$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/142ce907-aedc-4605-8862-c3d7f5104b02.roa File: 142ce907-aedc-4605-8862-c3d7f5104b02.roa (raw, json) Hash identifier: yHfSQzLb0lWtXVUDTJrXeriPst+AtEbmtp+TSS29jp0= Subject key identifier: E1:02:95:B0:C7:05:19:48:FB:35:9D:DE:0E:15:32:7F:D4:8C:04:00 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3009B5D664E0E7E7E94C75F5B1C0432B5391DE39 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/142ce907-aedc-4605-8862-c3d7f5104b02.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 15.177.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:09:b5:d6:64:e0:e7:e7:e9:4c:75:f5:b1:c0:43:2b:53:91:de:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=2b13dd8f8fa272fa9f7cdfb4907b697b40102f543cefb6d2d90a340b350d13db, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:42:bf:b9:90:70:8e:36:41:f3:b2:9d:7f:e6: ee:37:1e:ec:85:79:a6:6e:00:54:be:0e:66:ef:43: 7a:33:ee:50:d0:59:86:e1:49:e9:47:89:58:12:a3: 37:ef:91:62:a4:b0:2f:d7:48:ad:1e:5d:0e:e0:bf: be:51:03:ea:dd:a5:c1:e1:ad:95:47:9d:40:e4:df: a0:f2:b4:10:da:17:b7:c2:a4:3f:5d:29:78:13:8a: 43:de:29:f1:0e:a4:45:d1:72:4d:cb:49:53:29:81: 6b:3e:b8:a2:4b:5d:51:1c:a2:0e:1a:ba:fe:c6:9e: 30:3f:ec:c4:b0:7d:c9:13:2d:5b:1b:46:81:6e:69: db:ee:1a:15:d3:9f:cc:a2:f6:05:5a:a7:39:81:1e: 75:3c:45:17:ee:6a:9e:04:52:f4:07:69:c9:b3:6f: eb:2b:9a:46:71:c9:aa:60:26:06:b3:fd:12:fe:11: 30:a3:95:7a:29:3f:6e:3b:59:81:e4:d3:03:5c:43: 16:d4:74:87:de:a3:1d:1d:9f:75:61:c7:ec:b1:00: 3d:ec:07:a4:b8:c2:d2:61:fd:f6:ac:f3:76:9b:5c: 24:82:a3:4e:a5:81:43:a6:cf:4d:77:95:3b:06:0e: d2:e8:f3:0b:52:11:36:97:94:f9:44:09:fb:e9:bc: a5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:02:95:B0:C7:05:19:48:FB:35:9D:DE:0E:15:32:7F:D4:8C:04:00 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/142ce907-aedc-4605-8862-c3d7f5104b02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.177.104.0/24 Signature Algorithm: sha256WithRSAEncryption 78:43:40:32:a2:bf:93:ee:5f:7f:6f:89:29:10:2e:b8:cc:eb: ec:02:d2:2d:e7:4d:13:17:56:92:7b:b6:a6:83:c7:48:e1:56: df:8b:62:09:7a:dd:8d:6e:c9:1d:98:20:d0:55:bb:d1:7e:f0: 38:72:79:b3:f5:3f:8e:99:83:ff:f6:7b:73:9b:29:6b:23:7c: a3:d9:b3:7f:4a:84:8b:7e:5f:dd:ce:17:b1:b8:09:3a:09:aa: d5:e7:bf:82:5b:51:d6:ac:10:49:d3:ae:ab:fc:56:66:94:d9: 28:de:ee:6c:44:c0:84:18:81:70:ca:45:63:32:9c:49:4f:43: 2a:3a:9e:07:6f:00:17:18:93:47:ed:ac:3a:97:d3:79:63:08: 83:62:dc:40:38:cb:5a:d4:48:cf:db:7c:8f:4b:cc:80:b4:f0: 8d:b0:ef:be:be:d6:43:34:22:72:8c:76:18:83:db:2f:33:f7: 00:9f:6a:a4:6a:61:15:08:c1:2a:cc:30:02:ae:36:8c:46:25: ba:54:c5:d3:2a:fb:66:47:41:8e:42:de:43:18:d0:f3:b4:6a: f6:fe:3a:b1:bc:54:9a:5c:78:70:ce:e0:0b:44:3f:78:ce:35: 8b:ef:ec:f5:a6:89:e7:c5:5c:1f:16:77:d5:4e:53:3b:7e:1c: 75:a6:f6:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMAm11mTg5+fpTHX1scBDK1OR3jkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjEzZGQ4ZjhmYTI3MmZhOWY3Y2RmYjQ5MDdiNjk3YjQw MTAyZjU0M2NlZmI2ZDJkOTBhMzQwYjM1MGQxM2RiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvQr+5kHCONkHzsp1/5u43HuyFeaZuAFS+DmbvQ3oz7lDQ WYbhSelHiVgSozfvkWKksC/XSK0eXQ7gv75RA+rdpcHhrZVHnUDk36DytBDaF7fC pD9dKXgTikPeKfEOpEXRck3LSVMpgWs+uKJLXVEcog4auv7GnjA/7MSwfckTLVsb RoFuadvuGhXTn8yi9gVapzmBHnU8RRfuap4EUvQHacmzb+srmkZxyapgJgaz/RL+ ETCjlXopP247WYHk0wNcQxbUdIfeox0dn3Vhx+yxAD3sB6S4wtJh/fas83abXCSC o06lgUOmz013lTsGDtLo8wtSETaXlPlECfvpvKWJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4QKVsMcFGUj7NZ3eDhUyf9SMBAAwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzE0MmNlOTA3LWFlZGMtNDYwNS04ODYyLWMzZDdmNTEwNGIwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAPsWgwDQYJKoZIhvcNAQELBQADggEBAHhDQDKiv5PuX39viSkQLrjM6+wC 0i3nTRMXVpJ7tqaDx0jhVt+LYgl63Y1uyR2YINBVu9F+8DhyebP1P46Zg//2e3Ob KWsjfKPZs39KhIt+X93OF7G4CToJqtXnv4JbUdasEEnTrqv8VmaU2Sje7mxEwIQY gXDKRWMynElPQyo6ngdvABcYk0ftrDqX03ljCINi3EA4y1rUSM/bfI9LzIC08I2w 776+1kM0InKMdhiD2y8z9wCfaqRqYRUIwSrMMAKuNoxGJbpUxdMq+2ZHQY5C3kMY 0PO0avb+OrG8VJpceHDO4AtEP3jONYvv7PWmiefFXB8Wd9VOUzt+HHWm9sg= -----END CERTIFICATE-----Generated at Thu Nov 21 21:40:38 2024 by rpki-client on console-ams.rpki-client.org