$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa File: 07008d8d-f039-461c-be80-d42cb304abe4.roa (raw, json) Hash identifier: xbVzX8Pa5TE3Lb8kn3EcEsAiOiNdg3jizW/OTq80G9E= Subject key identifier: 55:A6:31:28:38:CC:2F:BE:E9:3F:AC:DC:E2:42:F2:71:3A:DB:5C:38 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29882DB64A67D34F6B5C58698063FB562FCB3E94 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.20.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 25 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:88:2d:b6:4a:67:d3:4f:6b:5c:58:69:80:63:fb:56:2f:cb:3e:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=d48e592678a2a5b9dc1185e5f5dc16377a406b19c90614c87c7323a306c70718, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:58:49:4f:ee:93:9d:d5:b2:a1:7f:55:67:4b: 0b:78:dc:12:7b:80:76:67:60:12:57:59:71:b5:0a: 46:e5:66:dd:3f:8a:1c:80:27:b2:2b:7b:fa:32:65: a3:93:ba:41:b4:75:01:42:20:c5:f0:cb:81:b9:41: dc:cc:db:bc:53:c5:3e:6f:70:fe:41:9d:7f:dc:af: 6c:b3:07:c3:79:75:99:d9:01:88:80:b5:2f:14:82: 07:f6:fd:1c:17:77:cd:66:e4:15:62:3c:4b:1d:f2: f3:36:5d:29:4c:ac:8b:f9:68:59:74:e3:c4:1d:00: 6a:a4:2d:ec:59:28:5c:07:03:9d:ee:76:6a:e4:15: 55:f0:0f:0a:73:27:d9:20:9c:bc:97:c6:b6:32:be: ca:66:f6:a7:ec:fe:6d:3c:7f:db:1f:6a:cd:b7:37: 59:4f:7e:d0:39:61:08:f5:60:63:de:48:2e:9a:a4: 21:ba:81:da:85:ab:32:85:06:a9:c8:03:3d:c1:1f: 39:21:0a:f7:ac:b9:30:79:26:44:13:27:49:d4:ad: 5c:b1:4a:56:ee:48:a7:40:a8:62:65:f9:7a:97:71: 36:13:db:7d:36:29:81:be:72:77:51:0b:69:07:0f: cc:7a:01:53:f3:98:15:2f:7b:cf:39:2e:b7:df:f2: 1b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:A6:31:28:38:CC:2F:BE:E9:3F:AC:DC:E2:42:F2:71:3A:DB:5C:38 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.20.0.0/15 Signature Algorithm: sha256WithRSAEncryption 42:a1:97:a1:fd:fa:8a:6f:88:75:05:45:dd:61:41:3a:53:51: da:3f:7f:74:19:e4:e0:97:0a:36:12:d4:af:d5:32:0e:4b:ba: d3:c9:5c:94:05:40:1c:ad:76:de:be:86:9a:9e:ae:47:33:aa: df:39:05:d6:63:2a:97:63:0c:87:63:a3:d9:be:0c:92:ba:cd: 65:a9:bc:a2:0c:11:95:86:0b:f5:2d:fe:c6:68:b7:52:6a:e1: d0:49:93:48:8b:f1:0d:a4:e1:b9:64:b7:72:d9:1a:8b:f3:bd: b0:82:6d:7e:62:1f:58:60:2d:1d:19:b8:6e:b0:85:c8:9e:76: cb:8a:a9:ba:10:f2:4b:1e:6d:b6:e9:1f:87:3b:cb:e3:b5:90: c5:ab:bf:0a:9e:24:a1:d9:5c:c3:72:d3:29:a4:23:63:ce:67: 88:04:81:d0:45:de:39:fa:0c:de:56:17:f0:6f:1a:bb:a6:f8: 0c:9f:eb:82:77:4f:3e:6d:2b:c6:74:44:b1:f4:96:50:99:54: 63:37:7a:2a:7f:48:dc:a5:79:22:eb:65:e7:c1:42:8d:27:c6: 66:4b:80:f2:5b:3f:ef:b5:b4:dc:cc:a3:60:90:f9:d3:37:4c: 2f:00:d8:c0:6a:cf:53:23:cf:4d:5e:8e:6e:58:6b:15:b2:5b: 1f:a4:54:38 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKYgttkpn009rXFhpgGP7Vi/LPpQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDhlNTkyNjc4YTJhNWI5ZGMxMTg1ZTVmNWRjMTYzNzdh NDA2YjE5YzkwNjE0Yzg3YzczMjNhMzA2YzcwNzE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9WElP7pOd1bKhf1VnSwt43BJ7gHZnYBJXWXG1CkblZt0/ ihyAJ7Ire/oyZaOTukG0dQFCIMXwy4G5QdzM27xTxT5vcP5BnX/cr2yzB8N5dZnZ AYiAtS8Uggf2/RwXd81m5BViPEsd8vM2XSlMrIv5aFl048QdAGqkLexZKFwHA53u dmrkFVXwDwpzJ9kgnLyXxrYyvspm9qfs/m08f9sfas23N1lPftA5YQj1YGPeSC6a pCG6gdqFqzKFBqnIAz3BHzkhCvesuTB5JkQTJ0nUrVyxSlbuSKdAqGJl+XqXcTYT 2302KYG+cndRC2kHD8x6AVPzmBUve885Lrff8hslAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVaYxKDjML77pP6zc4kLycTrbXDgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3MDA4ZDhkLWYwMzktNDYxYy1iZTgwLWQ0MmNiMzA0YWJlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2FDANBgkqhkiG9w0BAQsFAAOCAQEAQqGXof36im+IdQVF3WFBOlNR2j9/ dBnk4JcKNhLUr9UyDku608lclAVAHK123r6Gmp6uRzOq3zkF1mMql2MMh2Oj2b4M krrNZam8ogwRlYYL9S3+xmi3Umrh0EmTSIvxDaThuWS3ctkai/O9sIJtfmIfWGAt HRm4brCFyJ52y4qpuhDySx5ttukfhzvL47WQxau/Cp4kodlcw3LTKaQjY85niASB 0EXeOfoM3lYX8G8au6b4DJ/rgndPPm0rxnREsfSWUJlUYzd6Kn9I3KV5Iutl58FC jSfGZkuA8ls/77W03MyjYJD50zdMLwDYwGrPUyPPTV6OblhrFbJbH6RUOA== -----END CERTIFICATE-----Generated at Wed Apr 24 01:48:52 2024 by rpki-client on console-fra.rpki-client.org