$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1564f4a-7df0-4932-af96-1ebffff2e421.roa File: b1564f4a-7df0-4932-af96-1ebffff2e421.roa (raw, json) Hash identifier: LQRX3diT/X7jVvYYCX74xoh2it9YorpLPDlus3H558U= Subject key identifier: 27:50:2D:53:4F:BC:02:6C:A2:07:6C:B2:6E:82:98:45:F8:84:8E:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F8CBD93CA0CE60D3EAD111F5C9898FF96D80444 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1564f4a-7df0-4932-af96-1ebffff2e421.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 72.29.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:8c:bd:93:ca:0c:e6:0d:3e:ad:11:1f:5c:98:98:ff:96:d8:04:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=7961797428e3ce30170b27afc02c6635f70bd648b3e749d14b2951fcebe89f51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:90:ec:ed:0d:e7:d4:44:be:33:86:72:fa:c2: 2d:b3:95:57:49:0d:69:47:8c:3c:b0:25:29:68:46: db:77:24:68:01:c1:aa:8d:b6:2d:be:17:cb:f9:1b: 20:90:3f:07:9b:1e:d9:05:93:55:9b:99:4b:20:43: 76:10:d7:e6:f4:03:f9:00:1f:a6:49:35:b9:74:b8: 8d:39:4c:31:6d:d9:ee:42:80:bb:93:eb:d7:45:d3: d0:ce:3a:e9:73:a6:31:30:e3:d6:89:bc:3e:78:67: 37:d2:43:57:c3:c8:2d:02:b6:b9:64:77:a7:e2:c3: 19:35:e4:a8:5d:45:a4:ce:35:85:8f:67:a8:9c:78: d3:82:7a:34:40:39:5c:57:01:c4:aa:c2:ee:1f:d7: b6:64:2c:dd:61:f7:d5:35:fe:40:99:63:09:89:c6: a4:57:9f:6e:ce:ec:76:86:78:b0:e3:81:f3:0e:d3: 5b:6f:11:68:1f:e7:14:88:fe:6b:9c:ba:9a:25:3f: 53:81:89:e1:b0:35:0c:34:61:c6:3a:18:00:53:b2: f9:d2:88:3c:af:b0:02:62:6f:c0:35:42:56:c1:50: fc:05:fb:3e:84:fd:5e:1d:d2:64:0b:34:fa:c0:aa: bd:5b:b9:db:ec:57:9f:4d:e8:14:4b:1a:57:94:79: f9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:50:2D:53:4F:BC:02:6C:A2:07:6C:B2:6E:82:98:45:F8:84:8E:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1564f4a-7df0-4932-af96-1ebffff2e421.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.29.0.0/19 Signature Algorithm: sha256WithRSAEncryption ad:99:36:a7:cb:c7:37:48:d5:fa:7f:45:9d:38:dc:39:bf:a2: 4e:63:75:26:07:16:cd:f7:87:eb:22:d7:0d:5f:64:50:b0:5f: e5:96:76:51:f4:43:a7:e6:43:3b:1a:49:b1:77:3a:14:01:d7: 78:41:64:84:a1:a5:e7:66:0f:6b:05:2f:a1:48:57:a7:f0:11: 03:2e:81:dd:1c:ac:2a:c5:5d:eb:31:93:e2:5d:57:ab:38:bd: 7f:3e:e2:9c:00:d4:45:e2:ce:57:83:56:b8:38:a8:55:30:dd: d9:e2:77:77:44:39:da:94:c6:cd:55:6d:85:f8:a6:8c:b8:06: 33:38:aa:78:8b:20:05:3b:94:2c:84:1a:5e:05:2f:2f:93:a0: 9d:1f:2e:ca:8a:3a:19:c5:e2:41:a7:9e:b1:23:37:54:5c:53: 42:70:ab:6b:64:75:4e:06:f3:f5:5a:e6:71:7f:db:8e:ab:23: 42:73:81:90:1f:7d:51:ca:90:3d:42:f7:1d:e8:8c:68:17:b6: ae:ba:db:f2:15:f4:d9:02:01:42:99:8e:b7:25:32:5c:96:ad: 34:79:5b:bb:8e:b1:ee:9e:0c:d6:51:f7:b2:33:83:da:65:12: cb:bc:5a:35:96:09:03:74:8c:5d:bb:6e:35:85:ea:9e:de:83: 1a:e7:1c:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf4y9k8oM5g0+rREfXJiY/5bYBEQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTYxNzk3NDI4ZTNjZTMwMTcwYjI3YWZjMDJjNjYzNWY3 MGJkNjQ4YjNlNzQ5ZDE0YjI5NTFmY2ViZTg5ZjUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1kOztDefURL4zhnL6wi2zlVdJDWlHjDywJSloRtt3JGgB waqNti2+F8v5GyCQPwebHtkFk1WbmUsgQ3YQ1+b0A/kAH6ZJNbl0uI05TDFt2e5C gLuT69dF09DOOulzpjEw49aJvD54ZzfSQ1fDyC0Ctrlkd6fiwxk15KhdRaTONYWP Z6iceNOCejRAOVxXAcSqwu4f17ZkLN1h99U1/kCZYwmJxqRXn27O7HaGeLDjgfMO 01tvEWgf5xSI/mucupolP1OBieGwNQw0YcY6GABTsvnSiDyvsAJib8A1QlbBUPwF +z6E/V4d0mQLNPrAqr1budvsV59N6BRLGleUeflhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJ1AtU0+8AmyiB2yyboKYRfiEjmkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxNTY0ZjRhLTdkZjAtNDkzMi1hZjk2LTFlYmZmZmYyZTQyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVIHQAwDQYJKoZIhvcNAQELBQADggEBAK2ZNqfLxzdI1fp/RZ043Dm/ok5j dSYHFs33h+si1w1fZFCwX+WWdlH0Q6fmQzsaSbF3OhQB13hBZIShpedmD2sFL6FI V6fwEQMugd0crCrFXesxk+JdV6s4vX8+4pwA1EXizleDVrg4qFUw3dnid3dEOdqU xs1VbYX4poy4BjM4qniLIAU7lCyEGl4FLy+ToJ0fLsqKOhnF4kGnnrEjN1RcU0Jw q2tkdU4G8/Va5nF/246rI0JzgZAffVHKkD1C9x3ojGgXtq662/IV9NkCAUKZjrcl MlyWrTR5W7uOse6eDNZR97Izg9plEsu8WjWWCQN0jF27bjWF6p7egxrnHNA= -----END CERTIFICATE-----Generated at Fri Apr 26 03:49:36 2024 by rpki-client on console-ams.rpki-client.org