$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52f431ef-0c8d-49fc-946b-b50273136e7b.roa File: 52f431ef-0c8d-49fc-946b-b50273136e7b.roa (raw, json) Hash identifier: Mh73sAr9M7b/7BBUoJucWSI3JMfvXYs1c2BY713i54I= Subject key identifier: 73:02:E3:75:40:C4:E1:1C:DC:EA:EA:59:99:EA:3F:D7:70:C0:9F:0F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D96EC5A4315A11CD11AB1552D5022AE6CABF6AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52f431ef-0c8d-49fc-946b-b50273136e7b.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 56.96.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:96:ec:5a:43:15:a1:1c:d1:1a:b1:55:2d:50:22:ae:6c:ab:f6:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=a5578b109ca7fd512cc37a36b37197ed885799df0d95fd415156ed8b0fcb993a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7e:85:ec:9d:c7:e3:31:3e:ab:dc:13:2e:09: a4:c2:ee:73:50:b1:a2:dc:07:73:aa:2a:c1:0f:25: 2a:07:bd:c1:af:82:a5:c9:fb:01:b1:e0:20:13:c5: 37:64:82:78:cf:57:d9:cc:8a:2f:54:14:c7:f7:27: 27:b1:66:c6:17:bd:f3:29:de:a1:37:7e:e7:4a:3e: 60:ba:86:82:8a:8c:07:f0:89:9e:cb:d5:4f:01:6b: d6:c5:03:e1:ef:43:6f:df:ed:2f:b0:58:e6:36:49: cc:a0:c3:5a:bb:d0:83:33:bf:8a:78:4f:44:7e:37: 77:92:90:e0:22:7b:88:f7:e7:0f:1e:b7:05:ba:bc: 67:13:57:45:15:6b:5b:df:49:c3:be:cd:bc:07:5e: 9a:c7:8c:08:53:e2:b1:aa:64:01:8f:67:a0:ec:6c: 66:c3:da:d1:8c:a2:79:7f:23:a9:07:e2:d0:2d:fb: b6:8c:89:e7:7b:72:e3:fe:ed:8f:9c:c9:4a:99:63: 47:3e:ce:85:0d:f6:e2:33:7c:fb:4d:f0:d7:7c:bb: 36:95:f6:b5:30:df:e0:1e:63:d5:b0:18:03:8a:56: 00:a1:79:eb:ba:06:2e:ed:03:75:71:49:5e:89:68: e4:f4:5c:76:8b:8b:90:cd:82:2c:7c:8a:9f:88:38: 91:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:02:E3:75:40:C4:E1:1C:DC:EA:EA:59:99:EA:3F:D7:70:C0:9F:0F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52f431ef-0c8d-49fc-946b-b50273136e7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0a:f7:a9:96:0b:5d:52:ff:49:d6:9d:dc:54:8c:0c:42:35:2e: d0:2c:db:bb:a9:d7:ad:98:82:55:d9:a3:cb:17:d5:47:35:d3: c0:c6:24:59:9e:56:3f:e3:e9:82:51:f9:b2:7f:4b:12:82:8b: 33:4a:51:a9:a1:74:3d:8e:d5:a7:84:0b:58:98:bd:83:08:74: 61:40:07:77:1e:74:35:81:e9:dd:8a:86:2a:9f:73:6e:a5:76: b0:45:2f:22:b1:d8:39:f0:9a:04:db:53:11:d5:f9:9a:88:1f: 9d:31:7e:31:19:3c:53:dd:89:75:50:4d:05:33:f9:9c:d9:50: 29:41:19:55:fd:07:17:6d:b7:d4:e5:3a:18:50:9b:fa:c2:a7: 9d:a5:f4:44:49:f8:a5:24:c4:a3:57:79:34:10:7d:95:38:42: e0:70:fa:fe:c2:34:08:4f:ec:f9:63:5d:0d:51:2e:82:d0:0b: 5b:01:78:a5:08:ab:7e:1f:34:f5:2a:b8:2a:fd:28:ab:ab:5c: 2f:14:7f:5c:6c:f7:24:b5:f2:e9:30:76:3f:f2:3a:e4:ef:7a: 1c:8a:65:6f:a5:ad:50:ad:c8:0d:41:d6:50:45:d8:ef:79:f6: 3a:51:eb:8b:fd:6f:1c:62:4d:3c:a0:96:d8:8c:4b:7d:1d:1a: 47:70:f1:e3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXZbsWkMVoRzRGrFVLVAirmyr9qowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTU3OGIxMDljYTdmZDUxMmNjMzdhMzZiMzcxOTdlZDg4 NTc5OWRmMGQ5NWZkNDE1MTU2ZWQ4YjBmY2I5OTNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIfoXsncfjMT6r3BMuCaTC7nNQsaLcB3OqKsEPJSoHvcGv gqXJ+wGx4CATxTdkgnjPV9nMii9UFMf3JyexZsYXvfMp3qE3fudKPmC6hoKKjAfw iZ7L1U8Ba9bFA+HvQ2/f7S+wWOY2Scygw1q70IMzv4p4T0R+N3eSkOAie4j35w8e twW6vGcTV0UVa1vfScO+zbwHXprHjAhT4rGqZAGPZ6DsbGbD2tGMonl/I6kH4tAt +7aMied7cuP+7Y+cyUqZY0c+zoUN9uIzfPtN8Nd8uzaV9rUw3+AeY9WwGAOKVgCh eeu6Bi7tA3VxSV6JaOT0XHaLi5DNgix8ip+IOJHTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcwLjdUDE4Rzc6upZmeo/13DAnw8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyZjQzMWVmLTBjOGQtNDlmYy05NDZiLWI1MDI3MzEzNmU3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4YDANBgkqhkiG9w0BAQsFAAOCAQEACveplgtdUv9J1p3cVIwMQjUu0Czb u6nXrZiCVdmjyxfVRzXTwMYkWZ5WP+PpglH5sn9LEoKLM0pRqaF0PY7Vp4QLWJi9 gwh0YUAHdx50NYHp3YqGKp9zbqV2sEUvIrHYOfCaBNtTEdX5mogfnTF+MRk8U92J dVBNBTP5nNlQKUEZVf0HF2231OU6GFCb+sKnnaX0REn4pSTEo1d5NBB9lThC4HD6 /sI0CE/s+WNdDVEugtALWwF4pQirfh809Sq4Kv0oq6tcLxR/XGz3JLXy6TB2P/I6 5O96HIplb6WtUK3IDUHWUEXY73n2OlHri/1vHGJNPKCW2IxLfR0aR3Dx4w== -----END CERTIFICATE-----Generated at Thu May 2 08:02:31 2024 by rpki-client on console-ams.rpki-client.org