$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ff67b07-091b-43da-9723-1a94e29d65e8.roa File: 1ff67b07-091b-43da-9723-1a94e29d65e8.roa (raw, json) Hash identifier: YVbCjWiZNrV8t1j8298KLxQCDhoWKdzfwoDak7DyaCY= Subject key identifier: 4D:75:17:0E:75:20:5A:52:C2:07:BF:58:5A:7D:6B:AC:8A:04:34:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59E48DF0FF52B42C31F0A3C30C5F3C256854DE82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ff67b07-091b-43da-9723-1a94e29d65e8.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e4:8d:f0:ff:52:b4:2c:31:f0:a3:c3:0c:5f:3c:25:68:54:de:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=11f951be97b4bb3f5a1dcb9d51bf5bbe2bc3ce53a9e0dd8077de60f30ea1cd1a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4d:b7:c8:c7:9a:79:09:f9:3d:29:f9:e1:5e: 79:6c:a1:2e:10:7b:58:20:33:07:56:54:d8:52:d6: 8c:61:da:b0:25:35:c2:f9:ff:64:5f:da:97:4f:94: d0:f7:18:2b:e3:48:0e:d0:cc:2a:dc:77:03:c5:75: 4f:ef:a5:80:aa:12:02:39:27:df:88:9d:f5:27:c3: 9e:c0:ee:f9:3b:1f:63:b4:28:e7:99:8e:5e:3c:d4: c0:38:65:fe:54:d6:32:e1:c7:7a:40:65:85:4d:99: 1c:47:e0:37:27:0f:c9:0b:7c:09:29:40:c1:90:14: a1:6d:98:b2:12:a4:8b:d0:75:00:36:8f:f5:26:98: f1:16:7c:b8:62:fd:e9:8c:a6:b3:b9:3d:d9:2c:e0: 6e:54:ed:9d:6d:2c:87:2a:04:49:85:48:36:e9:ce: 91:4a:61:39:b9:03:e2:60:ce:e4:18:e7:fd:77:c7: c2:dc:52:49:49:cf:fa:a2:7e:78:8d:cd:8b:46:49: 58:13:38:dd:54:5c:74:9c:ee:59:c7:b0:1b:5d:ff: 62:22:df:b8:5e:d7:da:70:96:fa:e1:48:cf:ca:d1: f2:75:7e:3b:b1:ca:5d:a9:d1:c0:d8:f6:6a:0d:75: ab:3a:e9:32:6a:c8:21:ff:79:c2:89:51:43:67:7e: c7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:75:17:0E:75:20:5A:52:C2:07:BF:58:5A:7D:6B:AC:8A:04:34:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ff67b07-091b-43da-9723-1a94e29d65e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:a6:f9:ce:5c:70:ac:a4:a1:67:19:bc:6a:91:c1:b0:ba:ff: b7:15:43:cb:62:7b:38:67:d1:dc:29:5e:3d:7b:8b:82:12:d6: be:1a:46:fc:1b:c0:61:35:e0:21:b7:d2:43:f9:3e:ff:8b:46: c7:af:63:b2:f7:13:ac:16:40:a2:68:c8:bc:a0:fb:64:4e:36: a7:6a:6f:c0:1e:15:38:29:ed:3d:2e:cd:39:10:90:e1:95:8b: e6:53:fb:01:e5:d3:9e:ae:a9:9a:d9:8d:df:78:b6:18:aa:7e: 4e:10:ea:42:ad:bb:91:2c:09:d4:90:e7:60:96:29:2a:fb:55: 77:43:88:b1:d9:3a:ea:3a:17:0e:52:28:09:2c:76:0b:8c:d9: 04:4b:e8:2d:54:37:76:16:69:b9:d8:da:ac:43:f9:dc:ee:8f: 07:51:4d:ac:42:27:3f:fd:cf:46:68:97:3b:4d:3e:4e:43:b9: 95:fd:56:08:8a:b7:f3:d4:ee:e6:7c:f1:1f:9a:54:7d:d6:c2: a9:e7:1b:48:5c:eb:bf:de:b3:d4:0d:80:4f:d6:73:d4:23:ba: 58:b1:01:ab:cc:87:96:a4:f3:b9:92:57:e5:5a:09:ea:6a:57: 3b:15:c8:46:74:cd:54:d3:32:7c:4c:94:33:b0:44:f5:5f:77: fb:08:20:ce -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWeSN8P9StCwx8KPDDF88JWhU3oIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMWY5NTFiZTk3YjRiYjNmNWExZGNiOWQ1MWJmNWJiZTJi YzNjZTUzYTllMGRkODA3N2RlNjBmMzBlYTFjZDFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMTbfIx5p5Cfk9KfnhXnlsoS4Qe1ggMwdWVNhS1oxh2rAl NcL5/2Rf2pdPlND3GCvjSA7QzCrcdwPFdU/vpYCqEgI5J9+InfUnw57A7vk7H2O0 KOeZjl481MA4Zf5U1jLhx3pAZYVNmRxH4DcnD8kLfAkpQMGQFKFtmLISpIvQdQA2 j/UmmPEWfLhi/emMprO5Pdks4G5U7Z1tLIcqBEmFSDbpzpFKYTm5A+JgzuQY5/13 x8LcUklJz/qifniNzYtGSVgTON1UXHSc7lnHsBtd/2Ii37he19pwlvrhSM/K0fJ1 fjuxyl2p0cDY9moNdas66TJqyCH/ecKJUUNnfseXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTXUXDnUgWlLCB79YWn1rrIoENOEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmZjY3YjA3LTA5MWItNDNkYS05NzIzLTFhOTRlMjlkNjVlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4KzANBgkqhkiG9w0BAQsFAAOCAQEAKab5zlxwrKShZxm8apHBsLr/txVD y2J7OGfR3ClePXuLghLWvhpG/BvAYTXgIbfSQ/k+/4tGx69jsvcTrBZAomjIvKD7 ZE42p2pvwB4VOCntPS7NORCQ4ZWL5lP7AeXTnq6pmtmN33i2GKp+ThDqQq27kSwJ 1JDnYJYpKvtVd0OIsdk66joXDlIoCSx2C4zZBEvoLVQ3dhZpudjarEP53O6PB1FN rEInP/3PRmiXO00+TkO5lf1WCIq389Tu5nzxH5pUfdbCqecbSFzrv96z1A2AT9Zz 1CO6WLEBq8yHlqTzuZJX5VoJ6mpXOxXIRnTNVNMyfEyUM7BE9V93+wggzg== -----END CERTIFICATE-----Generated at Fri Apr 19 00:50:32 2024 by rpki-client on console-ams.rpki-client.org