$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1c3e2897-84d0-4db5-8e5d-726c9120de43.roa File: 1c3e2897-84d0-4db5-8e5d-726c9120de43.roa (raw, json) Hash identifier: 1Opc7FZbrW2i2KbgIxUDyJRWlyyVZCP4Cxvatu5bF3o= Subject key identifier: 0B:43:24:AE:84:71:5F:9C:8E:BF:3D:FC:8B:94:52:66:F6:62:5C:39 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2302AA23D275944F19F7A36D369F4F982E3E66BA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1c3e2897-84d0-4db5-8e5d-726c9120de43.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 18.201.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:02:aa:23:d2:75:94:4f:19:f7:a3:6d:36:9f:4f:98:2e:3e:66:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=c2952bd57a4597d1b1d9dca69bdc6a72783c46b0b022d2762e9e152e7442e922, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1d:10:c3:04:62:83:98:9a:b2:4b:ff:0c:8d: f8:8f:2f:7c:48:2f:75:64:be:d2:cf:15:03:6c:a2: e0:77:f8:20:0e:c1:02:4f:a7:51:e6:81:99:4d:fb: 86:2e:92:eb:db:af:d0:8d:18:e0:7b:67:e8:a1:10: d8:ee:3b:d4:51:01:a3:d7:77:ac:df:a7:47:e6:51: 7b:a4:2b:e0:76:75:b0:66:47:16:37:47:d7:38:e5: 3b:89:34:42:d0:f9:72:c7:b8:cb:ca:ed:03:06:c9: c6:a3:01:6d:6f:05:ba:56:a9:b9:6d:2d:19:0c:ef: 5f:82:35:03:78:ba:eb:cb:81:af:cb:bd:73:7c:8a: 33:6b:1d:cb:40:7b:ff:ca:b0:13:73:d1:eb:06:26: a9:b4:0f:2c:13:4b:6b:2e:1a:56:78:0a:ce:69:73: 1a:d6:fb:20:4c:de:31:64:fc:98:55:96:76:f5:0b: f3:ff:35:d4:50:d4:04:66:6b:6e:50:88:33:aa:3d: cc:11:72:c3:77:68:08:30:5a:df:f7:43:98:23:92: 38:00:04:ca:2e:c6:c5:d8:1d:b5:53:a5:15:16:5c: 53:f4:7d:aa:d5:4e:d7:90:d4:06:d4:2f:40:dc:d4: a6:19:8c:07:68:82:e0:9f:53:ff:3e:35:ac:c5:70: 72:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:43:24:AE:84:71:5F:9C:8E:BF:3D:FC:8B:94:52:66:F6:62:5C:39 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1c3e2897-84d0-4db5-8e5d-726c9120de43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption 37:9a:81:b4:62:8c:6e:da:1c:c5:1d:6d:06:b5:7b:09:5c:87: 21:c6:00:93:5d:1e:55:b6:24:a6:4e:8c:ba:8d:3d:80:66:b3: d3:36:26:ef:9e:f7:0f:80:7c:05:35:4f:46:c2:90:aa:b5:4e: cc:86:e0:bc:aa:ab:b7:3a:0d:f3:47:d2:09:9b:89:4a:4c:7b: 83:fe:03:75:c6:a1:71:a7:0a:eb:95:f0:6c:42:7e:ed:f2:21: 6d:c1:b5:3b:da:58:cb:98:8f:00:da:c5:28:83:a2:f5:99:8e: cc:69:74:82:63:87:de:a5:c7:7c:0c:04:57:ee:c4:f2:f3:5a: be:90:e8:41:10:35:8e:49:2c:73:1b:e7:79:69:a1:98:6e:ba: ab:34:7d:6e:23:d9:cc:d9:07:0d:f3:7a:48:8e:58:7d:1c:a5: 5e:b6:a9:da:1a:5e:98:45:fa:c4:db:31:6e:13:62:df:f8:67: eb:c3:87:61:7d:91:d1:cd:46:62:38:0a:9e:43:c6:e7:ce:b4: 62:76:c9:f1:8f:c0:1e:66:57:ff:ce:bd:31:bc:0c:1c:d4:b6: 21:6d:73:32:ca:2c:67:e9:a8:a9:f3:4c:8e:3b:bc:0b:ff:fd: c6:c6:a6:6c:d2:07:6c:6a:03:3d:1c:43:b4:5a:89:f0:8c:e0: 78:da:a2:22 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIwKqI9J1lE8Z96NtNp9PmC4+ZrowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE4MDAwMDAwWhcNMjQxMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjk1MmJkNTdhNDU5N2QxYjFkOWRjYTY5YmRjNmE3Mjc4 M2M0NmIwYjAyMmQyNzYyZTllMTUyZTc0NDJlOTIyMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkHRDDBGKDmJqyS/8MjfiPL3xIL3VkvtLPFQNsouB3+CAO wQJPp1HmgZlN+4Yukuvbr9CNGOB7Z+ihENjuO9RRAaPXd6zfp0fmUXukK+B2dbBm RxY3R9c45TuJNELQ+XLHuMvK7QMGycajAW1vBbpWqbltLRkM71+CNQN4uuvLga/L vXN8ijNrHctAe//KsBNz0esGJqm0DywTS2suGlZ4Cs5pcxrW+yBM3jFk/JhVlnb1 C/P/NdRQ1ARma25QiDOqPcwRcsN3aAgwWt/3Q5gjkjgABMouxsXYHbVTpRUWXFP0 farVTteQ1AbUL0Dc1KYZjAdoguCfU/8+NazFcHLXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUC0MkroRxX5yOvz38i5RSZvZiXDkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFjM2UyODk3LTg0ZDAtNGRiNS04ZTVkLTcyNmM5MTIwZGU0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASyTANBgkqhkiG9w0BAQsFAAOCAQEAN5qBtGKMbtocxR1tBrV7CVyHIcYA k10eVbYkpk6Muo09gGaz0zYm7573D4B8BTVPRsKQqrVOzIbgvKqrtzoN80fSCZuJ Skx7g/4DdcahcacK65XwbEJ+7fIhbcG1O9pYy5iPANrFKIOi9ZmOzGl0gmOH3qXH fAwEV+7E8vNavpDoQRA1jkkscxvneWmhmG66qzR9biPZzNkHDfN6SI5YfRylXrap 2hpemEX6xNsxbhNi3/hn68OHYX2R0c1GYjgKnkPG5860YnbJ8Y/AHmZX/869MbwM HNS2IW1zMsosZ+moqfNMjju8C//9xsambNIHbGoDPRxDtFqJ8IzgeNqiIg== -----END CERTIFICATE-----Generated at Thu Nov 21 21:03:41 2024 by rpki-client on console-fra.rpki-client.org