$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/672a0270-c2e2-4c70-9aa9-76059e590a6b.roa File: 672a0270-c2e2-4c70-9aa9-76059e590a6b.roa (raw, json) Hash identifier: hGxY0KE/aGGrAUhyNv+2Np9wYWat64OEqioo0j7L5Lc= Subject key identifier: C0:4B:67:CF:36:7B:CD:37:B8:F8:95:08:D1:60:E9:81:44:7A:3E:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43A50C38DC8EE04DC25F3F896C112F6095644CFF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/672a0270-c2e2-4c70-9aa9-76059e590a6b.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 114.56.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:a5:0c:38:dc:8e:e0:4d:c2:5f:3f:89:6c:11:2f:60:95:64:4c:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=10f2e95bbbd5cefcbd06c21aa1b5e0e350f3d34ab7c956e3bb5118ca2f1038bc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:df:34:25:a1:05:38:27:70:94:e7:f6:6a:9e: 80:5d:90:0a:40:d0:d0:c9:66:c1:88:91:51:5e:7e: 4d:f6:f3:1c:12:60:6d:4b:c3:c5:9c:56:f7:c8:73: 7a:dc:d7:4d:6e:15:bf:4c:f1:d8:98:1f:23:63:d0: d5:38:d0:d0:1d:cc:f1:9d:0e:ea:f8:32:d2:be:87: c1:8c:0d:3b:bd:44:e2:0e:66:41:a6:2b:38:60:33: 72:5d:ac:ff:6d:13:62:7b:ed:48:48:f1:88:1d:bc: c8:09:45:54:0e:5c:6f:21:88:c0:07:bd:08:87:53: 18:04:ac:1c:92:47:e0:0c:6e:7a:a0:6a:23:fc:33: ea:64:de:55:27:8c:da:35:d6:bb:21:8c:6c:6a:5d: a0:49:42:2e:ea:5c:39:26:85:29:c3:67:9f:a6:c5: 58:f2:9f:13:81:1c:ce:a4:9b:35:c2:30:bc:6d:6a: ab:47:a9:87:32:49:9f:d9:3f:6d:bb:e8:e5:00:2a: 6b:cd:e8:96:3f:67:6a:ea:fe:4b:75:c9:11:9b:f0: 8c:d2:d8:ed:01:4d:07:e1:8c:44:7d:c2:2d:d7:e7: 1e:ab:bd:91:87:13:2d:f3:8a:1c:4a:09:53:b4:a1: 8d:5c:f3:bb:c9:df:64:61:72:10:f1:28:79:b8:b1: 67:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:4B:67:CF:36:7B:CD:37:B8:F8:95:08:D1:60:E9:81:44:7A:3E:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/672a0270-c2e2-4c70-9aa9-76059e590a6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.0.0/14 Signature Algorithm: sha256WithRSAEncryption 17:7d:ad:3f:45:67:ec:6a:20:0c:45:ce:f7:62:14:fd:c8:ba: 7b:cf:12:c7:4f:2d:1f:2f:92:81:9a:2e:b3:0d:17:56:3d:28: 30:06:e4:a1:2e:36:b4:04:06:b7:17:5a:b9:06:68:04:7a:97: 58:8e:73:3f:c5:b9:ce:6e:8a:7f:7c:d5:2d:50:68:9c:40:7b: 42:66:5e:f2:86:13:e4:14:a6:61:24:34:04:b9:81:6f:46:ba: ce:67:6b:56:52:03:c4:50:36:4a:e3:35:ae:96:15:22:ee:5f: 9f:d7:af:0d:5f:ef:7e:90:b5:5c:d0:16:3a:bc:3f:7a:18:81: fe:ae:04:38:15:7c:22:88:0e:84:92:3f:75:33:20:a6:ad:7e: 34:e3:38:a8:45:53:bf:47:28:6e:c4:43:71:15:74:b3:56:42: f4:f5:0a:ec:2b:bb:72:13:e4:ea:06:20:37:ca:2e:97:a5:df: 81:92:1d:f1:82:79:5f:97:a2:85:61:ae:41:93:87:c7:6b:38: 3a:ec:f1:e0:78:f0:90:ca:56:56:ac:c6:5b:3e:a7:0a:5f:9f: b9:28:56:ea:2d:4d:ed:c3:b6:3a:be:99:55:74:7c:86:08:20: 32:5e:63:e1:34:45:6a:fd:ad:45:d2:4b:05:82:1b:62:01:6a: 20:51:6e:7f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQ6UMONyO4E3CXz+JbBEvYJVkTP8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMGYyZTk1YmJiZDVjZWZjYmQwNmMyMWFhMWI1ZTBlMzUw ZjNkMzRhYjdjOTU2ZTNiYjUxMThjYTJmMTAzOGJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC53zQloQU4J3CU5/ZqnoBdkApA0NDJZsGIkVFefk328xwS YG1Lw8WcVvfIc3rc101uFb9M8diYHyNj0NU40NAdzPGdDur4MtK+h8GMDTu9ROIO ZkGmKzhgM3JdrP9tE2J77UhI8YgdvMgJRVQOXG8hiMAHvQiHUxgErBySR+AMbnqg aiP8M+pk3lUnjNo11rshjGxqXaBJQi7qXDkmhSnDZ5+mxVjynxOBHM6kmzXCMLxt aqtHqYcySZ/ZP2276OUAKmvN6JY/Z2rq/kt1yRGb8IzS2O0BTQfhjER9wi3X5x6r vZGHEy3zihxKCVO0oY1c87vJ32RhchDxKHm4sWe7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwEtnzzZ7zTe4+JUI0WDpgUR6PjYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3MmEwMjcwLWMyZTItNGM3MC05YWE5LTc2MDU5ZTU5MGE2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJyODANBgkqhkiG9w0BAQsFAAOCAQEAF32tP0Vn7GogDEXO92IU/ci6e88S x08tHy+SgZousw0XVj0oMAbkoS42tAQGtxdauQZoBHqXWI5zP8W5zm6Kf3zVLVBo nEB7QmZe8oYT5BSmYSQ0BLmBb0a6zmdrVlIDxFA2SuM1rpYVIu5fn9evDV/vfpC1 XNAWOrw/ehiB/q4EOBV8IogOhJI/dTMgpq1+NOM4qEVTv0cobsRDcRV0s1ZC9PUK 7Cu7chPk6gYgN8oul6XfgZId8YJ5X5eihWGuQZOHx2s4Ouzx4HjwkMpWVqzGWz6n Cl+fuShW6i1N7cO2Or6ZVXR8hgggMl5j4TRFav2tRdJLBYIbYgFqIFFufw== -----END CERTIFICATE-----Generated at Wed May 1 20:47:58 2024 by rpki-client on console-ams.rpki-client.org