$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa File: 4259474a-bf94-4fce-960e-600c8e86c25b.roa (raw, json) Hash identifier: kc4yuL2WbizYAb41W4Rf5lBnCfFNKBFcVuPLdP4CQWQ= Subject key identifier: 83:88:28:13:F5:9C:C4:95:60:11:AC:46:31:FD:5F:47:CD:69:A3:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16B4D400F54622A55FD4B171B43E73071DB28628 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa Signing time: Fri 26 Apr 2024 00:00:00 +0000 ROA not before: Fri 26 Apr 2024 00:00:00 +0000 ROA not after: Fri 31 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 150.102.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:b4:d4:00:f5:46:22:a5:5f:d4:b1:71:b4:3e:73:07:1d:b2:86:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 26 00:00:00 2024 GMT Not After : May 31 23:59:59 2024 GMT Subject: serialNumber=7e89bc10e991beff5281d668ba5929947555bd2b6c5ddd645aefcc5c953e0b0d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:93:76:9d:69:29:04:1e:97:53:88:75:47:4e: d8:41:12:b1:48:6d:44:57:ab:3e:1c:da:aa:a7:22: fc:e2:6a:52:82:bd:52:31:db:78:fb:33:38:e0:41: ca:fd:3d:91:39:08:01:e7:bb:d9:d2:dc:e4:e9:11: 08:97:9d:4e:5f:3d:27:b4:38:c1:3e:c4:d5:29:26: aa:eb:6a:f6:b2:b1:f9:10:3d:40:50:88:b0:22:f0: 46:48:d3:1c:3e:b6:38:f2:76:e9:fb:d6:cd:cd:21: 1e:05:e9:64:fd:0b:a1:7e:25:7e:f5:75:08:a0:6e: 7f:29:40:9f:60:a0:06:38:72:d8:ec:d0:a1:a9:0e: d8:a9:9a:1f:f4:a3:32:d7:cf:a7:2c:12:7c:06:c9: 95:7a:04:82:1e:77:3a:5c:70:0b:dd:0f:53:85:b6: 8f:34:50:e3:e7:69:14:b3:b0:8e:8d:dc:d5:2b:14: 14:24:1e:d5:4e:ce:44:b2:54:ea:bd:c1:f5:84:58: ec:ce:27:71:bb:cd:50:4c:15:cc:36:85:23:f0:64: c0:6b:6b:00:19:29:66:28:f8:0d:f8:7f:0c:52:ba: 62:4f:5f:ae:76:6f:c5:e7:26:f4:7e:04:57:74:5e: 4a:b4:a0:ff:ea:0f:01:8e:55:ef:73:16:c8:ce:d3: 6a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:88:28:13:F5:9C:C4:95:60:11:AC:46:31:FD:5F:47:CD:69:A3:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.102.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:c9:8c:bc:a8:55:44:da:37:48:43:97:13:7a:01:b4:2a:68: 05:98:ee:fa:e4:be:67:07:48:2a:8a:df:b4:d8:26:27:f5:0a: 5e:0b:37:56:af:c5:2e:66:05:cb:83:65:43:05:2f:ba:a7:99: 3a:ac:99:1c:c4:75:db:88:93:64:8a:ba:f6:20:d4:4b:9d:1f: 73:a1:76:7f:16:c2:4f:11:11:f4:cd:7e:9f:2f:35:90:7d:e8: bf:a9:42:75:17:95:20:7f:c5:26:91:92:73:77:38:56:3e:56: b8:18:67:9d:f8:ba:76:c9:31:66:fb:8a:78:7d:6b:9a:26:45: 19:52:da:71:48:3a:60:13:87:72:f9:4e:b2:6a:47:27:b0:5a: ef:95:92:da:44:2e:0b:da:12:44:6a:3f:66:41:05:85:79:3a: 65:08:8d:b7:c8:e4:8b:4d:21:ed:9d:a6:a6:67:4f:67:70:41: 9a:86:99:6c:71:4d:1a:cf:9d:6c:27:b3:37:6a:93:cf:f4:f0: 18:55:1f:b7:ef:9c:81:d7:88:9e:78:98:9e:9e:7c:ff:1b:e5: a9:19:25:33:9c:e0:d3:07:1d:47:ed:8c:89:a9:4e:03:dd:6d: d5:a5:2a:10:40:5d:61:78:67:d6:c7:71:8d:05:1c:d3:db:0b: 16:3c:da:25 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFrTUAPVGIqVf1LFxtD5zBx2yhigwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI2MDAwMDAwWhcNMjQwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTg5YmMxMGU5OTFiZWZmNTI4MWQ2NjhiYTU5Mjk5NDc1 NTViZDJiNmM1ZGRkNjQ1YWVmY2M1Yzk1M2UwYjBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3k3adaSkEHpdTiHVHTthBErFIbURXqz4c2qqnIvzialKC vVIx23j7MzjgQcr9PZE5CAHnu9nS3OTpEQiXnU5fPSe0OME+xNUpJqrravaysfkQ PUBQiLAi8EZI0xw+tjjydun71s3NIR4F6WT9C6F+JX71dQigbn8pQJ9goAY4ctjs 0KGpDtipmh/0ozLXz6csEnwGyZV6BIIedzpccAvdD1OFto80UOPnaRSzsI6N3NUr FBQkHtVOzkSyVOq9wfWEWOzOJ3G7zVBMFcw2hSPwZMBrawAZKWYo+A34fwxSumJP X652b8XnJvR+BFd0Xkq0oP/qDwGOVe9zFsjO02pVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUg4goE/WcxJVgEaxGMf1fR81po2MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyNTk0NzRhLWJmOTQtNGZjZS05NjBlLTYwMGM4ZTg2YzI1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCWZjANBgkqhkiG9w0BAQsFAAOCAQEAjcmMvKhVRNo3SEOXE3oBtCpoBZju +uS+ZwdIKorftNgmJ/UKXgs3Vq/FLmYFy4NlQwUvuqeZOqyZHMR124iTZIq69iDU S50fc6F2fxbCTxER9M1+ny81kH3ov6lCdReVIH/FJpGSc3c4Vj5WuBhnnfi6dskx ZvuKeH1rmiZFGVLacUg6YBOHcvlOsmpHJ7Ba75WS2kQuC9oSRGo/ZkEFhXk6ZQiN t8jki00h7Z2mpmdPZ3BBmoaZbHFNGs+dbCezN2qTz/TwGFUft++cgdeInniYnp58 /xvlqRklM5zg0wcdR+2MialOA91t1aUqEEBdYXhn1sdxjQUc09sLFjzaJQ== -----END CERTIFICATE-----Generated at Thu May 2 22:12:05 2024 by rpki-client on console-fra.rpki-client.org