6jMatdEHpA= -----END CERTIFICATE-----Generated at Sat Sep 7 16:36:30 2024 by rpki-client on console-ams.rpki-client.org