$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64416939-e386-4747-9efd-e38b0c06dbeb.roa File: 64416939-e386-4747-9efd-e38b0c06dbeb.roa (raw, json) Hash identifier: tgvrm/sBBidG4wDUO3gCsGfc33vqZODMx5UQmKYN6m8= Subject key identifier: A9:FC:58:71:67:C2:F2:75:5E:EE:A6:B8:1D:40:C0:8D:DB:19:B0:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5632E00D8128991BF5069FF3267C29D6EC627674 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64416939-e386-4747-9efd-e38b0c06dbeb.roa Signing time: Sat 13 Apr 2024 00:00:00 +0000 ROA not before: Sat 13 Apr 2024 00:00:00 +0000 ROA not after: Sat 18 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 207.202.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:32:e0:0d:81:28:99:1b:f5:06:9f:f3:26:7c:29:d6:ec:62:76:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 13 00:00:00 2024 GMT Not After : May 18 23:59:59 2024 GMT Subject: serialNumber=b38a2082a040a641da908a1bb1797f131b713702487343039cbd4e5d1fcf937b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3b:de:8c:41:d6:fb:36:32:22:3f:34:30:4f: 1a:0c:89:a8:8c:4d:ba:4b:2a:4c:80:52:5f:b2:65: 46:1b:5f:32:dc:f7:88:64:ba:40:be:aa:82:2a:f3: dc:b7:e8:72:2b:86:6b:6c:a9:e5:a6:e1:0a:89:be: 72:8e:d9:1d:fe:09:24:e7:c9:05:6a:80:7c:ca:b0: 1b:54:5e:a5:b9:66:e2:18:0e:31:1e:70:7e:3e:85: 71:4c:be:ca:d8:e7:ec:ba:2d:40:3d:7f:bf:6e:46: 59:20:c1:5d:54:b5:31:3e:3c:35:23:2a:b3:8e:7c: 6c:7a:d6:09:66:44:3e:60:41:ff:1b:e2:cf:9a:90: 99:0f:bf:d3:e3:3b:42:9a:e3:e0:1c:e9:b2:98:8c: c3:a0:f6:75:45:fd:12:f5:cd:8e:a3:b0:0c:68:a6: 30:1d:d5:40:ba:68:06:47:8e:7f:4f:b9:2f:f9:a4: 9e:fb:48:95:18:a0:9d:4b:47:92:9f:e4:ab:43:e7: e9:80:43:d8:74:0c:71:c1:ae:f9:a4:ff:30:9d:34: ab:ef:f0:d3:09:dd:ef:b0:ed:03:65:64:3d:c6:81: d1:c5:ae:bb:0a:d7:f2:e4:a2:ed:4a:13:57:2c:ce: 33:9a:c1:97:ef:a4:94:6d:25:ab:9e:2e:bb:1b:6f: 51:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:FC:58:71:67:C2:F2:75:5E:EE:A6:B8:1D:40:C0:8D:DB:19:B0:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64416939-e386-4747-9efd-e38b0c06dbeb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.202.128.0/17 Signature Algorithm: sha256WithRSAEncryption 9b:ff:0f:d6:0f:d5:f7:c1:64:85:a9:7b:1d:de:73:ef:bd:c6: 1d:e9:fb:31:1c:e0:df:27:06:34:34:71:d9:95:03:ce:c9:12: 04:41:8a:76:9f:5d:b9:1c:97:1c:df:86:00:65:a4:e9:16:87: 9d:b6:a7:e3:30:0c:9f:21:09:ca:66:44:b8:b4:9e:b2:0f:ed: c6:71:79:36:64:3b:f9:e9:7a:87:86:90:2e:fd:fc:9f:04:53: e6:64:99:e8:fd:2a:78:08:10:37:a5:2f:e5:2a:1a:08:a8:ee: 60:3c:a0:44:7d:22:6e:65:dd:93:9e:19:65:5a:e5:73:38:02: 48:4f:36:d0:5d:c6:2c:f1:98:d5:c9:77:11:55:c5:b6:34:c7: 3b:1e:3b:6c:55:5d:ff:4d:c3:f9:34:04:96:31:6c:40:b6:83: e1:d8:fd:98:af:f6:89:7f:9e:de:74:da:35:28:98:4a:1c:c7: 13:6e:f3:bd:f2:71:f3:74:d5:8c:bb:51:f9:75:2e:8b:67:a8: 8a:52:46:12:af:e6:c9:fe:10:88:26:d3:51:e0:44:b7:86:8e: 8d:b4:d0:77:c8:2c:06:52:b7:74:ef:31:e4:36:5c:c7:22:41: db:1b:9e:65:24:50:2d:39:ad:56:8c:7c:6b:67:2e:8d:f2:bc: d9:db:32:ff -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVjLgDYEomRv1Bp/zJnwp1uxidnQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEzMDAwMDAwWhcNMjQwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzhhMjA4MmEwNDBhNjQxZGE5MDhhMWJiMTc5N2YxMzFi NzEzNzAyNDg3MzQzMDM5Y2JkNGU1ZDFmY2Y5MzdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfO96MQdb7NjIiPzQwTxoMiaiMTbpLKkyAUl+yZUYbXzLc 94hkukC+qoIq89y36HIrhmtsqeWm4QqJvnKO2R3+CSTnyQVqgHzKsBtUXqW5ZuIY DjEecH4+hXFMvsrY5+y6LUA9f79uRlkgwV1UtTE+PDUjKrOOfGx61glmRD5gQf8b 4s+akJkPv9PjO0Ka4+Ac6bKYjMOg9nVF/RL1zY6jsAxopjAd1UC6aAZHjn9PuS/5 pJ77SJUYoJ1LR5Kf5KtD5+mAQ9h0DHHBrvmk/zCdNKvv8NMJ3e+w7QNlZD3GgdHF rrsK1/Lkou1KE1cszjOawZfvpJRtJaueLrsbb1HfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqfxYcWfC8nVe7qa4HUDAjdsZsOIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0NDE2OTM5LWUzODYtNDc0Ny05ZWZkLWUzOGIwYzA2ZGJlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfPyoAwDQYJKoZIhvcNAQELBQADggEBAJv/D9YP1ffBZIWpex3ec++9xh3p +zEc4N8nBjQ0cdmVA87JEgRBinafXbkclxzfhgBlpOkWh522p+MwDJ8hCcpmRLi0 nrIP7cZxeTZkO/npeoeGkC79/J8EU+Zkmej9KngIEDelL+UqGgio7mA8oER9Im5l 3ZOeGWVa5XM4AkhPNtBdxizxmNXJdxFVxbY0xzseO2xVXf9Nw/k0BJYxbEC2g+HY /Ziv9ol/nt502jUomEocxxNu873ycfN01Yy7Ufl1LotnqIpSRhKv5sn+EIgm01Hg RLeGjo200HfILAZSt3TvMeQ2XMciQdsbnmUkUC05rVaMfGtnLo3yvNnbMv8= -----END CERTIFICATE-----Generated at Thu May 2 17:17:11 2024 by rpki-client on console-ams.rpki-client.org