$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a4a32ee7-12ba-4aae-a700-cec1299317fe.roa File: a4a32ee7-12ba-4aae-a700-cec1299317fe.roa (raw, json) Hash identifier: WobcBJYfaqgi1B2isXoOLQvPxVzEIiHBWUlxNdIYb+Y= Subject key identifier: B7:55:55:A2:78:FD:0D:9F:C4:AB:3E:6D:CA:8E:A2:83:AC:E4:86:6A Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 51E07C146AC4364779722ABD2A0A4FB9FE645730 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a4a32ee7-12ba-4aae-a700-cec1299317fe.roa Signing time: Tue 29 Oct 2024 00:00:00 +0000 ROA not before: Tue 29 Oct 2024 00:00:00 +0000 ROA not after: Tue 03 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.219.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:e0:7c:14:6a:c4:36:47:79:72:2a:bd:2a:0a:4f:b9:fe:64:57:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 29 00:00:00 2024 GMT Not After : Dec 3 23:59:59 2024 GMT Subject: serialNumber=f256257c268ca01fa8cd7296bd3eeb203bbf22d54e3a2ec9a90e294b5fafcd70, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f7:3f:f5:5d:3f:73:b3:6f:33:06:53:f5:5c: 16:c3:ba:ed:fd:96:c8:ab:00:7b:21:af:4e:8c:35: 0a:d6:d3:00:b2:d8:57:8c:bf:9b:41:8b:c1:01:e1: 27:c0:f8:27:8c:1d:04:3b:d1:35:f8:5f:65:b1:a7: 2b:17:04:f2:cd:f1:7b:e5:84:c3:2f:83:30:04:33: 68:b8:7f:26:3d:80:f8:f5:99:9f:1b:5d:4f:42:1f: f1:fb:8d:1b:ce:06:75:51:31:2f:fa:fd:bc:7f:ee: ce:67:4d:ce:80:43:5b:53:66:c1:bb:49:a4:09:7e: 67:a6:69:9e:c9:df:ed:9e:68:70:de:3c:97:74:74: 30:01:25:88:9b:24:db:79:f2:9b:9d:70:05:0e:6c: b2:53:79:cd:71:93:99:c8:d9:85:a8:44:cd:e2:40: c8:5b:86:d9:a8:92:01:56:9b:88:16:b6:b8:e7:34: d8:61:c9:b3:42:74:30:44:43:6d:e8:41:17:0a:0c: e9:53:d3:cf:f6:c8:cb:a4:83:2b:62:68:31:22:7c: f3:ec:a9:d3:4b:86:41:8b:5b:d7:b7:5d:4d:6b:a8: 3d:91:0d:d1:bc:6e:8a:c6:71:25:bc:78:a4:1c:82: 6a:d4:06:9e:25:9b:94:f4:0d:83:6c:c5:32:30:42: 15:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:55:55:A2:78:FD:0D:9F:C4:AB:3E:6D:CA:8E:A2:83:AC:E4:86:6A X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a4a32ee7-12ba-4aae-a700-cec1299317fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.219.144.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:aa:d5:b5:32:87:da:b0:1a:d3:cc:e2:14:e6:73:13:5c:99: 2a:c1:12:9f:73:0f:0f:0d:39:4d:21:8b:c4:8f:f0:fe:b1:3a: b4:77:26:97:f9:cc:69:13:99:4f:08:ab:17:ec:8b:74:f8:ac: 09:9e:1f:7f:23:a7:b7:b7:c1:ac:e6:3d:a0:3f:5d:0f:16:c8: c2:f6:7b:f3:79:df:ec:a8:8f:2a:7c:85:7c:58:12:ce:8e:e9: b3:3a:3b:f1:8f:bd:bf:66:6d:2b:fd:12:5b:42:6c:2f:fc:9a: 3b:2e:19:06:15:2b:a9:c7:fc:a1:cc:ed:00:f9:59:bf:cc:f8: f5:76:ab:d0:19:98:b4:c0:29:1d:af:f8:98:1e:f4:f1:ea:4d: 25:f8:4d:02:e1:2c:ee:92:88:55:d7:fc:85:83:3d:29:45:31: 3d:0d:ad:87:7e:a3:7a:a1:78:a2:1b:af:a8:79:6c:fe:b8:8c: 8f:01:29:be:40:87:09:9b:3f:8e:b4:e2:a6:47:c4:55:be:e3: a3:95:1d:c4:77:bf:8b:4e:f4:5d:97:9d:40:1d:97:f9:91:78: 68:18:39:01:ac:f6:51:16:fa:cd:c9:ce:57:cc:bd:a0:8f:da: ec:aa:34:85:27:a0:5d:7a:0c:23:91:eb:b5:1a:c8:54:37:72: ba:a4:41:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUeB8FGrENkd5ciq9KgpPuf5kVzAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMDI5MDAwMDAwWhcNMjQxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjU2MjU3YzI2OGNhMDFmYThjZDcyOTZiZDNlZWIyMDNi YmYyMmQ1NGUzYTJlYzlhOTBlMjk0YjVmYWZjZDcwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC89z/1XT9zs28zBlP1XBbDuu39lsirAHshr06MNQrW0wCy 2FeMv5tBi8EB4SfA+CeMHQQ70TX4X2WxpysXBPLN8XvlhMMvgzAEM2i4fyY9gPj1 mZ8bXU9CH/H7jRvOBnVRMS/6/bx/7s5nTc6AQ1tTZsG7SaQJfmemaZ7J3+2eaHDe PJd0dDABJYibJNt58pudcAUObLJTec1xk5nI2YWoRM3iQMhbhtmokgFWm4gWtrjn NNhhybNCdDBEQ23oQRcKDOlT08/2yMukgytiaDEifPPsqdNLhkGLW9e3XU1rqD2R DdG8borGcSW8eKQcgmrUBp4lm5T0DYNsxTIwQhUvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUt1VVonj9DZ/Eqz5tyo6ig6zkhmowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E0YTMyZWU3LTEyYmEtNGFhZS1hNzAwLWNlYzEyOTkzMTdmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI025AwDQYJKoZIhvcNAQELBQADggEBAAyq1bUyh9qwGtPM4hTmcxNcmSrB Ep9zDw8NOU0hi8SP8P6xOrR3Jpf5zGkTmU8Iqxfsi3T4rAmeH38jp7e3wazmPaA/ XQ8WyML2e/N53+yojyp8hXxYEs6O6bM6O/GPvb9mbSv9EltCbC/8mjsuGQYVK6nH /KHM7QD5Wb/M+PV2q9AZmLTAKR2v+Jge9PHqTSX4TQLhLO6SiFXX/IWDPSlFMT0N rYd+o3qheKIbr6h5bP64jI8BKb5AhwmbP4604qZHxFW+46OVHcR3v4tO9F2XnUAd l/mReGgYOQGs9lEW+s3JzlfMvaCP2uyqNIUnoF16DCOR67UayFQ3crqkQXA= -----END CERTIFICATE-----Generated at Thu Nov 21 21:41:13 2024 by rpki-client on console-ams.rpki-client.org