$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f1a410b-4fcb-46b7-92eb-4e2730e01468.roa File: 8f1a410b-4fcb-46b7-92eb-4e2730e01468.roa (raw, json) Hash identifier: VB14BXQs5cbue9+nikzp046CP7oUCj4E9D5whAoDDMo= Subject key identifier: 38:F6:27:5A:43:25:B7:D4:DC:24:70:79:84:BF:1C:BC:EC:D0:19:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BA90856B153F650267F77BB3DDDE3950D646442 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f1a410b-4fcb-46b7-92eb-4e2730e01468.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 204.126.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:a9:08:56:b1:53:f6:50:26:7f:77:bb:3d:dd:e3:95:0d:64:64:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=7355a16a21e7fb53978aaacaa0615bc1af8df5d14d20f6e366577baa67627ddb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c8:63:20:2f:66:29:96:78:af:f2:9b:8a:e0: 81:6b:e1:67:75:43:29:9f:93:00:79:28:eb:22:5a: 2c:bb:1a:0d:01:93:ce:d8:36:be:06:fe:0b:02:ab: 91:11:34:4e:a0:24:50:f9:31:8e:de:fb:38:06:d3: 90:f2:74:96:78:c6:f3:18:4b:ec:18:00:ee:4f:64: 7c:45:3b:66:4e:b8:f3:3d:fb:11:28:42:2e:20:0b: 16:a0:e4:2d:26:9e:16:a5:a5:df:7a:68:43:cf:fa: 3e:2a:f3:1f:e6:de:37:d2:25:3f:64:e8:2a:c8:28: bd:f0:86:65:31:c9:95:5c:f7:44:47:75:6b:af:96: f2:87:56:ad:75:33:6d:d5:3f:e0:d8:2c:28:2d:f2: e8:14:fa:7b:e2:98:e8:61:00:9a:fd:c8:1a:b7:5c: 19:4f:39:90:d4:96:53:e8:3c:d7:d2:cd:9b:58:53: 6e:40:20:7b:82:3a:33:a3:99:b9:60:d8:d3:35:86: e1:59:02:5c:a2:36:40:a9:10:38:6d:70:91:90:fa: 2d:9a:f2:83:57:02:4d:50:87:1e:a7:b6:db:55:54: 61:67:7e:0a:0e:86:2d:3a:ae:16:d0:d7:27:00:e8: 5f:68:81:94:a0:14:eb:c2:60:ef:dc:52:52:8f:54: e4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F6:27:5A:43:25:B7:D4:DC:24:70:79:84:BF:1C:BC:EC:D0:19:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f1a410b-4fcb-46b7-92eb-4e2730e01468.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.126.25.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:0c:ee:3f:bf:81:6f:7d:d4:d7:f8:11:7b:f9:0d:ff:22:33: 5b:02:a4:b1:68:68:48:7b:8a:89:10:bb:13:5a:11:58:d2:26: 4c:fb:65:e8:65:e7:53:c3:e0:df:a0:7c:f1:ff:b2:3a:57:39: 2f:20:61:8c:6e:7c:cc:f1:26:d8:c4:fd:4d:0f:31:d3:45:97: 4e:44:97:4c:56:8a:7a:90:2d:a0:62:11:33:1e:72:ec:f6:9b: b4:b9:ed:2a:19:86:49:aa:d1:11:2f:fc:44:96:59:29:b4:b9: 4f:c5:9c:3a:23:af:d8:65:df:96:86:5d:4d:ef:ce:c6:7b:88: d4:67:cd:0c:4d:dc:c1:96:6b:d7:88:19:7f:75:9e:59:a0:3a: 0e:00:4d:82:3e:15:94:a2:4e:ce:12:87:20:93:01:4a:83:7e: 9e:b5:c3:17:18:5c:87:ce:c8:d4:67:53:f7:1a:5c:67:0f:9f: 8f:64:43:99:2c:02:70:ea:e7:ae:70:93:e0:1f:39:0b:d2:0f: 36:96:6a:b6:ee:20:e8:2c:f6:44:8b:46:39:7a:e0:27:cf:3d: 2e:b5:32:ef:64:13:69:3c:1c:84:6b:49:de:65:8b:fc:e6:7c: 04:cf:1e:a9:9c:da:97:99:33:b2:9d:ce:03:2c:e8:52:d1:e1: 8c:dd:f3:26 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW6kIVrFT9lAmf3e7Pd3jlQ1kZEIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzU1YTE2YTIxZTdmYjUzOTc4YWFhY2FhMDYxNWJjMWFm OGRmNWQxNGQyMGY2ZTM2NjU3N2JhYTY3NjI3ZGRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvyGMgL2Yplniv8puK4IFr4Wd1QymfkwB5KOsiWiy7Gg0B k87YNr4G/gsCq5ERNE6gJFD5MY7e+zgG05DydJZ4xvMYS+wYAO5PZHxFO2ZOuPM9 +xEoQi4gCxag5C0mnhalpd96aEPP+j4q8x/m3jfSJT9k6CrIKL3whmUxyZVc90RH dWuvlvKHVq11M23VP+DYLCgt8ugU+nvimOhhAJr9yBq3XBlPOZDUllPoPNfSzZtY U25AIHuCOjOjmblg2NM1huFZAlyiNkCpEDhtcJGQ+i2a8oNXAk1Qhx6ntttVVGFn fgoOhi06rhbQ1ycA6F9ogZSgFOvCYO/cUlKPVOR/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOPYnWkMlt9TcJHB5hL8cvOzQGeIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmMWE0MTBiLTRmY2ItNDZiNy05MmViLTRlMjczMGUwMTQ2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADMfhkwDQYJKoZIhvcNAQELBQADggEBABsM7j+/gW991Nf4EXv5Df8iM1sC pLFoaEh7iokQuxNaEVjSJkz7Zehl51PD4N+gfPH/sjpXOS8gYYxufMzxJtjE/U0P MdNFl05El0xWinqQLaBiETMecuz2m7S57SoZhkmq0REv/ESWWSm0uU/FnDojr9hl 35aGXU3vzsZ7iNRnzQxN3MGWa9eIGX91nlmgOg4ATYI+FZSiTs4ShyCTAUqDfp61 wxcYXIfOyNRnU/caXGcPn49kQ5ksAnDq565wk+AfOQvSDzaWarbuIOgs9kSLRjl6 4CfPPS61Mu9kE2k8HIRrSd5li/zmfATPHqmc2peZM7KdzgMs6FLR4Yzd8yY= -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:19 2024 by rpki-client on console-ams.rpki-client.org