$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/df37622f-c70a-4a6c-9804-378a9f342829.roa File: df37622f-c70a-4a6c-9804-378a9f342829.roa (raw, json) Hash identifier: VCNRGrwcp4HhHk0TRoM1qP0hHImK4WW8tpz5RCThyiY= Subject key identifier: 90:0F:BC:06:29:E9:49:83:1D:6B:A0:06:8D:EE:DD:9F:EB:AA:1C:66 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2E1EAF7B2F23E7D8F1AA27CC189B8C4064473F04 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/df37622f-c70a-4a6c-9804-378a9f342829.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 35.96.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:1e:af:7b:2f:23:e7:d8:f1:aa:27:cc:18:9b:8c:40:64:47:3f:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=c5bc836ca5118b5446bec7ec8e968803560e1bd7ebac106c50265326905fc466, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:be:04:00:f4:e2:62:ec:76:74:36:d9:d9:cb: 74:89:f5:be:37:9e:e9:ee:ae:bd:dc:7e:4b:46:a8: 8f:71:a2:90:07:1b:00:f2:67:34:1f:c8:53:af:63: 42:4a:a5:3a:1a:aa:25:ee:54:a3:18:05:98:ef:b7: f9:30:67:d4:d3:6f:a8:34:de:77:dd:c6:dc:67:cb: 4c:41:3b:e6:e8:51:29:92:5a:5c:14:26:5f:99:39: 17:91:fd:36:63:c6:79:20:df:ab:d2:23:8e:8a:32: 3a:c6:17:87:77:bd:f6:61:02:e6:46:c1:2f:e8:5c: ad:8f:9c:30:fa:2d:9b:c3:4d:fa:27:03:10:de:b4: 47:e3:e8:c3:af:5f:05:fb:86:8e:75:a7:ce:c5:7b: e8:19:49:98:3e:89:ba:4f:c5:4e:ef:43:9b:20:f9: c3:f0:1b:a2:79:33:2d:69:18:9f:01:b4:5e:0e:91: 5f:ba:4e:fc:bb:5d:9f:a5:66:70:10:3d:fe:ae:0f: 3b:cd:35:d3:fa:fc:55:35:a5:e5:5a:86:6f:cd:72: 4f:3a:ce:ab:8c:55:78:31:e3:89:b3:c1:a8:c5:35: e9:4d:df:5f:f4:d9:8a:25:dd:be:c3:68:e6:1b:7d: 46:2d:26:f9:19:75:97:b9:3c:0e:6c:18:7f:85:41: b2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:0F:BC:06:29:E9:49:83:1D:6B:A0:06:8D:EE:DD:9F:EB:AA:1C:66 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/df37622f-c70a-4a6c-9804-378a9f342829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.0.0/12 Signature Algorithm: sha256WithRSAEncryption 0c:23:8a:a5:2b:5e:cb:f4:c2:49:9c:16:93:2f:f9:38:3f:37: e1:2b:a1:e1:0e:6f:82:c4:8f:bd:0e:87:84:c0:03:48:a2:ab: c4:63:8d:c9:69:4e:ef:2b:9c:7b:3b:2c:da:b5:4e:7b:b1:87: b0:33:48:91:43:35:11:c5:ef:1b:23:b8:8f:66:b7:d8:93:07: cd:fc:36:ec:a6:58:d3:0e:d5:12:29:ef:5e:da:c7:b9:d8:1c: f6:f9:0d:42:e2:ce:b1:ae:f1:de:dc:e5:81:1e:74:c5:c1:ee: ce:30:8d:e4:b4:60:4e:1d:0d:ce:0b:b2:0d:73:ce:89:7f:64: cd:1e:07:aa:62:c3:21:65:3c:62:e5:ae:94:43:9b:c8:f8:21: df:79:8a:e8:fb:bd:ec:6d:7c:48:b2:ba:81:58:dc:d6:5b:c0: 45:61:eb:db:24:fe:f9:c8:77:98:c9:8d:13:04:31:9e:a3:6e: 6d:c8:71:12:7f:29:15:51:0e:a2:d7:94:e3:cf:3c:80:a9:27: 23:db:7d:d3:b2:04:14:c9:96:05:7e:95:0f:b0:00:5d:4a:8e: 41:64:2d:d4:b8:c7:e0:06:07:80:e0:1e:d4:6b:14:98:67:ec: c9:38:4c:4e:bb:f6:3d:d5:a2:9d:61:a9:cc:bd:af:e9:d9:61: 5c:cb:1d:0f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULh6vey8j59jxqifMGJuMQGRHPwQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQxMTE4MDAwMDAwWhcNMjQxMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNWJjODM2Y2E1MTE4YjU0NDZiZWM3ZWM4ZTk2ODgwMzU2 MGUxYmQ3ZWJhYzEwNmM1MDI2NTMyNjkwNWZjNDY2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTvgQA9OJi7HZ0NtnZy3SJ9b43nunurr3cfktGqI9xopAH GwDyZzQfyFOvY0JKpToaqiXuVKMYBZjvt/kwZ9TTb6g03nfdxtxny0xBO+boUSmS WlwUJl+ZOReR/TZjxnkg36vSI46KMjrGF4d3vfZhAuZGwS/oXK2PnDD6LZvDTfon AxDetEfj6MOvXwX7ho51p87Fe+gZSZg+ibpPxU7vQ5sg+cPwG6J5My1pGJ8BtF4O kV+6Tvy7XZ+lZnAQPf6uDzvNNdP6/FU1peVahm/Nck86zquMVXgx44mzwajFNelN 31/02Yol3b7DaOYbfUYtJvkZdZe5PA5sGH+FQbKhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkA+8BinpSYMda6AGje7dn+uqHGYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RmMzc2MjJmLWM3MGEtNGE2Yy05ODA0LTM3OGE5ZjM0MjgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQjYDANBgkqhkiG9w0BAQsFAAOCAQEADCOKpStey/TCSZwWky/5OD834Suh 4Q5vgsSPvQ6HhMADSKKrxGONyWlO7yucezss2rVOe7GHsDNIkUM1EcXvGyO4j2a3 2JMHzfw27KZY0w7VEinvXtrHudgc9vkNQuLOsa7x3tzlgR50xcHuzjCN5LRgTh0N zguyDXPOiX9kzR4HqmLDIWU8YuWulEObyPgh33mK6Pu97G18SLK6gVjc1lvARWHr 2yT++ch3mMmNEwQxnqNubchxEn8pFVEOoteU4888gKknI9t907IEFMmWBX6VD7AA XUqOQWQt1LjH4AYHgOAe1GsUmGfsyThMTrv2PdWinWGpzL2v6dlhXMsdDw== -----END CERTIFICATE-----Generated at Thu Nov 21 18:50:39 2024 by rpki-client on console-ams.rpki-client.org