$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/613367f1-288d-490e-a6ec-6c12c5bf1805.roa File: 613367f1-288d-490e-a6ec-6c12c5bf1805.roa (raw, json) Hash identifier: fdUG7+3Q+sRN2gDxZfwkzcc1nnnkbEzCCmBz6lN6XnU= Subject key identifier: C2:A8:80:CE:73:FE:F2:07:91:05:34:5F:6A:5A:88:08:7B:36:61:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6227772C6CB88158057187C02EB720E34A5A49F9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/613367f1-288d-490e-a6ec-6c12c5bf1805.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 192.189.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:27:77:2c:6c:b8:81:58:05:71:87:c0:2e:b7:20:e3:4a:5a:49:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=1811bcd5040d6531590e3663867d8780eb78b7a155cb127dbd762d353fa17463, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:03:62:b2:65:e0:2d:7b:08:25:8e:a5:35:fc: 59:46:4f:46:0d:7f:cd:b2:22:e5:65:6a:a3:8b:7b: 2d:bc:86:4f:b2:4c:97:3b:c1:ab:de:d6:df:d7:01: 8c:51:1b:d8:cd:a8:f5:b0:b3:a8:42:cb:cc:dd:98: 2d:18:d5:52:a3:42:a4:07:0c:ed:85:ef:38:5f:f1: c0:bf:32:76:56:e9:38:84:56:b6:83:48:c4:cb:8c: 90:1b:d2:2c:b4:e4:15:08:57:be:4b:3f:1d:c3:6b: 6d:64:d6:4c:01:20:5d:42:f8:43:2f:9d:84:34:1d: 49:0b:74:2a:ba:5e:22:7b:6b:5c:0e:6b:cd:22:fc: 65:5c:d5:c1:67:2f:6c:dc:05:8c:da:df:75:1c:b4: 19:ca:df:f3:07:40:73:8f:8d:43:4f:6d:4e:50:32: 51:5e:8d:fd:e6:94:18:e4:0b:b3:76:8a:0c:49:86: 4f:b0:44:29:9c:f8:e7:ab:c6:a2:26:c2:a8:b9:db: 85:f2:f1:94:7a:da:75:06:ca:90:48:5a:87:68:5f: f7:dc:bd:8f:88:43:28:26:3d:f0:5a:e6:34:8c:c5: 20:e1:3d:c3:14:85:3a:b1:73:57:42:3d:3e:8e:da: 09:6c:12:56:d2:83:10:67:be:18:8f:72:d6:01:6a: 17:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A8:80:CE:73:FE:F2:07:91:05:34:5F:6A:5A:88:08:7B:36:61:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/613367f1-288d-490e-a6ec-6c12c5bf1805.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.189.196.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:da:a2:eb:05:4d:6d:df:22:fa:e6:ac:de:b7:f9:ee:c1:be: c5:0d:11:cd:ff:bf:5c:a1:21:d4:82:4e:89:a4:f3:48:99:3e: fa:cd:b2:18:3e:86:1d:5b:5f:de:2c:c2:56:70:ff:35:b4:e8: 93:9e:b7:fe:68:99:25:c3:19:14:5a:ee:c0:02:65:a4:88:57: 32:72:31:4a:2d:f4:6a:92:9f:85:95:b9:df:1d:cd:89:a2:9c: 25:cd:df:ca:a0:e8:6a:e1:c6:d1:9e:0c:8d:1e:9a:3d:41:10: 25:73:25:78:02:b0:5a:76:6f:ea:22:d7:3b:e5:a7:82:6a:ff: 01:03:34:2f:a9:d4:3b:96:24:c5:10:aa:0a:52:c5:ba:ca:80: cb:fc:b3:ed:e7:f9:a2:80:58:6b:13:c1:22:d9:14:d9:3c:28: 4f:8a:22:ab:31:58:f1:3d:70:27:31:1a:f6:b2:21:56:92:d3: ed:05:47:f6:e6:e8:da:66:ae:bc:d4:6c:a5:58:62:e3:80:38: 7d:73:e0:62:09:b9:7a:ad:d2:be:af:6c:fb:9c:4b:6d:ee:be: 03:52:f0:3e:76:e2:3d:ca:2e:2f:c2:70:f1:ff:c8:bc:99:a5: 8d:56:96:db:b0:73:b2:bb:ad:a9:4f:7e:16:8c:0a:ed:a8:e4: 6c:2a:20:02 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYid3LGy4gVgFcYfALrcg40paSfkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxODExYmNkNTA0MGQ2NTMxNTkwZTM2NjM4NjdkODc4MGVi NzhiN2ExNTVjYjEyN2RiZDc2MmQzNTNmYTE3NDYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwA2KyZeAtewgljqU1/FlGT0YNf82yIuVlaqOLey28hk+y TJc7wave1t/XAYxRG9jNqPWws6hCy8zdmC0Y1VKjQqQHDO2F7zhf8cC/MnZW6TiE VraDSMTLjJAb0iy05BUIV75LPx3Da21k1kwBIF1C+EMvnYQ0HUkLdCq6XiJ7a1wO a80i/GVc1cFnL2zcBYza33UctBnK3/MHQHOPjUNPbU5QMlFejf3mlBjkC7N2igxJ hk+wRCmc+OerxqImwqi524Xy8ZR62nUGypBIWodoX/fcvY+IQygmPfBa5jSMxSDh PcMUhTqxc1dCPT6O2glsElbSgxBnvhiPctYBahcxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwqiAznP+8geRBTRfalqICHs2YakwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxMzM2N2YxLTI4OGQtNDkwZS1hNmVjLTZjMTJjNWJmMTgwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAvcQwDQYJKoZIhvcNAQELBQADggEBAJ3aousFTW3fIvrmrN63+e7BvsUN Ec3/v1yhIdSCTomk80iZPvrNshg+hh1bX94swlZw/zW06JOet/5omSXDGRRa7sAC ZaSIVzJyMUot9GqSn4WVud8dzYminCXN38qg6GrhxtGeDI0emj1BECVzJXgCsFp2 b+oi1zvlp4Jq/wEDNC+p1DuWJMUQqgpSxbrKgMv8s+3n+aKAWGsTwSLZFNk8KE+K IqsxWPE9cCcxGvayIVaS0+0FR/bm6NpmrrzUbKVYYuOAOH1z4GIJuXqt0r6vbPuc S23uvgNS8D524j3KLi/CcPH/yLyZpY1Wltuwc7K7ralPfhaMCu2o5GwqIAI= -----END CERTIFICATE-----Generated at Thu May 9 01:25:31 2024 by rpki-client on console-fra.rpki-client.org