$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f523bc08-da1e-4456-a0b4-14a2a7f369b8.roa File: f523bc08-da1e-4456-a0b4-14a2a7f369b8.roa (raw, json) Hash identifier: Ux+LQJ+rpPLTtYjQXN/6npdR+hLbh6xE0ycap/tDMd8= Subject key identifier: 14:4B:99:76:A2:64:0C:A2:4F:48:3B:86:41:71:84:87:C7:7F:69:3E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 39153BB67F3364B36A1FEC848B2AB4086444D3E5 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f523bc08-da1e-4456-a0b4-14a2a7f369b8.roa Signing time: Fri 16 Aug 2024 00:00:00 +0000 ROA not before: Fri 16 Aug 2024 00:00:00 +0000 ROA not after: Fri 20 Sep 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Sep 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:15:3b:b6:7f:33:64:b3:6a:1f:ec:84:8b:2a:b4:08:64:44:d3:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 16 00:00:00 2024 GMT Not After : Sep 20 23:59:59 2024 GMT Subject: serialNumber=068f2caa287a2d573678ac433fb50e939056fa07f02013bcfef22159bd8a35d1, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9c:1e:07:cf:f2:d8:c2:7b:f0:fc:f1:78:c6: 8f:cf:bf:4d:a4:65:19:38:8d:37:f5:71:93:f7:b6: cb:67:f6:dc:dc:98:48:38:37:e1:18:a5:f2:d5:b6: 47:d5:b1:8d:09:91:3d:66:46:0f:74:28:13:a2:a6: f9:65:06:83:5b:09:cb:e6:52:cb:4f:1b:76:a4:c4: 21:2f:55:73:da:e7:12:0c:6b:0d:7d:ae:bd:eb:72: 8a:70:44:e0:81:b3:e0:6d:99:d4:5c:75:38:ea:bb: 60:fc:f9:71:ff:1a:8c:06:61:62:60:99:ac:c5:18: 94:fe:98:2c:51:0c:fc:fc:86:3c:ff:2d:6e:4c:3b: 84:17:48:0e:48:ce:0f:41:1f:0d:26:8b:d6:fd:c4: 8b:2e:58:e3:2b:22:f8:29:8f:00:fa:8c:6d:99:c7: 33:22:64:f7:c9:b4:e3:1d:52:6d:0e:70:aa:4e:6a: 22:bc:1d:f1:5b:63:48:70:61:32:47:81:f4:53:2c: b5:f5:d0:97:db:f4:b8:09:4e:59:3d:16:5a:6a:97: 14:84:ea:54:73:8c:b4:f5:24:5a:2c:59:34:34:89: 5f:8d:33:5d:9d:a4:d2:0f:c8:f7:f3:23:c5:91:6d: a7:5c:19:e4:10:23:d0:8c:62:15:82:2d:6c:db:7c: ce:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:4B:99:76:A2:64:0C:A2:4F:48:3B:86:41:71:84:87:C7:7F:69:3E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f523bc08-da1e-4456-a0b4-14a2a7f369b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 5c:89:0a:67:b8:31:c1:24:1d:eb:bc:89:72:1d:f1:a2:02:8b: 41:34:63:9d:58:b0:2f:2c:08:5d:15:e8:c1:8d:ad:e6:47:7a: d4:35:5d:27:29:c2:0d:a4:0e:05:1a:be:86:37:40:02:7c:ae: 16:7b:20:e8:17:51:41:06:b8:bb:42:30:94:f2:48:70:61:19: b7:c9:9c:36:eb:e4:77:64:8a:9e:34:5f:75:31:52:49:25:5a: 38:60:8d:6d:c1:c5:e0:79:f0:9c:2e:07:5b:04:ef:c3:0f:c2: 7e:09:c9:1b:38:4d:cd:7a:eb:bf:93:21:64:97:17:3b:29:93: 7d:c5:0a:e7:f5:cd:11:2c:cb:cc:bc:2e:ba:1f:50:b8:ad:39: c9:07:c1:07:9d:b1:e2:af:97:4a:f6:3c:f0:f9:4e:bd:40:cf: 67:27:73:40:b8:22:8b:f1:9d:8b:cb:7c:a2:16:28:d7:28:ca: 61:bd:1b:19:7d:76:6c:12:b8:d5:1f:55:8f:8c:a2:bf:d8:51: 9e:cc:21:5d:91:89:03:7e:70:df:fc:84:fe:4e:f2:ec:a3:bd: 20:45:e6:f2:c4:c7:68:7b:8b:67:09:41:a7:af:c2:b9:d9:7e: 4a:96:45:17:f5:af:97:8b:3e:43:48:f9:70:6c:0f:2e:78:63: 94:3c:dc:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUORU7tn8zZLNqH+yEiyq0CGRE0+UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjQwODE2MDAwMDAwWhcNMjQwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjhmMmNhYTI4N2EyZDU3MzY3OGFjNDMzZmI1MGU5Mzkw NTZmYTA3ZjAyMDEzYmNmZWYyMjE1OWJkOGEzNWQxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5nB4Hz/LYwnvw/PF4xo/Pv02kZRk4jTf1cZP3tstn9tzc mEg4N+EYpfLVtkfVsY0JkT1mRg90KBOipvllBoNbCcvmUstPG3akxCEvVXPa5xIM aw19rr3rcopwROCBs+BtmdRcdTjqu2D8+XH/GowGYWJgmazFGJT+mCxRDPz8hjz/ LW5MO4QXSA5Izg9BHw0mi9b9xIsuWOMrIvgpjwD6jG2ZxzMiZPfJtOMdUm0OcKpO aiK8HfFbY0hwYTJHgfRTLLX10Jfb9LgJTlk9FlpqlxSE6lRzjLT1JFosWTQ0iV+N M12dpNIPyPfzI8WRbadcGeQQI9CMYhWCLWzbfM4pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFEuZdqJkDKJPSDuGQXGEh8d/aT4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Y1MjNiYzA4LWRhMWUtNDQ1Ni1hMGI0LTE0YTJhN2YzNjliOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYGAwDQYJKoZIhvcNAQELBQADggEBAFyJCme4McEkHeu8iXId8aICi0E0 Y51YsC8sCF0V6MGNreZHetQ1XScpwg2kDgUavoY3QAJ8rhZ7IOgXUUEGuLtCMJTy SHBhGbfJnDbr5Hdkip40X3UxUkklWjhgjW3BxeB58JwuB1sE78MPwn4JyRs4Tc16 67+TIWSXFzspk33FCuf1zREsy8y8LrofULitOckHwQedseKvl0r2PPD5Tr1Az2cn c0C4IovxnYvLfKIWKNcoymG9Gxl9dmwSuNUfVY+Mor/YUZ7MIV2RiQN+cN/8hP5O 8uyjvSBF5vLEx2h7i2cJQaevwrnZfkqWRRf1r5eLPkNI+XBsDy54Y5Q83Dk= -----END CERTIFICATE-----Generated at Sat Sep 7 16:47:10 2024 by rpki-client on console-fra.rpki-client.org