$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f167ba2-3d62-4a61-8543-28364bba0ece.roa File: 1f167ba2-3d62-4a61-8543-28364bba0ece.roa (raw, json) Hash identifier: bRgkQ7p4WmSU2wlsB9zFh1efA+0JbZVl0ZYRP9cveYA= Subject key identifier: AC:C7:11:85:83:96:43:A2:09:CE:89:39:BD:55:3C:B3:7F:9A:CF:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56F475873A83A97A72997FB217F1584B80AB2E64 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f167ba2-3d62-4a61-8543-28364bba0ece.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 63.249.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f4:75:87:3a:83:a9:7a:72:99:7f:b2:17:f1:58:4b:80:ab:2e:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=4928c9ccb27ddc20471b76283cd9f6a52670ae92ac61c43f1d16791c4a1b17c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8c:4e:db:07:6d:c8:dc:c8:09:a0:da:e0:ae: b7:a7:31:be:7b:78:fe:27:3f:4a:02:f1:d3:8c:30: 90:9e:a1:6f:45:d4:63:c7:c5:84:d2:10:3b:46:bc: 5b:61:09:2c:53:85:85:8b:d3:69:58:5a:25:4b:ac: 6d:e5:cf:31:cc:5f:2d:ea:a0:92:ec:f6:89:2e:cb: c5:8f:0d:72:b0:29:46:5e:fc:59:f8:9e:02:52:4f: 7b:b7:79:52:3f:be:1b:0f:4f:3e:61:9f:f2:0a:46: f6:52:46:be:0d:5c:6c:0b:5e:9d:72:5a:ff:40:bf: 8b:4e:49:fa:7d:43:16:db:38:2d:6f:03:c2:cf:d0: 37:a9:78:73:20:d1:af:49:6f:3b:2c:ab:f0:6c:35: 27:17:28:ec:c3:7f:e4:55:e1:21:0f:a3:0e:35:d1: 21:b6:b3:fc:b6:a8:e0:f5:60:72:10:57:e5:4e:14: 62:ed:85:31:eb:aa:32:a3:6f:d3:46:6f:e2:e5:07: 33:5f:fc:f2:55:ed:e7:be:a4:23:b5:97:ca:32:80: c9:2c:70:2a:14:fc:f0:e3:f3:75:f5:57:f5:23:10: 75:88:47:8b:5c:6b:0b:1b:19:b7:06:70:42:aa:ff: 39:90:61:4a:d9:2c:93:c5:ed:e9:09:be:eb:ae:3d: 8b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:C7:11:85:83:96:43:A2:09:CE:89:39:BD:55:3C:B3:7F:9A:CF:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f167ba2-3d62-4a61-8543-28364bba0ece.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.249.128.0/17 Signature Algorithm: sha256WithRSAEncryption a5:23:e6:c0:4c:64:23:30:34:32:0e:55:0c:05:1a:bc:78:bd: 56:55:3f:5a:d1:79:3e:cc:a2:3e:ea:42:75:b4:fe:a7:cf:24: d2:69:bd:16:23:f9:09:27:76:ae:8a:4d:78:b9:aa:f6:e6:2b: 7e:6c:95:55:e5:0b:6a:ae:b5:96:0b:46:ca:8a:4b:ac:05:10: 48:13:84:1f:61:40:ca:7a:fc:82:97:24:7a:30:f1:55:03:35: 78:3a:67:6a:ab:52:9c:50:9f:8d:9d:b8:1b:6f:ff:57:01:66: d2:c9:96:d9:be:d3:7a:0c:21:11:b1:60:56:2c:95:3b:0b:fb: 6e:77:f3:0e:c9:f9:fa:bd:9c:7d:01:b0:93:d0:fe:ed:11:f0: ff:fd:f6:d6:2b:a6:87:a0:df:df:96:64:68:06:31:bc:82:78: 68:b2:82:ac:79:6f:9b:d8:ec:ed:b7:b0:4e:51:d2:14:fb:ed: d1:35:6e:00:1f:27:23:00:74:e9:ad:68:bf:dc:99:24:57:d4: 29:bd:92:31:3b:0d:cd:dc:c8:9e:0e:bf:1c:1e:95:53:c0:64: 61:8d:fc:03:3d:73:22:b9:e2:6d:59:ae:18:00:ed:8c:cd:a8: 92:af:39:9c:76:8b:c2:c7:76:cf:55:bb:f7:98:69:29:a8:6d: 3d:13:8c:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVvR1hzqDqXpymX+yF/FYS4CrLmQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTI4YzljY2IyN2RkYzIwNDcxYjc2MjgzY2Q5ZjZhNTI2 NzBhZTkyYWM2MWM0M2YxZDE2NzkxYzRhMWIxN2M1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEjE7bB23I3MgJoNrgrrenMb57eP4nP0oC8dOMMJCeoW9F 1GPHxYTSEDtGvFthCSxThYWL02lYWiVLrG3lzzHMXy3qoJLs9okuy8WPDXKwKUZe /Fn4ngJST3u3eVI/vhsPTz5hn/IKRvZSRr4NXGwLXp1yWv9Av4tOSfp9QxbbOC1v A8LP0DepeHMg0a9Jbzssq/BsNScXKOzDf+RV4SEPow410SG2s/y2qOD1YHIQV+VO FGLthTHrqjKjb9NGb+LlBzNf/PJV7ee+pCO1l8oygMkscCoU/PDj83X1V/UjEHWI R4tcawsbGbcGcEKq/zmQYUrZLJPF7ekJvuuuPYtZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrMcRhYOWQ6IJzok5vVU8s3+azxYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmMTY3YmEyLTNkNjItNGE2MS04NTQzLTI4MzY0YmJhMGVjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc/+YAwDQYJKoZIhvcNAQELBQADggEBAKUj5sBMZCMwNDIOVQwFGrx4vVZV P1rReT7Moj7qQnW0/qfPJNJpvRYj+Qkndq6KTXi5qvbmK35slVXlC2qutZYLRsqK S6wFEEgThB9hQMp6/IKXJHow8VUDNXg6Z2qrUpxQn42duBtv/1cBZtLJltm+03oM IRGxYFYslTsL+2538w7J+fq9nH0BsJPQ/u0R8P/99tYrpoeg39+WZGgGMbyCeGiy gqx5b5vY7O23sE5R0hT77dE1bgAfJyMAdOmtaL/cmSRX1Cm9kjE7Dc3cyJ4Ovxwe lVPAZGGN/AM9cyK54m1ZrhgA7YzNqJKvOZx2i8LHds9Vu/eYaSmobT0TjPo= -----END CERTIFICATE-----Generated at Wed May 1 20:47:52 2024 by rpki-client on console-ams.rpki-client.org