$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fed9eca-2333-457c-922c-71cebf42dc4d.roa File: 4fed9eca-2333-457c-922c-71cebf42dc4d.roa (raw, json) Hash identifier: CfVqrLlP8C8lOkwVhwzH6ryudN+LfYEXXDkron517ak= Subject key identifier: 36:23:3B:86:D4:5A:45:3C:3E:43:74:0F:26:27:80:F8:9B:D9:D8:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68078449F72C2E1B1683EF324E5BC3A60FF6C104 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fed9eca-2333-457c-922c-71cebf42dc4d.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 71.141.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:07:84:49:f7:2c:2e:1b:16:83:ef:32:4e:5b:c3:a6:0f:f6:c1:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=28d99b815464db30a95cc898b6ca4d0137f0091fe049800066e5e855e77c4d93, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:3b:2e:9a:3a:31:5e:40:e8:c0:c8:71:56:9c: 43:e3:12:4e:7c:28:b6:01:57:5f:f2:e8:f4:28:25: bc:2e:c2:2d:34:c1:5c:72:35:0b:4c:4d:36:63:2e: 36:0e:3c:23:fd:8a:91:79:ee:a8:28:98:e4:f8:e7: 89:ce:6b:71:95:f1:b1:ed:33:37:77:81:87:1f:29: 11:48:3a:a1:9f:f4:8a:20:f8:28:01:5e:b7:f7:db: 70:e3:d6:38:29:28:bf:6f:34:02:73:21:1e:db:fb: 94:54:f2:80:4e:6a:8d:1b:20:f0:dc:4a:be:6d:64: f4:9b:0a:c2:e6:09:6f:93:a9:43:fc:19:75:6c:3c: a7:82:61:d0:6e:a5:bb:8a:03:59:22:45:c0:b1:cc: d3:69:20:c4:00:d9:ce:b1:27:1d:ad:12:6d:c8:c7: 9e:c9:69:60:d8:57:36:ad:61:5c:8a:5b:b8:13:af: 02:60:f4:e6:9c:42:6b:d6:55:28:72:ac:c3:f9:3b: 46:ad:77:16:9d:60:4e:08:63:a6:ed:b0:59:9b:1e: 32:ae:cd:5b:1e:9c:ad:3c:8b:20:e7:69:97:1c:37: 2f:2f:8b:54:80:b1:5a:75:2b:11:d9:43:ef:d2:ba: 41:04:7b:bf:88:d4:dc:45:04:1b:f3:2e:f4:5e:69: 77:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:23:3B:86:D4:5A:45:3C:3E:43:74:0F:26:27:80:F8:9B:D9:D8:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fed9eca-2333-457c-922c-71cebf42dc4d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.141.0.0/18 Signature Algorithm: sha256WithRSAEncryption c2:d1:35:2e:2c:9b:f2:e8:0e:fd:c2:c5:f9:38:27:59:d4:2b: 9d:56:44:72:bc:fe:91:e8:7b:c6:ac:24:3f:6d:58:84:14:36: db:c1:74:40:0b:66:fd:d5:5b:a6:76:19:12:b7:88:b0:10:46: fe:b2:fd:5c:1d:82:a8:ae:62:a5:da:40:fb:61:b4:0f:61:14: ec:d3:09:1e:89:21:ac:ad:98:fb:c8:4e:05:5f:24:42:e7:54: df:a3:01:bb:ab:d9:b6:90:b5:89:77:26:e8:30:b1:ad:9a:0e: 68:71:5c:71:73:b6:7f:a1:16:bb:50:76:48:7d:77:cb:f1:c6: 72:be:7e:26:3f:d2:d3:de:ae:b4:f9:48:71:a4:10:3c:a3:07: f6:5d:02:cf:8a:29:d9:96:fd:9a:e5:5a:36:dc:92:18:e4:10: a3:6f:ef:b8:c9:60:7f:9a:9f:97:3c:eb:fb:ff:74:d4:5d:7d: ea:18:15:95:50:a9:54:28:59:e8:1f:90:63:7f:3b:e3:9b:62: fd:0c:d8:99:40:fd:db:d2:21:5c:81:2d:eb:1b:05:25:da:bd: 83:7a:d0:95:d2:7d:97:9d:e7:61:11:9a:36:72:b8:ba:66:78: ec:d9:65:c1:3e:db:16:0f:f1:3c:7d:bb:52:94:67:a4:cc:0e: ed:f8:03:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaAeESfcsLhsWg+8yTlvDpg/2wQQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGQ5OWI4MTU0NjRkYjMwYTk1Y2M4OThiNmNhNGQwMTM3 ZjAwOTFmZTA0OTgwMDA2NmU1ZTg1NWU3N2M0ZDkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKOy6aOjFeQOjAyHFWnEPjEk58KLYBV1/y6PQoJbwuwi00 wVxyNQtMTTZjLjYOPCP9ipF57qgomOT454nOa3GV8bHtMzd3gYcfKRFIOqGf9Iog +CgBXrf323Dj1jgpKL9vNAJzIR7b+5RU8oBOao0bIPDcSr5tZPSbCsLmCW+TqUP8 GXVsPKeCYdBupbuKA1kiRcCxzNNpIMQA2c6xJx2tEm3Ix57JaWDYVzatYVyKW7gT rwJg9OacQmvWVShyrMP5O0atdxadYE4IY6btsFmbHjKuzVsenK08iyDnaZccNy8v i1SAsVp1KxHZQ+/SukEEe7+I1NxFBBvzLvReaXfxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNiM7htRaRTw+Q3QPJieA+JvZ2CMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmZWQ5ZWNhLTIzMzMtNDU3Yy05MjJjLTcxY2ViZjQyZGM0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZHjQAwDQYJKoZIhvcNAQELBQADggEBAMLRNS4sm/LoDv3Cxfk4J1nUK51W RHK8/pHoe8asJD9tWIQUNtvBdEALZv3VW6Z2GRK3iLAQRv6y/VwdgqiuYqXaQPth tA9hFOzTCR6JIaytmPvITgVfJELnVN+jAbur2baQtYl3Jugwsa2aDmhxXHFztn+h FrtQdkh9d8vxxnK+fiY/0tPerrT5SHGkEDyjB/ZdAs+KKdmW/ZrlWjbckhjkEKNv 77jJYH+an5c86/v/dNRdfeoYFZVQqVQoWegfkGN/O+ObYv0M2JlA/dvSIVyBLesb BSXavYN60JXSfZed52ERmjZyuLpmeOzZZcE+2xYP8Tx9u1KUZ6TMDu34A3o= -----END CERTIFICATE-----Generated at Thu May 9 01:26:13 2024 by rpki-client on console-ams.rpki-client.org