$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fbae6de5-c049-46ee-8581-04bdb7bab7a2.roa File: fbae6de5-c049-46ee-8581-04bdb7bab7a2.roa (raw, json) Hash identifier: kA1MJ01R2AFimTmZ4+pd4UvJGfQWdmI24SNQ5vqViBA= Subject key identifier: DD:CD:79:F7:3E:68:F6:58:97:01:CF:DD:A8:36:06:89:0E:C9:1F:42 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4AD69F11211ABEF36C9190CE43C5A8CD91C6BE1C Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fbae6de5-c049-46ee-8581-04bdb7bab7a2.roa Signing time: Tue 19 Nov 2024 00:00:00 +0000 ROA not before: Tue 19 Nov 2024 00:00:00 +0000 ROA not after: Tue 24 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 18.174.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d6:9f:11:21:1a:be:f3:6c:91:90:ce:43:c5:a8:cd:91:c6:be:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 19 00:00:00 2024 GMT Not After : Dec 24 23:59:59 2024 GMT Subject: serialNumber=873db492cdb960b9f28b482644b72f9e6690b332446c84f33e96368273961b4c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:82:ec:5b:22:81:2c:45:65:9a:5a:53:26:d4: 49:90:7b:f2:4e:be:48:17:80:48:ac:a5:ab:b9:ea: 93:13:a1:ff:20:c8:e3:f7:1a:ba:5f:82:4e:b4:48: d8:43:9e:8c:81:22:50:f2:ff:26:75:36:ea:8e:24: 52:41:dd:11:6c:c3:88:eb:39:4d:c9:91:db:df:a1: 8c:64:e7:df:de:b7:28:35:87:14:c5:47:69:04:5c: 9d:9e:76:2d:cd:90:a1:4b:19:dc:b9:d1:62:e3:7b: 81:26:a9:6d:0f:90:b4:c8:dd:c8:af:a5:d6:29:1d: 63:5b:1e:69:f6:bf:a8:d8:cb:4b:de:54:a3:4d:7c: 84:6e:d2:c0:50:3a:0f:3d:45:df:47:a4:36:58:1e: c6:1e:58:12:c7:f0:f2:84:d8:cb:ab:a7:2b:02:6f: 78:4a:13:7f:3b:db:41:2a:3d:62:b7:18:f6:87:1e: ba:45:e1:bb:8a:dd:c0:98:42:79:5b:4a:13:35:c1: 91:ee:00:1f:3e:c8:cc:0f:36:12:52:0e:b6:04:49: b8:14:4d:c9:b2:31:33:b4:2c:d2:f9:d5:a5:d0:f5: 1b:af:37:d3:10:89:3f:87:82:e3:ea:cf:fe:24:15: e0:4e:a3:ed:7e:dc:64:76:d8:9b:61:b8:74:86:7b: a6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:CD:79:F7:3E:68:F6:58:97:01:CF:DD:A8:36:06:89:0E:C9:1F:42 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/fbae6de5-c049-46ee-8581-04bdb7bab7a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.174.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6e:00:a7:cf:a9:98:bd:ec:12:28:32:03:6f:1d:2a:18:1a:c4: b1:c6:ef:f0:9f:4c:2e:90:65:d1:2b:ba:b8:c8:52:3c:ce:1d: 0f:52:92:6a:10:20:5f:57:90:b5:31:96:24:4f:ae:3b:cc:d5: d3:74:05:8b:b6:40:7f:82:2e:c8:3b:b3:bc:85:10:92:af:a7: a0:34:78:b9:8b:ba:42:d7:80:3c:a1:24:19:9e:6c:42:99:84: 37:2d:65:02:d5:9b:be:5b:d6:68:11:49:1b:28:2e:73:97:93: 0a:2e:57:25:d4:96:a6:81:60:bd:ed:d8:55:13:9d:71:78:f8: 23:80:23:38:e2:fa:dc:b4:71:80:ec:53:86:12:93:75:51:2f: ee:09:c1:ff:84:f7:0d:49:48:d1:fb:76:f4:c7:38:fe:e4:7d: 1b:55:ed:02:a8:08:3f:f2:2e:06:01:83:cc:3c:d8:48:ee:4f: d3:cf:d1:02:67:0c:bd:8f:fb:b4:33:91:4d:38:7c:3b:71:9f: d1:f1:ef:80:5f:51:42:48:51:fb:c3:b5:67:82:51:09:0a:9f: b9:91:bd:7f:8c:07:ed:ca:75:b6:3b:a5:24:3a:21:d4:62:58: dc:52:fb:da:92:9c:cd:44:2d:1b:30:70:77:46:11:a3:ee:25: a8:b4:bb:aa -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUStafESEavvNskZDOQ8WozZHGvhwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjQxMTE5MDAwMDAwWhcNMjQxMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzNkYjQ5MmNkYjk2MGI5ZjI4YjQ4MjY0NGI3MmY5ZTY2 OTBiMzMyNDQ2Yzg0ZjMzZTk2MzY4MjczOTYxYjRjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfguxbIoEsRWWaWlMm1EmQe/JOvkgXgEispau56pMTof8g yOP3Grpfgk60SNhDnoyBIlDy/yZ1NuqOJFJB3RFsw4jrOU3JkdvfoYxk59/etyg1 hxTFR2kEXJ2edi3NkKFLGdy50WLje4EmqW0PkLTI3civpdYpHWNbHmn2v6jYy0ve VKNNfIRu0sBQOg89Rd9HpDZYHsYeWBLH8PKE2MurpysCb3hKE38720EqPWK3GPaH HrpF4buK3cCYQnlbShM1wZHuAB8+yMwPNhJSDrYESbgUTcmyMTO0LNL51aXQ9Ruv N9MQiT+HguPqz/4kFeBOo+1+3GR22JthuHSGe6ZRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3c159z5o9liXAc/dqDYGiQ7JH0IwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2ZiYWU2ZGU1LWMwNDktNDZlZS04NTgxLTA0YmRiN2JhYjdhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwASrjANBgkqhkiG9w0BAQsFAAOCAQEAbgCnz6mYvewSKDIDbx0qGBrEscbv 8J9MLpBl0Su6uMhSPM4dD1KSahAgX1eQtTGWJE+uO8zV03QFi7ZAf4IuyDuzvIUQ kq+noDR4uYu6QteAPKEkGZ5sQpmENy1lAtWbvlvWaBFJGyguc5eTCi5XJdSWpoFg ve3YVROdcXj4I4AjOOL63LRxgOxThhKTdVEv7gnB/4T3DUlI0ft29Mc4/uR9G1Xt AqgIP/IuBgGDzDzYSO5P08/RAmcMvY/7tDORTTh8O3Gf0fHvgF9RQkhR+8O1Z4JR CQqfuZG9f4wH7cp1tjulJDoh1GJY3FL72pKczUQtGzBwd0YRo+4lqLS7qg== -----END CERTIFICATE-----Generated at Thu Nov 21 21:41:36 2024 by rpki-client on console-ams.rpki-client.org