$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8c24eb90-9208-4e18-96a8-b80e7845ecfb.roa File: 8c24eb90-9208-4e18-96a8-b80e7845ecfb.roa (raw, json) Hash identifier: wEueWOxv0wCm5wddYgBH2Z4FAatXcKrBALIHe2g61EI= Subject key identifier: 47:B6:33:C5:00:28:07:29:9D:3F:77:8A:C3:55:D2:3D:EC:72:ED:BC Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 212EE8A4AD67B3368BEBAD5293CD66216402E530 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8c24eb90-9208-4e18-96a8-b80e7845ecfb.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:2e:e8:a4:ad:67:b3:36:8b:eb:ad:52:93:cd:66:21:64:02:e5:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=1749da900576fec26f8938a089b38f46a9e940764a20d44ddc58b15c72f39e89, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e3:9b:7e:61:86:ed:cc:ae:f8:5b:81:7a:03: e3:2c:a4:ec:90:4b:ae:a8:20:4b:80:6d:76:84:84: 38:3a:18:60:f3:83:87:0d:80:14:be:46:eb:b4:8d: 04:6b:74:84:bf:f8:2d:11:d3:a2:63:19:6f:c3:0e: 41:5e:02:28:c5:90:55:81:a2:e0:87:60:ca:bd:f1: 52:53:26:4e:33:5e:b8:35:d3:61:a1:9d:28:ea:e8: 3f:e0:9b:5f:06:4b:8f:5d:36:3b:4e:9d:e7:75:68: ad:b1:2b:2e:73:b0:fc:93:60:44:1c:b4:1d:66:10: a7:6f:da:9e:e4:62:38:e4:97:9f:e3:88:85:c5:5d: 3e:82:1f:46:6a:b6:f5:e0:f6:c9:c2:8d:71:7d:67: e0:ce:5a:fb:4e:f7:5c:b4:dd:5a:c9:28:8b:82:4b: a4:d4:5d:49:39:03:f8:27:bf:c1:6a:b7:de:c7:82: 3b:9f:c0:4f:45:56:6d:c2:aa:80:fe:5b:04:3e:1d: 9d:b4:7e:cc:a6:66:f9:78:3f:84:64:21:8e:a6:00: 95:40:a2:81:b8:da:ab:1b:51:7a:58:7f:51:09:40: 0c:97:f7:8e:75:5b:c9:d5:a9:41:29:ec:90:c4:0b: 45:9b:32:a4:95:8b:31:c8:00:50:0c:86:36:96:39: 40:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B6:33:C5:00:28:07:29:9D:3F:77:8A:C3:55:D2:3D:EC:72:ED:BC X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8c24eb90-9208-4e18-96a8-b80e7845ecfb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.144.0/20 Signature Algorithm: sha256WithRSAEncryption 59:35:10:81:f9:5e:81:e3:ab:b4:cd:37:4c:f1:94:df:6a:27: d5:99:60:34:51:3d:ff:54:4a:44:99:58:c0:f5:46:d2:1a:7f: d4:fa:4a:56:2a:d3:3b:17:8f:69:c1:22:9b:87:9e:ba:d5:83: 02:65:cf:2b:62:10:d8:ba:82:0f:18:81:78:27:92:81:2c:90: 7f:e3:f9:92:0b:5c:1b:eb:8d:6e:e4:3c:51:bb:f3:31:32:9d: 9b:77:b6:77:03:9a:fb:7c:3b:0d:9c:78:be:eb:4a:8a:af:26: d3:69:b0:aa:a4:bf:ac:7c:06:16:29:70:7a:b0:78:a0:cc:81: 04:74:b2:94:eb:6e:b5:83:ff:a7:fd:44:9e:67:24:f0:7d:92: ee:f4:0b:d4:d1:96:60:62:c0:69:82:34:54:67:3f:78:b2:32: a2:43:fe:58:40:41:06:41:d3:c6:57:04:cc:28:1e:2e:6e:df: 56:b4:71:b3:f0:d4:d2:cf:60:f8:4a:a9:5f:86:b4:c0:5f:00: 5a:05:5d:af:70:1a:94:5e:96:cf:21:36:a7:99:b9:83:b7:0c: 1e:0e:09:97:61:9e:d0:e7:ce:05:15:f7:af:ad:23:81:36:17: 96:1a:16:f7:08:42:fb:1b:87:9e:92:ad:6e:b8:fd:ef:a0:c7: ed:f0:9f:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIS7opK1nszaL661Sk81mIWQC5TAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQxMTAxMDAwMDAwWhcNMjQxMjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzQ5ZGE5MDA1NzZmZWMyNmY4OTM4YTA4OWIzOGY0NmE5 ZTk0MDc2NGEyMGQ0NGRkYzU4YjE1YzcyZjM5ZTg5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd45t+YYbtzK74W4F6A+MspOyQS66oIEuAbXaEhDg6GGDz g4cNgBS+Ruu0jQRrdIS/+C0R06JjGW/DDkFeAijFkFWBouCHYMq98VJTJk4zXrg1 02GhnSjq6D/gm18GS49dNjtOned1aK2xKy5zsPyTYEQctB1mEKdv2p7kYjjkl5/j iIXFXT6CH0ZqtvXg9snCjXF9Z+DOWvtO91y03VrJKIuCS6TUXUk5A/gnv8Fqt97H gjufwE9FVm3CqoD+WwQ+HZ20fsymZvl4P4RkIY6mAJVAooG42qsbUXpYf1EJQAyX 9451W8nVqUEp7JDEC0WbMqSVizHIAFAMhjaWOUBrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR7YzxQAoBymdP3eKw1XSPexy7bwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhjMjRlYjkwLTkyMDgtNGUxOC05NmE4LWI4MGU3ODQ1ZWNmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYJAwDQYJKoZIhvcNAQELBQADggEBAFk1EIH5XoHjq7TNN0zxlN9qJ9WZ YDRRPf9USkSZWMD1RtIaf9T6SlYq0zsXj2nBIpuHnrrVgwJlzytiENi6gg8YgXgn koEskH/j+ZILXBvrjW7kPFG78zEynZt3tncDmvt8Ow2ceL7rSoqvJtNpsKqkv6x8 BhYpcHqweKDMgQR0spTrbrWD/6f9RJ5nJPB9ku70C9TRlmBiwGmCNFRnP3iyMqJD /lhAQQZB08ZXBMwoHi5u31a0cbPw1NLPYPhKqV+GtMBfAFoFXa9wGpRels8hNqeZ uYO3DB4OCZdhntDnzgUV96+tI4E2F5YaFvcIQvsbh56SrW64/e+gx+3wnwk= -----END CERTIFICATE-----Generated at Thu Nov 21 18:50:39 2024 by rpki-client on console-ams.rpki-client.org