$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a77b9b01-29c2-4491-a2dd-b8a78231d458.roa File: a77b9b01-29c2-4491-a2dd-b8a78231d458.roa (raw, json) Hash identifier: ootRE5yMEllRZLcxdHhTxqg4LRdE3Vfv96Fw4r3CzkI= Subject key identifier: F6:2F:B2:00:1E:6A:F0:75:C8:50:04:14:00:D6:67:0C:94:81:8B:FD Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3596225A2444C2989FF69890B399BC2C08F3BF18 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a77b9b01-29c2-4491-a2dd-b8a78231d458.roa Signing time: Tue 29 Oct 2024 00:00:00 +0000 ROA not before: Tue 29 Oct 2024 00:00:00 +0000 ROA not after: Tue 03 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 18.224.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:96:22:5a:24:44:c2:98:9f:f6:98:90:b3:99:bc:2c:08:f3:bf:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 29 00:00:00 2024 GMT Not After : Dec 3 23:59:59 2024 GMT Subject: serialNumber=8fc72fbb278ade7e00c9c5c08e4e9bb9cf7a85410d7e0feeb5dfa065d86dd6c7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6f:10:04:af:7b:2c:24:02:16:89:ff:5e:3b: 9d:b7:5b:0c:29:89:f5:e3:25:f6:cc:d6:5d:f3:20: 16:25:5a:92:84:46:37:f2:30:09:26:cc:03:2a:ad: e1:fb:55:59:50:32:53:43:70:99:ef:20:cd:96:6c: b6:c2:6b:e6:27:e4:f3:f8:67:f5:a7:51:a6:8e:4a: 6d:0f:df:05:eb:36:7e:f2:8f:65:ec:c1:e8:b6:45: f1:78:e4:4c:f0:50:8b:89:66:ba:c3:c5:0f:5a:ff: ad:c9:e8:95:bf:69:67:b7:97:25:34:8b:f7:6c:2e: 0b:fd:67:1c:d2:7b:03:a7:5a:04:c9:26:f5:dc:98: 39:03:6f:5d:cc:46:a3:39:2f:ee:06:17:ab:ee:9b: d2:f5:01:bc:bb:cd:fe:80:26:bc:e1:52:e6:41:fc: 9c:12:b4:2c:ba:60:a1:01:37:ac:f9:44:da:d2:c0: 2b:ea:7d:d4:ec:43:57:5f:98:51:b8:0e:c1:c4:44: 13:23:89:f8:ad:02:3e:86:6b:2e:fd:3a:4f:ce:73: 05:9d:0e:25:48:6c:62:31:f7:38:e8:80:8f:e8:98: 6a:8c:a1:12:5a:29:9c:c2:6f:60:3e:76:16:22:d9: d2:99:51:f9:52:3e:7d:f6:f8:af:eb:e3:93:78:33: 70:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:2F:B2:00:1E:6A:F0:75:C8:50:04:14:00:D6:67:0C:94:81:8B:FD X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/a77b9b01-29c2-4491-a2dd-b8a78231d458.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.224.0.0/14 Signature Algorithm: sha256WithRSAEncryption 66:64:61:a5:8a:cf:00:84:52:33:3d:3d:dd:35:ff:0e:27:e6: 1d:34:c1:3a:87:49:56:f5:99:e9:d1:4a:e3:37:28:71:1e:99: 43:df:d0:7a:a3:34:db:ad:1c:cb:b6:e6:4f:5b:bf:53:24:38: 66:47:89:77:b4:9f:74:94:5b:4e:9b:cb:f0:f5:14:75:24:ed: 83:b2:85:83:07:7a:a9:3c:c1:4a:1d:aa:01:b3:f5:f8:2e:e5: f1:83:ce:12:bb:12:6a:30:43:ac:6b:06:ac:d9:80:4c:70:d7: a7:db:6d:3f:21:77:63:bf:62:c4:e9:a6:ca:e5:bb:f9:db:d0: be:aa:7a:b3:55:06:c6:aa:6c:e9:b9:58:f6:40:72:b6:7d:13: 9e:12:11:eb:7c:f1:0e:4b:f9:12:ed:8e:cf:17:83:ae:bc:8d: b7:07:bc:2f:cd:2b:d6:10:05:91:59:3a:dc:0a:65:93:fc:d0: 15:a3:74:f4:2f:73:36:bf:a8:bd:ba:e7:7f:4d:a6:72:19:70: 80:9c:2d:43:20:a0:63:19:1e:42:5f:a8:13:3c:02:6f:a2:63: af:29:62:45:29:fe:c3:1a:e3:e4:83:16:a2:69:e6:16:e7:ca: 7e:a1:f2:05:56:b6:4a:5d:94:34:a5:ad:47:41:83:ef:d0:af: 60:f9:4f:da -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNZYiWiREwpif9piQs5m8LAjzvxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMDI5MDAwMDAwWhcNMjQxMjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZmM3MmZiYjI3OGFkZTdlMDBjOWM1YzA4ZTRlOWJiOWNm N2E4NTQxMGQ3ZTBmZWViNWRmYTA2NWQ4NmRkNmM3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdbxAEr3ssJAIWif9eO523WwwpifXjJfbM1l3zIBYlWpKE RjfyMAkmzAMqreH7VVlQMlNDcJnvIM2WbLbCa+Yn5PP4Z/WnUaaOSm0P3wXrNn7y j2Xswei2RfF45EzwUIuJZrrDxQ9a/63J6JW/aWe3lyU0i/dsLgv9ZxzSewOnWgTJ JvXcmDkDb13MRqM5L+4GF6vum9L1Aby7zf6AJrzhUuZB/JwStCy6YKEBN6z5RNrS wCvqfdTsQ1dfmFG4DsHERBMjifitAj6Gay79Ok/OcwWdDiVIbGIx9zjogI/omGqM oRJaKZzCb2A+dhYi2dKZUflSPn32+K/r45N4M3DTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9i+yAB5q8HXIUAQUANZnDJSBi/0wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2E3N2I5YjAxLTI5YzItNDQ5MS1hMmRkLWI4YTc4MjMxZDQ1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIS4DANBgkqhkiG9w0BAQsFAAOCAQEAZmRhpYrPAIRSMz093TX/DifmHTTB OodJVvWZ6dFK4zcocR6ZQ9/QeqM0260cy7bmT1u/UyQ4ZkeJd7SfdJRbTpvL8PUU dSTtg7KFgwd6qTzBSh2qAbP1+C7l8YPOErsSajBDrGsGrNmATHDXp9ttPyF3Y79i xOmmyuW7+dvQvqp6s1UGxqps6blY9kBytn0TnhIR63zxDkv5Eu2OzxeDrryNtwe8 L80r1hAFkVk63Aplk/zQFaN09C9zNr+ovbrnf02mchlwgJwtQyCgYxkeQl+oEzwC b6JjryliRSn+wxrj5IMWomnmFufKfqHyBVa2Sl2UNKWtR0GD79CvYPlP2g== -----END CERTIFICATE-----Generated at Sun Nov 24 22:11:34 2024 by rpki-client on console-fra.rpki-client.org