$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10a82ea4-88fa-4414-b451-4a5566e775c0.roa File: 10a82ea4-88fa-4414-b451-4a5566e775c0.roa (raw, json) Hash identifier: a5+gPi0cHQoELPljcWXupeO0BXxFa5ejSa/031ISJLc= Subject key identifier: C7:A2:29:D1:04:49:F0:32:7A:AF:56:E7:E0:C2:88:48:51:11:1C:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 218DD3462C2BA4822CC9E1D80A320AFC9A44FE43 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10a82ea4-88fa-4414-b451-4a5566e775c0.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.172.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:8d:d3:46:2c:2b:a4:82:2c:c9:e1:d8:0a:32:0a:fc:9a:44:fe:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=6e2cbb5b9115a12bda052935ea3ce9a1cd55cf620590fe3880a8279e6cce501d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:78:04:40:8f:89:22:bd:29:02:46:40:3a:be: 79:25:5f:26:d5:4e:1f:cc:26:69:df:79:5e:7e:4b: 48:c9:46:91:76:83:dd:a7:ca:6b:a9:8a:31:41:93: f4:bd:b3:17:9f:87:67:86:b8:4a:a4:53:07:9b:5f: 65:c7:10:83:22:d7:38:b8:f4:20:08:21:37:f3:9f: ec:26:7d:b1:b6:c7:28:e1:e6:41:2a:59:83:f7:aa: 7c:ef:6b:31:da:de:c5:2c:f7:f0:b9:06:c0:aa:e6: fb:a2:73:4c:fc:66:4e:8a:83:ce:ea:2f:33:84:35: e0:18:94:17:3f:cf:a2:4a:23:83:f8:a7:19:b2:1f: 90:9e:32:c2:90:a4:ee:47:17:72:98:4e:27:aa:f5: 34:8f:79:e0:69:32:1f:d3:78:2f:68:4f:e6:ae:a2: 50:68:ae:15:3f:3f:a0:48:a5:de:d3:46:e8:a0:22: 13:38:85:58:52:67:43:98:db:c9:31:4a:e4:89:d5: 72:9f:b0:a1:c5:4d:11:d3:62:10:4f:2a:85:58:c8: 9b:ef:e1:40:97:75:78:16:4a:48:04:27:08:f2:cc: 5d:1a:a1:6f:56:53:9a:ae:f8:11:35:9b:f0:18:44: 7b:8a:c4:72:1c:d4:be:b7:b5:e4:c4:c4:68:83:d2: 3f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A2:29:D1:04:49:F0:32:7A:AF:56:E7:E0:C2:88:48:51:11:1C:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10a82ea4-88fa-4414-b451-4a5566e775c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.172.0.0/14 Signature Algorithm: sha256WithRSAEncryption 04:4c:a4:b2:dd:94:bb:9d:e2:3a:74:eb:b9:62:87:1b:bd:a0: 30:a6:ac:e0:b6:cf:97:4d:bb:4b:f8:c4:b6:05:a6:51:0a:fb: 80:77:c5:67:b3:9f:c9:5f:7b:05:68:27:f0:01:1e:c2:71:4b: 72:d7:bf:63:e1:f8:85:a3:ce:64:d9:6d:4c:2d:e6:36:8b:98: 54:e3:25:7d:d6:20:95:b1:67:16:83:72:9b:bd:bd:01:a7:7b: 58:83:83:ea:ca:94:df:6b:e7:7f:8d:e2:3e:cb:be:99:a2:01: 86:f0:52:28:8c:4d:cd:81:22:b1:92:d8:4f:f6:8d:14:0f:c1: a8:57:76:5b:bc:28:11:ce:c2:a5:2f:25:6e:a5:63:79:59:7d: 4b:8c:25:ef:d8:10:82:18:60:c2:67:f7:08:a6:30:32:cb:a6: 18:f0:96:8d:00:ed:c1:ef:c4:ca:ef:27:f5:9a:f3:27:04:ad: ac:73:cd:1c:64:e9:67:ed:92:c2:f5:44:b6:60:21:72:62:79: 3a:fc:5a:8a:3f:35:1e:a2:7a:ed:da:7b:e9:b0:5a:a5:a2:90: ee:58:8f:d7:f3:73:7e:00:66:32:1a:20:11:11:65:85:18:4a: f0:73:20:0f:f0:84:db:8a:8c:41:8c:a1:26:44:da:55:6e:91: 9b:70:e7:fb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIY3TRiwrpIIsyeHYCjIK/JpE/kMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTJjYmI1YjkxMTVhMTJiZGEwNTI5MzVlYTNjZTlhMWNk NTVjZjYyMDU5MGZlMzg4MGE4Mjc5ZTZjY2U1MDFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVeARAj4kivSkCRkA6vnklXybVTh/MJmnfeV5+S0jJRpF2 g92nymupijFBk/S9sxefh2eGuEqkUwebX2XHEIMi1zi49CAIITfzn+wmfbG2xyjh 5kEqWYP3qnzvazHa3sUs9/C5BsCq5vuic0z8Zk6Kg87qLzOENeAYlBc/z6JKI4P4 pxmyH5CeMsKQpO5HF3KYTieq9TSPeeBpMh/TeC9oT+auolBorhU/P6BIpd7TRuig IhM4hVhSZ0OY28kxSuSJ1XKfsKHFTRHTYhBPKoVYyJvv4UCXdXgWSkgEJwjyzF0a oW9WU5qu+BE1m/AYRHuKxHIc1L63teTExGiD0j+nAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUx6Ip0QRJ8DJ6r1bn4MKISFERHIgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwYTgyZWE0LTg4ZmEtNDQxNC1iNDUxLTRhNTU2NmU3NzVjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIorDANBgkqhkiG9w0BAQsFAAOCAQEABEykst2Uu53iOnTruWKHG72gMKas 4LbPl027S/jEtgWmUQr7gHfFZ7OfyV97BWgn8AEewnFLcte/Y+H4haPOZNltTC3m NouYVOMlfdYglbFnFoNym729Aad7WIOD6sqU32vnf43iPsu+maIBhvBSKIxNzYEi sZLYT/aNFA/BqFd2W7woEc7CpS8lbqVjeVl9S4wl79gQghhgwmf3CKYwMsumGPCW jQDtwe/Eyu8n9ZrzJwStrHPNHGTpZ+2SwvVEtmAhcmJ5Ovxaij81HqJ67dp76bBa paKQ7liP1/NzfgBmMhogERFlhRhK8HMgD/CE24qMQYyhJkTaVW6Rm3Dn+w== -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:02 2024 by rpki-client on console-fra.rpki-client.org