$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa File: decfa8a2-ad50-432e-96a7-cba83d9032f9.roa (raw, json) Hash identifier: mz4hWDBSfjRktnZ8tNFpK3Lv6l3kTiRXhSqlgaHDMA4= Subject key identifier: A4:53:BD:43:47:9F:11:6A:68:10:4B:F4:99:C1:6B:E7:6B:48:90:99 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 10FD7292AB594A8B3E64EAF1A98759003E4411EA Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa Signing time: Wed 18 Dec 2024 00:00:00 +0000 ROA not before: Wed 18 Dec 2024 00:00:00 +0000 ROA not after: Wed 22 Jan 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 27 Dec 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:fd:72:92:ab:59:4a:8b:3e:64:ea:f1:a9:87:59:00:3e:44:11:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Dec 18 00:00:00 2024 GMT Not After : Jan 22 23:59:59 2025 GMT Subject: serialNumber=fe386e22b959233b85d8f5641533f234f20998428250111273c13401e4c44e7f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:ee:8e:20:d9:96:fa:53:46:bc:dd:aa:c2:d4: ea:0c:2c:3e:19:58:d9:cc:82:59:7b:0d:0c:76:9c: 26:06:ef:ff:d4:57:2c:93:e6:a6:39:94:ec:84:25: 21:36:62:ed:3c:c5:c5:ff:90:68:37:3b:3e:7b:59: 75:7d:e9:fa:f8:71:bf:a1:a4:f0:a7:93:f1:bb:0c: 47:e0:57:c5:85:c3:3a:44:07:c1:ab:f8:56:60:34: 47:89:36:f7:f6:af:ac:13:e3:6d:31:d0:48:15:da: 0d:af:64:a6:91:5b:b0:80:f1:b0:4c:59:5f:de:1e: e1:df:b4:f9:88:5c:68:3b:ea:0a:c8:9b:74:e3:1f: d2:e1:76:12:c8:aa:c9:e8:07:18:d8:09:e5:d3:76: b4:60:6e:4a:b6:b4:1b:fe:cc:7a:6c:ce:55:73:2c: 5c:4d:db:2c:0c:10:53:ab:c1:c2:b2:4a:29:89:29: 06:15:64:e4:ff:36:d8:74:9a:ae:a3:f7:5d:1a:03: 16:82:e9:d7:d6:30:3b:f3:c6:fe:34:c2:6c:10:86: d5:7e:89:c0:3e:51:09:73:ce:ee:e7:6d:c2:00:55: 69:3c:b8:3b:8b:05:cd:74:7e:a8:bc:f2:0c:fd:41: 39:39:ed:45:c5:2a:94:33:72:9f:0b:4e:5b:38:58: e7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:53:BD:43:47:9F:11:6A:68:10:4B:F4:99:C1:6B:E7:6B:48:90:99 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.9.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:6d:18:be:ed:ca:2a:2c:79:e8:f0:5a:d8:ed:59:b9:3e:8d: 58:8b:3a:d9:26:68:38:82:95:67:93:98:0a:0b:4b:bc:a2:3f: b3:82:6f:f6:e3:2f:44:f2:dc:b1:18:c3:9c:13:f2:05:d5:25: 6b:2d:23:37:c8:cb:75:8e:2e:11:d1:c6:cc:0d:c0:f7:45:60: 2b:a8:2e:39:63:2c:50:0a:a3:ae:4b:c4:e6:74:ac:40:71:9b: 50:6e:d4:fe:4a:75:1c:76:a6:7c:43:53:9b:d8:60:d7:92:52: bc:3c:7f:c9:e7:80:5d:db:c9:c0:12:36:0b:07:59:3f:26:71: 70:ce:b8:bd:d7:6e:37:58:b0:c2:25:40:49:f3:be:41:b3:8c: 7e:b8:e8:e3:77:86:14:c3:b8:84:ba:82:96:c2:12:b8:5d:05: 37:6b:f1:df:f1:14:24:ac:e3:a7:ba:d4:51:6a:2f:38:bb:98: dd:12:0f:f3:2a:b5:72:e6:d9:11:12:2a:52:ac:ce:bc:06:02: 18:61:10:1c:af:35:18:a5:b0:fe:31:dc:e5:4b:98:e0:52:7a: 2c:a5:de:28:c8:2f:8f:21:a3:34:b5:e8:2b:92:1e:9a:5e:c6: 7e:f9:f4:1c:4b:46:5b:8d:6c:38:01:0f:08:33:d0:c4:16:fd: 17:e4:20:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEP1ykqtZSos+ZOrxqYdZAD5EEeowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQxMjE4MDAwMDAwWhcNMjUwMTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTM4NmUyMmI5NTkyMzNiODVkOGY1NjQxNTMzZjIzNGYy MDk5ODQyODI1MDExMTI3M2MxMzQwMWU0YzQ0ZTdmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD27o4g2Zb6U0a83arC1OoMLD4ZWNnMgll7DQx2nCYG7//U VyyT5qY5lOyEJSE2Yu08xcX/kGg3Oz57WXV96fr4cb+hpPCnk/G7DEfgV8WFwzpE B8Gr+FZgNEeJNvf2r6wT420x0EgV2g2vZKaRW7CA8bBMWV/eHuHftPmIXGg76grI m3TjH9LhdhLIqsnoBxjYCeXTdrRgbkq2tBv+zHpszlVzLFxN2ywMEFOrwcKySimJ KQYVZOT/Nth0mq6j910aAxaC6dfWMDvzxv40wmwQhtV+icA+UQlzzu7nbcIAVWk8 uDuLBc10fqi88gz9QTk57UXFKpQzcp8LTls4WOebAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpFO9Q0efEWpoEEv0mcFr52tIkJkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RlY2ZhOGEyLWFkNTAtNDMyZS05NmE3LWNiYTgzZDkwMzJmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAkwDQYJKoZIhvcNAQELBQADggEBAHxtGL7tyioseejwWtjtWbk+jViL OtkmaDiClWeTmAoLS7yiP7OCb/bjL0Ty3LEYw5wT8gXVJWstIzfIy3WOLhHRxswN wPdFYCuoLjljLFAKo65LxOZ0rEBxm1Bu1P5KdRx2pnxDU5vYYNeSUrw8f8nngF3b ycASNgsHWT8mcXDOuL3XbjdYsMIlQEnzvkGzjH646ON3hhTDuIS6gpbCErhdBTdr 8d/xFCSs46e61FFqLzi7mN0SD/MqtXLm2RESKlKszrwGAhhhEByvNRilsP4x3OVL mOBSeiyl3ijIL48hozS16CuSHppexn759BxLRluNbDgBDwgz0MQW/RfkIOM= -----END CERTIFICATE-----Generated at Wed Dec 25 20:14:56 2024 by rpki-client on console-ams.rpki-client.org