$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4295544d-a4b9-403c-b238-8ee88a67faf8.roa File: 4295544d-a4b9-403c-b238-8ee88a67faf8.roa (raw, json) Hash identifier: CEatEejPxxMsPMTh4V+ZKzl4OMBIo9ERp8yEXs9OkrQ= Subject key identifier: 1E:C6:31:BE:C0:1B:29:36:97:4C:0B:95:B1:5E:05:95:48:AC:6B:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59DE0E3B01203BC7E4AC05CB6B84AA211502C72A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4295544d-a4b9-403c-b238-8ee88a67faf8.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 54.20.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:de:0e:3b:01:20:3b:c7:e4:ac:05:cb:6b:84:aa:21:15:02:c7:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=b39c1f06b12026fa55fd7202e2024e655587a4a0b7ab161816fa2e79fa7437a0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:00:77:75:57:44:ce:1f:0c:4f:1f:d3:c0:c5: 9e:8c:fc:16:32:60:d5:4f:4c:a9:10:bf:13:27:32: 14:04:8b:0e:13:95:37:b8:91:dd:0d:10:1f:24:e9: ce:e6:01:1f:cf:69:91:18:24:dd:6a:84:60:2b:a8: 6d:77:e0:af:74:7b:a7:cb:a2:c4:05:4b:89:e6:f0: 98:a0:ef:3a:a4:7f:3e:d7:50:cb:1f:a0:b0:34:c4: 97:e7:f7:57:e6:d5:45:17:c5:87:7a:56:e4:c3:2d: 63:03:7d:37:b5:98:48:58:8e:37:5a:1a:01:ad:a4: a5:9a:92:88:d7:d5:cb:ae:43:94:94:4c:ff:8c:60: 14:e6:26:f2:df:ae:cd:94:e7:8b:d2:ac:a3:c3:99: 5a:22:71:e1:91:6b:85:72:a7:86:c2:e3:d5:44:d9: 83:9e:c6:9a:4e:d7:42:c6:49:ff:5e:8b:c9:03:83: 0b:79:19:02:a0:ed:10:2a:7a:d5:18:de:54:1b:1f: 36:86:46:a0:af:fa:75:90:88:53:ab:92:b7:32:3c: a5:fb:bd:14:53:af:1e:03:99:56:21:c2:79:e6:85: 69:ec:72:41:e6:3e:9e:b7:f7:b0:89:c9:9e:66:31: af:06:a2:fa:55:21:15:1c:e8:be:3c:c3:b5:b3:b1: 48:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C6:31:BE:C0:1B:29:36:97:4C:0B:95:B1:5E:05:95:48:AC:6B:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4295544d-a4b9-403c-b238-8ee88a67faf8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption c5:bc:d2:dc:18:90:cf:10:eb:bd:2f:41:5d:78:dc:ba:f6:6f: 1e:b1:0c:98:8e:f2:18:58:4a:01:90:ee:6a:69:59:cb:a3:61: fb:a6:f4:dd:69:d0:75:f3:9e:35:ed:80:be:34:16:1e:2c:6e: 6e:50:fa:17:9d:e6:a5:9a:07:19:38:68:42:36:45:1a:65:c8: 39:84:11:55:cf:ba:eb:ee:c2:bf:c0:d5:85:f9:93:ee:9e:6f: 07:28:b5:70:d7:68:69:22:9a:c8:3e:48:a6:7c:7c:27:1a:84: ab:7f:fb:39:23:a2:97:35:f3:7b:98:a6:b1:94:a9:66:aa:bd: 37:37:d2:9b:10:92:26:d1:3b:03:1f:8f:3c:80:b7:cb:20:91: aa:46:df:23:41:8c:fc:80:07:50:4d:e3:ee:25:2a:3e:5f:54: 79:ba:17:6c:3a:3e:ef:9a:9a:54:ae:f8:ce:97:03:f5:dd:80: 67:6c:66:4e:f4:7f:22:48:bb:0d:6e:03:22:76:ab:cf:85:0e: 07:9c:f6:ff:6c:56:a3:2e:c6:81:6a:8a:44:4c:f9:66:42:ca: b4:f0:0a:ab:56:46:a6:47:5a:1d:6b:2d:9c:2c:7d:54:65:75: 13:75:97:22:1a:ad:7c:d5:40:fb:27:0c:df:05:0f:c1:ea:b4: d5:b9:0d:09 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWd4OOwEgO8fkrAXLa4SqIRUCxyowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzljMWYwNmIxMjAyNmZhNTVmZDcyMDJlMjAyNGU2NTU1 ODdhNGEwYjdhYjE2MTgxNmZhMmU3OWZhNzQzN2EwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKAHd1V0TOHwxPH9PAxZ6M/BYyYNVPTKkQvxMnMhQEiw4T lTe4kd0NEB8k6c7mAR/PaZEYJN1qhGArqG134K90e6fLosQFS4nm8Jig7zqkfz7X UMsfoLA0xJfn91fm1UUXxYd6VuTDLWMDfTe1mEhYjjdaGgGtpKWakojX1cuuQ5SU TP+MYBTmJvLfrs2U54vSrKPDmVoiceGRa4Vyp4bC49VE2YOexppO10LGSf9ei8kD gwt5GQKg7RAqetUY3lQbHzaGRqCv+nWQiFOrkrcyPKX7vRRTrx4DmVYhwnnmhWns ckHmPp6397CJyZ5mMa8GovpVIRUc6L48w7WzsUgZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHsYxvsAbKTaXTAuVsV4FlUisa5wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyOTU1NDRkLWE0YjktNDAzYy1iMjM4LThlZTg4YTY3ZmFmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2FDANBgkqhkiG9w0BAQsFAAOCAQEAxbzS3BiQzxDrvS9BXXjcuvZvHrEM mI7yGFhKAZDuamlZy6Nh+6b03WnQdfOeNe2AvjQWHixublD6F53mpZoHGThoQjZF GmXIOYQRVc+66+7Cv8DVhfmT7p5vByi1cNdoaSKayD5Ipnx8JxqEq3/7OSOilzXz e5imsZSpZqq9NzfSmxCSJtE7Ax+PPIC3yyCRqkbfI0GM/IAHUE3j7iUqPl9UeboX bDo+75qaVK74zpcD9d2AZ2xmTvR/Iki7DW4DInarz4UOB5z2/2xWoy7GgWqKREz5 ZkLKtPAKq1ZGpkdaHWstnCx9VGV1E3WXIhqtfNVA+ycM3wUPweq01bkNCQ== -----END CERTIFICATE-----Generated at Thu May 2 04:02:31 2024 by rpki-client on console-fra.rpki-client.org