$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/937e6a5e-74ca-46c3-9e1f-170ee34375c6.roa File: 937e6a5e-74ca-46c3-9e1f-170ee34375c6.roa (raw, json) Hash identifier: gI2YQNy+YKmsQUs5B8HLoRcBdGvT4cYPSaTCNNO7svA= Subject key identifier: EC:5C:39:D4:1E:C1:61:D3:CB:A9:41:B6:72:42:F6:1D:5D:8B:05:AF Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 07601028219D1A4E567C0CDC22CB02D6FA6C832E Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/937e6a5e-74ca-46c3-9e1f-170ee34375c6.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.95.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:60:10:28:21:9d:1a:4e:56:7c:0c:dc:22:cb:02:d6:fa:6c:83:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=65b10b2a3b3d9d6573c76f21a961ddf209bf68884711bab648fbb7a312975511, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4a:4f:59:23:ef:db:24:3b:57:a1:07:d5:c2: a2:83:e0:f6:e0:d5:c2:f0:65:76:17:09:84:c1:1b: b1:79:a9:d6:91:c4:47:cd:59:92:f8:70:9c:48:e1: c0:48:98:d3:00:78:35:42:bc:51:63:0f:c3:20:c3: 52:7b:12:7d:f3:da:b4:15:78:52:33:60:8a:e8:d5: 76:d7:6e:07:86:51:10:b9:1a:64:98:31:0f:ce:fe: 21:4f:3b:a7:06:5d:02:6d:62:61:96:57:7e:8e:0c: 80:c0:21:f7:d2:a9:60:33:54:7e:6a:95:ad:fe:22: 8b:75:aa:8c:58:49:1f:a1:db:61:e3:d0:08:14:f9: c0:bc:f2:66:72:a0:42:93:71:9b:d4:34:70:86:42: 94:68:c9:bd:c9:b1:81:97:62:99:28:6e:e2:fc:28: 75:cb:43:63:8b:09:ea:ec:0b:4f:5c:dc:bc:53:7f: f7:8b:0a:41:73:9a:1a:0c:b6:5e:2b:d0:6a:7f:ba: 69:80:b1:62:2c:02:ea:ae:60:c8:4b:98:c8:c9:e5: 8c:e4:c9:51:d3:64:5a:fe:70:56:c7:3c:bc:1c:fd: 57:a8:a9:ae:56:89:c5:ce:44:7f:5d:be:40:32:f6: ad:a6:9d:65:6d:0d:f2:6b:32:ca:a3:dd:6b:91:b0: fa:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5C:39:D4:1E:C1:61:D3:CB:A9:41:B6:72:42:F6:1D:5D:8B:05:AF X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/937e6a5e-74ca-46c3-9e1f-170ee34375c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.95.45.0/24 Signature Algorithm: sha256WithRSAEncryption 23:bb:46:24:f3:d3:56:d4:27:83:80:42:c9:37:36:a2:00:a9: 5b:17:50:e2:cc:6a:a0:16:89:ee:43:74:ee:38:13:4f:08:23: 6f:4d:73:dd:e0:43:ee:f2:09:96:10:15:69:2e:8e:52:85:c0: 56:7d:ea:95:0c:f6:7e:37:27:cf:0c:4a:9d:58:3d:69:63:39: 00:2c:88:44:47:04:8e:51:39:a1:a0:19:6f:07:88:a6:59:a2: 37:72:fc:e6:c7:ee:65:92:7b:aa:c9:72:d2:84:1a:69:56:d0: c8:49:51:d3:12:c4:ed:96:d9:48:8a:e2:ae:25:a8:8c:65:a4: 44:f2:ca:bd:68:72:3d:d8:da:87:80:a8:c8:c5:9f:c9:48:7c: 49:6b:6c:26:1b:3c:bd:b9:01:cf:92:fd:17:61:d3:c5:50:88: ee:8e:a6:a8:ce:ed:c3:ce:2a:eb:c6:82:14:67:30:a2:b6:30: 87:0f:61:e8:34:fa:02:89:a3:b2:71:47:2b:79:1b:99:64:97: 5e:c5:7e:ce:b5:28:25:5e:c1:38:7d:fb:5d:f4:8c:42:14:25: 21:af:50:92:4d:a1:48:36:05:1d:ab:e0:c2:ac:c4:58:53:a2: 7f:0a:63:b7:9b:f8:14:b0:02:df:07:bd:43:48:46:0b:39:1c: ae:dc:9e:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB2AQKCGdGk5WfAzcIssC1vpsgy4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWIxMGIyYTNiM2Q5ZDY1NzNjNzZmMjFhOTYxZGRmMjA5 YmY2ODg4NDcxMWJhYjY0OGZiYjdhMzEyOTc1NTExMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkSk9ZI+/bJDtXoQfVwqKD4Pbg1cLwZXYXCYTBG7F5qdaR xEfNWZL4cJxI4cBImNMAeDVCvFFjD8Mgw1J7En3z2rQVeFIzYIro1XbXbgeGURC5 GmSYMQ/O/iFPO6cGXQJtYmGWV36ODIDAIffSqWAzVH5qla3+Iot1qoxYSR+h22Hj 0AgU+cC88mZyoEKTcZvUNHCGQpRoyb3JsYGXYpkobuL8KHXLQ2OLCersC09c3LxT f/eLCkFzmhoMtl4r0Gp/ummAsWIsAuquYMhLmMjJ5YzkyVHTZFr+cFbHPLwc/Veo qa5WicXORH9dvkAy9q2mnWVtDfJrMsqj3WuRsPqdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7Fw51B7BYdPLqUG2ckL2HV2LBa8wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzkzN2U2YTVlLTc0Y2EtNDZjMy05ZTFmLTE3MGVlMzQzNzVjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0Xy0wDQYJKoZIhvcNAQELBQADggEBACO7RiTz01bUJ4OAQsk3NqIAqVsX UOLMaqAWie5DdO44E08II29Nc93gQ+7yCZYQFWkujlKFwFZ96pUM9n43J88MSp1Y PWljOQAsiERHBI5ROaGgGW8HiKZZojdy/ObH7mWSe6rJctKEGmlW0MhJUdMSxO2W 2UiK4q4lqIxlpETyyr1ocj3Y2oeAqMjFn8lIfElrbCYbPL25Ac+S/Rdh08VQiO6O pqjO7cPOKuvGghRnMKK2MIcPYeg0+gKJo7JxRyt5G5lkl17Ffs61KCVewTh9+130 jEIUJSGvUJJNoUg2BR2r4MKsxFhTon8KY7eb+BSwAt8HvUNIRgs5HK7cnu0= -----END CERTIFICATE-----Generated at Thu Nov 21 21:04:05 2024 by rpki-client on console-fra.rpki-client.org