$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84074914-b4bd-48d5-a487-56c8675f0d5a.roa File: 84074914-b4bd-48d5-a487-56c8675f0d5a.roa (raw, json) Hash identifier: BQ7D+rohrzw5vFAtRxhBlYpiMOafy1LORS8asDaC2XQ= Subject key identifier: BB:E8:E1:0B:E8:75:30:FB:86:FF:E1:6C:E7:D2:8A:5C:3F:A9:F6:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38D5FE8B593E75BD0BB00C2807236CB68C59A4F5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84074914-b4bd-48d5-a487-56c8675f0d5a.roa Signing time: Thu 18 Apr 2024 00:00:00 +0000 ROA not before: Thu 18 Apr 2024 00:00:00 +0000 ROA not after: Thu 23 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 206.215.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:d5:fe:8b:59:3e:75:bd:0b:b0:0c:28:07:23:6c:b6:8c:59:a4:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:00:00 2024 GMT Not After : May 23 23:59:59 2024 GMT Subject: serialNumber=75fa8b774ed0244a81d011137b80d7e8f5ac6422b70b45d48c89db345c5a9321, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7a:f5:4b:1c:23:d2:a7:1f:38:d1:e0:1e:c7: 3e:72:89:f8:fc:53:53:b6:19:21:a8:a9:86:83:4d: df:c5:e9:64:d1:4f:05:65:62:de:f7:6f:92:6e:13: 22:30:39:84:e5:c1:0a:90:f1:b6:ac:ae:b2:f3:79: 99:37:01:8a:c3:be:f5:be:81:92:e7:2e:55:24:6d: 0b:2c:5b:3a:ad:c8:35:09:5f:17:23:cb:93:9f:d9: d4:83:e4:98:fb:29:09:a4:b0:08:d1:ca:d2:e2:cd: 3d:d3:dc:6b:b0:9c:c9:b2:f0:7b:12:bc:f7:d0:e9: 53:3d:92:f7:91:72:5e:02:a6:62:c4:a2:24:f0:44: 94:4d:b8:dd:35:7b:56:dd:7f:f5:ab:b0:96:f9:73: 29:6f:fa:8f:d9:fe:54:34:28:e4:a7:90:9a:7e:96: d0:f0:21:f3:dd:bd:19:54:90:e8:b1:9a:07:b7:a7: 73:8e:5f:98:b0:80:e8:99:fc:3e:f1:f1:8d:78:25: a4:1e:49:f3:b6:05:35:8c:27:9e:41:9d:16:ed:fc: 5d:c1:65:14:17:09:d3:29:52:12:00:e1:45:72:05: 50:d4:c4:5e:5b:d3:96:c2:3e:1a:f3:a5:d5:47:25: 40:a2:59:1e:fd:79:67:8a:f4:7e:f5:2c:c3:d9:ef: 59:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:E8:E1:0B:E8:75:30:FB:86:FF:E1:6C:E7:D2:8A:5C:3F:A9:F6:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84074914-b4bd-48d5-a487-56c8675f0d5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.215.16.0/20 Signature Algorithm: sha256WithRSAEncryption 4c:5a:15:26:9b:57:3f:82:5b:77:3f:a3:b6:20:9d:29:a0:5e: 68:f8:55:cd:8a:89:28:53:29:9b:32:48:6f:31:69:37:31:27: 61:48:91:35:33:a8:14:4d:1c:54:01:58:ed:1c:2e:e7:5e:93: 68:d7:39:8b:71:a3:fa:25:41:54:3b:bd:28:4e:68:3d:66:11: 24:1b:ca:c0:41:45:78:76:03:d0:54:23:f1:43:b8:b1:ab:90: ed:2a:e3:cd:e5:5c:c5:3c:b8:70:16:c9:a9:08:fb:1d:9b:c7: 00:6f:b1:38:f3:be:b2:22:67:ee:94:5f:36:d2:4e:98:bd:66: 56:29:a4:62:ec:2f:45:59:c1:16:48:f4:80:c7:fb:78:03:80: 1c:8e:bc:f1:10:cd:03:4a:ad:12:90:36:c2:8a:de:6c:af:b0: 68:7d:79:17:94:09:15:26:19:02:86:65:9b:f5:20:66:4f:fe: 46:a3:f6:1f:79:a4:0f:13:d7:cc:db:35:48:3c:61:8c:06:fe: a3:c1:24:5c:72:54:0a:26:9e:bc:e6:c0:07:2b:92:6f:2b:e1: bf:33:c1:bf:e2:e7:2b:56:57:c8:6e:09:fd:2f:1c:51:ac:76: b0:70:2b:28:8d:a1:7f:22:d7:22:f6:3f:4a:11:4d:b9:2e:e4: c8:74:83:d5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUONX+i1k+db0LsAwoByNstoxZpPUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE4MDAwMDAwWhcNMjQwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NWZhOGI3NzRlZDAyNDRhODFkMDExMTM3YjgwZDdlOGY1 YWM2NDIyYjcwYjQ1ZDQ4Yzg5ZGIzNDVjNWE5MzIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMevVLHCPSpx840eAexz5yifj8U1O2GSGoqYaDTd/F6WTR TwVlYt73b5JuEyIwOYTlwQqQ8basrrLzeZk3AYrDvvW+gZLnLlUkbQssWzqtyDUJ Xxcjy5Of2dSD5Jj7KQmksAjRytLizT3T3GuwnMmy8HsSvPfQ6VM9kveRcl4CpmLE oiTwRJRNuN01e1bdf/WrsJb5cylv+o/Z/lQ0KOSnkJp+ltDwIfPdvRlUkOixmge3 p3OOX5iwgOiZ/D7x8Y14JaQeSfO2BTWMJ55BnRbt/F3BZRQXCdMpUhIA4UVyBVDU xF5b05bCPhrzpdVHJUCiWR79eWeK9H71LMPZ71kLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu+jhC+h1MPuG/+Fs59KKXD+p9icwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0MDc0OTE0LWI0YmQtNDhkNS1hNDg3LTU2Yzg2NzVmMGQ1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATO1xAwDQYJKoZIhvcNAQELBQADggEBAExaFSabVz+CW3c/o7YgnSmgXmj4 Vc2KiShTKZsySG8xaTcxJ2FIkTUzqBRNHFQBWO0cLudek2jXOYtxo/olQVQ7vShO aD1mESQbysBBRXh2A9BUI/FDuLGrkO0q483lXMU8uHAWyakI+x2bxwBvsTjzvrIi Z+6UXzbSTpi9ZlYppGLsL0VZwRZI9IDH+3gDgByOvPEQzQNKrRKQNsKK3myvsGh9 eReUCRUmGQKGZZv1IGZP/kaj9h95pA8T18zbNUg8YYwG/qPBJFxyVAomnrzmwAcr km8r4b8zwb/i5ytWV8huCf0vHFGsdrBwKyiNoX8i1yL2P0oRTbku5Mh0g9U= -----END CERTIFICATE-----Generated at Thu May 9 15:19:43 2024 by rpki-client on console-fra.rpki-client.org