$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf60a5f-128f-43e3-adb6-9c069dfcd386.roa File: adf60a5f-128f-43e3-adb6-9c069dfcd386.roa (raw, json) Hash identifier: KrBsKAiJvjSYTffOVrKdsyYUpIjvLjR8cWIvID69nSc= Subject key identifier: 23:7E:70:63:4B:DB:3F:F8:EE:01:8F:92:AC:22:7C:59:CC:14:13:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45A383BCA5DC50DFA743EE1838EC5DF0F946C091 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf60a5f-128f-43e3-adb6-9c069dfcd386.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 100.20.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a3:83:bc:a5:dc:50:df:a7:43:ee:18:38:ec:5d:f0:f9:46:c0:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=bcd92d0ab20e7fb016d8cd89dec2fbca563139c887e4a11a5644264e6a943a11, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:90:f5:e0:b1:b6:13:1d:50:ee:0e:28:85:c8: b1:b0:ec:87:66:73:22:c1:30:f7:7e:bd:6b:92:97: 09:3c:e6:53:99:c4:e9:8e:e5:34:df:da:9a:08:9c: 86:cb:57:6a:fa:6e:22:a6:c2:84:80:50:a0:e7:b3: 55:47:85:6c:99:b2:7b:fe:d9:e9:31:ce:ce:b7:b9: 25:cc:58:d6:5d:67:50:74:8b:65:fc:f7:cf:ad:ae: 3a:24:e1:39:a5:9d:fd:cc:c9:67:22:ea:8b:ec:d5: 3d:3a:2c:5a:eb:2d:f5:b6:5f:38:32:3d:ce:10:ed: 4e:75:d9:3e:86:b3:28:01:58:f8:f9:19:f4:dd:f8: 50:e1:7d:d6:cc:f4:c6:0b:6e:f6:c0:ee:fb:c3:ec: 1b:c1:8d:59:52:76:cc:ed:06:f5:fa:5f:ce:1d:a0: 9a:9a:37:5c:df:a7:ac:e9:d1:15:28:98:12:61:31: 2c:cc:95:63:f6:5f:49:65:9e:ff:d9:35:b0:55:4f: 05:b4:7e:65:5d:46:25:ee:b4:99:9b:19:1e:e1:36: 42:f0:cf:43:46:6f:61:ce:21:df:b2:0a:ee:bc:35: 2a:9d:94:c7:29:79:71:e6:3a:04:68:aa:34:40:f3: 78:bd:93:e0:fc:1a:f0:d6:02:84:ff:ce:ab:56:19: 94:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:7E:70:63:4B:DB:3F:F8:EE:01:8F:92:AC:22:7C:59:CC:14:13:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf60a5f-128f-43e3-adb6-9c069dfcd386.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 100.20.0.0/14 Signature Algorithm: sha256WithRSAEncryption 1e:ba:dd:bc:64:d3:a5:90:82:d7:12:0b:c6:0b:85:9c:d2:ca: 02:eb:f6:60:34:69:22:9f:fa:2c:95:86:6d:b6:1a:53:8b:5b: 40:fd:1b:99:dc:d5:04:cf:21:5d:8e:89:58:a3:17:24:63:47: 78:39:ef:45:e5:ba:b3:dd:fb:9b:d4:73:04:79:d4:ec:3c:58: 8f:9f:e7:72:c2:41:d0:22:99:17:2e:29:ca:e8:e4:85:95:6d: 10:a9:fb:4b:04:00:b6:2f:84:89:49:c8:b6:51:7e:33:5e:f9: 9b:40:ef:4e:93:c2:87:d5:c7:18:09:ac:7c:fe:80:9e:e6:bd: 2e:b4:ae:38:d3:67:77:aa:63:56:a9:04:95:b1:30:4e:ec:a0: f6:0b:75:3f:7a:99:6d:01:65:88:08:f5:9a:36:98:42:27:af: d4:f8:bd:91:d7:b0:6a:9a:56:47:91:9a:a8:59:31:ed:eb:61: d8:37:00:30:ee:75:92:e1:f2:cd:ac:c4:9c:d8:16:07:ea:0b: 84:b2:d9:1a:66:d9:f4:05:64:da:da:96:9b:b5:f0:ed:78:78: dd:58:56:a0:5b:ff:f5:d8:4c:f6:b2:55:cd:c4:94:6b:20:dd: 33:6b:19:33:cd:29:2a:a7:aa:37:43:91:fc:3b:10:36:86:e7: ed:3c:de:d6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURaODvKXcUN+nQ+4YOOxd8PlGwJEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2Q5MmQwYWIyMGU3ZmIwMTZkOGNkODlkZWMyZmJjYTU2 MzEzOWM4ODdlNGExMWE1NjQ0MjY0ZTZhOTQzYTExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCykPXgsbYTHVDuDiiFyLGw7IdmcyLBMPd+vWuSlwk85lOZ xOmO5TTf2poInIbLV2r6biKmwoSAUKDns1VHhWyZsnv+2ekxzs63uSXMWNZdZ1B0 i2X898+trjok4Tmlnf3MyWci6ovs1T06LFrrLfW2XzgyPc4Q7U512T6GsygBWPj5 GfTd+FDhfdbM9MYLbvbA7vvD7BvBjVlSdsztBvX6X84doJqaN1zfp6zp0RUomBJh MSzMlWP2X0llnv/ZNbBVTwW0fmVdRiXutJmbGR7hNkLwz0NGb2HOId+yCu68NSqd lMcpeXHmOgRoqjRA83i9k+D8GvDWAoT/zqtWGZRNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUI35wY0vbP/juAY+SrCJ8WcwUEzowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkZjYwYTVmLTEyOGYtNDNlMy1hZGI2LTljMDY5ZGZjZDM4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJkFDANBgkqhkiG9w0BAQsFAAOCAQEAHrrdvGTTpZCC1xILxguFnNLKAuv2 YDRpIp/6LJWGbbYaU4tbQP0bmdzVBM8hXY6JWKMXJGNHeDnvReW6s937m9RzBHnU 7DxYj5/ncsJB0CKZFy4pyujkhZVtEKn7SwQAti+EiUnItlF+M175m0DvTpPCh9XH GAmsfP6Anua9LrSuONNnd6pjVqkElbEwTuyg9gt1P3qZbQFliAj1mjaYQiev1Pi9 kdewappWR5GaqFkx7eth2DcAMO51kuHyzazEnNgWB+oLhLLZGmbZ9AVk2tqWm7Xw 7Xh43VhWoFv/9dhM9rJVzcSUayDdM2sZM80pKqeqN0OR/DsQNobn7Tze1g== -----END CERTIFICATE-----Generated at Thu May 2 08:51:11 2024 by rpki-client on console-fra.rpki-client.org