$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b88a91dd-515f-4266-821b-b14645dd88f8.roa File: b88a91dd-515f-4266-821b-b14645dd88f8.roa (raw, json) Hash identifier: 089mLdaarku4c7DgFpjk4sI7nzULdn/YIHHwlZq39CI= Subject key identifier: 92:0E:67:D5:7F:41:32:59:63:D3:3E:E5:37:60:37:E9:F3:C6:EE:C1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3BEC4AA6D20BB2ACA505A446411E402BC7F2F0A9 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b88a91dd-515f-4266-821b-b14645dd88f8.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 52.119.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 27 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:ec:4a:a6:d2:0b:b2:ac:a5:05:a4:46:41:1e:40:2b:c7:f2:f0:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=f34369fcb6a79b08f37b6d14e0e4db2f96cceb9cb3dd9e6280eaf67741225800, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a4:ed:6d:44:1c:8c:16:bf:2a:2a:4a:4c:d4: e6:c4:6c:eb:88:72:fe:d3:21:7f:ad:6d:7b:55:f2: 91:42:ca:e3:07:cc:f4:32:a5:30:fb:dd:16:8f:11: 36:f8:3f:bf:5b:f5:ea:c1:dc:83:8e:7f:55:6c:b4: f9:7d:1b:5c:4e:a4:25:16:ad:6e:08:b8:31:b4:b2: 31:ae:08:28:d8:9a:05:b9:2e:24:50:df:af:b8:93: 2c:9d:5c:c5:98:08:58:48:42:63:0e:56:a1:f9:5a: 01:66:32:61:d7:1d:e3:a8:36:3e:91:47:b5:43:f3: 9c:e2:74:c9:2a:45:e9:93:e0:e5:b6:07:9e:e1:0b: 41:df:29:45:e8:91:28:92:9a:32:37:e4:f9:ea:dd: 21:a7:28:9f:fe:82:83:e3:1a:af:9b:46:84:8c:71: 9c:e3:84:ee:71:1d:ce:96:5f:2c:b2:b4:4b:48:cd: b2:93:91:90:e5:e0:08:35:8f:f7:b9:71:2f:e8:86: 59:33:d8:06:ee:71:eb:fe:da:36:12:f2:2c:ab:c0: 8e:a9:fe:72:3c:bf:93:9b:c6:10:0e:18:10:c2:21: a5:de:36:b7:2a:c3:5b:15:4c:b6:41:06:44:7b:78: d9:f6:33:71:71:e1:30:2b:80:55:13:bd:46:dc:e8: 28:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:0E:67:D5:7F:41:32:59:63:D3:3E:E5:37:60:37:E9:F3:C6:EE:C1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b88a91dd-515f-4266-821b-b14645dd88f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.119.152.0/22 Signature Algorithm: sha256WithRSAEncryption 19:da:cf:c2:de:bc:67:ab:1a:b7:f6:24:89:17:02:27:c6:c8: 11:d0:b5:6c:1d:7f:16:27:a0:ac:32:56:df:93:4d:1f:cc:d8: 41:7c:07:78:24:bd:cb:dc:ba:6d:f6:96:b1:af:0c:22:aa:a0: de:67:9e:0f:7d:10:6c:b0:1d:18:54:79:5f:f7:e4:1c:b7:7d: 70:f1:65:28:99:7b:32:26:fa:48:83:8d:3c:f3:26:40:51:bd: 3d:9b:c5:60:72:89:21:14:c8:71:6d:56:d9:77:6a:c2:a7:aa: 93:be:83:eb:1f:e9:96:40:87:e5:10:bd:ee:62:77:cc:76:2b: 15:ce:20:bc:f4:71:b1:ed:b1:45:1c:8e:a0:80:ac:98:1d:40: 74:93:f2:47:68:37:a9:97:02:3a:a7:e8:41:bd:1c:b7:c1:3b: 44:1c:e6:46:91:d9:c5:bc:24:1c:28:fb:a6:a6:c3:f9:33:4c: 92:e1:e7:67:95:2f:5d:d2:7f:3a:3d:6e:09:8a:af:32:15:72: 9d:19:cb:75:81:23:c9:d3:2c:5d:2e:07:b5:dc:e2:12:a3:60: 54:53:0c:ae:6b:23:4f:b3:b8:c9:1d:9e:c3:53:f1:05:d3:cd: f8:c6:f5:e5:c4:1e:c9:0b:47:a3:ce:50:51:de:d2:7a:66:61: 8d:e2:6c:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO+xKptILsqylBaRGQR5AK8fy8KkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzQzNjlmY2I2YTc5YjA4ZjM3YjZkMTRlMGU0ZGIyZjk2 Y2NlYjljYjNkZDllNjI4MGVhZjY3NzQxMjI1ODAwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrpO1tRByMFr8qKkpM1ObEbOuIcv7TIX+tbXtV8pFCyuMH zPQypTD73RaPETb4P79b9erB3IOOf1VstPl9G1xOpCUWrW4IuDG0sjGuCCjYmgW5 LiRQ36+4kyydXMWYCFhIQmMOVqH5WgFmMmHXHeOoNj6RR7VD85zidMkqRemT4OW2 B57hC0HfKUXokSiSmjI35Pnq3SGnKJ/+goPjGq+bRoSMcZzjhO5xHc6WXyyytEtI zbKTkZDl4Ag1j/e5cS/ohlkz2Abucev+2jYS8iyrwI6p/nI8v5ObxhAOGBDCIaXe Nrcqw1sVTLZBBkR7eNn2M3Fx4TArgFUTvUbc6Cg/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkg5n1X9BMllj0z7lN2A36fPG7sEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I4OGE5MWRkLTUxNWYtNDI2Ni04MjFiLWIxNDY0NWRkODhmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI0d5gwDQYJKoZIhvcNAQELBQADggEBABnaz8LevGerGrf2JIkXAifGyBHQ tWwdfxYnoKwyVt+TTR/M2EF8B3gkvcvcum32lrGvDCKqoN5nng99EGywHRhUeV/3 5By3fXDxZSiZezIm+kiDjTzzJkBRvT2bxWByiSEUyHFtVtl3asKnqpO+g+sf6ZZA h+UQve5id8x2KxXOILz0cbHtsUUcjqCArJgdQHST8kdoN6mXAjqn6EG9HLfBO0Qc 5kaR2cW8JBwo+6amw/kzTJLh52eVL13Sfzo9bgmKrzIVcp0Zy3WBI8nTLF0uB7Xc 4hKjYFRTDK5rI0+zuMkdnsNT8QXTzfjG9eXEHskLR6POUFHe0npmYY3ibOQ= -----END CERTIFICATE-----Generated at Sun Nov 24 21:44:38 2024 by rpki-client on console-ams.rpki-client.org