$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/464fa32c-e2a6-4a57-a755-b1802ee7a1ff.roa File: 464fa32c-e2a6-4a57-a755-b1802ee7a1ff.roa (raw, json) Hash identifier: R2eynlJjNJ+/Y3lR8ZmpM+j2QSnH2zYv+Me2KgfjTCU= Subject key identifier: D2:2E:A3:A5:0B:2E:81:3E:D5:57:83:4B:BD:20:98:57:CE:B4:90:70 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 63F1E290FBB229BE16945EE4173374A9D915D726 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/464fa32c-e2a6-4a57-a755-b1802ee7a1ff.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f1:e2:90:fb:b2:29:be:16:94:5e:e4:17:33:74:a9:d9:15:d7:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=5f37da513cc9396ea9a8e7b85541d4ba78b2c6a3e7606ada9a1c4c5a7246938e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e9:e8:c8:1b:47:44:a4:63:f7:fe:84:9e:4c: 58:6f:0a:48:0b:e6:0a:f0:00:91:b7:c0:94:78:4d: 4d:5f:cf:5c:0b:24:99:e5:e1:e6:40:13:2d:6b:32: 7b:6d:27:92:97:ce:25:0d:25:5b:42:6c:5d:79:a7: 95:2e:a1:19:c9:b2:a4:55:6c:2e:d0:3c:25:ae:be: b8:88:76:d7:8a:b9:19:a6:0e:b5:ae:5e:08:87:17: a9:75:50:ea:9e:49:ad:35:08:b4:27:22:d5:8a:d4: 73:09:33:73:0c:c1:a0:c8:f4:68:01:71:4c:4c:fa: 3c:44:e2:37:73:6b:5b:5d:92:67:66:f1:da:77:f3: 89:95:6e:da:3b:f7:91:8c:00:af:6a:80:ae:70:05: 99:e8:fc:62:ed:d5:98:84:18:2a:1b:50:f8:5d:8b: 5b:c3:9c:62:30:cb:13:66:19:bf:ed:cc:e6:3b:1a: 17:f7:80:ba:24:87:c2:aa:4c:6c:28:06:9c:0a:dd: ed:2f:54:8b:4a:6b:a3:78:40:5b:03:73:f4:ff:40: 0d:e9:85:9c:4d:88:f9:c6:68:ed:b8:ef:72:86:ca: ad:74:bc:50:c4:8c:c6:d2:87:db:2d:42:e9:12:10: ef:12:48:00:78:13:11:f2:c5:d6:e3:61:7c:b0:1e: 11:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:2E:A3:A5:0B:2E:81:3E:D5:57:83:4B:BD:20:98:57:CE:B4:90:70 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/464fa32c-e2a6-4a57-a755-b1802ee7a1ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.0.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:4e:27:dd:55:46:0c:2b:51:e1:a7:8b:3e:a0:0f:ab:9f:d4: 16:5e:2b:ee:3e:e9:34:5a:23:76:ef:5c:87:90:bc:5a:1c:7a: 9c:b6:d4:cf:4e:c2:1c:77:d9:54:a8:f3:23:f4:ce:0c:87:6c: fa:b4:26:60:de:82:3b:69:f1:c4:31:f8:b7:7b:f6:98:ac:ac: 20:a5:6f:18:44:cf:e4:5d:97:0d:25:03:64:4f:5c:4d:b4:4f: b2:cf:94:91:1e:06:9c:b5:1a:09:45:33:f3:a2:c9:d0:58:54: f5:30:34:bb:c7:d3:e6:12:ac:82:f7:9d:8a:1d:b2:6c:cb:3c: cf:80:4a:f7:af:08:89:37:96:7f:72:56:f9:1f:75:5f:af:86: 3f:ad:33:56:c8:4a:0c:59:2f:37:82:07:fb:49:b6:39:a1:14: 8d:1d:6f:ec:74:a4:5f:12:12:35:f0:2f:10:c4:38:2a:a7:d4: 83:37:29:29:5d:26:fa:e5:c9:78:2b:63:a8:7e:96:42:89:08: 00:97:c9:70:a6:95:fa:99:06:79:8a:52:d0:e4:e0:e4:98:05: 6c:4d:c5:5a:81:81:bc:e4:d5:46:9a:4b:f4:76:d0:d4:3d:ec: f3:81:2f:d4:77:33:4c:06:71:a8:d0:55:87:86:85:54:06:f2: 79:d0:62:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY/HikPuyKb4WlF7kFzN0qdkV1yYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjM3ZGE1MTNjYzkzOTZlYTlhOGU3Yjg1NTQxZDRiYTc4 YjJjNmEzZTc2MDZhZGE5YTFjNGM1YTcyNDY5MzhlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe6ejIG0dEpGP3/oSeTFhvCkgL5grwAJG3wJR4TU1fz1wL JJnl4eZAEy1rMnttJ5KXziUNJVtCbF15p5UuoRnJsqRVbC7QPCWuvriIdteKuRmm DrWuXgiHF6l1UOqeSa01CLQnItWK1HMJM3MMwaDI9GgBcUxM+jxE4jdza1tdkmdm 8dp384mVbto795GMAK9qgK5wBZno/GLt1ZiEGCobUPhdi1vDnGIwyxNmGb/tzOY7 Ghf3gLokh8KqTGwoBpwK3e0vVItKa6N4QFsDc/T/QA3phZxNiPnGaO2473KGyq10 vFDEjMbSh9stQukSEO8SSAB4ExHyxdbjYXywHhEVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0i6jpQsugT7VV4NLvSCYV860kHAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzQ2NGZhMzJjLWUyYTYtNGE1Ny1hNzU1LWIxODAyZWU3YTFmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAAwDQYJKoZIhvcNAQELBQADggEBAA1OJ91VRgwrUeGniz6gD6uf1BZe K+4+6TRaI3bvXIeQvFocepy21M9Owhx32VSo8yP0zgyHbPq0JmDegjtp8cQx+Ld7 9pisrCClbxhEz+Rdlw0lA2RPXE20T7LPlJEeBpy1GglFM/OiydBYVPUwNLvH0+YS rIL3nYodsmzLPM+ASvevCIk3ln9yVvkfdV+vhj+tM1bISgxZLzeCB/tJtjmhFI0d b+x0pF8SEjXwLxDEOCqn1IM3KSldJvrlyXgrY6h+lkKJCACXyXCmlfqZBnmKUtDk 4OSYBWxNxVqBgbzk1UaaS/R20NQ97POBL9R3M0wGcajQVYeGhVQG8nnQYn8= -----END CERTIFICATE-----Generated at Thu Nov 21 18:50:39 2024 by rpki-client on console-ams.rpki-client.org