$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09f01cac-5c71-4f2b-9d76-b13d5fe25b4a.roa File: 09f01cac-5c71-4f2b-9d76-b13d5fe25b4a.roa (raw, json) Hash identifier: CBF9YFvQtzWRyHi0TorGj2LedeLC6tKxBEam3XSqxbI= Subject key identifier: 92:CE:7D:45:B1:05:CD:F0:0C:15:C1:6B:E3:56:99:F9:E3:47:76:8D Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 39E947781AFD767770064E3B0E460D7674C1CA6A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09f01cac-5c71-4f2b-9d76-b13d5fe25b4a.roa Signing time: Sat 16 Nov 2024 00:00:00 +0000 ROA not before: Sat 16 Nov 2024 00:00:00 +0000 ROA not after: Sat 21 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:e9:47:78:1a:fd:76:77:70:06:4e:3b:0e:46:0d:76:74:c1:ca:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 16 00:00:00 2024 GMT Not After : Dec 21 23:59:59 2024 GMT Subject: serialNumber=3d67d0d7dd50f574057a89574f1f55ddc8a7d41785995aab9d916fdb43a83942, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4c:cf:64:ce:af:f8:f0:b0:ba:83:43:a2:e1: 29:68:df:21:64:a6:af:c9:fa:b5:9c:77:35:31:8a: ff:ec:82:59:c4:af:f5:04:1d:27:e4:5c:2c:55:5c: 15:07:fa:67:bf:df:50:87:50:32:28:bd:79:9e:5d: 1d:92:ba:e7:3d:4d:cf:c3:a0:72:02:01:96:40:46: 7a:25:45:3f:88:99:ab:77:1e:fc:fd:e6:ea:4c:59: 5c:ac:44:58:a3:1a:9f:40:74:62:b0:7c:e4:6a:eb: a0:8c:1e:59:ea:14:7a:19:e8:f4:37:c6:e4:70:97: b3:0e:a6:f5:9e:de:59:61:b3:c3:89:30:df:5b:a1: 21:9f:ae:2f:9f:cc:08:5f:8b:82:a2:ea:f8:88:b7: c6:ab:a8:1c:f5:cd:52:69:d3:79:c4:dd:49:c4:0a: 6d:ad:28:ea:53:f8:0a:a1:00:fd:f1:37:29:d0:c9: 71:53:b9:2a:7a:9a:a8:c9:4f:67:87:55:d4:22:ca: 03:87:64:7d:9e:ea:2e:87:e4:b0:ce:fc:f6:7e:ea: 9a:50:44:ba:bb:62:17:e5:49:a5:4d:5b:b7:ce:a1: 58:0b:a3:ed:5e:49:66:a9:48:5a:6e:d1:3e:c0:76: dc:f0:b6:d6:46:aa:45:fc:2c:29:32:cd:f2:3e:f4: c0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:CE:7D:45:B1:05:CD:F0:0C:15:C1:6B:E3:56:99:F9:E3:47:76:8D X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/09f01cac-5c71-4f2b-9d76-b13d5fe25b4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.224.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:84:e4:a9:cf:6f:dd:84:c6:01:ca:47:ab:d9:03:c6:cb:4b: 9e:72:c4:6b:3e:fa:8c:f0:a4:25:bf:53:1e:7b:80:9c:b1:c2: d9:44:2d:82:0f:5d:7a:cf:e7:16:f3:41:f8:05:10:16:06:4c: d4:70:7a:50:c5:f4:45:91:ee:54:25:af:13:56:7b:91:31:78: 4b:3b:c1:4e:3e:e1:84:ca:20:ab:a1:89:c9:b6:ec:41:62:0b: 22:88:32:ce:53:0c:4b:5d:65:8c:dd:a7:9c:be:32:f5:5d:f3: df:fe:7a:ae:36:d0:43:3c:75:23:d8:30:d4:43:47:8d:66:c8: 78:4b:7e:78:7c:eb:d6:03:c3:da:28:de:a3:93:68:12:34:21: b4:8e:bf:fc:7f:54:73:2b:ad:b8:11:7c:5a:a3:15:4a:f9:b1: c9:d6:9c:26:8e:30:ac:dd:73:9f:1d:4a:f5:88:71:51:09:17: 04:2f:66:10:f3:03:13:86:16:a4:bc:b2:dd:44:59:2a:ac:f3: af:e4:f2:6b:fb:74:3b:9a:89:d3:87:fd:de:49:82:84:56:9e: 9c:22:02:d5:9f:3d:1c:db:c0:57:2d:8d:41:62:97:fe:15:7d: ba:62:4c:6f:92:fe:4f:a7:40:9c:5f:de:b2:06:b3:83:59:65: fa:34:1b:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOelHeBr9dndwBk47DkYNdnTBymowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE2MDAwMDAwWhcNMjQxMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDY3ZDBkN2RkNTBmNTc0MDU3YTg5NTc0ZjFmNTVkZGM4 YTdkNDE3ODU5OTVhYWI5ZDkxNmZkYjQzYTgzOTQyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4TM9kzq/48LC6g0Oi4Slo3yFkpq/J+rWcdzUxiv/sglnE r/UEHSfkXCxVXBUH+me/31CHUDIovXmeXR2Suuc9Tc/DoHICAZZARnolRT+Imat3 Hvz95upMWVysRFijGp9AdGKwfORq66CMHlnqFHoZ6PQ3xuRwl7MOpvWe3llhs8OJ MN9boSGfri+fzAhfi4Ki6viIt8arqBz1zVJp03nE3UnECm2tKOpT+AqhAP3xNynQ yXFTuSp6mqjJT2eHVdQiygOHZH2e6i6H5LDO/PZ+6ppQRLq7YhflSaVNW7fOoVgL o+1eSWapSFpu0T7AdtzwttZGqkX8LCkyzfI+9MARAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUks59RbEFzfAMFcFr41aZ+eNHdo0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzA5ZjAxY2FjLTVjNzEtNGYyYi05ZDc2LWIxM2Q1ZmUyNWI0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEP3OAwDQYJKoZIhvcNAQELBQADggEBAGqE5KnPb92ExgHKR6vZA8bLS55y xGs++ozwpCW/Ux57gJyxwtlELYIPXXrP5xbzQfgFEBYGTNRwelDF9EWR7lQlrxNW e5ExeEs7wU4+4YTKIKuhicm27EFiCyKIMs5TDEtdZYzdp5y+MvVd89/+eq420EM8 dSPYMNRDR41myHhLfnh869YDw9oo3qOTaBI0IbSOv/x/VHMrrbgRfFqjFUr5scnW nCaOMKzdc58dSvWIcVEJFwQvZhDzAxOGFqS8st1EWSqs86/k8mv7dDuaidOH/d5J goRWnpwiAtWfPRzbwFctjUFil/4VfbpiTG+S/k+nQJxf3rIGs4NZZfo0G54= -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:52 2024 by rpki-client on console-fra.rpki-client.org