$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78d2f628-64c4-4bca-be50-addae52fd6d8.roa File: 78d2f628-64c4-4bca-be50-addae52fd6d8.roa (raw, json) Hash identifier: cgv1yYrvTWPqJ5mH7q6Gz/zybkHhJgyJ2J1oDg1jR00= Subject key identifier: 8C:61:4C:AA:82:28:61:6E:9E:27:08:33:A2:76:7E:68:B5:74:0E:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D6D16966F9DFB5E3F9581B3697C3FF44D8CBDE3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78d2f628-64c4-4bca-be50-addae52fd6d8.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 130.171.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:6d:16:96:6f:9d:fb:5e:3f:95:81:b3:69:7c:3f:f4:4d:8c:bd:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=03ac17b34ed7c04af3d4e97b5339ba527e3f8ff6842ac200a9151c8ad56f3cf3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:69:06:9c:ec:d1:89:5c:fb:51:fd:25:75:35: 1b:01:13:17:d1:36:76:a9:76:6d:f6:d0:58:2e:e3: ab:e1:66:e5:3b:a3:ca:50:7f:52:c1:d8:d2:44:fa: 62:59:f8:bc:45:3e:6a:dc:fc:4f:11:99:52:76:29: 18:6c:47:db:ea:73:67:48:57:ea:7e:ad:c6:6c:3c: 17:6f:d1:fd:e4:b5:f8:98:97:38:b2:22:16:d1:f5: 5f:c1:cc:cf:87:19:40:c8:a6:d3:50:b6:02:24:ba: de:24:8b:da:b6:46:68:99:19:56:e3:ce:09:ae:4b: 15:09:21:75:35:dc:bb:fa:e1:e6:3d:d3:b6:f1:1f: 96:93:c5:d1:d1:3d:c4:23:0a:4f:31:9c:c7:d4:84: cd:5d:a8:3a:33:c0:27:d6:f0:68:bd:a6:5b:27:6b: 05:59:d5:61:7d:8d:66:40:b8:66:32:36:b7:6d:f1: 78:1a:79:9f:24:db:80:52:d1:9c:0b:03:d0:dd:fa: 0a:38:79:19:17:d7:db:b4:ef:1c:e8:9a:c1:53:c4: ab:62:7b:05:9f:fc:5f:e6:a7:92:1a:ef:13:37:8f: 9e:9a:31:4c:94:58:17:4a:df:bc:dd:cd:f1:c8:e9: 4e:03:c7:2e:ba:f5:6c:0c:c3:c9:3a:16:3f:27:5d: 90:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:61:4C:AA:82:28:61:6E:9E:27:08:33:A2:76:7E:68:B5:74:0E:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78d2f628-64c4-4bca-be50-addae52fd6d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.171.0.0/24 Signature Algorithm: sha256WithRSAEncryption 17:05:c0:5d:4c:93:03:5a:f0:c1:3a:41:76:5e:83:a0:2e:b6: 4f:16:6f:ab:4c:28:42:a9:2a:76:12:1a:b2:ee:1e:06:2b:08: 37:96:32:8e:fc:34:2b:25:b8:a8:f9:2e:b1:a5:c9:02:29:17: 8c:6a:f8:33:45:06:09:e8:29:3d:c6:b2:0f:5f:04:fc:23:4d: a1:4e:95:bd:e2:1f:fc:1b:f3:b6:e5:a8:09:e2:b8:3d:d9:be: 05:34:26:43:05:6f:2c:6a:1d:c4:dd:91:62:45:2e:01:31:a7: d2:68:68:c6:03:2f:91:e9:4d:67:78:d6:9d:a5:ca:d0:be:ff: da:96:3b:15:8d:13:69:e7:46:a5:75:b7:42:fe:0d:96:a3:1b: c6:4a:ce:fd:98:c3:e2:23:33:44:79:aa:4e:2a:42:4d:72:8c: 57:0f:43:0d:9a:4a:1d:24:33:e0:8d:44:f1:9d:e1:ca:7b:5f: 37:44:55:eb:a5:d9:52:71:98:bd:6e:7f:9f:f9:f1:7c:e0:2a: be:5e:a1:4c:80:10:62:49:3f:2c:f1:f5:ea:62:8e:ba:db:af: 16:0d:a1:28:51:09:64:d6:3f:fb:7c:13:a1:87:b4:6c:6b:00: 16:76:9c:85:42:0b:44:ae:ad:49:c8:07:06:99:85:4e:ca:c2: bd:27:a7:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTW0Wlm+d+14/lYGzaXw/9E2MveMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2FjMTdiMzRlZDdjMDRhZjNkNGU5N2I1MzM5YmE1Mjdl M2Y4ZmY2ODQyYWMyMDBhOTE1MWM4YWQ1NmYzY2YzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiaQac7NGJXPtR/SV1NRsBExfRNnapdm320Fgu46vhZuU7 o8pQf1LB2NJE+mJZ+LxFPmrc/E8RmVJ2KRhsR9vqc2dIV+p+rcZsPBdv0f3ktfiY lziyIhbR9V/BzM+HGUDIptNQtgIkut4ki9q2RmiZGVbjzgmuSxUJIXU13Lv64eY9 07bxH5aTxdHRPcQjCk8xnMfUhM1dqDozwCfW8Gi9plsnawVZ1WF9jWZAuGYyNrdt 8XgaeZ8k24BS0ZwLA9Dd+go4eRkX19u07xzomsFTxKtiewWf/F/mp5Ia7xM3j56a MUyUWBdK37zdzfHI6U4Dxy669WwMw8k6Fj8nXZCNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjGFMqoIoYW6eJwgzonZ+aLV0DiswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4ZDJmNjI4LTY0YzQtNGJjYS1iZTUwLWFkZGFlNTJmZDZkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCqwAwDQYJKoZIhvcNAQELBQADggEBABcFwF1MkwNa8ME6QXZeg6Autk8W b6tMKEKpKnYSGrLuHgYrCDeWMo78NCsluKj5LrGlyQIpF4xq+DNFBgnoKT3Gsg9f BPwjTaFOlb3iH/wb87blqAniuD3ZvgU0JkMFbyxqHcTdkWJFLgExp9JoaMYDL5Hp TWd41p2lytC+/9qWOxWNE2nnRqV1t0L+DZajG8ZKzv2Yw+IjM0R5qk4qQk1yjFcP Qw2aSh0kM+CNRPGd4cp7XzdEVeul2VJxmL1uf5/58XzgKr5eoUyAEGJJPyzx9epi jrrbrxYNoShRCWTWP/t8E6GHtGxrABZ2nIVCC0SurUnIBwaZhU7Kwr0np8E= -----END CERTIFICATE-----Generated at Thu May 2 17:17:12 2024 by rpki-client on console-ams.rpki-client.org