$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f1c6f59c-9499-4ef0-a536-b93b0c210380.roa File: f1c6f59c-9499-4ef0-a536-b93b0c210380.roa (raw, json) Hash identifier: 9j6/wC8am+FKACSTOtmehn9qujiKm3OMhfpHQ+FIOTo= Subject key identifier: 93:B1:91:27:74:48:EE:42:64:27:5A:A3:FB:47:76:74:BC:FD:5F:D8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 33049B04D30D49B7B3387E971297EFB3073BBBE1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f1c6f59c-9499-4ef0-a536-b93b0c210380.roa Signing time: Mon 18 Nov 2024 00:00:00 +0000 ROA not before: Mon 18 Nov 2024 00:00:00 +0000 ROA not after: Mon 23 Dec 2024 23:59:59 +0000 asID: 16509 IP address blocks: 35.71.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:04:9b:04:d3:0d:49:b7:b3:38:7e:97:12:97:ef:b3:07:3b:bb:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 18 00:00:00 2024 GMT Not After : Dec 23 23:59:59 2024 GMT Subject: serialNumber=132d0a65f5993cdbe314fa3bbed17283297a21b8d1b50e798a7240f06b2216ef, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:54:d1:a3:3a:1a:0d:4b:12:a6:87:3e:99:22: 6c:6d:4f:cc:93:a6:6f:60:4e:fb:8e:02:b0:7f:5e: 1e:99:73:14:19:35:b7:65:d7:10:e3:83:4e:f2:0b: 0c:1c:6c:fb:db:b1:29:80:dd:05:d9:0d:e8:37:e3: a4:79:25:f5:da:61:8c:a7:d4:11:d8:77:e8:e0:fc: ce:61:24:a5:ca:43:49:82:7f:f3:69:87:e7:30:94: 53:c1:f2:ed:e8:58:84:57:94:74:58:86:9a:03:06: 89:9b:7b:4e:10:fc:31:59:cb:87:8c:4e:df:51:9d: aa:f9:0b:85:9e:14:e5:b8:78:9a:8a:bf:48:e6:96: dc:a1:c1:a8:ff:cf:c6:5e:7e:ce:6e:88:9a:f3:00: c2:4a:c9:3b:49:7e:f3:51:e8:d1:58:8c:e2:63:93: 82:25:f6:c4:13:11:52:10:48:a8:96:c8:ad:56:85: ef:d7:b5:fd:8a:7f:63:a4:31:d2:f7:7d:d8:05:9d: 61:75:48:76:45:70:7c:96:32:3f:bf:29:3f:2b:fe: 55:48:e6:c5:ae:04:f7:c1:ae:8d:54:73:1d:0c:bf: 01:24:8f:da:e0:3a:09:c3:f6:3d:13:21:da:8a:69: da:68:32:91:c8:6f:17:27:b9:5c:bb:ab:e7:e0:9c: 06:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B1:91:27:74:48:EE:42:64:27:5A:A3:FB:47:76:74:BC:FD:5F:D8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/f1c6f59c-9499-4ef0-a536-b93b0c210380.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.71.112.0/24 Signature Algorithm: sha256WithRSAEncryption b0:37:28:9b:1b:4d:0f:26:12:8c:83:a6:e2:4b:cd:4d:4b:3d: 26:6b:b9:29:71:b3:c6:44:8a:ce:77:31:f0:47:8b:02:4c:a0: 4a:6b:98:13:b9:36:77:b6:57:15:66:f7:03:b2:4e:a8:ad:f6: 7d:00:3a:ab:b7:b5:5e:f2:50:69:0c:96:02:32:af:0d:2e:6e: 12:8d:2f:67:02:ee:44:4b:01:aa:b0:64:61:92:55:2e:44:3e: 10:d1:7c:5f:0c:e3:61:d2:31:00:12:20:24:89:50:f7:8f:07: bf:0c:88:20:59:84:f0:ad:78:e2:c8:54:5f:73:fb:2b:3c:55: 3c:64:1e:a0:0d:90:b7:5c:a1:94:b4:68:99:0d:77:ef:43:d6: 9e:7a:98:3e:fe:ad:be:16:37:3c:47:08:cb:7f:ed:de:ea:ec: 5c:0a:da:6b:91:c3:61:ed:44:8b:d4:41:7a:47:4c:13:0f:b8: b9:c8:09:9e:a0:2f:14:0d:a3:b7:d4:0f:59:37:d1:6c:54:6c: 7b:62:28:89:7c:d1:23:de:19:1f:99:8a:19:80:0a:d2:19:2c: 1b:97:8a:dd:40:3b:32:eb:74:58:f0:38:85:66:20:f0:16:c8: a0:79:bb:d5:1b:46:6d:53:0a:6e:16:ff:fa:f6:3d:93:56:af: e6:41:38:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMwSbBNMNSbezOH6XEpfvswc7u+EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE4MDAwMDAwWhcNMjQxMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzJkMGE2NWY1OTkzY2RiZTMxNGZhM2JiZWQxNzI4MzI5 N2EyMWI4ZDFiNTBlNzk4YTcyNDBmMDZiMjIxNmVmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRVNGjOhoNSxKmhz6ZImxtT8yTpm9gTvuOArB/Xh6ZcxQZ Nbdl1xDjg07yCwwcbPvbsSmA3QXZDeg346R5JfXaYYyn1BHYd+jg/M5hJKXKQ0mC f/Nph+cwlFPB8u3oWIRXlHRYhpoDBombe04Q/DFZy4eMTt9Rnar5C4WeFOW4eJqK v0jmltyhwaj/z8Zefs5uiJrzAMJKyTtJfvNR6NFYjOJjk4Il9sQTEVIQSKiWyK1W he/Xtf2Kf2OkMdL3fdgFnWF1SHZFcHyWMj+/KT8r/lVI5sWuBPfBro1Ucx0MvwEk j9rgOgnD9j0TIdqKadpoMpHIbxcnuVy7q+fgnAa9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk7GRJ3RI7kJkJ1qj+0d2dLz9X9gwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2YxYzZmNTljLTk0OTktNGVmMC1hNTM2LWI5M2IwYzIxMDM4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjR3AwDQYJKoZIhvcNAQELBQADggEBALA3KJsbTQ8mEoyDpuJLzU1LPSZr uSlxs8ZEis53MfBHiwJMoEprmBO5Nne2VxVm9wOyTqit9n0AOqu3tV7yUGkMlgIy rw0ubhKNL2cC7kRLAaqwZGGSVS5EPhDRfF8M42HSMQASICSJUPePB78MiCBZhPCt eOLIVF9z+ys8VTxkHqANkLdcoZS0aJkNd+9D1p56mD7+rb4WNzxHCMt/7d7q7FwK 2muRw2HtRIvUQXpHTBMPuLnICZ6gLxQNo7fUD1k30WxUbHtiKIl80SPeGR+ZihmA CtIZLBuXit1AOzLrdFjwOIVmIPAWyKB5u9UbRm1TCm4W//r2PZNWr+ZBOMk= -----END CERTIFICATE-----Generated at Thu Nov 21 21:04:26 2024 by rpki-client on console-fra.rpki-client.org