$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f523bc08-da1e-4456-a0b4-14a2a7f369b8.roa File: f523bc08-da1e-4456-a0b4-14a2a7f369b8.roa (raw, json) Hash identifier: emLx5eaYCLgkVb8RgyZ//YHi1infj05Cl+psnbsOhYw= Subject key identifier: BA:36:2F:0E:E9:E0:03:43:76:96:32:DD:3F:AC:0A:4C:35:20:21:08 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2A9E935844F03E9858FD623E4CB8C2940B3610 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f523bc08-da1e-4456-a0b4-14a2a7f369b8.roa Signing time: Fri 01 Nov 2024 00:00:00 +0000 ROA not before: Fri 01 Nov 2024 00:00:00 +0000 ROA not after: Fri 06 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 26 Nov 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:9e:93:58:44:f0:3e:98:58:fd:62:3e:4c:b8:c2:94:0b:36:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 1 00:00:00 2024 GMT Not After : Dec 6 23:59:59 2024 GMT Subject: serialNumber=f3f55349d9436f69ba7f1a27971af42805dd1ff668600939070ffaf118c07663, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5c:0a:81:c2:59:4a:71:ba:07:20:24:be:21: ae:8d:6e:a5:17:17:65:e4:19:4c:8c:23:7b:f9:ed: 0f:50:cd:e1:52:e0:2f:ee:23:6e:4a:0a:82:30:12: 06:c7:8d:d3:7b:6c:fc:35:5d:45:cf:3b:17:0c:ec: 34:f6:25:52:e7:bd:58:4b:b5:ad:47:14:95:df:08: 34:8d:78:5e:8f:65:fc:ef:00:f3:28:2e:4d:69:ba: 35:66:b1:9d:30:f4:e6:0f:4a:0f:61:14:dc:44:23: 35:23:0e:d7:ae:c6:23:25:7c:1d:1e:97:a5:42:55: ce:12:f5:5a:55:62:34:f0:bc:1f:b4:31:2f:80:55: 9c:6c:21:65:22:fa:54:ea:62:c2:b4:bf:cf:58:1b: 4b:93:74:a9:27:2f:42:f6:bf:8d:8e:8c:b4:c1:a7: d7:71:d7:88:4c:31:65:cb:c1:b5:15:b8:aa:8c:8b: 7b:d0:ae:8d:e1:16:34:bd:c7:39:89:38:3f:e8:32: 1b:4f:00:da:2b:7c:d0:91:52:fa:95:b3:55:35:10: f1:71:ad:02:36:e4:cd:ae:ab:4f:73:41:49:19:b8: ae:63:4b:d1:a7:5c:15:65:0e:bf:a8:9b:3e:1e:51: 53:b0:4d:84:ce:f6:c8:ba:2c:2e:86:0e:8f:ff:92: fa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:36:2F:0E:E9:E0:03:43:76:96:32:DD:3F:AC:0A:4C:35:20:21:08 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f523bc08-da1e-4456-a0b4-14a2a7f369b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 51:47:7b:7d:a1:f9:e2:db:52:4f:bf:ee:53:c3:30:fc:28:65: ff:25:07:79:1e:b5:98:75:ba:c2:c6:55:0a:99:8b:5d:0c:a0: a0:06:eb:d7:ba:2a:9e:f9:b0:5c:ee:3a:21:64:e6:b5:d2:21: ba:14:cb:8f:2f:52:e3:d0:50:21:b6:e1:51:8b:e7:11:c9:f5: e1:71:c4:d0:b4:89:e9:f3:5b:01:66:1c:47:b0:a1:92:57:d7: de:66:17:bc:85:b4:5c:36:bd:cf:97:5f:20:1b:30:d4:f6:5e: e0:f7:c8:d5:43:c1:d8:44:65:ff:41:cf:92:7a:d2:38:53:5a: e4:d3:f8:59:da:f8:a3:a2:60:24:1a:64:ae:4c:c0:28:80:7f: 27:d6:53:24:9c:da:74:25:5a:eb:54:9e:6d:90:77:cc:26:cd: 15:7e:5f:d0:1f:a0:4c:0e:56:2a:78:16:80:bf:e1:e4:42:5e: d2:70:89:46:28:0b:e8:91:6b:53:a5:61:e3:6a:80:ba:79:e9: 4c:f7:18:d7:b5:2a:f0:ef:a7:5e:7e:56:8e:10:ca:5e:2e:d4: 65:cb:9d:68:8e:89:90:0a:eb:9b:74:ba:57:2c:b1:ad:0d:d3: 9a:53:9e:bc:b5:a3:d9:c9:a8:35:00:a3:5d:ff:9a:61:ab:b9: 3d:16:2e:6f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITKp6TWETwPphY/WI+TLjClAs2EDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI5YWIwMTVmMzgyNmUwMTM1MTJhNDUyOThhNDJmMmJhYmEx ZmE3MmY4ZDI3OTM4ODc4YzAeFw0yNDExMDEwMDAwMDBaFw0yNDEyMDYyMzU5NTla MHoxSTBHBgNVBAUTQGYzZjU1MzQ5ZDk0MzZmNjliYTdmMWEyNzk3MWFmNDI4MDVk ZDFmZjY2ODYwMDkzOTA3MGZmYWYxMThjMDc2NjMxLTArBgNVBAMTJDhjZDg0NDJm LTIzNWYtNDE3MS04NGU2LThlMTAwN2E2NGM2MDCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALlcCoHCWUpxugcgJL4hro1upRcXZeQZTIwje/ntD1DN4VLg L+4jbkoKgjASBseN03ts/DVdRc87FwzsNPYlUue9WEu1rUcUld8INI14Xo9l/O8A 8yguTWm6NWaxnTD05g9KD2EU3EQjNSMO167GIyV8HR6XpUJVzhL1WlViNPC8H7Qx L4BVnGwhZSL6VOpiwrS/z1gbS5N0qScvQva/jY6MtMGn13HXiEwxZcvBtRW4qoyL e9CujeEWNL3HOYk4P+gyG08A2it80JFS+pWzVTUQ8XGtAjbkza6rT3NBSRm4rmNL 0adcFWUOv6ibPh5RU7BNhM72yLosLoYOj/+S+scCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBS6Ni8O6eADQ3aWMt0/rApMNSAhCDAfBgNVHSMEGDAWgBRqzD59oudtmREP 1jnEE35CQplw2DAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzY3NTU5NzBjLTQ3 NDctNDk5ZC05Nzc0LTVlMTMwOGM1MDFhNy85YWIwMTVmMzgyNmUwMTM1MTJhNDUy OThhNDJmMmJhYmExZmE3MmY4ZDI3OTM4ODc4Yy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzJkOGRiMC00NzI4LTRmYzEtYmRkOC00NzEx Mjk4NjYzNjIvZjUyM2JjMDgtZGExZS00NDU2LWEwYjQtMTRhMmE3ZjM2OWI4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgt NDcxMTI5ODY2MzYyL2JnRTFFcVJTbUtRdks2dWgtbkw0MG5rNGg0dy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBCNgYDANBgkqhkiG9w0BAQsFAAOCAQEAUUd7faH54ttST7/uU8Mw/Chl/yUH eR61mHW6wsZVCpmLXQygoAbr17oqnvmwXO46IWTmtdIhuhTLjy9S49BQIbbhUYvn Ecn14XHE0LSJ6fNbAWYcR7ChklfX3mYXvIW0XDa9z5dfIBsw1PZe4PfI1UPB2ERl /0HPknrSOFNa5NP4Wdr4o6JgJBpkrkzAKIB/J9ZTJJzadCVa61SebZB3zCbNFX5f 0B+gTA5WKngWgL/h5EJe0nCJRigL6JFrU6Vh42qAunnpTPcY17Uq8O+nXn5WjhDK Xi7UZcudaI6JkArrm3S6VyyxrQ3TmlOevLWj2cmoNQCjXf+aYau5PRYubw== -----END CERTIFICATE-----Generated at Sun Nov 24 20:09:42 2024 by rpki-client on console-ams.rpki-client.org