$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa File: 9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa (raw, json) Hash identifier: 5RjHND7sTFOE+kxNKwW4RDtDYQgk6ky7rcFvJU4TeY8= Subject key identifier: B1:10:8D:12:1A:19:92:3B:9C:4C:87:14:EA:92:2D:44:5E:43:B8:1B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 625BF683A216A484538E922EE722C015472E0DC7 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa Signing time: Sat 07 Dec 2024 00:00:00 +0000 ROA not before: Sat 07 Dec 2024 00:00:00 +0000 ROA not after: Sat 11 Jan 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Dec 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:5b:f6:83:a2:16:a4:84:53:8e:92:2e:e7:22:c0:15:47:2e:0d:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Dec 7 00:00:00 2024 GMT Not After : Jan 11 23:59:59 2025 GMT Subject: serialNumber=8d70a97e16aa2a02b3219ae0af70a062d4b580a93a20e3906632b52f304217dc, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:78:b9:96:26:b3:a7:f2:9e:b0:6f:bd:da:61: 03:9b:7e:88:87:df:d1:37:85:e0:e7:e3:3c:72:ca: 3a:a9:e0:ab:be:64:0e:d8:e9:06:86:37:87:e4:01: 86:0a:15:29:5a:b6:27:a0:03:e3:9b:45:45:b5:dd: e1:81:b0:89:10:6a:0b:74:0b:80:0d:bf:c0:dc:77: cd:3b:54:37:00:25:a8:68:f3:08:01:4a:67:aa:17: 44:3a:af:08:b5:c1:77:5c:da:54:df:ae:75:6d:db: 6f:81:2f:13:7c:6c:6b:d6:53:da:bd:38:6c:f6:2f: 65:d0:9d:6a:31:6c:f4:90:37:c8:eb:6f:e6:f7:60: 2b:97:bc:f9:15:48:de:fe:ba:0f:b7:b7:21:a0:56: c7:f8:b3:d6:97:14:68:78:99:45:81:4b:52:25:64: 5c:fc:d2:90:d2:1c:18:6f:b6:b6:d6:4f:59:6b:d7: 22:aa:e6:87:e5:3a:8d:68:ac:d7:17:a6:55:7a:21: 93:e6:b9:29:37:f8:f9:8a:cd:e0:c7:ce:ff:29:74: da:69:a5:10:90:c9:0d:25:bc:9f:c9:af:59:13:82: b1:2d:22:cf:ea:e1:38:69:07:52:fe:c1:c0:fd:e3: 00:99:8d:e7:09:c4:81:d5:2b:67:b3:32:ca:cb:75: c4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:10:8D:12:1A:19:92:3B:9C:4C:87:14:EA:92:2D:44:5E:43:B8:1B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 15:64:f5:e2:23:dc:21:23:29:f7:34:f1:71:d2:26:5a:dd:73: a2:14:aa:15:75:58:c4:d6:b8:02:e2:7f:d4:57:8a:dc:e6:db: c1:f0:f2:6e:7c:2e:bf:09:b2:a1:95:0e:7d:40:b6:3e:a0:7b: 08:09:c5:8d:5e:71:da:06:2c:fa:83:b2:c7:8b:b2:bf:01:5b: 53:37:5e:32:56:e4:a0:ea:36:47:41:5a:e9:06:56:ac:1c:f3: d1:fc:99:c2:57:77:d2:d3:1e:af:1b:6a:af:0b:ba:b4:b7:aa: d3:e3:75:95:e7:09:60:f8:ab:02:e6:bf:e6:39:82:0d:5a:82: 38:63:d0:90:ae:46:64:12:c6:da:56:0e:57:70:90:a1:ea:8e: 13:b9:47:b9:bf:2f:0d:60:85:ba:56:0b:46:de:60:35:c0:cd: 06:6f:b7:80:67:e4:9d:28:15:8f:84:77:57:90:da:d0:30:ae: 48:58:bd:51:ed:d1:5c:9b:4e:08:85:9b:b4:5e:c2:c4:ba:ed: 47:02:12:79:4d:b7:7d:80:9c:8d:23:7e:fe:6a:47:ad:10:35: 8b:21:46:9a:dc:62:f7:01:14:7f:4c:a7:a2:ff:bd:0a:a9:19: dd:6b:8f:20:ad:48:66:05:5c:11:bb:ec:7b:1f:b6:c9:30:c3: 4a:db:2f:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYlv2g6IWpIRTjpIu5yLAFUcuDccwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQxMjA3MDAwMDAwWhcNMjUwMTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDcwYTk3ZTE2YWEyYTAyYjMyMTlhZTBhZjcwYTA2MmQ0 YjU4MGE5M2EyMGUzOTA2NjMyYjUyZjMwNDIxN2RjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjeLmWJrOn8p6wb73aYQObfoiH39E3heDn4zxyyjqp4Ku+ ZA7Y6QaGN4fkAYYKFSlatiegA+ObRUW13eGBsIkQagt0C4ANv8Dcd807VDcAJaho 8wgBSmeqF0Q6rwi1wXdc2lTfrnVt22+BLxN8bGvWU9q9OGz2L2XQnWoxbPSQN8jr b+b3YCuXvPkVSN7+ug+3tyGgVsf4s9aXFGh4mUWBS1IlZFz80pDSHBhvtrbWT1lr 1yKq5oflOo1orNcXplV6IZPmuSk3+PmKzeDHzv8pdNpppRCQyQ0lvJ/Jr1kTgrEt Is/q4ThpB1L+wcD94wCZjecJxIHVK2ezMsrLdcSrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsRCNEhoZkjucTIcU6pItRF5DuBswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzliODA0ZmEwLWY3MjctNGZhYi1hNzFhLTljNWY4NDg2ZWE3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBABVk9eIj3CEjKfc08XHSJlrdc6IU qhV1WMTWuALif9RXitzm28Hw8m58Lr8JsqGVDn1Atj6gewgJxY1ecdoGLPqDsseL sr8BW1M3XjJW5KDqNkdBWukGVqwc89H8mcJXd9LTHq8baq8LurS3qtPjdZXnCWD4 qwLmv+Y5gg1agjhj0JCuRmQSxtpWDldwkKHqjhO5R7m/Lw1ghbpWC0beYDXAzQZv t4Bn5J0oFY+Ed1eQ2tAwrkhYvVHt0VybTgiFm7RewsS67UcCEnlNt32AnI0jfv5q R60QNYshRprcYvcBFH9Mp6L/vQqpGd1rjyCtSGYFXBG77Hsftskww0rbLy0= -----END CERTIFICATE-----Generated at Wed Dec 25 20:14:56 2024 by rpki-client on console-ams.rpki-client.org