$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d729aa1c-ba17-4368-947b-9641c99e709e.roa File: d729aa1c-ba17-4368-947b-9641c99e709e.roa (raw, json) Hash identifier: C7UNZzCARS4bu7tJrI1MFIjrovzTNX6kF0RnE9ZNlao= Subject key identifier: B0:CA:27:A2:F7:AA:95:38:78:84:7B:EE:DE:17:0A:4A:3B:78:3A:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 387C1A9B422A39F0912FE0E6257BF3D80BD36F59 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d729aa1c-ba17-4368-947b-9641c99e709e.roa Signing time: Sat 04 May 2024 00:00:00 +0000 ROA not before: Sat 04 May 2024 00:00:00 +0000 ROA not after: Sat 08 Jun 2024 23:59:59 +0000 asID: 14618 IP address blocks: 54.25.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 07 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:7c:1a:9b:42:2a:39:f0:91:2f:e0:e6:25:7b:f3:d8:0b:d3:6f:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:00:00 2024 GMT Not After : Jun 8 23:59:59 2024 GMT Subject: serialNumber=943b210630a5fe81fa43495ac587dfe3dda49cf48ff6d63149d66855f2132511, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b7:be:88:1a:5a:f8:cf:86:6d:d7:c7:81:77: 5d:5f:15:74:86:6d:74:38:23:6c:32:79:2e:77:80: f4:30:b8:9a:44:0b:b2:a8:0f:c4:d1:00:e2:eb:03: d9:08:ab:3a:ae:15:3e:51:ee:67:c9:19:00:92:05: e1:8c:8b:0f:d6:48:a4:0a:d0:26:3c:16:62:09:48: 5c:36:5d:f1:cd:25:91:02:c4:f2:fa:a5:7f:ed:66: 1c:08:8a:52:2c:1f:0f:50:e8:99:da:79:1d:b2:f7: 9a:d4:ab:f1:05:e4:d2:f3:22:c3:9d:b0:98:7a:2e: 2e:2a:d7:59:fd:22:bb:71:fb:1f:9e:6a:45:d9:f6: c8:90:64:0f:4b:4c:5c:8c:59:26:f1:a1:4f:38:30: fe:05:28:bb:fd:73:ea:fb:b8:25:f1:f5:fa:a2:ef: d9:e3:23:44:7d:5e:52:0f:43:9f:2e:e3:cc:d1:ab: fa:54:d6:4d:44:a9:70:08:19:ca:2e:99:41:53:85: f3:4c:92:2c:3e:d7:6e:b4:31:47:4d:39:b2:e8:5a: 72:0e:16:c6:8d:a8:4c:45:5f:0c:91:31:8a:f1:cd: d4:37:5d:33:e3:a5:1f:0e:94:c0:d1:41:29:6b:29: 9d:ce:b1:13:aa:70:11:0d:40:d6:c0:b8:35:9c:e5: 1d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CA:27:A2:F7:AA:95:38:78:84:7B:EE:DE:17:0A:4A:3B:78:3A:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d729aa1c-ba17-4368-947b-9641c99e709e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.20.0/24 Signature Algorithm: sha256WithRSAEncryption 55:5a:c3:ac:6f:ef:b1:8b:98:a5:28:e3:7c:50:76:81:a3:ae: 64:67:0a:2c:d2:a8:5e:23:6d:78:68:e5:d1:88:7a:12:48:ed: ca:96:cb:ac:f1:46:f8:50:89:36:97:81:65:b3:1f:69:98:5f: 4e:82:b5:45:78:ae:50:90:c7:1d:f5:1a:e0:8d:21:91:e1:e6: 3d:ec:23:ae:24:5c:23:29:8f:60:76:8d:08:ca:db:57:8f:8d: e0:8d:d5:22:72:61:d0:32:82:19:e1:c4:04:ab:86:79:a8:32: e1:71:b2:33:39:29:3c:b0:c2:29:4b:a7:71:e8:b1:e9:99:df: 2e:66:7e:ea:e8:93:1c:97:64:96:98:ef:48:7c:6c:1e:11:2c: 01:1a:05:2e:ab:75:da:5e:0b:be:ad:dc:f0:40:4a:fd:ef:45: d3:4c:33:f5:a6:eb:8b:d5:f4:04:a3:75:f6:37:35:7f:4e:ab: 1f:50:3e:69:11:c4:e1:da:87:0b:a1:b8:43:23:a8:d4:a5:e2: 1d:44:64:bb:ae:c0:7b:05:c2:61:1a:56:73:41:06:ef:84:86: 91:8e:8e:31:05:84:e2:13:d4:2b:f3:3f:db:31:f7:98:f8:9d: 5d:1d:e1:61:66:a2:51:69:99:9d:48:91:d6:3f:1c:1a:7b:1b: b1:bd:87:d5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOHwam0IqOfCRL+DmJXvz2AvTb1kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA0MDAwMDAwWhcNMjQwNjA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDNiMjEwNjMwYTVmZTgxZmE0MzQ5NWFjNTg3ZGZlM2Rk YTQ5Y2Y0OGZmNmQ2MzE0OWQ2Njg1NWYyMTMyNTExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUt76IGlr4z4Zt18eBd11fFXSGbXQ4I2wyeS53gPQwuJpE C7KoD8TRAOLrA9kIqzquFT5R7mfJGQCSBeGMiw/WSKQK0CY8FmIJSFw2XfHNJZEC xPL6pX/tZhwIilIsHw9Q6JnaeR2y95rUq/EF5NLzIsOdsJh6Li4q11n9Irtx+x+e akXZ9siQZA9LTFyMWSbxoU84MP4FKLv9c+r7uCXx9fqi79njI0R9XlIPQ58u48zR q/pU1k1EqXAIGcoumUFThfNMkiw+1260MUdNObLoWnIOFsaNqExFXwyRMYrxzdQ3 XTPjpR8OlMDRQSlrKZ3OsROqcBENQNbAuDWc5R2FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsMonoveqlTh4hHvu3hcKSjt4OvkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3MjlhYTFjLWJhMTctNDM2OC05NDdiLTk2NDFjOTllNzA5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GRQwDQYJKoZIhvcNAQELBQADggEBAFVaw6xv77GLmKUo43xQdoGjrmRn CizSqF4jbXho5dGIehJI7cqWy6zxRvhQiTaXgWWzH2mYX06CtUV4rlCQxx31GuCN IZHh5j3sI64kXCMpj2B2jQjK21ePjeCN1SJyYdAyghnhxASrhnmoMuFxsjM5KTyw wilLp3HosemZ3y5mfurokxyXZJaY70h8bB4RLAEaBS6rddpeC76t3PBASv3vRdNM M/Wm64vV9ASjdfY3NX9Oqx9QPmkRxOHahwuhuEMjqNSl4h1EZLuuwHsFwmEaVnNB Bu+EhpGOjjEFhOIT1CvzP9sx95j4nV0d4WFmolFpmZ1IkdY/HBp7G7G9h9U= -----END CERTIFICATE-----Generated at Mon May 6 00:46:59 2024 by rpki-client on console-ams.rpki-client.org