$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e4a270a-8468-429b-9756-be2ffa392b61.roa File: 1e4a270a-8468-429b-9756-be2ffa392b61.roa (raw, json) Hash identifier: vZv9aUrpdXcAR0cnonWy2e8aa1+J39jTFhGSzXoTcA4= Subject key identifier: 9B:CD:1A:45:94:3A:6F:05:03:E9:6C:8A:23:70:F3:6F:9A:E2:A1:67 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3B225FE09BB3F4182193112414C1F8495CC25ADD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e4a270a-8468-429b-9756-be2ffa392b61.roa Signing time: Fri 22 Nov 2024 00:00:00 +0000 ROA not before: Fri 22 Nov 2024 00:00:00 +0000 ROA not after: Fri 27 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.119.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:22:5f:e0:9b:b3:f4:18:21:93:11:24:14:c1:f8:49:5c:c2:5a:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 22 00:00:00 2024 GMT Not After : Dec 27 23:59:59 2024 GMT Subject: serialNumber=f57ea9554803ccacb46d3dc448346dc189459148d0d0a3d5616920c4dd0781c3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9a:b2:89:32:8a:1b:de:41:66:a6:e8:7d:ba: 13:60:2c:ad:1a:2b:67:c6:0f:f5:66:bd:18:ec:83: 6d:bf:96:8e:14:81:b8:c9:70:90:93:b2:bc:fd:12: 7e:09:2b:b1:ba:a2:92:4f:f8:99:8b:7c:bb:4f:f5: 53:75:0b:2d:db:38:fb:ce:ac:d4:3d:0c:2b:57:00: 30:38:ef:2c:01:d9:b9:7d:ab:4c:c7:5f:20:7a:0f: 46:8f:42:15:68:1d:39:b4:f0:04:f1:1c:c3:9f:d8: e6:dc:66:46:e8:4a:d0:bb:21:51:59:06:bc:4c:54: b2:d5:04:28:5c:a7:c3:c9:64:76:e8:43:34:a6:8b: 5a:de:37:57:dd:1c:5a:f2:e4:d1:3b:a3:80:7f:47: 24:d5:35:1b:64:77:57:90:1f:29:e1:3b:80:82:a7: 6d:f3:b2:f8:6c:50:fa:ef:e2:98:79:2e:53:9a:6c: 51:55:0e:c4:09:31:01:40:00:38:80:2a:b1:ad:aa: a6:d9:3f:34:29:23:0d:11:01:8d:0e:c5:28:8f:2b: b7:11:72:4c:a5:07:3a:24:94:56:92:fe:64:5c:f6: 71:c9:14:4d:80:a2:14:91:db:75:40:a5:e6:7d:8d: 0a:ac:83:5e:86:e3:cd:af:2e:80:ed:40:2a:97:a5: ec:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CD:1A:45:94:3A:6F:05:03:E9:6C:8A:23:70:F3:6F:9A:E2:A1:67 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/1e4a270a-8468-429b-9756-be2ffa392b61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.119.214.0/23 Signature Algorithm: sha256WithRSAEncryption a1:8e:42:86:a5:dc:fa:71:30:eb:18:9c:e6:9c:91:a4:fc:af: 26:87:2e:4a:d0:21:11:61:84:6d:f2:5d:91:6f:a8:84:d5:17: 6c:5d:44:ea:35:64:34:64:01:13:fa:9e:66:91:b3:88:22:82: 24:92:35:e4:22:d8:da:4c:12:86:9b:14:09:cb:6f:00:d3:66: 15:65:5c:ba:d3:85:31:37:32:71:62:06:54:97:9a:89:3c:84: c2:87:ed:eb:d3:31:0b:2b:6a:ee:f0:dd:29:ee:78:b6:b7:7c: ac:1a:38:bb:5b:7c:07:db:1f:36:d6:6d:f6:cf:7c:a5:1f:4b: 84:fe:6d:b4:a3:ee:0d:f5:53:fd:ed:27:38:ba:f3:9e:e1:3c: 16:ec:84:2e:15:9e:33:96:f0:f3:d4:09:6a:1e:24:59:63:58: 27:b6:ad:a4:70:cf:49:a7:06:a0:1e:ff:91:51:e5:46:af:b4: 06:40:a1:44:71:19:13:cd:c0:82:68:ee:c2:88:bb:54:bb:54: de:a3:2b:92:56:dc:16:be:a1:09:11:43:f2:61:90:63:a8:da: 1f:fc:bd:e2:c1:a5:2f:1d:3e:28:cf:b8:e4:8e:b8:84:20:be: 03:61:3a:15:08:af:0d:c1:e0:14:73:b9:d7:1c:46:a9:1d:ee: 53:e7:50:6f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOyJf4Juz9BghkxEkFMH4SVzCWt0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTIyMDAwMDAwWhcNMjQxMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTdlYTk1NTQ4MDNjY2FjYjQ2ZDNkYzQ0ODM0NmRjMTg5 NDU5MTQ4ZDBkMGEzZDU2MTY5MjBjNGRkMDc4MWMzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCamrKJMoob3kFmpuh9uhNgLK0aK2fGD/VmvRjsg22/lo4U gbjJcJCTsrz9En4JK7G6opJP+JmLfLtP9VN1Cy3bOPvOrNQ9DCtXADA47ywB2bl9 q0zHXyB6D0aPQhVoHTm08ATxHMOf2ObcZkboStC7IVFZBrxMVLLVBChcp8PJZHbo QzSmi1reN1fdHFry5NE7o4B/RyTVNRtkd1eQHynhO4CCp23zsvhsUPrv4ph5LlOa bFFVDsQJMQFAADiAKrGtqqbZPzQpIw0RAY0OxSiPK7cRckylBzoklFaS/mRc9nHJ FE2AohSR23VApeZ9jQqsg16G482vLoDtQCqXpezJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm80aRZQ6bwUD6WyKI3Dzb5rioWcwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzFlNGEyNzBhLTg0NjgtNDI5Yi05NzU2LWJlMmZmYTM5MmI2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE0d9YwDQYJKoZIhvcNAQELBQADggEBAKGOQoal3PpxMOsYnOackaT8ryaH LkrQIRFhhG3yXZFvqITVF2xdROo1ZDRkARP6nmaRs4gigiSSNeQi2NpMEoabFAnL bwDTZhVlXLrThTE3MnFiBlSXmok8hMKH7evTMQsrau7w3SnueLa3fKwaOLtbfAfb HzbWbfbPfKUfS4T+bbSj7g31U/3tJzi6857hPBbshC4VnjOW8PPUCWoeJFljWCe2 raRwz0mnBqAe/5FR5UavtAZAoURxGRPNwIJo7sKIu1S7VN6jK5JW3Ba+oQkRQ/Jh kGOo2h/8veLBpS8dPijPuOSOuIQgvgNhOhUIrw3B4BRzudccRqkd7lPnUG8= -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:58 2024 by rpki-client on console-fra.rpki-client.org