$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3819daa1-d9d8-4229-a37a-3c8fa9024396.roa File: 3819daa1-d9d8-4229-a37a-3c8fa9024396.roa (raw, json) Hash identifier: ddcHxMVVlXTIBnoBYYL7AJ7sMugYCR3YFoda6Az+JTQ= Subject key identifier: 89:A8:08:D8:23:11:94:70:C4:23:B0:B2:39:EE:24:74:49:C9:B2:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D7A203D28A2F7B7A529589D7ED59893D15996DE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3819daa1-d9d8-4229-a37a-3c8fa9024396.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 144.142.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:7a:20:3d:28:a2:f7:b7:a5:29:58:9d:7e:d5:98:93:d1:59:96:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=d57ee0069001948c91b421ad0595b637a535c875d6b7d18b5b75ffd3881718f6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d2:a5:3e:95:0c:c4:b6:1f:d7:f8:e8:b5:c0: 9f:31:a9:20:8a:5c:05:f1:f0:67:4c:47:39:d5:e4: b3:89:04:5e:ad:5f:4f:3b:d4:f3:db:35:23:11:5d: 1f:e5:c8:9d:c4:28:c0:1e:12:df:c2:14:15:74:c2: a1:1f:a0:c8:31:30:be:60:14:5b:21:91:08:78:6f: 87:72:21:c3:36:46:4d:09:60:8d:f5:17:70:7d:6d: 8f:1a:89:6b:d0:9d:41:62:e7:23:21:11:c0:61:32: 53:c2:3c:74:d5:2e:7e:4d:76:d4:b6:17:5e:91:d9: f9:4e:66:6b:cc:43:b0:26:34:c0:99:1b:41:14:ba: f4:e5:1a:a8:ba:94:47:28:73:63:b6:38:e7:74:0a: 62:9e:7c:74:cf:d6:c2:56:21:80:28:c5:7a:8a:b3: 2a:9f:04:96:22:b7:bd:b0:3b:c8:54:6a:d5:6a:65: b5:dc:32:6e:df:bf:f1:47:ef:78:57:1a:a1:79:a3: c1:c0:b1:cd:56:f5:d5:df:0d:f9:bf:01:52:7d:4a: 1f:fb:06:35:82:42:39:e1:0e:ce:4c:e3:0a:14:44: d1:ec:63:75:1c:c6:c2:18:d2:8e:45:8f:0c:43:3e: 12:f5:e7:b6:43:c6:f5:af:ef:26:64:a3:4d:40:bc: ab:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A8:08:D8:23:11:94:70:C4:23:B0:B2:39:EE:24:74:49:C9:B2:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3819daa1-d9d8-4229-a37a-3c8fa9024396.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6b:6e:1b:7c:02:7c:e7:e3:56:cd:b3:14:19:55:f7:a7:1f:1d: e9:cd:ad:cb:95:e4:77:54:29:d3:de:98:33:73:3b:b7:70:00: 9b:25:30:23:65:13:fd:a7:e4:25:76:98:5e:f7:4d:dd:95:20: 80:4b:f3:6c:65:90:a3:a3:2e:36:d2:05:11:91:8c:ed:2a:5d: 4f:12:a6:1b:4c:02:2a:76:6a:41:1d:7e:df:a7:fb:dd:14:2d: a1:8e:d2:0c:5e:46:e3:e4:64:00:e7:75:b5:38:e4:a3:55:1c: cf:2e:8e:10:0e:12:0d:fd:2b:71:4b:a6:f7:76:69:d2:40:9f: 19:4d:64:a9:ec:68:91:47:ae:1c:21:18:67:de:62:9a:e0:68: db:4c:cf:e6:a7:30:98:e3:6d:46:55:4f:31:de:ef:78:66:c1: 6d:dd:69:c7:72:75:90:90:df:a1:f8:2a:8e:35:ad:26:65:af: bc:05:56:55:85:67:23:fc:5e:d4:7e:54:61:80:7e:35:77:fd: ec:0e:30:cb:90:7c:ed:10:fd:20:78:c1:98:bd:23:bb:ce:67: 23:b0:f8:cd:33:60:7c:30:94:9f:10:11:2f:1f:49:e5:6f:9e: 16:97:31:0c:b2:04:a8:00:f4:35:d0:00:22:98:05:45:fd:8f: 4f:aa:88:67 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfXogPSii97elKVidftWYk9FZlt4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTdlZTAwNjkwMDE5NDhjOTFiNDIxYWQwNTk1YjYzN2E1 MzVjODc1ZDZiN2QxOGI1Yjc1ZmZkMzg4MTcxOGY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDr0qU+lQzEth/X+Oi1wJ8xqSCKXAXx8GdMRznV5LOJBF6t X0871PPbNSMRXR/lyJ3EKMAeEt/CFBV0wqEfoMgxML5gFFshkQh4b4dyIcM2Rk0J YI31F3B9bY8aiWvQnUFi5yMhEcBhMlPCPHTVLn5NdtS2F16R2flOZmvMQ7AmNMCZ G0EUuvTlGqi6lEcoc2O2OOd0CmKefHTP1sJWIYAoxXqKsyqfBJYit72wO8hUatVq ZbXcMm7fv/FH73hXGqF5o8HAsc1W9dXfDfm/AVJ9Sh/7BjWCQjnhDs5M4woURNHs Y3UcxsIY0o5FjwxDPhL157ZDxvWv7yZko01AvKszAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUiagI2CMRlHDEI7CyOe4kdEnJsuswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4MTlkYWExLWQ5ZDgtNDIyOS1hMzdhLTNjOGZhOTAyNDM5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCQjjANBgkqhkiG9w0BAQsFAAOCAQEAa24bfAJ85+NWzbMUGVX3px8d6c2t y5Xkd1Qp096YM3M7t3AAmyUwI2UT/afkJXaYXvdN3ZUggEvzbGWQo6MuNtIFEZGM 7SpdTxKmG0wCKnZqQR1+36f73RQtoY7SDF5G4+RkAOd1tTjko1Uczy6OEA4SDf0r cUum93Zp0kCfGU1kqexokUeuHCEYZ95imuBo20zP5qcwmONtRlVPMd7veGbBbd1p x3J1kJDfofgqjjWtJmWvvAVWVYVnI/xe1H5UYYB+NXf97A4wy5B87RD9IHjBmL0j u85nI7D4zTNgfDCUnxARLx9J5W+eFpcxDLIEqAD0NdAAIpgFRf2PT6qIZw== -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:16 2024 by rpki-client on console-fra.rpki-client.org