$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa File: 242b5bdc-078e-4974-9ef3-af03ea079caa.roa (raw, json) Hash identifier: eV1t99lpNXgds4w+nT4aY4tfkH0MSy+fjEE5hzeOlBA= Subject key identifier: 5B:80:6A:3F:97:CB:2F:FB:C2:B0:C4:A0:D3:3A:DF:CD:8C:C7:66:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CB14907651A9DF4734DCE83612E7ABB487B8552 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 63.246.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:b1:49:07:65:1a:9d:f4:73:4d:ce:83:61:2e:7a:bb:48:7b:85:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=f64729c2902e81f55086e77080316ca26228117788b1c95560824da831a179f1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:46:91:16:0e:49:ab:dd:07:eb:6a:f2:cd:b8: 66:04:d6:1a:5f:db:06:d3:19:b3:0f:0c:cb:4d:f6: 4c:b3:23:55:67:cf:23:38:e0:0d:12:30:ab:6b:10: 46:84:be:0c:4f:5f:a1:63:74:9f:52:73:fd:0f:88: 3a:c1:a4:04:e0:b9:e4:c8:d3:d0:8a:4d:52:29:56: bb:b6:a1:92:c7:45:a1:a2:8c:bc:f5:51:e7:a8:60: c8:f9:9d:d5:6e:b2:38:0e:e6:10:81:ba:a0:0d:2b: 40:78:12:48:0c:f3:c1:7e:23:9e:12:59:d1:93:f9: db:97:43:ef:7b:b4:cc:62:37:60:a4:63:75:ad:36: f8:8f:26:cb:35:ca:22:29:16:89:ad:e5:b5:27:6d: 9c:16:50:30:7a:4f:ca:43:09:a9:99:f7:0b:f8:19: 1f:3c:97:46:9b:68:5d:b3:28:31:0c:8e:90:b1:fd: b9:2a:8e:17:49:90:63:8e:f2:18:0f:a1:2c:23:44: 64:c1:c3:44:57:28:90:01:df:75:fc:46:e4:e6:ea: 26:19:dd:4b:91:ef:88:d3:31:ab:26:af:da:2d:49: 68:a4:ce:96:3e:0f:6f:fe:ca:2e:90:41:aa:8e:0f: 75:d0:44:d9:c8:1c:73:f3:57:c1:04:e5:5a:20:44: 74:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:80:6A:3F:97:CB:2F:FB:C2:B0:C4:A0:D3:3A:DF:CD:8C:C7:66:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/242b5bdc-078e-4974-9ef3-af03ea079caa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.120.0/21 Signature Algorithm: sha256WithRSAEncryption d1:be:bc:da:a7:33:56:c3:85:5b:f6:dd:22:47:d3:5a:15:35: ea:77:57:e7:68:86:fd:17:1c:28:12:e1:b2:4f:c4:15:3e:34: 08:d0:05:7d:51:be:8a:86:68:5e:9e:0f:24:20:d6:9b:20:4f: f1:a4:59:f7:60:26:a8:2a:c1:8d:84:98:a8:94:67:d8:c8:58: 20:5c:f6:2b:51:6a:0a:2a:c1:ae:b8:3d:5d:ed:dc:fe:16:3b: e6:3e:63:f1:56:95:1d:eb:b9:f0:c5:86:09:42:86:49:f8:80: 75:a7:79:88:5b:1b:32:cf:ef:2c:1d:4f:4d:48:3d:22:c4:61: a0:03:54:44:f0:a5:c0:18:ab:22:bc:f5:44:00:e8:96:bb:d9: ff:b8:d8:ce:9a:ae:4b:14:b3:72:f6:44:66:74:63:e9:01:b5: 31:a5:45:2b:e4:9a:31:6e:3e:3f:75:68:4d:b6:70:aa:ed:ad: 65:9e:8f:b3:12:5e:bd:d4:68:d1:a0:4b:88:78:d8:04:f4:86: 04:ff:44:20:7e:cd:36:bd:7d:21:b8:bd:49:38:46:f8:c3:e4: 7d:bd:94:79:68:05:51:99:cc:40:53:9f:09:3c:e1:ab:e3:e8: f2:ef:49:e2:ba:15:77:b6:cc:4d:a2:fa:39:51:b8:f6:7e:14: c5:58:da:6f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULLFJB2UanfRzTc6DYS56u0h7hVIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjQ3MjljMjkwMmU4MWY1NTA4NmU3NzA4MDMxNmNhMjYy MjgxMTc3ODhiMWM5NTU2MDgyNGRhODMxYTE3OWYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCURpEWDkmr3QfravLNuGYE1hpf2wbTGbMPDMtN9kyzI1Vn zyM44A0SMKtrEEaEvgxPX6FjdJ9Sc/0PiDrBpATgueTI09CKTVIpVru2oZLHRaGi jLz1UeeoYMj5ndVusjgO5hCBuqANK0B4EkgM88F+I54SWdGT+duXQ+97tMxiN2Ck Y3WtNviPJss1yiIpFomt5bUnbZwWUDB6T8pDCamZ9wv4GR88l0abaF2zKDEMjpCx /bkqjhdJkGOO8hgPoSwjRGTBw0RXKJAB33X8RuTm6iYZ3UuR74jTMasmr9otSWik zpY+D2/+yi6QQaqOD3XQRNnIHHPzV8EE5VogRHQxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUW4BqP5fLL/vCsMSg0zrfzYzHZiEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0MmI1YmRjLTA3OGUtNDk3NC05ZWYzLWFmMDNlYTA3OWNhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM/9ngwDQYJKoZIhvcNAQELBQADggEBANG+vNqnM1bDhVv23SJH01oVNep3 V+dohv0XHCgS4bJPxBU+NAjQBX1RvoqGaF6eDyQg1psgT/GkWfdgJqgqwY2EmKiU Z9jIWCBc9itRagoqwa64PV3t3P4WO+Y+Y/FWlR3rufDFhglChkn4gHWneYhbGzLP 7ywdT01IPSLEYaADVETwpcAYqyK89UQA6Ja72f+42M6arksUs3L2RGZ0Y+kBtTGl RSvkmjFuPj91aE22cKrtrWWej7MSXr3UaNGgS4h42AT0hgT/RCB+zTa9fSG4vUk4 RvjD5H29lHloBVGZzEBTnwk84avj6PLvSeK6FXe2zE2i+jlRuPZ+FMVY2m8= -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:47 2024 by rpki-client on console-fra.rpki-client.org