$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa File: adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa (raw, json) Hash identifier: UXN6yiWbkaT29BSdnah9nYlqAJEXLd7IcMB/M1kalhM= Subject key identifier: A7:B0:03:D4:60:ED:DB:8B:D6:5A:40:73:8E:65:A5:B7:94:5F:CF:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 401966CCEEA7E1F02BA409415F707C7DCD0927C2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 5.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:19:66:cc:ee:a7:e1:f0:2b:a4:09:41:5f:70:7c:7d:cd:09:27:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=ef700a71b42eb5816db6c2cff7242cca42672e12b6e8f69b82f97670339ce99d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:15:88:f7:a0:9c:31:08:b7:dc:d1:6c:b9:3c: 78:b0:1a:01:cd:ba:ac:07:c4:ba:0e:ea:8d:50:9e: ae:6e:2b:3f:cf:ca:be:e5:0a:8e:d3:4e:ef:34:a1: b3:a6:34:b8:7a:fc:ba:63:39:ec:ec:a9:86:08:14: d2:ec:1e:ce:67:24:73:53:47:78:3e:77:de:72:b8: 22:1c:40:61:f8:4c:56:30:6a:14:23:bd:1b:2b:02: 28:13:1d:1e:bc:eb:50:9e:38:2d:ee:14:05:52:6b: 0c:54:ed:88:a1:36:ed:ce:e2:b2:dc:13:6f:88:a4: 63:78:06:98:36:c7:be:23:52:9f:47:8a:b3:77:7d: 1b:a8:ef:69:48:77:55:dc:20:58:b7:01:56:f8:a1: c7:a6:9b:21:17:19:25:6f:af:e3:06:95:cb:d5:1c: a9:4c:ff:ce:9a:24:0e:d0:e1:8d:7d:79:24:5a:0e: 51:4b:c0:b9:d8:a5:c9:5f:5f:9e:6c:51:0f:07:8c: 48:1f:4c:05:6a:82:24:dd:5c:e8:59:83:69:be:31: ce:bd:58:ce:96:77:e5:3b:5e:18:52:bd:df:f9:22: ce:e9:8a:cc:cc:d8:d5:3a:41:f0:5e:06:1e:99:23: 33:3a:20:1f:d6:ad:6d:d8:c4:b3:30:83:1a:0a:4c: 13:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B0:03:D4:60:ED:DB:8B:D6:5A:40:73:8E:65:A5:B7:94:5F:CF:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption a2:52:01:bc:4e:19:4b:42:85:6a:93:62:88:f6:ab:a7:01:44: 9b:da:c0:13:1d:fa:f7:fb:22:34:29:5d:4b:05:c1:3e:07:2b: 87:5d:a5:1b:e3:01:36:58:79:76:c1:d1:cb:41:96:11:4a:2e: 03:82:20:a7:0e:53:37:8f:9a:fd:ca:8c:74:bf:32:2f:d2:8b: 21:31:a0:83:55:62:67:6e:fa:1a:b8:f5:c0:d9:33:14:9b:52: 5e:53:56:ff:80:59:cd:3f:d2:ed:9c:98:1b:ce:cd:28:10:97: 26:4a:e3:62:31:52:78:f6:14:53:53:75:6b:8f:08:4b:56:42: 9a:41:eb:31:e0:77:bf:f2:c3:3b:69:23:49:4b:c1:d0:b6:cf: f0:1a:63:82:ca:25:90:ed:da:fe:c2:73:6e:b8:4b:03:2c:38: 09:53:1c:a8:7e:8d:c4:8d:d4:60:da:e6:9c:d2:0b:71:b9:ed: 50:58:53:e4:3d:38:b7:37:51:fc:5c:d9:7e:35:17:92:cd:a9: 19:db:00:21:7f:e8:a5:eb:79:1f:f1:92:c1:5e:9e:a4:c3:d9: 93:c0:09:f2:4a:3c:b8:9a:f7:da:c4:e3:1b:9c:c8:52:ac:86: 86:ab:fd:ca:01:8b:24:2f:b8:36:17:5f:d8:65:8a:c6:8d:8b: 79:4b:f3:f7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQBlmzO6n4fArpAlBX3B8fc0JJ8IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjcwMGE3MWI0MmViNTgxNmRiNmMyY2ZmNzI0MmNjYTQy NjcyZTEyYjZlOGY2OWI4MmY5NzY3MDMzOWNlOTlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcFYj3oJwxCLfc0Wy5PHiwGgHNuqwHxLoO6o1Qnq5uKz/P yr7lCo7TTu80obOmNLh6/LpjOezsqYYIFNLsHs5nJHNTR3g+d95yuCIcQGH4TFYw ahQjvRsrAigTHR6861CeOC3uFAVSawxU7YihNu3O4rLcE2+IpGN4Bpg2x74jUp9H irN3fRuo72lId1XcIFi3AVb4ocemmyEXGSVvr+MGlcvVHKlM/86aJA7Q4Y19eSRa DlFLwLnYpclfX55sUQ8HjEgfTAVqgiTdXOhZg2m+Mc69WM6Wd+U7XhhSvd/5Is7p iszM2NU6QfBeBh6ZIzM6IB/WrW3YxLMwgxoKTBM1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUp7AD1GDt24vWWkBzjmWlt5Rfz5YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkZjgxZGZhLTMyMWQtNDJhNC1hMWU3LWVlZmVjN2QwYTM4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAFPDANBgkqhkiG9w0BAQsFAAOCAQEAolIBvE4ZS0KFapNiiParpwFEm9rA Ex369/siNCldSwXBPgcrh12lG+MBNlh5dsHRy0GWEUouA4Igpw5TN4+a/cqMdL8y L9KLITGgg1ViZ276Grj1wNkzFJtSXlNW/4BZzT/S7ZyYG87NKBCXJkrjYjFSePYU U1N1a48IS1ZCmkHrMeB3v/LDO2kjSUvB0LbP8BpjgsolkO3a/sJzbrhLAyw4CVMc qH6NxI3UYNrmnNILcbntUFhT5D04tzdR/FzZfjUXks2pGdsAIX/opet5H/GSwV6e pMPZk8AJ8ko8uJr32sTjG5zIUqyGhqv9ygGLJC+4Nhdf2GWKxo2LeUvz9w== -----END CERTIFICATE-----Generated at Thu May 2 17:17:16 2024 by rpki-client on console-ams.rpki-client.org