$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/614154af-68bd-4727-89f4-647be8dc65ad.roa File: 614154af-68bd-4727-89f4-647be8dc65ad.roa (raw, json) Hash identifier: Y9FFZhnYE98nKW9EpJKHQrnw+hnPs6fia5UXfdgAGac= Subject key identifier: 26:9E:24:DD:D4:D3:68:D4:CD:4F:78:3C:9D:B9:49:54:82:E0:A2:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14F9C721C677795880A0C9D4E0F6949B8AFFFD63 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/614154af-68bd-4727-89f4-647be8dc65ad.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 192.189.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f9:c7:21:c6:77:79:58:80:a0:c9:d4:e0:f6:94:9b:8a:ff:fd:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=b44ed677044f55d783b36bbb92e0dce6d2004fb2b36b6dcb8fb8d0c180eab9d9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e2:9c:94:41:4e:fc:49:db:d9:d8:c1:7d:78: 46:26:cf:a2:dc:6f:ae:c3:0b:ac:79:47:9c:bd:90: dc:41:be:3c:47:d3:7c:7e:3d:e3:ca:b6:d8:2a:78: 22:13:46:77:f8:1e:c9:2b:f1:fa:66:13:ab:5d:3e: 72:cd:21:67:0c:5f:5c:8d:cf:72:4f:48:a0:20:73: 89:43:a7:ff:24:75:ee:5c:ac:33:4f:e5:91:99:85: a8:3a:ec:a5:c8:95:e2:80:bf:1a:75:fa:e1:54:b7: 0b:5b:bd:33:4c:14:48:a3:6f:bc:25:dd:92:89:de: ff:ae:aa:8a:1c:15:dc:8c:7c:2d:e9:6b:4f:0f:72: e4:dd:d6:c0:93:99:48:25:3c:23:a9:58:85:62:4f: ad:00:73:e4:c8:6e:6a:f8:6f:70:e0:95:7a:76:6b: b6:ff:e1:f2:41:1a:ae:b7:d9:8d:4a:9f:a1:ed:ac: 2e:ea:90:6f:c2:63:e3:62:ed:80:af:2f:2f:4e:08: d4:8d:9e:08:5c:d4:74:0a:03:0b:dc:c4:69:67:84: e6:16:75:3b:48:cd:4f:b3:61:b9:34:38:9b:9d:68: 06:c3:96:62:0a:ec:15:34:02:17:81:7a:01:71:7e: 1a:d3:6c:76:1c:b6:09:40:4e:91:3c:e1:16:5a:da: 37:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:9E:24:DD:D4:D3:68:D4:CD:4F:78:3C:9D:B9:49:54:82:E0:A2:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/614154af-68bd-4727-89f4-647be8dc65ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.189.198.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:fa:06:65:f6:f8:96:ad:23:36:3f:e3:13:b4:cf:09:92:e8: 54:ec:a2:6f:e8:33:4f:1f:23:1b:17:3d:5e:35:f6:ae:be:7f: 71:d0:03:c5:82:59:98:ac:4c:fb:b2:37:d4:e8:65:31:9b:20: 04:3e:1e:6b:7f:e1:5b:83:5e:3b:eb:07:46:35:ff:ae:03:f2: 28:b0:ce:be:35:ef:e4:4d:b1:a7:6d:8b:4b:fb:df:cb:50:64: 7d:d2:db:53:38:17:c4:9e:6d:a9:40:d3:01:73:fe:f9:b3:93: 39:02:5f:72:da:3d:e6:33:94:dd:0f:80:7c:d1:51:98:68:d4: b8:29:2d:84:1c:b4:2d:d5:1f:7f:21:f1:2b:9b:80:18:63:27: 2e:8b:cc:09:bb:94:5e:69:74:b9:37:b4:2e:65:18:a9:98:6d: e9:c1:95:21:80:b7:57:69:1d:bf:b2:8a:c9:5e:4e:24:37:e0: 18:48:d9:05:d3:54:fc:1e:55:9e:d1:4e:a8:99:31:97:77:03: 17:5b:21:c9:37:7a:ab:13:86:88:51:b4:9a:07:e9:b8:7a:e0: e7:e9:a3:49:37:6e:1b:05:09:01:72:60:fd:e0:50:4f:d1:8c: a5:87:9f:65:92:47:12:0a:91:fb:d5:cf:e6:a7:fa:0a:e2:4c: 58:87:1a:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFPnHIcZ3eViAoMnU4PaUm4r//WMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDRlZDY3NzA0NGY1NWQ3ODNiMzZiYmI5MmUwZGNlNmQy MDA0ZmIyYjM2YjZkY2I4ZmI4ZDBjMTgwZWFiOWQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX4pyUQU78SdvZ2MF9eEYmz6Lcb67DC6x5R5y9kNxBvjxH 03x+PePKttgqeCITRnf4Hskr8fpmE6tdPnLNIWcMX1yNz3JPSKAgc4lDp/8kde5c rDNP5ZGZhag67KXIleKAvxp1+uFUtwtbvTNMFEijb7wl3ZKJ3v+uqoocFdyMfC3p a08PcuTd1sCTmUglPCOpWIViT60Ac+TIbmr4b3DglXp2a7b/4fJBGq632Y1Kn6Ht rC7qkG/CY+Ni7YCvLy9OCNSNnghc1HQKAwvcxGlnhOYWdTtIzU+zYbk0OJudaAbD lmIK7BU0AheBegFxfhrTbHYctglATpE84RZa2jdnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJp4k3dTTaNTNT3g8nblJVILgopswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxNDE1NGFmLTY4YmQtNDcyNy04OWY0LTY0N2JlOGRjNjVhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAvcYwDQYJKoZIhvcNAQELBQADggEBAG36BmX2+JatIzY/4xO0zwmS6FTs om/oM08fIxsXPV419q6+f3HQA8WCWZisTPuyN9ToZTGbIAQ+Hmt/4VuDXjvrB0Y1 /64D8iiwzr417+RNsadti0v738tQZH3S21M4F8SebalA0wFz/vmzkzkCX3LaPeYz lN0PgHzRUZho1LgpLYQctC3VH38h8SubgBhjJy6LzAm7lF5pdLk3tC5lGKmYbenB lSGAt1dpHb+yisleTiQ34BhI2QXTVPweVZ7RTqiZMZd3AxdbIck3eqsThohRtJoH 6bh64Ofpo0k3bhsFCQFyYP3gUE/RjKWHn2WSRxIKkfvVz+an+griTFiHGlg= -----END CERTIFICATE-----Generated at Thu May 9 15:19:35 2024 by rpki-client on console-fra.rpki-client.org