$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/025150e4-3554-46e0-b154-31e95b8e3530.roa File: 025150e4-3554-46e0-b154-31e95b8e3530.roa (raw, json) Hash identifier: LC4lMAUjpVLXVITHdHt+HViBcg7j/+dbxNkcawhu7AQ= Subject key identifier: 3D:38:E4:E3:89:A3:EF:E2:03:B8:CF:47:E2:A4:49:70:23:6D:6A:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C3AF0523B3B502D574CEB4EF8E1C91702C33B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/025150e4-3554-46e0-b154-31e95b8e3530.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 40.181.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 11 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:3a:f0:52:3b:3b:50:2d:57:4c:eb:4e:f8:e1:c9:17:02:c3:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=c9dc12d3888be918bcb0255dbcfe2adc7b07693e5bdddae086f1ae5633b88fe8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:33:d7:9c:73:9c:44:10:74:7e:52:94:23:57: 1b:88:67:73:a1:43:ed:b0:74:7a:61:0c:bc:9e:4f: 13:9f:c2:9c:0d:47:6b:83:2d:90:2c:ce:96:22:f5: f1:90:66:49:32:fd:b1:21:25:c5:7f:18:02:d3:c6: 34:5d:4b:00:e0:60:1c:a6:76:6e:4e:ae:86:f3:c8: 1c:a1:0a:29:8b:c8:8b:7b:05:4d:d7:65:d8:f4:5b: f9:83:f3:37:9f:68:5f:e6:d3:f8:34:9d:00:db:c0: e6:09:20:57:92:cf:26:3c:e0:ff:1d:a7:e5:ad:04: 0e:8c:a6:20:92:e0:46:ef:d8:70:24:3c:01:8c:9f: 93:65:0c:49:63:51:bb:c5:9d:47:b9:e0:a2:d8:d8: 73:0d:e9:12:3a:eb:55:c6:8a:cf:a1:d1:1c:57:0e: 8b:16:fb:4d:c4:5d:6b:3d:93:a8:f4:2c:49:85:34: dd:cc:13:17:eb:c5:f4:88:65:9c:99:44:fb:c3:07: 38:a8:c6:dc:62:3f:28:52:25:25:7e:5a:e7:15:74: 01:96:5a:2f:74:bc:05:54:64:c3:aa:3a:d9:10:29: 03:a1:a7:07:23:44:aa:66:c7:3b:0c:2a:04:c2:85: 9f:81:4b:2c:7b:c6:79:d4:b0:71:ce:15:08:a2:82: 04:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:38:E4:E3:89:A3:EF:E2:03:B8:CF:47:E2:A4:49:70:23:6D:6A:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/025150e4-3554-46e0-b154-31e95b8e3530.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.181.0.0/16 Signature Algorithm: sha256WithRSAEncryption 99:b0:3c:23:87:62:e5:e6:5e:85:49:d8:fc:2b:a3:c3:7a:91: 2e:e3:8d:c3:28:88:80:e7:43:36:76:f6:24:72:07:6a:36:6c: f3:01:70:7e:06:d7:02:fb:78:c2:aa:72:aa:89:47:fe:61:0e: 57:8a:0b:6f:5e:9d:41:f5:76:a9:65:46:36:05:87:10:b5:d9: 91:a7:6a:50:77:a2:68:13:a5:3e:33:13:1c:8e:54:19:ac:48: d2:a4:2b:b6:90:2e:48:f2:58:47:8e:e1:00:0d:f1:8f:fe:32: 33:33:fa:a0:2c:b1:f5:53:01:56:89:57:0f:5c:f7:34:a2:7c: 45:29:a8:cb:0b:57:d7:77:91:81:ad:17:1c:19:04:3d:0b:92: e6:0e:ca:b0:6a:2f:c5:ab:98:38:53:8f:94:77:75:27:11:21: 50:ff:33:15:ac:97:3c:80:bd:0f:35:09:16:9d:d6:a4:f8:3f: 7b:ae:6f:b0:21:6f:33:b5:22:4a:77:de:e8:26:f4:de:11:cc: f6:30:e2:47:ae:00:4b:e2:97:28:85:27:1e:38:f0:b1:67:10: a9:89:58:2f:8e:ae:c0:4e:7f:42:9f:94:03:b6:aa:6b:f7:eb: 37:52:ee:c0:21:2e:2d:57:ce:93:8b:85:9e:04:d5:5d:2f:d7: 82:5e:7d:87 -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITTDrwUjs7UC1XTOtO+OHJFwLDOzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDA0MTUwMDAwMDBaFw0yNDA1MjAyMzU5NTla MHoxSTBHBgNVBAUTQGM5ZGMxMmQzODg4YmU5MThiY2IwMjU1ZGJjZmUyYWRjN2Iw NzY5M2U1YmRkZGFlMDg2ZjFhZTU2MzNiODhmZTgxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAM8z15xznEQQdH5SlCNXG4hnc6FD7bB0emEMvJ5PE5/CnA1H a4MtkCzOliL18ZBmSTL9sSElxX8YAtPGNF1LAOBgHKZ2bk6uhvPIHKEKKYvIi3sF Tddl2PRb+YPzN59oX+bT+DSdANvA5gkgV5LPJjzg/x2n5a0EDoymIJLgRu/YcCQ8 AYyfk2UMSWNRu8WdR7ngotjYcw3pEjrrVcaKz6HRHFcOixb7TcRdaz2TqPQsSYU0 3cwTF+vF9IhlnJlE+8MHOKjG3GI/KFIlJX5a5xV0AZZaL3S8BVRkw6o62RApA6Gn ByNEqmbHOwwqBMKFn4FLLHvGedSwcc4VCKKCBFcCAwEAAaOCArAwggKsMB0GA1Ud DgQWBBQ9OOTjiaPv4gO4z0fipElwI21q1jAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMDI1MTUwZTQtMzU1NC00NmUwLWIxNTQtMzFlOTViOGUzNTMwLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDACi1MA0GCSqGSIb3DQEBCwUAA4IBAQCZsDwjh2Ll5l6FSdj8K6PDepEu443D KIiA50M2dvYkcgdqNmzzAXB+BtcC+3jCqnKqiUf+YQ5XigtvXp1B9XapZUY2BYcQ tdmRp2pQd6JoE6U+MxMcjlQZrEjSpCu2kC5I8lhHjuEADfGP/jIzM/qgLLH1UwFW iVcPXPc0onxFKajLC1fXd5GBrRccGQQ9C5LmDsqwai/Fq5g4U4+Ud3UnESFQ/zMV rJc8gL0PNQkWndak+D97rm+wIW8ztSJKd97oJvTeEcz2MOJHrgBL4pcohSceOPCx ZxCpiVgvjq7ATn9Cn5QDtqpr9+s3Uu7AIS4tV86Ti4WeBNVdL9eCXn2H -----END CERTIFICATE-----Generated at Thu May 9 17:46:33 2024 by rpki-client on console-ams.rpki-client.org