$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/786f0c29-e2df-4478-b9cd-67444b292a06.roa File: 786f0c29-e2df-4478-b9cd-67444b292a06.roa (raw, json) Hash identifier: dnG+iXQqlD4sQeHBxB3ywRz1G/kusBi8/By9zdsGyFc= Subject key identifier: 25:89:96:1B:52:70:C6:88:66:A3:8E:EC:FF:9A:41:A8:48:9E:43:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F81576793A585ED6B60467130A8E4484746B264 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/786f0c29-e2df-4478-b9cd-67444b292a06.roa Signing time: Tue 09 Apr 2024 00:00:00 +0000 ROA not before: Tue 09 Apr 2024 00:00:00 +0000 ROA not after: Tue 14 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 208.78.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:81:57:67:93:a5:85:ed:6b:60:46:71:30:a8:e4:48:47:46:b2:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:00:00 2024 GMT Not After : May 14 23:59:59 2024 GMT Subject: serialNumber=97d07740e1e0770dfcc0c53761ddd1e5ee9ef94c94783eab03222275a9de3d4c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3d:bb:50:ba:ce:46:7d:45:da:ae:62:1e:a1: d7:93:76:3e:c4:75:96:1b:67:33:3b:2d:36:0c:3b: b5:b5:68:c8:43:f9:f4:79:69:fb:88:dd:9f:f4:37: 9b:51:41:f1:7f:00:fb:2b:22:5c:f1:72:87:c1:1c: eb:ff:99:6f:ad:8f:47:ba:e6:fb:9a:74:ca:3c:65: 70:c6:5c:98:ab:ce:b7:9c:9d:50:79:69:36:e5:34: 97:4a:c7:42:18:19:dc:4f:ba:6e:c9:59:b1:9a:53: 2c:85:26:15:62:79:32:2a:03:b8:b4:61:dc:24:32: a0:f4:f8:14:a4:32:00:bf:0e:a8:96:15:17:81:6c: a1:53:9d:08:00:a6:cf:d3:e4:81:e3:46:5f:29:c0: 74:14:42:bd:3e:f8:37:de:03:80:ea:8b:87:14:54: 96:e2:3d:26:10:94:4d:9f:24:0b:57:8e:fc:f8:fa: bb:45:77:e6:30:c6:84:b1:4d:0d:09:01:8a:0c:b0: c6:e0:49:88:f6:c9:d7:38:4b:00:61:02:86:c8:6c: b0:10:6e:1f:6d:b9:62:96:e5:f3:bb:4b:9e:4a:a1: de:aa:e1:64:56:83:b9:3e:7c:d9:05:02:86:35:8b: c2:85:c7:80:89:ab:b1:c9:b1:c3:d4:40:90:f7:bc: bf:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:89:96:1B:52:70:C6:88:66:A3:8E:EC:FF:9A:41:A8:48:9E:43:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/786f0c29-e2df-4478-b9cd-67444b292a06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.78.134.0/24 Signature Algorithm: sha256WithRSAEncryption ce:6c:da:3b:e3:c6:8c:24:64:ba:ff:c3:19:8b:e2:5f:03:d6: 3e:40:c8:56:25:6a:c0:7b:a0:0b:5b:f9:78:cc:af:00:62:6f: 48:df:af:57:41:42:88:23:81:a2:ac:88:c5:b6:b2:f0:4a:15: 11:60:09:a5:6f:a6:d9:2a:5a:a8:e3:49:21:cb:63:29:ef:8c: ef:f5:ab:7c:61:fc:c9:97:0f:5d:8a:02:a7:d2:d7:b6:3d:6e: ca:a2:39:e6:24:c9:77:d2:8b:db:a3:b9:29:48:79:2d:db:2d: df:f0:b3:bd:47:42:a5:63:c8:69:f8:74:50:55:d5:0d:cc:c4: f8:f7:b4:71:a6:3b:cb:94:f9:78:19:fd:2a:5a:81:06:09:b6: 4d:5f:15:53:d9:e8:cf:90:46:86:1e:ec:ad:ce:90:4c:b6:18: fe:cf:07:ec:bf:b5:f4:91:08:ee:d2:a4:ed:92:40:4f:16:37: 68:2c:6a:19:86:40:8c:6a:81:0b:2b:1c:f9:15:92:cf:4e:92: 46:2b:38:da:8a:02:e8:d6:29:7d:7d:d0:8b:0a:93:84:9d:91: d8:89:5b:ef:0a:33:3d:fb:3b:0e:a8:a7:cb:4b:21:16:20:2c: 72:68:67:f6:92:cb:16:c2:8c:f2:4b:e1:cf:cd:43:34:ca:11: 25:61:0f:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb4FXZ5Olhe1rYEZxMKjkSEdGsmQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA5MDAwMDAwWhcNMjQwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2QwNzc0MGUxZTA3NzBkZmNjMGM1Mzc2MWRkZDFlNWVl OWVmOTRjOTQ3ODNlYWIwMzIyMjI3NWE5ZGUzZDRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuPbtQus5GfUXarmIeodeTdj7EdZYbZzM7LTYMO7W1aMhD +fR5afuI3Z/0N5tRQfF/APsrIlzxcofBHOv/mW+tj0e65vuadMo8ZXDGXJirzrec nVB5aTblNJdKx0IYGdxPum7JWbGaUyyFJhVieTIqA7i0YdwkMqD0+BSkMgC/DqiW FReBbKFTnQgAps/T5IHjRl8pwHQUQr0++DfeA4Dqi4cUVJbiPSYQlE2fJAtXjvz4 +rtFd+YwxoSxTQ0JAYoMsMbgSYj2ydc4SwBhAobIbLAQbh9tuWKW5fO7S55Kod6q 4WRWg7k+fNkFAoY1i8KFx4CJq7HJscPUQJD3vL+BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJYmWG1Jwxohmo47s/5pBqEieQ7EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4NmYwYzI5LWUyZGYtNDQ3OC1iOWNkLTY3NDQ0YjI5MmEwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADQToYwDQYJKoZIhvcNAQELBQADggEBAM5s2jvjxowkZLr/wxmL4l8D1j5A yFYlasB7oAtb+XjMrwBib0jfr1dBQogjgaKsiMW2svBKFRFgCaVvptkqWqjjSSHL YynvjO/1q3xh/MmXD12KAqfS17Y9bsqiOeYkyXfSi9ujuSlIeS3bLd/ws71HQqVj yGn4dFBV1Q3MxPj3tHGmO8uU+XgZ/SpagQYJtk1fFVPZ6M+QRoYe7K3OkEy2GP7P B+y/tfSRCO7SpO2SQE8WN2gsahmGQIxqgQsrHPkVks9OkkYrONqKAujWKX190IsK k4SdkdiJW+8KMz37Ow6op8tLIRYgLHJoZ/aSyxbCjPJL4c/NQzTKESVhD4U= -----END CERTIFICATE-----Generated at Thu May 2 22:28:06 2024 by rpki-client on console-ams.rpki-client.org