$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1b9faa0b-c075-4c2e-b191-84934db86a66.roa File: 1b9faa0b-c075-4c2e-b191-84934db86a66.roa (raw, json) Hash identifier: 2q1nsFmIiJibggPa3yHhn7Kv45ZgBPStMK19jYz89oM= Subject key identifier: CA:6E:CA:61:54:60:92:8C:C1:8D:90:2A:DA:5F:83:D4:9A:13:42:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4831865072FE63BE8D36357B72815FB822BBDC4E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1b9faa0b-c075-4c2e-b191-84934db86a66.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 192.43.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:31:86:50:72:fe:63:be:8d:36:35:7b:72:81:5f:b8:22:bb:dc:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=5542e3aa1fc6548f7fa9bb3aa42d38aa60c6091be8554955e73c22876dc63092, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:49:93:3a:1f:6b:94:b8:f0:34:c5:56:04:5e: 3e:f7:fe:c1:91:54:e9:d2:ae:6c:e9:bd:05:83:c0: a4:2b:17:94:2c:fc:22:00:01:7f:19:d5:dc:2a:24: 53:40:ca:9c:cd:68:23:87:36:c1:90:27:21:90:a9: be:a1:08:2c:d2:de:9e:46:bd:0f:f1:cc:8c:6e:71: de:96:bc:c3:a4:a1:63:c0:4a:d9:cd:b6:73:4f:2f: e0:02:09:7c:18:af:fd:83:35:35:ac:6d:7d:cd:5a: 52:61:ca:a4:0c:a5:0b:4f:dc:ca:6a:e4:b7:ed:1c: 36:f6:bf:9c:4c:21:b3:fc:50:b2:5e:c3:5e:07:60: 20:52:1b:6d:ad:89:22:11:62:8a:fb:ad:48:08:d2: f7:dd:31:ff:b4:dd:ac:21:18:40:f4:82:93:63:7c: 50:32:b4:a5:01:fc:f5:98:1c:81:2e:98:80:f3:02: 1b:8d:77:91:77:5d:28:7d:aa:71:1a:8c:c8:82:b6: 09:b1:99:01:25:d5:ee:95:37:1b:5a:c0:8a:48:7a: ba:8b:43:a8:1c:e2:81:82:21:9c:03:fc:71:0d:f2: 30:6b:9d:84:fb:42:36:64:42:58:d0:46:01:d8:26: 1d:04:3e:a3:db:90:c3:ef:40:63:c2:77:ac:4c:0f: 93:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:6E:CA:61:54:60:92:8C:C1:8D:90:2A:DA:5F:83:D4:9A:13:42:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1b9faa0b-c075-4c2e-b191-84934db86a66.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.43.176.0/21 Signature Algorithm: sha256WithRSAEncryption 05:51:41:0b:6b:49:41:c0:63:7b:e0:88:9d:f3:8f:b5:54:04: 7c:3e:97:0c:61:30:62:9a:46:67:37:a1:e4:17:b6:04:d3:02: 71:41:e0:41:69:6f:d5:28:a6:2d:9e:c8:44:55:04:59:a1:cf: 45:b9:12:ee:3b:7f:13:b4:f5:6b:27:b0:5a:11:c7:df:2f:14: f8:84:c1:15:74:1c:07:7f:33:b1:f5:e5:4f:d8:7b:78:78:e6: d1:5d:c3:2a:33:a5:6e:98:58:ab:6b:fe:0c:0b:69:04:45:82: d3:d6:d3:d8:9c:99:69:29:0e:ed:1c:65:2c:ea:a2:80:eb:54: d7:01:d3:13:46:68:59:35:3c:91:71:50:1d:95:f1:c3:7e:14: d6:8b:63:fe:ce:7d:76:35:ed:ec:fb:84:c6:e1:ae:9a:79:b2: 7c:d5:7b:25:db:ff:05:01:fc:80:d7:c9:8c:4f:9b:65:f1:c8: 57:85:ac:d6:bb:06:5d:de:e1:28:12:99:c1:5c:ba:0e:a1:00: 41:43:ac:ae:b5:1d:cd:6b:93:ad:ff:26:a8:0f:03:d9:42:ba: ee:e4:2b:b8:75:41:46:47:b8:a1:a9:04:e9:e7:2c:0c:e7:4b: 32:3e:97:43:f8:a6:06:46:26:99:32:92:12:35:f1:49:c9:35: 63:83:39:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSDGGUHL+Y76NNjV7coFfuCK73E4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTQyZTNhYTFmYzY1NDhmN2ZhOWJiM2FhNDJkMzhhYTYw YzYwOTFiZTg1NTQ5NTVlNzNjMjI4NzZkYzYzMDkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmSZM6H2uUuPA0xVYEXj73/sGRVOnSrmzpvQWDwKQrF5Qs /CIAAX8Z1dwqJFNAypzNaCOHNsGQJyGQqb6hCCzS3p5GvQ/xzIxucd6WvMOkoWPA StnNtnNPL+ACCXwYr/2DNTWsbX3NWlJhyqQMpQtP3Mpq5LftHDb2v5xMIbP8ULJe w14HYCBSG22tiSIRYor7rUgI0vfdMf+03awhGED0gpNjfFAytKUB/PWYHIEumIDz AhuNd5F3XSh9qnEajMiCtgmxmQEl1e6VNxtawIpIerqLQ6gc4oGCIZwD/HEN8jBr nYT7QjZkQljQRgHYJh0EPqPbkMPvQGPCd6xMD5OPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUym7KYVRgkozBjZAq2l+D1JoTQugwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFiOWZhYTBiLWMwNzUtNGMyZS1iMTkxLTg0OTM0ZGI4NmE2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPAK7AwDQYJKoZIhvcNAQELBQADggEBAAVRQQtrSUHAY3vgiJ3zj7VUBHw+ lwxhMGKaRmc3oeQXtgTTAnFB4EFpb9Uopi2eyERVBFmhz0W5Eu47fxO09WsnsFoR x98vFPiEwRV0HAd/M7H15U/Ye3h45tFdwyozpW6YWKtr/gwLaQRFgtPW09icmWkp Du0cZSzqooDrVNcB0xNGaFk1PJFxUB2V8cN+FNaLY/7OfXY17ez7hMbhrpp5snzV eyXb/wUB/IDXyYxPm2XxyFeFrNa7Bl3e4SgSmcFcug6hAEFDrK61Hc1rk63/JqgP A9lCuu7kK7h1QUZHuKGpBOnnLAznSzI+l0P4pgZGJpkykhI18UnJNWODOUY= -----END CERTIFICATE-----Generated at Thu May 2 06:12:29 2024 by rpki-client on console-fra.rpki-client.org