$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/936d609c-099a-4268-ba06-ec0b1684c9e4.roa File: 936d609c-099a-4268-ba06-ec0b1684c9e4.roa (raw, json) Hash identifier: G7vceAFDF7HkrGkjs+AbqJDOwFnRVapLLhj2n1d8hpo= Subject key identifier: FC:99:29:78:BE:EC:82:1B:88:67:BA:3B:3C:97:C9:D8:18:BA:A2:74 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15E20F84F074BD35ACBF2DC98FC35937487AFE2F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/936d609c-099a-4268-ba06-ec0b1684c9e4.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 54.20.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:e2:0f:84:f0:74:bd:35:ac:bf:2d:c9:8f:c3:59:37:48:7a:fe:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=3be60791bd0bad3393951b6a7b125d3260a35a7c460be3a67f50a5709e7cc77f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e7:e0:6a:77:34:d4:6b:da:af:da:b8:03:e0: ee:d0:ab:e2:ba:af:e1:60:56:a4:72:88:0c:d9:1d: ce:f5:6b:73:bc:b5:3a:9b:2d:b4:43:3a:37:ac:cc: c7:04:7a:3e:4e:8c:16:ca:68:f8:88:5d:13:b8:05: 40:28:2f:ff:95:23:82:ec:b5:29:65:1a:b9:5b:7d: 46:21:c4:83:8c:90:44:a7:ae:62:30:49:34:d2:26: 76:d8:8b:23:ac:34:14:61:29:6c:ff:01:74:e6:87: fa:8a:f2:79:18:b1:1a:de:d2:e1:2f:5c:fc:5b:49: 78:ea:e0:20:5c:3c:70:00:43:d0:f4:d8:0e:be:63: 09:99:45:df:6e:36:bd:05:26:c4:5e:fd:7d:b6:cb: a3:14:0c:61:a1:cf:07:1b:c4:15:64:5d:af:f0:77: c1:44:5f:c1:34:af:b3:73:87:de:cc:1c:48:31:c4: b7:35:99:1b:4a:70:50:31:d0:63:4c:d6:a9:f0:5b: f9:eb:e3:36:10:ff:cc:70:e1:d4:83:77:b8:37:d0: 9e:c6:45:a1:73:df:6e:12:ef:e1:bd:90:6e:a7:a6: a3:04:50:49:68:8f:fa:9a:49:0d:16:1f:ff:5e:9c: f2:ed:36:b3:fb:69:6d:b4:03:74:a0:60:ea:c7:0a: 0c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:99:29:78:BE:EC:82:1B:88:67:BA:3B:3C:97:C9:D8:18:BA:A2:74 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/936d609c-099a-4268-ba06-ec0b1684c9e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 22:51:07:41:67:06:28:44:9e:14:2a:69:2f:6f:81:3d:81:bd: a3:a2:7a:c3:c4:36:b9:da:78:c3:de:a5:e8:9a:4a:26:91:fe: 6a:e4:b2:34:92:fb:6c:9a:bf:bd:eb:a9:f9:c5:9c:c6:1b:e8: e5:7c:00:d4:96:3b:24:3e:d2:b4:3c:cd:cc:88:1e:4d:36:72: 02:46:f8:0e:33:77:b4:63:5f:cc:5e:5f:90:b1:2e:de:81:c5: 31:6f:47:28:3c:a6:69:e4:d1:8b:0e:c5:63:aa:3f:22:24:26: 5e:70:42:75:32:6d:03:f6:c9:ff:89:8b:9c:85:5f:ee:1f:dd: b0:8e:43:e4:5f:a8:11:bc:08:d4:32:9f:a1:02:cc:29:4a:f0: c3:b1:e6:0b:35:80:85:13:8c:c1:92:53:9c:32:49:c5:d5:2b: 34:c0:f6:f2:69:e0:8f:44:b0:2d:dc:98:73:7f:1a:21:9f:09: b1:7a:17:02:78:6d:8b:ce:64:7a:6b:19:b3:f9:6b:7f:a0:d9: d9:b9:a6:28:64:8e:b0:c0:ca:fd:a5:ec:3b:df:b2:aa:5f:6e: 29:05:02:2c:91:ba:b9:81:a5:ed:c0:21:30:59:24:c4:6a:fb: 71:54:53:18:ab:b2:6c:07:e0:bc:6d:4c:aa:a3:e3:96:22:60: 66:d4:cb:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFeIPhPB0vTWsvy3Jj8NZN0h6/i8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYmU2MDc5MWJkMGJhZDMzOTM5NTFiNmE3YjEyNWQzMjYw YTM1YTdjNDYwYmUzYTY3ZjUwYTU3MDllN2NjNzdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV5+BqdzTUa9qv2rgD4O7Qq+K6r+FgVqRyiAzZHc71a3O8 tTqbLbRDOjeszMcEej5OjBbKaPiIXRO4BUAoL/+VI4LstSllGrlbfUYhxIOMkESn rmIwSTTSJnbYiyOsNBRhKWz/AXTmh/qK8nkYsRre0uEvXPxbSXjq4CBcPHAAQ9D0 2A6+YwmZRd9uNr0FJsRe/X22y6MUDGGhzwcbxBVkXa/wd8FEX8E0r7Nzh97MHEgx xLc1mRtKcFAx0GNM1qnwW/nr4zYQ/8xw4dSDd7g30J7GRaFz324S7+G9kG6npqME UEloj/qaSQ0WH/9enPLtNrP7aW20A3SgYOrHCgwxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/JkpeL7sghuIZ7o7PJfJ2Bi6onQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkzNmQ2MDljLTA5OWEtNDI2OC1iYTA2LWVjMGIxNjg0YzllNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2FDANBgkqhkiG9w0BAQsFAAOCAQEAIlEHQWcGKESeFCppL2+BPYG9o6J6 w8Q2udp4w96l6JpKJpH+auSyNJL7bJq/veup+cWcxhvo5XwA1JY7JD7StDzNzIge TTZyAkb4DjN3tGNfzF5fkLEu3oHFMW9HKDymaeTRiw7FY6o/IiQmXnBCdTJtA/bJ /4mLnIVf7h/dsI5D5F+oEbwI1DKfoQLMKUrww7HmCzWAhROMwZJTnDJJxdUrNMD2 8mngj0SwLdyYc38aIZ8JsXoXAnhti85kemsZs/lrf6DZ2bmmKGSOsMDK/aXsO9+y ql9uKQUCLJG6uYGl7cAhMFkkxGr7cVRTGKuybAfgvG1MqqPjliJgZtTLKw== -----END CERTIFICATE-----Generated at Thu May 9 01:26:19 2024 by rpki-client on console-ams.rpki-client.org