$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/88f09a26-8b70-4d31-b73b-01df50c56e50.roa File: 88f09a26-8b70-4d31-b73b-01df50c56e50.roa (raw, json) Hash identifier: d7LtUJ/3/EyW39D0KAxboTd1aVH4Pczk09PlQ3elTVI= Subject key identifier: FE:21:3A:97:A6:4B:98:82:6A:D1:FB:E0:1D:90:BE:1C:07:F8:C2:A8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2FCA68239F82827BB9E29FBB2E55E494BA1C215C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/88f09a26-8b70-4d31-b73b-01df50c56e50.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 6167 IP address blocks: 155.146.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ca:68:23:9f:82:82:7b:b9:e2:9f:bb:2e:55:e4:94:ba:1c:21:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=5a7865ef741fb02d81c478f4fbe13b035b9d9871febbfd7d45f6f3078954fe7a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8e:39:65:24:6f:82:82:78:49:55:cd:78:de: c9:5b:57:f2:17:3b:03:8a:fa:1b:23:65:70:5b:3f: 12:0b:2e:f2:37:0a:76:ff:70:34:c2:4a:d2:45:1c: 9e:0f:8a:a8:8f:dc:4d:7d:6f:06:32:11:aa:7f:94: e7:d0:9f:f5:ce:4c:44:73:0b:49:0f:05:28:ab:6d: 1c:95:a8:f5:d1:b5:fb:a2:7c:11:74:da:5f:6d:3f: ca:f3:30:90:88:ae:63:36:be:9c:5d:49:af:8d:6d: 79:9f:42:67:06:e6:d9:47:ff:1a:d3:ef:ae:07:06: 04:d4:95:25:ce:12:99:a8:25:9b:58:f9:39:44:51: 14:05:12:8c:85:6d:73:bf:83:33:c6:cf:6b:12:4d: d8:bb:51:d0:51:47:a7:18:32:bf:22:c8:a9:ac:45: ee:8c:43:ab:1e:bd:79:bd:8d:65:34:a9:27:03:a8: b3:12:eb:94:c9:0c:0f:79:9a:4d:8b:7e:d2:29:cf: af:b4:85:b1:1b:cb:0a:5e:6a:d4:b1:29:d9:68:01: 8d:fa:9f:0a:52:8e:28:07:a2:a7:46:6e:15:5c:d3: 7d:d2:1b:cd:58:83:cf:0b:a9:8f:5e:e6:bb:18:51: 58:56:01:9c:18:67:47:07:8c:c2:3c:d3:1a:65:23: a9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:21:3A:97:A6:4B:98:82:6A:D1:FB:E0:1D:90:BE:1C:07:F8:C2:A8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/88f09a26-8b70-4d31-b73b-01df50c56e50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.146.128.0/20 Signature Algorithm: sha256WithRSAEncryption 4a:94:22:39:1a:7f:8c:7b:06:60:64:e6:78:3e:98:71:a8:e3: 34:9b:7f:03:42:6b:5e:0d:be:d1:ba:7a:63:fe:87:aa:14:e4: 84:64:d1:59:40:53:5c:99:93:f6:38:d8:6d:9f:94:1a:33:a9: b7:3f:ab:e4:50:8b:ab:eb:69:70:3c:bc:8e:f8:d5:23:98:63: 6d:62:d6:e3:81:d7:4d:8b:df:c9:50:ad:6e:68:9d:bc:ed:1a: e1:5d:ab:e6:a8:76:a0:82:8f:45:eb:e8:96:57:d2:7a:78:0b: 03:02:cf:0e:29:63:68:b7:1a:a3:d7:71:9a:35:4c:78:b0:8f: 8e:86:14:82:5b:96:2f:60:0b:76:b1:7e:45:2c:af:b2:d4:67: 6c:55:02:2a:3a:1c:35:3c:bc:46:e6:5b:a4:ec:1f:c4:ee:83: 78:3b:1b:9e:9c:d0:2e:63:77:06:de:76:f0:df:cd:75:97:21: 79:07:63:44:80:b0:6a:6d:a2:48:51:42:64:cb:98:ca:25:1d: 0d:20:1d:3a:18:e3:f0:19:e4:76:a7:f5:55:ac:40:f8:1e:c4: a4:46:6b:fc:40:9c:7d:ac:9f:0b:ab:aa:a4:28:ae:0d:c5:2d: 7c:15:49:54:27:41:8a:86:60:c1:21:ab:2d:ab:b5:49:fb:51: 95:6f:de:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL8poI5+Cgnu54p+7LlXklLocIVwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTc4NjVlZjc0MWZiMDJkODFjNDc4ZjRmYmUxM2IwMzVi OWQ5ODcxZmViYmZkN2Q0NWY2ZjMwNzg5NTRmZTdhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7jjllJG+CgnhJVc143slbV/IXOwOK+hsjZXBbPxILLvI3 Cnb/cDTCStJFHJ4PiqiP3E19bwYyEap/lOfQn/XOTERzC0kPBSirbRyVqPXRtfui fBF02l9tP8rzMJCIrmM2vpxdSa+NbXmfQmcG5tlH/xrT764HBgTUlSXOEpmoJZtY +TlEURQFEoyFbXO/gzPGz2sSTdi7UdBRR6cYMr8iyKmsRe6MQ6sevXm9jWU0qScD qLMS65TJDA95mk2LftIpz6+0hbEbywpeatSxKdloAY36nwpSjigHoqdGbhVc033S G81Yg88LqY9e5rsYUVhWAZwYZ0cHjMI80xplI6lBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/iE6l6ZLmIJq0fvgHZC+HAf4wqgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg4ZjA5YTI2LThiNzAtNGQzMS1iNzNiLTAxZGY1MGM1NmU1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASbkoAwDQYJKoZIhvcNAQELBQADggEBAEqUIjkaf4x7BmBk5ng+mHGo4zSb fwNCa14NvtG6emP+h6oU5IRk0VlAU1yZk/Y42G2flBozqbc/q+RQi6vraXA8vI74 1SOYY21i1uOB102L38lQrW5onbztGuFdq+aodqCCj0Xr6JZX0np4CwMCzw4pY2i3 GqPXcZo1THiwj46GFIJbli9gC3axfkUsr7LUZ2xVAio6HDU8vEbmW6TsH8Tug3g7 G56c0C5jdwbedvDfzXWXIXkHY0SAsGptokhRQmTLmMolHQ0gHToY4/AZ5Han9VWs QPgexKRGa/xAnH2snwurqqQorg3FLXwVSVQnQYqGYMEhqy2rtUn7UZVv3tg= -----END CERTIFICATE-----Generated at Mon Nov 25 17:59:04 2024 by rpki-client on console-fra.rpki-client.org