$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/04492bfd-bde7-43eb-bdfd-c17ceaec9018.roa File: 04492bfd-bde7-43eb-bdfd-c17ceaec9018.roa (raw, json) Hash identifier: yDgek/aanq86JKSPZ+8OOedFbACMCje18a9n65Y1STo= Subject key identifier: 5F:D2:EA:60:C1:C1:73:D3:2E:53:13:38:C7:79:6A:4D:02:95:E4:31 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 34F85267F93143199D45B0B5EA4805C08176E3FB Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/04492bfd-bde7-43eb-bdfd-c17ceaec9018.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.252.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:f8:52:67:f9:31:43:19:9d:45:b0:b5:ea:48:05:c0:81:76:e3:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=4bcf459f5d2eee9916d6ca51b6e6d5c586ebd2474eebcd786157de63d4855d39, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bc:71:00:9f:67:65:6e:fa:3f:65:27:b5:f9: 9d:ff:b6:af:ef:42:e8:61:a3:15:a7:d2:92:69:25: 82:f0:70:cb:fd:9e:9f:e0:fb:f7:63:05:b9:91:67: 9d:bd:51:77:6a:af:9a:12:a8:73:cb:0c:4b:31:02: b3:69:1a:89:88:ea:c7:11:ee:56:a2:e4:59:a6:44: c7:09:39:4a:05:f4:36:a2:32:ce:bd:3d:64:f5:ef: 22:9f:7f:5e:7a:07:0c:12:68:32:07:34:31:05:c8: 35:dd:c3:17:c3:e6:8e:a3:0f:35:4f:77:68:89:03: b7:10:57:ee:6f:70:aa:27:70:67:72:d2:51:83:73: f9:52:ab:0b:0e:3f:c2:54:50:14:fb:65:5c:cf:7b: 28:0d:a0:00:c5:5b:ba:4b:db:eb:c4:99:df:42:93: e5:9f:a0:65:df:f9:c9:4b:d0:34:1d:6e:1b:cd:3b: 5b:c8:73:f2:58:d2:5c:9e:71:da:9e:e9:c9:1f:1e: 49:57:15:9d:40:a6:59:a2:65:de:78:b1:8e:b0:ea: 77:20:2e:c2:52:3f:1a:e3:b2:21:7a:59:96:c0:ca: ef:e7:2d:d0:3b:e2:d3:b6:4b:a1:71:b3:ed:5f:9e: ae:58:03:20:01:76:f2:8b:4d:c1:6f:37:79:f5:ab: a1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D2:EA:60:C1:C1:73:D3:2E:53:13:38:C7:79:6A:4D:02:95:E4:31 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/04492bfd-bde7-43eb-bdfd-c17ceaec9018.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.252.0.0/16 Signature Algorithm: sha256WithRSAEncryption a6:e8:25:89:9e:24:d2:2e:de:7a:14:53:dd:ce:d1:a3:e3:bc: bc:9b:51:85:ef:d0:5e:56:e7:45:06:54:f2:27:8a:ff:ec:69: ea:d2:20:c3:62:b7:6e:17:22:47:14:42:f8:1a:00:e5:5d:06: 04:f5:3c:b9:ff:0d:d3:33:91:d2:5f:c1:4f:f4:b1:e8:b6:48: dc:e5:39:dd:2a:91:0f:72:f4:a6:5e:7e:e9:6a:b1:55:04:08: af:d3:12:6d:72:01:f3:09:41:0e:8d:1c:f3:18:f6:b5:7b:95: ae:b7:57:23:dc:25:98:b7:39:30:6a:c0:35:f2:a5:17:91:2f: 45:be:03:86:51:4e:e3:bf:49:4c:06:d6:d8:c6:8e:24:78:c5: 1b:21:a7:01:ad:2f:3a:9f:27:38:13:af:ac:6c:ed:f6:52:cf: 80:4d:d7:4a:48:0f:3a:66:34:dd:36:65:03:3e:38:ef:08:cb: 16:59:fc:6d:73:62:4a:38:32:ab:6f:65:76:1d:06:c2:8d:77: e8:0a:12:7c:b6:f9:32:a3:56:4c:78:b2:62:69:85:9a:c2:8e: e0:59:aa:33:7b:ad:ad:99:91:aa:a9:e9:8d:7c:c0:f9:6c:3a: 44:f9:80:8a:5d:f9:a4:55:e0:4d:08:06:27:ee:7c:67:6c:eb: 40:1c:8d:44 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNPhSZ/kxQxmdRbC16kgFwIF24/swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YmNmNDU5ZjVkMmVlZTk5MTZkNmNhNTFiNmU2ZDVjNTg2 ZWJkMjQ3NGVlYmNkNzg2MTU3ZGU2M2Q0ODU1ZDM5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrvHEAn2dlbvo/ZSe1+Z3/tq/vQuhhoxWn0pJpJYLwcMv9 np/g+/djBbmRZ529UXdqr5oSqHPLDEsxArNpGomI6scR7lai5FmmRMcJOUoF9Dai Ms69PWT17yKff156BwwSaDIHNDEFyDXdwxfD5o6jDzVPd2iJA7cQV+5vcKoncGdy 0lGDc/lSqwsOP8JUUBT7ZVzPeygNoADFW7pL2+vEmd9Ck+WfoGXf+clL0DQdbhvN O1vIc/JY0lyecdqe6ckfHklXFZ1AplmiZd54sY6w6ncgLsJSPxrjsiF6WZbAyu/n LdA74tO2S6Fxs+1fnq5YAyABdvKLTcFvN3n1q6GjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUX9LqYMHBc9MuUxM4x3lqTQKV5DEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA0NDkyYmZkLWJkZTctNDNlYi1iZGZkLWMxN2NlYWVjOTAxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2/DANBgkqhkiG9w0BAQsFAAOCAQEApugliZ4k0i7eehRT3c7Ro+O8vJtR he/QXlbnRQZU8ieK/+xp6tIgw2K3bhciRxRC+BoA5V0GBPU8uf8N0zOR0l/BT/Sx 6LZI3OU53SqRD3L0pl5+6WqxVQQIr9MSbXIB8wlBDo0c8xj2tXuVrrdXI9wlmLc5 MGrANfKlF5EvRb4DhlFO479JTAbW2MaOJHjFGyGnAa0vOp8nOBOvrGzt9lLPgE3X SkgPOmY03TZlAz447wjLFln8bXNiSjgyq29ldh0Gwo136AoSfLb5MqNWTHiyYmmF msKO4FmqM3utrZmRqqnpjXzA+Ww6RPmAil35pFXgTQgGJ+58Z2zrQByNRA== -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:51 2024 by rpki-client on console-fra.rpki-client.org