$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/11040a19-cb00-484b-9258-ebe35ac55e5b.roa File: 11040a19-cb00-484b-9258-ebe35ac55e5b.roa (raw, json) Hash identifier: d1U2hmS/DTg9I2OnlCspwPCsKO/8M3+aOVqaEpzVKuE= Subject key identifier: F4:62:CD:40:E0:34:1E:24:F0:59:0A:49:00:C7:9C:3C:46:8D:48:C8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4A282CC7660C1913C92EAF924E40B8108203E83B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/11040a19-cb00-484b-9258-ebe35ac55e5b.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.94.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:28:2c:c7:66:0c:19:13:c9:2e:af:92:4e:40:b8:10:82:03:e8:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=cfe8a8929010bd70f1d082c15bf23dc40fa80bb807a4d71511cbc657db06efb6, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:83:83:ee:de:2b:07:a8:de:2d:19:28:0c:6d: 86:fe:ce:38:1e:7f:4c:e3:5f:36:6b:79:fe:8e:d7: 12:78:03:b1:54:dd:f1:de:17:38:a9:dd:30:5f:e8: 14:bf:15:18:ba:24:23:e5:f0:c3:90:c0:25:55:04: 67:75:aa:52:1b:e1:eb:d9:d1:43:e9:eb:33:84:01: 2d:f4:2d:e7:d0:db:cd:7f:a9:4b:eb:97:93:bc:50: 64:3a:95:7f:5a:de:b3:2e:52:e1:d2:a2:d0:63:c3: e6:f4:2a:e1:35:99:57:88:f4:c0:72:92:3d:0f:99: 30:60:35:4d:00:8e:ef:bc:a6:60:69:45:5d:ef:e7: e0:9b:84:ee:21:21:af:dc:84:c7:a4:98:ce:49:0e: bd:08:f3:03:27:68:a9:31:b3:ab:bb:4d:0b:cd:c5: b7:14:99:ac:f4:14:2e:1a:1a:b0:a6:5f:8e:e2:06: 98:b1:73:83:a5:e6:a2:7e:db:53:10:c8:83:53:8d: 72:83:a8:40:3d:07:f7:5e:68:1c:6e:6d:52:a3:4f: aa:2d:9d:ed:c1:ff:e2:09:37:c7:1a:a3:f4:68:c9: 49:00:00:dc:f3:7e:24:0c:e6:db:9a:98:a5:30:66: 81:ac:fe:43:0b:56:94:01:3f:6f:0d:4c:2a:2a:5a: 05:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:62:CD:40:E0:34:1E:24:F0:59:0A:49:00:C7:9C:3C:46:8D:48:C8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/11040a19-cb00-484b-9258-ebe35ac55e5b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.94.10.0/24 Signature Algorithm: sha256WithRSAEncryption 28:b0:e7:1f:e0:ff:eb:3e:3a:89:c8:5f:82:36:25:d9:30:19: be:aa:91:13:80:df:dd:80:94:fb:da:33:0b:78:c8:f9:e3:47: d7:a0:06:fc:1a:fd:fb:15:d9:80:06:85:e8:92:d2:8c:e3:52: 27:25:a7:bb:1e:9e:a4:20:58:05:5f:f3:55:ff:41:ae:ae:ee: 94:b9:9b:e8:fa:aa:ee:ed:ec:b7:8a:64:24:c8:8b:12:1e:60: 0d:dc:7d:f0:54:5f:01:e6:e9:6b:ad:71:66:63:29:1b:f1:51: 0a:fd:92:61:f8:dd:50:d4:82:df:33:70:ae:17:2c:90:52:cf: 90:f1:7e:98:e1:2b:2d:28:0e:f6:8f:3d:25:75:76:65:62:83: e3:2b:96:1e:f5:78:ed:22:1f:6f:6f:7f:32:ed:44:33:75:d7: d9:21:fc:2a:fd:d7:a2:8b:d1:59:3f:78:6b:2d:96:32:3b:63: 78:21:91:41:b8:4d:5c:84:8d:03:b4:27:9f:60:19:9a:5b:9c: 9d:47:99:ab:cf:c7:04:c5:e4:58:c1:45:2a:4c:9b:95:87:fd: 7d:d0:3a:a1:c9:9b:4f:33:29:4f:c9:19:cc:be:20:42:65:30: ad:da:9d:10:b6:83:8c:fb:0a:9e:80:16:63:53:d1:f0:17:72: 6a:be:f7:64 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSigsx2YMGRPJLq+STkC4EIID6DswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmU4YTg5MjkwMTBiZDcwZjFkMDgyYzE1YmYyM2RjNDBm YTgwYmI4MDdhNGQ3MTUxMWNiYzY1N2RiMDZlZmI2MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCag4Pu3isHqN4tGSgMbYb+zjgef0zjXzZref6O1xJ4A7FU 3fHeFzip3TBf6BS/FRi6JCPl8MOQwCVVBGd1qlIb4evZ0UPp6zOEAS30LefQ281/ qUvrl5O8UGQ6lX9a3rMuUuHSotBjw+b0KuE1mVeI9MBykj0PmTBgNU0Aju+8pmBp RV3v5+CbhO4hIa/chMekmM5JDr0I8wMnaKkxs6u7TQvNxbcUmaz0FC4aGrCmX47i Bpixc4Ol5qJ+21MQyINTjXKDqEA9B/deaBxubVKjT6otne3B/+IJN8cao/RoyUkA ANzzfiQM5tuamKUwZoGs/kMLVpQBP28NTCoqWgUTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9GLNQOA0HiTwWQpJAMecPEaNSMgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzExMDQwYTE5LWNiMDAtNDg0Yi05MjU4LWViZTM1YWM1NWU1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0XgowDQYJKoZIhvcNAQELBQADggEBACiw5x/g/+s+OonIX4I2JdkwGb6q kROA392AlPvaMwt4yPnjR9egBvwa/fsV2YAGheiS0ozjUiclp7senqQgWAVf81X/ Qa6u7pS5m+j6qu7t7LeKZCTIixIeYA3cffBUXwHm6WutcWZjKRvxUQr9kmH43VDU gt8zcK4XLJBSz5DxfpjhKy0oDvaPPSV1dmVig+Mrlh71eO0iH29vfzLtRDN119kh /Cr916KL0Vk/eGstljI7Y3ghkUG4TVyEjQO0J59gGZpbnJ1HmavPxwTF5FjBRSpM m5WH/X3QOqHJm08zKU/JGcy+IEJlMK3anRC2g4z7Cp6AFmNT0fAXcmq+92Q= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:37 2024 by rpki-client on console-ams.rpki-client.org