$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa File: 407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa (raw, json) Hash identifier: ATO1xYBSXvpnxmtONl3VpE4q8BTg/HaoPj4/f4RFr60= Subject key identifier: 18:CB:66:7A:CF:46:3B:7F:E2:B8:19:9F:64:1A:4A:BB:AD:EA:5F:A8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CE4B9E0924D93A438A3979A9A34A23DEAE0FAB5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa Signing time: Thu 18 Apr 2024 00:00:00 +0000 ROA not before: Thu 18 Apr 2024 00:00:00 +0000 ROA not after: Thu 23 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 199.182.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e4:b9:e0:92:4d:93:a4:38:a3:97:9a:9a:34:a2:3d:ea:e0:fa:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:00:00 2024 GMT Not After : May 23 23:59:59 2024 GMT Subject: serialNumber=b17e2331e7b917e5b891e24e8e1f038966b167fbe79128a6d6ae68f09edf7485, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:da:d2:37:57:0e:48:a6:d8:99:d9:c8:04:f4: 2d:3f:93:17:82:49:09:ad:41:02:d1:f7:2a:db:10: 83:13:b4:3e:06:55:fc:2e:8a:e9:bc:15:a5:a2:6f: 62:80:19:0d:9d:37:18:e9:d5:61:78:1a:e2:c3:b8: cb:58:61:aa:f1:11:bd:91:cb:47:f4:e8:7b:a6:b7: 14:50:16:85:b3:1b:1e:84:be:c5:d9:d2:2f:69:fb: 6d:6d:6a:88:54:51:a9:b0:ec:fa:33:e5:93:5b:b9: 26:34:21:32:ed:5d:1a:94:6b:3c:16:45:a2:d5:42: 51:1d:35:be:53:07:26:8e:8a:1c:4a:8b:88:34:28: 93:3c:31:a2:92:b5:f6:ad:ea:1e:70:79:e6:b2:50: 39:4a:3f:1f:82:fb:15:c8:6c:28:54:6b:9f:25:e6: 4c:12:13:0a:93:3c:45:fb:9d:64:d9:f7:c5:4e:07: c7:03:d4:89:38:b2:8b:5f:3f:fa:c9:0b:b6:28:18: ce:4f:99:0a:32:5a:92:87:e3:f8:84:af:82:f4:17: 93:c8:40:14:26:1a:61:3d:f1:00:3c:ce:ec:4a:02: bd:57:16:04:33:63:87:ab:37:d0:55:14:f0:42:00: a2:62:42:7c:f2:da:ce:ab:e1:a2:2b:2f:ea:b9:c5: ce:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:CB:66:7A:CF:46:3B:7F:E2:B8:19:9F:64:1A:4A:BB:AD:EA:5F:A8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.182.240.0/20 Signature Algorithm: sha256WithRSAEncryption a0:ed:66:2e:2b:ce:7f:eb:4a:04:0b:77:32:03:92:5b:4c:19: 56:f3:1a:9d:48:a3:57:ae:e3:98:59:03:40:79:62:be:a0:55: 26:ee:d2:a1:dc:44:fd:80:b0:e4:3a:8b:4b:2a:b7:33:6d:24: 04:ed:dd:8c:e1:a4:32:6b:a0:39:5e:88:b8:6f:09:3d:df:ca: 74:44:9d:20:80:66:71:b2:ef:98:d0:1c:cb:7b:e7:57:c0:d2: 68:98:b4:80:73:98:85:3d:31:53:17:ab:58:7b:60:62:54:99: 79:03:8d:00:09:82:91:04:c5:f8:e8:9a:b1:ae:c9:14:0e:2b: e1:e9:e6:c1:dc:b2:ac:2d:7d:c9:70:15:a3:a2:8d:f0:dd:fc: cb:74:01:6b:11:f5:c6:19:81:d1:3b:c5:41:b1:ed:6f:b5:94: 4f:bc:90:de:8c:a2:16:36:6d:6b:1f:ba:bd:11:d8:08:bb:8b: a2:e7:ba:fa:6d:4b:63:74:af:f1:90:4a:38:73:08:6a:a4:2e: 62:36:64:30:9b:2b:98:bb:09:e8:42:f6:5c:b1:11:2a:d0:fb: 9d:b3:3c:fe:7b:de:f5:58:69:24:5e:f1:d9:b0:05:4c:51:88: 58:ae:b9:f4:12:c4:cc:48:bc:0c:1e:99:e1:ea:e2:98:38:e4: 96:c3:7c:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPOS54JJNk6Q4o5eamjSiPerg+rUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE4MDAwMDAwWhcNMjQwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTdlMjMzMWU3YjkxN2U1Yjg5MWUyNGU4ZTFmMDM4OTY2 YjE2N2ZiZTc5MTI4YTZkNmFlNjhmMDllZGY3NDg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDT2tI3Vw5IptiZ2cgE9C0/kxeCSQmtQQLR9yrbEIMTtD4G Vfwuium8FaWib2KAGQ2dNxjp1WF4GuLDuMtYYarxEb2Ry0f06HumtxRQFoWzGx6E vsXZ0i9p+21taohUUamw7Poz5ZNbuSY0ITLtXRqUazwWRaLVQlEdNb5TByaOihxK i4g0KJM8MaKStfat6h5weeayUDlKPx+C+xXIbChUa58l5kwSEwqTPEX7nWTZ98VO B8cD1Ik4sotfP/rJC7YoGM5PmQoyWpKH4/iEr4L0F5PIQBQmGmE98QA8zuxKAr1X FgQzY4erN9BVFPBCAKJiQnzy2s6r4aIrL+q5xc55AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGMtmes9GO3/iuBmfZBpKu63qX6gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwN2ZlODFlLWJiMjctNGZhMi1iMWQ5LWEwN2Y4YWE3MTVkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATHtvAwDQYJKoZIhvcNAQELBQADggEBAKDtZi4rzn/rSgQLdzIDkltMGVbz Gp1Io1eu45hZA0B5Yr6gVSbu0qHcRP2AsOQ6i0sqtzNtJATt3YzhpDJroDleiLhv CT3fynREnSCAZnGy75jQHMt751fA0miYtIBzmIU9MVMXq1h7YGJUmXkDjQAJgpEE xfjomrGuyRQOK+Hp5sHcsqwtfclwFaOijfDd/Mt0AWsR9cYZgdE7xUGx7W+1lE+8 kN6MohY2bWsfur0R2Ai7i6LnuvptS2N0r/GQSjhzCGqkLmI2ZDCbK5i7CehC9lyx ESrQ+52zPP573vVYaSRe8dmwBUxRiFiuufQSxMxIvAwemeHq4pg45JbDfLw= -----END CERTIFICATE-----Generated at Thu May 2 11:33:13 2024 by rpki-client on console-fra.rpki-client.org