$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58a3dcd9-db11-4ca2-8105-437306c32292.roa File: 58a3dcd9-db11-4ca2-8105-437306c32292.roa (raw, json) Hash identifier: mB/GP+S1/g/lAaVxxN5BZy6h3v2sN+p/F6qfPUBwfhY= Subject key identifier: E8:97:3F:0E:4B:FE:2A:76:5F:29:E6:16:EC:42:5F:93:71:BF:B6:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 219D4091BBE316F237B8077D70B23E9C5E7988AF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58a3dcd9-db11-4ca2-8105-437306c32292.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 208.110.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Apr 2024 12:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:9d:40:91:bb:e3:16:f2:37:b8:07:7d:70:b2:3e:9c:5e:79:88:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=b75c78befc1eb890b70832e24605301c5489f83524f8461cb8f290ea87e0ef47, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:bb:ec:44:fc:b0:df:90:d7:fd:48:dd:bd:7b: 91:a9:cb:82:2b:a5:f2:c4:01:89:cc:f7:92:c7:15: 44:34:44:9d:d4:f8:47:df:a4:f2:37:68:f0:47:45: 5e:ce:75:0d:62:90:fa:b6:3f:24:e1:35:e8:bc:54: 0b:4c:c3:65:35:84:9b:c7:74:6c:65:be:27:1a:86: 93:eb:78:76:0d:9d:7d:a4:79:08:14:c3:8e:98:97: b9:3e:99:03:b6:b0:9d:1f:c5:a0:33:15:1b:1d:5a: 83:d8:9f:c2:bd:14:c9:34:ce:ba:75:f7:4e:cb:a7: 2e:28:69:fc:f8:c8:3e:4c:44:46:3c:b0:43:69:dd: 65:98:99:5f:83:cd:19:9a:3e:78:98:34:59:f2:1f: d4:bb:fc:20:71:ac:46:97:90:5f:46:17:28:e0:e0: 0e:50:78:73:ed:96:ed:ad:db:33:60:3f:6f:45:34: 18:14:a2:96:97:80:11:49:47:67:41:48:93:60:1c: 9c:39:b7:1f:c3:40:63:98:e4:4a:d1:dc:b9:5a:f7: 5b:54:87:2f:ed:ce:c6:47:55:2c:34:4f:6f:e4:04: 4c:61:43:01:e7:d8:f6:70:77:e0:29:1e:b2:6d:bb: 7b:59:00:33:81:bd:3d:99:fa:c5:89:e4:89:9a:ad: 16:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:97:3F:0E:4B:FE:2A:76:5F:29:E6:16:EC:42:5F:93:71:BF:B6:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58a3dcd9-db11-4ca2-8105-437306c32292.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.110.48.0/20 Signature Algorithm: sha256WithRSAEncryption 29:96:bf:ef:52:51:89:a0:24:94:46:c7:da:2a:38:1c:b4:07: 43:b0:01:12:4a:19:3a:9e:34:12:9b:2c:09:d9:6c:5a:65:3e: 96:9b:23:29:76:5f:50:e7:b4:c4:21:f7:1b:a6:c4:a4:d9:42: 5e:b6:0b:27:02:f0:38:24:35:6a:65:39:e8:19:b7:a3:49:0f: e7:d9:64:7f:7a:d0:4a:38:8f:74:09:ae:a7:00:69:fd:26:5a: c0:95:c0:40:59:3a:47:10:54:3e:78:c1:9f:bc:ef:c2:e2:20: ee:c8:4d:7f:93:23:83:ce:c6:f7:49:80:fb:6c:b7:46:05:fd: 64:95:35:15:a2:47:22:cc:44:2e:e4:33:b2:e4:e9:1d:72:cb: 27:63:40:3c:e9:4e:35:16:d8:82:81:f6:35:2c:1d:60:a9:01: 0b:ae:db:bb:8c:e6:61:a0:f4:88:c1:29:4c:3b:f1:74:1b:ae: f1:30:da:53:9b:55:a4:21:9b:6f:c1:59:59:ba:60:4f:77:e6: 3c:03:11:29:47:45:f7:23:a7:1d:1a:cd:8e:17:7f:82:76:9f: a0:4a:a1:98:d9:e0:b4:db:a6:11:3c:51:6a:52:2f:3e:89:2b: 2a:c9:0c:bb:34:90:15:c9:67:2c:d2:dd:ff:8a:9f:b2:a6:0d: ba:aa:92:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIZ1AkbvjFvI3uAd9cLI+nF55iK8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzVjNzhiZWZjMWViODkwYjcwODMyZTI0NjA1MzAxYzU0 ODlmODM1MjRmODQ2MWNiOGYyOTBlYTg3ZTBlZjQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDzu+xE/LDfkNf9SN29e5Gpy4IrpfLEAYnM95LHFUQ0RJ3U +EffpPI3aPBHRV7OdQ1ikPq2PyThNei8VAtMw2U1hJvHdGxlvicahpPreHYNnX2k eQgUw46Yl7k+mQO2sJ0fxaAzFRsdWoPYn8K9FMk0zrp1907Lpy4oafz4yD5MREY8 sENp3WWYmV+DzRmaPniYNFnyH9S7/CBxrEaXkF9GFyjg4A5QeHPtlu2t2zNgP29F NBgUopaXgBFJR2dBSJNgHJw5tx/DQGOY5ErR3Lla91tUhy/tzsZHVSw0T2/kBExh QwHn2PZwd+ApHrJtu3tZADOBvT2Z+sWJ5ImarRYdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6Jc/Dkv+KnZfKeYW7EJfk3G/tmUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4YTNkY2Q5LWRiMTEtNGNhMi04MTA1LTQzNzMwNmMzMjI5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATQbjAwDQYJKoZIhvcNAQELBQADggEBACmWv+9SUYmgJJRGx9oqOBy0B0Ow ARJKGTqeNBKbLAnZbFplPpabIyl2X1DntMQh9xumxKTZQl62CycC8DgkNWplOegZ t6NJD+fZZH960Eo4j3QJrqcAaf0mWsCVwEBZOkcQVD54wZ+878LiIO7ITX+TI4PO xvdJgPtst0YF/WSVNRWiRyLMRC7kM7Lk6R1yyydjQDzpTjUW2IKB9jUsHWCpAQuu 27uM5mGg9IjBKUw78XQbrvEw2lObVaQhm2/BWVm6YE935jwDESlHRfcjpx0azY4X f4J2n6BKoZjZ4LTbphE8UWpSLz6JKyrJDLs0kBXJZyzS3f+Kn7KmDbqqktI= -----END CERTIFICATE-----Generated at Tue Apr 16 01:20:28 2024 by rpki-client on console-ams.rpki-client.org