$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a34f9a6-7325-43d5-bbdf-7c482123b59f.roa File: 9a34f9a6-7325-43d5-bbdf-7c482123b59f.roa (raw, json) Hash identifier: mC9D25KkvBEOJk4M2YzpNcizmaHHIAF8L0z4oCxyTfs= Subject key identifier: C9:85:D9:3F:B2:58:3F:B9:7F:07:FD:92:ED:F0:69:BF:D0:51:FF:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27661BC0A263C66BA043B4CB09FE2EFF21D77F8A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a34f9a6-7325-43d5-bbdf-7c482123b59f.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 56.240.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:66:1b:c0:a2:63:c6:6b:a0:43:b4:cb:09:fe:2e:ff:21:d7:7f:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=6d27cda445db535ac4ffd601e43da26a9545e74f3ed2a1ee21ace11d08de6040, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d9:81:bb:7b:0a:a1:db:db:a1:b5:ec:85:8f: 0b:fc:9b:aa:d5:12:5a:02:67:d8:bf:dd:19:39:62: 68:11:f3:66:de:36:44:6c:5b:14:81:5b:1e:20:fd: 9e:f4:c6:d0:b1:ea:f5:e4:59:1f:4b:0e:d5:32:2f: 96:e9:5e:07:b2:7f:93:77:28:f1:8c:8d:27:29:29: f5:30:24:e4:45:2c:fc:e3:4c:52:5d:01:b5:c5:59: 85:1f:06:7c:dc:79:1a:56:cf:0a:bf:64:58:10:f2: 12:d4:58:c5:9a:72:c6:de:17:4a:9d:01:03:2c:75: f6:40:9a:32:09:90:89:53:43:79:4b:2c:e8:cc:c3: fe:cb:85:79:78:d1:02:72:1c:bc:8f:29:20:53:4d: 49:8f:a9:8a:83:9b:90:7d:17:35:87:f2:2f:75:10: a0:15:20:1f:bb:a9:1c:1d:60:ec:3f:20:72:9d:e3: 99:09:14:75:14:29:82:0f:92:30:08:40:5e:e8:be: f1:4a:28:bc:3d:6a:9c:4a:1d:b2:37:2f:80:39:5c: 30:4a:9c:eb:dc:5a:f5:13:e7:75:4f:19:72:6b:99: 3f:5d:7b:c0:8e:a1:7f:72:2d:93:a9:9c:ac:40:fb: 9e:61:6b:05:c5:5a:13:03:4a:f5:fb:d3:72:49:c6: af:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:85:D9:3F:B2:58:3F:B9:7F:07:FD:92:ED:F0:69:BF:D0:51:FF:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a34f9a6-7325-43d5-bbdf-7c482123b59f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.240.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:e9:20:27:2d:96:60:eb:9e:ae:19:8e:96:6d:5e:00:a0:6c: e8:ec:b7:e8:5e:5e:01:c8:77:5b:4b:2d:42:7d:78:1d:e9:e9: 71:2a:0f:38:ec:d2:5c:39:66:b6:f2:df:84:23:1b:9d:e2:a4: b7:0b:49:73:ac:55:11:b9:e6:f7:45:53:b6:e9:35:b1:27:64: 9e:be:13:8f:66:55:c2:34:d9:d0:11:61:65:ac:98:f9:42:5f: 96:a8:ab:69:a7:98:3d:89:7b:c2:ec:ac:b2:57:96:d2:10:00: 0a:18:16:c4:66:51:4c:ef:19:5d:ca:85:8a:86:9a:3b:53:4e: ed:af:08:dc:b9:bd:84:fb:da:bf:23:25:06:af:bd:cd:b1:d4: 75:07:d1:6a:ed:26:9f:dd:03:14:86:93:ae:e5:98:f2:57:f0: 1f:de:97:5c:7a:94:c3:03:83:69:dc:cc:fa:1d:c7:7c:f1:65: fc:d4:5c:9e:61:8c:8d:46:23:96:26:de:77:fe:49:35:69:f1: 41:89:b7:20:d1:58:e7:df:cd:e1:c6:1c:3e:fe:e5:17:fe:03: a5:d3:e0:48:ff:dd:69:de:84:4e:39:28:aa:92:62:51:cb:c0: 7a:63:48:89:b0:9c:32:ce:81:ee:61:1a:58:0b:1b:8d:e5:38: 7e:f6:58:0d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJ2YbwKJjxmugQ7TLCf4u/yHXf4owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDI3Y2RhNDQ1ZGI1MzVhYzRmZmQ2MDFlNDNkYTI2YTk1 NDVlNzRmM2VkMmExZWUyMWFjZTExZDA4ZGU2MDQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ2YG7ewqh29uhteyFjwv8m6rVEloCZ9i/3Rk5YmgR82be NkRsWxSBWx4g/Z70xtCx6vXkWR9LDtUyL5bpXgeyf5N3KPGMjScpKfUwJORFLPzj TFJdAbXFWYUfBnzceRpWzwq/ZFgQ8hLUWMWacsbeF0qdAQMsdfZAmjIJkIlTQ3lL LOjMw/7LhXl40QJyHLyPKSBTTUmPqYqDm5B9FzWH8i91EKAVIB+7qRwdYOw/IHKd 45kJFHUUKYIPkjAIQF7ovvFKKLw9apxKHbI3L4A5XDBKnOvcWvUT53VPGXJrmT9d e8COoX9yLZOpnKxA+55hawXFWhMDSvX703JJxq9FAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyYXZP7JYP7l/B/2S7fBpv9BR/yowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhMzRmOWE2LTczMjUtNDNkNS1iYmRmLTdjNDgyMTIzYjU5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA48DANBgkqhkiG9w0BAQsFAAOCAQEAAOkgJy2WYOuerhmOlm1eAKBs6Oy3 6F5eAch3W0stQn14HenpcSoPOOzSXDlmtvLfhCMbneKktwtJc6xVEbnm90VTtuk1 sSdknr4Tj2ZVwjTZ0BFhZayY+UJflqiraaeYPYl7wuyssleW0hAAChgWxGZRTO8Z XcqFioaaO1NO7a8I3Lm9hPvavyMlBq+9zbHUdQfRau0mn90DFIaTruWY8lfwH96X XHqUwwODadzM+h3HfPFl/NRcnmGMjUYjlibed/5JNWnxQYm3INFY59/N4cYcPv7l F/4DpdPgSP/dad6ETjkoqpJiUcvAemNIibCcMs6B7mEaWAsbjeU4fvZYDQ== -----END CERTIFICATE-----Generated at Thu May 2 03:11:35 2024 by rpki-client on console-ams.rpki-client.org