$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c68d9cd4-d843-492f-af03-7c73b5515ca0.roa File: c68d9cd4-d843-492f-af03-7c73b5515ca0.roa (raw, json) Hash identifier: /7zYJK2uUQuJTpToJK8UyR52tMRlJLWeyTU3Nc4S9+M= Subject key identifier: 37:F9:44:B9:CB:BA:FA:88:EF:CB:18:3B:DE:8D:96:2D:41:56:2D:58 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0DC257C1FFFF0949861E337B5F6C9EBDEA1C6175 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c68d9cd4-d843-492f-af03-7c73b5515ca0.roa Signing time: Fri 15 Nov 2024 00:00:00 +0000 ROA not before: Fri 15 Nov 2024 00:00:00 +0000 ROA not after: Fri 20 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 13.228.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:c2:57:c1:ff:ff:09:49:86:1e:33:7b:5f:6c:9e:bd:ea:1c:61:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 15 00:00:00 2024 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: serialNumber=823a105f1cb63f7f8d9da7d4ec39146e55c18bd29a977b2b45492039a1ad66bd, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:09:43:98:b3:8b:bf:94:ac:ca:00:2a:09:b7: ce:15:fb:c7:66:7a:ae:4e:c8:27:67:f0:87:ee:ed: 39:aa:c0:86:a0:94:a8:f6:c3:e3:f2:30:9d:db:50: a4:59:ba:04:a2:f4:e2:61:c1:8a:a8:b5:8b:9e:76: d7:d6:70:fd:67:04:f8:67:24:07:66:05:56:73:d3: 88:48:cd:e5:e8:35:ee:79:c7:f3:86:ce:20:bb:db: 17:c7:c3:ca:10:fd:32:3e:d6:cb:b4:10:f3:1a:0d: 7e:04:bf:7f:1e:2f:ce:e7:bd:c0:dc:3e:3a:64:58: de:ab:9a:e0:c3:87:92:9e:02:19:b5:9a:9c:d5:a0: d4:0c:aa:2d:a1:6f:e9:31:15:c6:fc:94:49:e8:4a: 1b:75:8f:e7:72:11:72:e1:ac:6f:c4:40:c5:77:36: c3:b5:b8:12:c0:0e:f9:ca:99:80:1a:3d:1c:5c:c4: 81:fb:7a:32:45:c0:fe:7f:a6:e3:f0:8e:ee:10:63: 89:64:cb:e3:38:8a:78:51:f2:5e:17:34:4e:e4:29: 17:46:e3:07:0d:aa:80:f4:63:82:e3:d2:02:ef:ca: d4:6c:b1:2f:75:e8:04:53:75:e2:d1:51:85:07:78: db:37:57:2f:e0:ff:67:53:42:81:f3:9e:02:20:11: 6c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F9:44:B9:CB:BA:FA:88:EF:CB:18:3B:DE:8D:96:2D:41:56:2D:58 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/c68d9cd4-d843-492f-af03-7c73b5515ca0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.228.0.0/15 Signature Algorithm: sha256WithRSAEncryption 1d:ec:67:d4:b6:3e:97:d5:02:25:4c:78:1b:eb:7e:f0:ba:62: 5c:7f:c5:fc:5d:1c:e5:09:d3:4c:0f:15:82:43:1a:8d:2a:32: 57:68:db:ce:1b:88:d5:6c:45:b9:a5:d2:6d:e1:fb:7e:6e:5e: 97:f4:d4:7c:72:6c:0f:90:b0:a1:80:b5:75:f3:5d:4e:39:3c: de:2b:d4:ad:8f:c5:39:2d:37:3f:94:30:f3:5c:c8:4a:29:09: 08:14:ff:a8:5a:d0:73:c1:ae:48:66:af:ed:fa:0f:e7:10:53: ea:ca:85:d9:19:d2:e4:70:f0:fa:07:e5:07:c1:94:75:b0:cf: ad:e7:a9:dd:c3:4a:14:86:99:97:2d:31:6d:95:90:c0:47:ca: b9:b4:b5:db:b0:5d:4c:63:68:77:fc:ed:eb:2a:42:c3:ac:43: 67:2d:95:fd:b5:ba:da:e2:26:7f:a1:5e:72:a6:22:cf:ff:c5: 84:c1:a1:60:45:0d:ad:32:a4:a0:e5:33:20:35:63:ed:04:08: 93:28:af:e6:78:f8:74:c0:5d:60:6c:ce:1d:b2:94:20:76:4f: 0b:23:86:88:f2:44:f2:ca:50:c5:b7:26:92:63:47:d8:df:ba: c7:9a:de:c6:c1:c5:37:c3:0d:d1:50:68:5e:06:85:cf:ba:4a: 31:65:48:75 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDcJXwf//CUmGHjN7X2yeveocYXUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE1MDAwMDAwWhcNMjQxMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MjNhMTA1ZjFjYjYzZjdmOGQ5ZGE3ZDRlYzM5MTQ2ZTU1 YzE4YmQyOWE5NzdiMmI0NTQ5MjAzOWExYWQ2NmJkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqCUOYs4u/lKzKACoJt84V+8dmeq5OyCdn8Ifu7TmqwIag lKj2w+PyMJ3bUKRZugSi9OJhwYqotYuedtfWcP1nBPhnJAdmBVZz04hIzeXoNe55 x/OGziC72xfHw8oQ/TI+1su0EPMaDX4Ev38eL87nvcDcPjpkWN6rmuDDh5KeAhm1 mpzVoNQMqi2hb+kxFcb8lEnoSht1j+dyEXLhrG/EQMV3NsO1uBLADvnKmYAaPRxc xIH7ejJFwP5/puPwju4QY4lky+M4inhR8l4XNE7kKRdG4wcNqoD0Y4Lj0gLvytRs sS916ARTdeLRUYUHeNs3Vy/g/2dTQoHzngIgEWw7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUN/lEucu6+ojvyxg73o2WLUFWLVgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2M2OGQ5Y2Q0LWQ4NDMtNDkyZi1hZjAzLTdjNzNiNTUxNWNhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEN5DANBgkqhkiG9w0BAQsFAAOCAQEAHexn1LY+l9UCJUx4G+t+8LpiXH/F /F0c5QnTTA8VgkMajSoyV2jbzhuI1WxFuaXSbeH7fm5el/TUfHJsD5CwoYC1dfNd Tjk83ivUrY/FOS03P5Qw81zISikJCBT/qFrQc8GuSGav7foP5xBT6sqF2RnS5HDw +gflB8GUdbDPreep3cNKFIaZly0xbZWQwEfKubS127BdTGNod/zt6ypCw6xDZy2V /bW62uImf6FecqYiz//FhMGhYEUNrTKkoOUzIDVj7QQIkyiv5nj4dMBdYGzOHbKU IHZPCyOGiPJE8spQxbcmkmNH2N+6x5rexsHFN8MN0VBoXgaFz7pKMWVIdQ== -----END CERTIFICATE-----Generated at Thu Nov 21 21:04:16 2024 by rpki-client on console-fra.rpki-client.org