$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a38a203a-f6a6-4361-af2f-1623dce59880.roa File: a38a203a-f6a6-4361-af2f-1623dce59880.roa (raw, json) Hash identifier: Vo0B3UrYfC/fINXIlHopA7XLR0XWvS0IE52nASAt9aE= Subject key identifier: 22:35:36:22:03:8B:3E:98:27:AD:EB:4A:8D:64:3F:DB:20:97:D4:AB Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 24A8ECB111C7614948FAC86A57C00B045AC25EDC Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a38a203a-f6a6-4361-af2f-1623dce59880.roa Signing time: Tue 01 Oct 2024 00:00:00 +0000 ROA not before: Tue 01 Oct 2024 00:00:00 +0000 ROA not after: Tue 05 Nov 2024 23:59:59 +0000 asID: 8987 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Oct 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:a8:ec:b1:11:c7:61:49:48:fa:c8:6a:57:c0:0b:04:5a:c2:5e:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Oct 1 00:00:00 2024 GMT Not After : Nov 5 23:59:59 2024 GMT Subject: serialNumber=58009f02a152da46ccad553b95421fee999b7b91f2b94f93f69cb6d786392dc0, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:38:0e:77:40:69:a8:a2:8e:9e:97:40:84:ed: 3a:fe:cc:ff:ee:19:d7:66:08:ea:19:7a:2f:7e:86: 1d:35:f0:8e:24:f6:fc:13:08:61:d0:30:33:25:0d: 5f:ae:fd:40:9d:36:d7:dc:a5:1f:cb:20:aa:65:5d: 89:cc:2e:86:c3:57:a5:5c:3c:e3:3a:82:ec:e5:43: 2e:de:a5:c0:dd:ce:c5:66:2a:c5:7a:59:60:66:0c: d4:56:bd:cf:0b:69:82:5f:81:5b:bd:e8:86:e2:ce: 09:e2:74:d4:95:50:1d:a2:c8:f7:cc:6f:43:6b:db: af:1f:7e:06:16:5b:81:1e:53:23:bb:0a:da:b2:02: 72:3a:bb:46:3d:cb:d4:92:03:f7:f0:7b:5a:9d:35: 8e:bd:b5:59:df:6a:d5:94:0e:26:41:28:d6:18:bd: a6:d3:08:1c:c9:99:b4:b1:63:3d:3f:26:3c:4d:63: 8e:e9:b3:20:5f:f4:a7:e0:0d:5f:f4:6c:2b:a8:b3: db:7c:e0:9a:f8:02:49:d8:79:45:54:f8:c8:0e:e2: 2b:af:4b:40:05:6c:4e:cd:f0:36:51:0b:7e:87:56: 2c:50:b2:a3:6e:92:59:66:1d:d3:9b:80:dd:16:c3: 5f:7a:2d:cb:7c:ff:0b:0c:79:6b:31:e8:91:e5:c4: 21:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:35:36:22:03:8B:3E:98:27:AD:EB:4A:8D:64:3F:DB:20:97:D4:AB X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a38a203a-f6a6-4361-af2f-1623dce59880.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 15:94:c8:28:9b:77:5e:8b:e6:f1:3c:a4:53:5f:92:a3:86:ea: c0:18:40:49:b3:4f:9b:40:16:3f:bf:da:8c:95:e5:be:fd:51: db:2b:2d:5f:fa:92:c1:6b:04:fc:1b:b7:aa:a2:67:83:b6:44: c5:c1:0e:84:aa:93:f1:1f:bf:f4:cd:7b:ce:15:12:69:07:87: 03:18:dd:45:13:82:4c:0b:64:d7:b2:51:3f:f0:9e:04:ba:ea: b2:33:33:ab:90:de:a7:56:ca:87:9f:54:37:ca:3e:a9:c6:32: a5:c4:98:5d:48:15:58:82:b2:a0:55:6e:df:26:49:10:44:7e: d4:68:42:29:ac:e9:f1:67:62:4d:67:91:1a:c1:33:54:1d:bf: 9a:90:f1:e1:f9:a2:8b:ea:2d:28:2b:c2:27:ab:19:93:8e:42: 4c:65:52:4c:1b:61:03:61:14:c0:f7:d1:c5:6e:84:a2:3c:07: 76:7f:a6:15:7d:e6:aa:93:26:a8:9f:f0:74:4a:b0:0b:54:78: 60:88:50:d2:b6:27:37:89:8d:78:d8:ac:be:c2:c0:6f:77:3b: c4:35:6e:b9:1a:d6:b9:94:c0:8a:46:c8:07:4c:c8:77:88:8b: 48:2e:af:47:4b:46:3d:fd:ad:f6:d6:cf:5a:56:d6:63:43:c1: e9:66:45:81 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUJKjssRHHYUlI+shqV8ALBFrCXtwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQxMDAxMDAwMDAwWhcNMjQxMTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODAwOWYwMmExNTJkYTQ2Y2NhZDU1M2I5NTQyMWZlZTk5 OWI3YjkxZjJiOTRmOTNmNjljYjZkNzg2MzkyZGMwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkOA53QGmooo6el0CE7Tr+zP/uGddmCOoZei9+hh018I4k 9vwTCGHQMDMlDV+u/UCdNtfcpR/LIKplXYnMLobDV6VcPOM6guzlQy7epcDdzsVm KsV6WWBmDNRWvc8LaYJfgVu96IbizgnidNSVUB2iyPfMb0Nr268ffgYWW4EeUyO7 CtqyAnI6u0Y9y9SSA/fwe1qdNY69tVnfatWUDiZBKNYYvabTCBzJmbSxYz0/JjxN Y47psyBf9KfgDV/0bCuos9t84Jr4AknYeUVU+MgO4iuvS0AFbE7N8DZRC36HVixQ sqNukllmHdObgN0Ww196Lct8/wsMeWsx6JHlxCGNAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUIjU2IgOLPpgnretKjWQ/2yCX1KswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2EzOGEyMDNhLWY2YTYtNDM2MS1hZjJmLTE2MjNkY2U1OTg4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQAVlMgom3dei+bxPKRTX5KjhurA GEBJs0+bQBY/v9qMleW+/VHbKy1f+pLBawT8G7eqomeDtkTFwQ6EqpPxH7/0zXvO FRJpB4cDGN1FE4JMC2TXslE/8J4EuuqyMzOrkN6nVsqHn1Q3yj6pxjKlxJhdSBVY grKgVW7fJkkQRH7UaEIprOnxZ2JNZ5EawTNUHb+akPHh+aKL6i0oK8InqxmTjkJM ZVJMG2EDYRTA99HFboSiPAd2f6YVfeaqkyaon/B0SrALVHhgiFDStic3iY142Ky+ wsBvdzvENW65Gta5lMCKRsgHTMh3iItILq9HS0Y9/a321s9aVtZjQ8HpZkWB -----END CERTIFICATE-----Generated at Tue Oct 22 18:43:03 2024 by rpki-client on console-ams.rpki-client.org