$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c5be2da-ccb4-465a-b0a1-1151979c0998.roa File: 0c5be2da-ccb4-465a-b0a1-1151979c0998.roa (raw, json) Hash identifier: 2/6jJzQ93WH7efNYlHBKDJ+F2ji+PeM9UIePNoJPyYA= Subject key identifier: 7E:B8:5E:72:DF:14:20:E4:2F:A8:8A:10:13:7C:CB:C7:AC:08:E8:D0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2D5573C7D702C0E32D0DCF721CFC597C222DE044 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c5be2da-ccb4-465a-b0a1-1151979c0998.roa Signing time: Mon 28 Oct 2024 00:00:00 +0000 ROA not before: Mon 28 Oct 2024 00:00:00 +0000 ROA not after: Mon 02 Dec 2024 23:59:59 +0000 asID: 22394 IP address blocks: 155.146.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:55:73:c7:d7:02:c0:e3:2d:0d:cf:72:1c:fc:59:7c:22:2d:e0:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 28 00:00:00 2024 GMT Not After : Dec 2 23:59:59 2024 GMT Subject: serialNumber=259521ba3240ae3be9dfd87b01c156ee53e1448a5d9bd4b07ff3d786f4c1c39d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:74:0a:c2:4b:71:00:e8:86:0c:f6:4d:20:d1: b3:c7:20:94:a0:14:49:ba:7e:f5:3e:a9:1a:48:d1: eb:7e:69:28:81:67:03:5f:89:91:e7:c3:63:30:a8: 09:e3:73:5a:14:9f:3a:20:b3:db:40:aa:62:66:b1: 0e:1b:db:94:46:ad:9f:64:61:f2:d5:53:37:3f:5f: cb:fb:a9:68:af:3c:2d:14:74:90:db:3f:87:ac:c3: 9e:cd:90:2c:27:d8:c6:6f:0c:fa:87:07:c5:eb:43: 0d:9c:ed:68:2a:60:b6:3b:bc:49:f0:bf:72:cc:cf: b6:83:6d:5a:84:96:61:d0:ee:51:81:5d:fb:7d:16: 76:64:39:05:1a:de:1f:58:82:91:12:ee:2e:7b:50: 8a:3d:67:09:ea:40:f7:78:ca:72:e7:97:c7:f0:a2: e2:47:14:9e:57:f7:1b:ee:74:b6:c1:39:54:ae:fb: 83:97:1e:15:86:dd:b8:bf:33:a4:26:42:a6:6c:fb: 0b:af:7f:eb:c2:7e:fd:6a:bb:90:a3:57:be:d1:aa: 9e:95:53:30:3b:e4:12:fa:11:da:c9:4c:9e:cc:d9: 42:f3:62:1f:09:39:7e:6b:29:e2:e0:24:59:af:60: 4c:8f:87:31:e2:88:65:55:c7:14:a1:71:10:28:4d: c7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B8:5E:72:DF:14:20:E4:2F:A8:8A:10:13:7C:CB:C7:AC:08:E8:D0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/0c5be2da-ccb4-465a-b0a1-1151979c0998.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.146.96.0/20 Signature Algorithm: sha256WithRSAEncryption 9c:05:da:6a:83:57:cf:56:c5:ca:2e:db:9e:50:63:52:64:6a: de:c0:6f:3f:7f:e6:c8:75:c2:62:37:67:f9:d7:75:9f:dd:be: f0:27:18:14:9e:95:3e:d6:7d:8d:c8:29:0a:f2:9b:30:26:93: f2:f4:63:44:48:d5:25:d5:07:3f:de:9a:08:ef:b7:31:b9:6d: 1c:77:b7:77:03:61:5a:3d:e8:c8:a2:ec:6c:c5:db:f6:35:97: e1:4a:76:56:4d:05:06:a1:1a:b8:1f:7b:62:7d:6b:e3:03:69: d0:00:96:b1:90:7d:f7:a3:59:fc:ae:5a:e2:46:58:27:07:00: 31:3c:2f:70:c1:68:0e:bb:9f:76:85:2e:51:1d:5e:e0:d4:0b: bd:67:ad:69:52:63:5c:62:c9:aa:f1:98:3c:3a:5b:75:fd:27: a3:f0:62:b7:da:bb:ce:59:59:22:6c:7b:dd:93:fa:46:f2:37: 69:e2:22:7c:74:65:2d:ad:f6:66:cd:63:ad:6f:2f:ff:92:c9: d0:1f:94:4d:ab:b8:e3:75:7a:66:53:d3:2b:27:8e:94:f9:9b: 13:ce:73:95:49:8b:c7:27:34:c8:73:8a:48:bc:76:49:cb:07: 75:3a:f9:52:1e:97:20:52:51:c1:0f:95:47:03:14:16:20:3a: eb:20:d1:22 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULVVzx9cCwOMtDc9yHPxZfCIt4EQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMDI4MDAwMDAwWhcNMjQxMjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTk1MjFiYTMyNDBhZTNiZTlkZmQ4N2IwMWMxNTZlZTUz ZTE0NDhhNWQ5YmQ0YjA3ZmYzZDc4NmY0YzFjMzlkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYdArCS3EA6IYM9k0g0bPHIJSgFEm6fvU+qRpI0et+aSiB ZwNfiZHnw2MwqAnjc1oUnzogs9tAqmJmsQ4b25RGrZ9kYfLVUzc/X8v7qWivPC0U dJDbP4esw57NkCwn2MZvDPqHB8XrQw2c7WgqYLY7vEnwv3LMz7aDbVqElmHQ7lGB Xft9FnZkOQUa3h9YgpES7i57UIo9ZwnqQPd4ynLnl8fwouJHFJ5X9xvudLbBOVSu +4OXHhWG3bi/M6QmQqZs+wuvf+vCfv1qu5CjV77Rqp6VUzA75BL6EdrJTJ7M2ULz Yh8JOX5rKeLgJFmvYEyPhzHiiGVVxxShcRAoTcfxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfrhect8UIOQvqIoQE3zLx6wI6NAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzBjNWJlMmRhLWNjYjQtNDY1YS1iMGExLTExNTE5NzljMDk5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASbkmAwDQYJKoZIhvcNAQELBQADggEBAJwF2mqDV89Wxcou255QY1Jkat7A bz9/5sh1wmI3Z/nXdZ/dvvAnGBSelT7WfY3IKQrymzAmk/L0Y0RI1SXVBz/emgjv tzG5bRx3t3cDYVo96Mii7GzF2/Y1l+FKdlZNBQahGrgfe2J9a+MDadAAlrGQffej WfyuWuJGWCcHADE8L3DBaA67n3aFLlEdXuDUC71nrWlSY1xiyarxmDw6W3X9J6Pw Yrfau85ZWSJse92T+kbyN2niInx0ZS2t9mbNY61vL/+SydAflE2ruON1emZT0ysn jpT5mxPOc5VJi8cnNMhziki8dknLB3U6+VIelyBSUcEPlUcDFBYgOusg0SI= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:36 2024 by rpki-client on console-ams.rpki-client.org