$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8c24eb90-9208-4e18-96a8-b80e7845ecfb.roa File: 8c24eb90-9208-4e18-96a8-b80e7845ecfb.roa (raw, json) Hash identifier: v/X9AyEB1X7NOEy/su1vkK9dxUcORpiT/QF/hUv5Ss8= Subject key identifier: 67:B5:9C:18:6E:91:95:A1:49:22:04:8F:CE:D7:CC:C8:AD:A9:AD:F3 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 143C98988D4D014906EE403A58FC931E88356721 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8c24eb90-9208-4e18-96a8-b80e7845ecfb.roa Signing time: Fri 16 Aug 2024 00:00:00 +0000 ROA not before: Fri 16 Aug 2024 00:00:00 +0000 ROA not after: Fri 20 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Sep 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:3c:98:98:8d:4d:01:49:06:ee:40:3a:58:fc:93:1e:88:35:67:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 16 00:00:00 2024 GMT Not After : Sep 20 23:59:59 2024 GMT Subject: serialNumber=8f9f4adde16f7b8bd9ebdd64bf7f3cd8261182e0041fffb5605efa045fd65a04, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:78:56:cb:ea:29:c5:d1:f4:4f:52:97:bf:e8: 56:25:75:5e:79:97:4f:ad:63:83:a0:23:61:89:d3: 7e:84:20:5d:14:63:bb:af:b3:26:b8:7e:e6:fb:b5: 7e:b0:23:4b:91:da:3b:89:b5:18:8a:8f:4a:0d:b3: 40:c8:99:96:5e:f2:5f:46:f5:75:64:9e:d0:71:c5: ea:9d:8a:59:c6:fb:54:f9:47:25:32:fc:dd:8e:9c: eb:ec:98:cc:01:2a:72:68:a3:c0:4d:5c:00:e6:86: 91:e8:ab:cf:e2:93:88:f6:77:1f:21:52:b4:c1:a2: 72:86:c7:ee:a3:1b:26:80:87:f9:73:b0:9f:df:c5: d3:28:69:13:cc:19:0d:8b:6e:8e:c9:01:a4:a9:f1: 7a:06:24:9b:64:4e:a7:87:93:37:33:69:0e:98:55: 43:cc:92:f9:3f:62:e1:00:a4:83:c1:d5:cb:0f:87: 45:98:ea:83:ea:8c:1e:a0:b4:53:5f:47:5a:6d:71: aa:53:97:e6:5a:b2:2b:15:cd:24:20:52:cd:e6:fc: 52:33:b9:5d:62:de:6c:88:04:37:c6:ea:12:f6:ec: ac:a6:08:29:80:8d:7e:7f:78:cb:3b:db:46:06:51: 1c:59:63:59:b7:b3:8c:3a:f9:74:5a:fd:68:a7:27: 37:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B5:9C:18:6E:91:95:A1:49:22:04:8F:CE:D7:CC:C8:AD:A9:AD:F3 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8c24eb90-9208-4e18-96a8-b80e7845ecfb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.144.0/20 Signature Algorithm: sha256WithRSAEncryption 56:27:ea:dd:d1:ea:96:8c:d4:b2:43:37:43:48:d3:13:16:19: 30:19:9b:29:49:a7:53:81:94:b8:49:04:86:1a:fc:01:65:55: 27:dc:68:4a:0d:d9:ff:a3:4d:00:16:09:9d:a3:26:93:41:1a: ac:27:56:33:07:05:b8:97:18:55:56:96:22:b2:6b:73:d9:09: 2f:07:9f:f5:01:91:ec:67:15:a7:58:00:60:02:66:18:4c:69: 04:99:dd:e9:6f:ed:d8:87:57:99:53:37:e6:73:3c:93:6f:9f: 3e:08:59:fe:06:19:58:0d:46:f5:7d:07:38:ff:16:9f:49:01: 43:c4:f8:69:77:8d:bb:1d:a4:9a:cd:b3:fa:94:be:59:b7:66: 7a:67:33:5c:93:06:d1:7f:ef:4a:95:70:70:5a:f0:81:d0:3c: 71:3f:f2:2e:71:c8:3e:c9:6b:be:44:6d:40:4b:49:1c:a8:07: e3:10:a8:a2:b5:57:4f:54:a6:fd:d6:4b:72:d9:47:b6:19:e3: f7:14:91:ae:0b:b7:13:1d:ea:23:39:6b:15:0c:72:d1:54:74: b0:fb:7a:1e:0b:24:65:c3:7a:a0:aa:9d:ba:5e:4c:d4:5f:35: 85:2a:de:d7:e3:9c:91:07:43:9f:97:d9:5b:03:ef:d4:52:1f: 96:89:b3:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFDyYmI1NAUkG7kA6WPyTHog1ZyEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQwODE2MDAwMDAwWhcNMjQwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjlmNGFkZGUxNmY3YjhiZDllYmRkNjRiZjdmM2NkODI2 MTE4MmUwMDQxZmZmYjU2MDVlZmEwNDVmZDY1YTA0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpeFbL6inF0fRPUpe/6FYldV55l0+tY4OgI2GJ036EIF0U Y7uvsya4fub7tX6wI0uR2juJtRiKj0oNs0DImZZe8l9G9XVkntBxxeqdilnG+1T5 RyUy/N2OnOvsmMwBKnJoo8BNXADmhpHoq8/ik4j2dx8hUrTBonKGx+6jGyaAh/lz sJ/fxdMoaRPMGQ2Lbo7JAaSp8XoGJJtkTqeHkzczaQ6YVUPMkvk/YuEApIPB1csP h0WY6oPqjB6gtFNfR1ptcapTl+ZasisVzSQgUs3m/FIzuV1i3myIBDfG6hL27Kym CCmAjX5/eMs720YGURxZY1m3s4w6+XRa/WinJzdpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZ7WcGG6RlaFJIgSPztfMyK2prfMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhjMjRlYjkwLTkyMDgtNGUxOC05NmE4LWI4MGU3ODQ1ZWNmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYJAwDQYJKoZIhvcNAQELBQADggEBAFYn6t3R6paM1LJDN0NI0xMWGTAZ mylJp1OBlLhJBIYa/AFlVSfcaEoN2f+jTQAWCZ2jJpNBGqwnVjMHBbiXGFVWliKy a3PZCS8Hn/UBkexnFadYAGACZhhMaQSZ3elv7diHV5lTN+ZzPJNvnz4IWf4GGVgN RvV9Bzj/Fp9JAUPE+Gl3jbsdpJrNs/qUvlm3ZnpnM1yTBtF/70qVcHBa8IHQPHE/ 8i5xyD7Ja75EbUBLSRyoB+MQqKK1V09Upv3WS3LZR7YZ4/cUka4LtxMd6iM5axUM ctFUdLD7eh4LJGXDeqCqnbpeTNRfNYUq3tfjnJEHQ5+X2VsD79RSH5aJsxk= -----END CERTIFICATE-----Generated at Sat Sep 7 16:36:30 2024 by rpki-client on console-ams.rpki-client.org