$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c081ceb3-c25b-4b93-b50e-5403edadd6f7.roa File: c081ceb3-c25b-4b93-b50e-5403edadd6f7.roa (raw, json) Hash identifier: XhLFXCvxzKv2dNHPQSwAH97vNE/0BNlYtCklhy1jggk= Subject key identifier: 56:1E:15:B7:95:EA:FF:AD:0C:2D:0F:D7:1B:1B:65:FA:EB:84:85:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2476F85DBB1AF1B9FAF6E473BE6C576CFD352975 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c081ceb3-c25b-4b93-b50e-5403edadd6f7.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 54.116.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:76:f8:5d:bb:1a:f1:b9:fa:f6:e4:73:be:6c:57:6c:fd:35:29:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=22dddf63ae548919ae72c2f41663fb6b047aa777d3a74da566195b68def31bef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:57:91:b7:18:3e:a6:cf:3f:55:7c:dc:87:0d: 3d:02:68:18:a1:25:94:31:25:e7:16:ae:19:a1:b7: f0:0e:fc:e4:0e:46:a3:97:7e:7e:55:17:33:60:dd: 23:dd:03:4f:38:60:6b:f1:13:1d:c0:0f:de:37:c7: 28:f6:6b:b0:70:80:cf:b9:8a:70:42:2a:a2:81:93: a5:fe:cf:d5:91:4d:4c:f8:f1:e5:c1:98:ac:ce:fe: ae:27:da:2b:a8:e2:f4:2c:88:43:40:96:80:bc:2a: 89:3c:ac:f9:54:33:6e:84:e9:b6:83:3b:fc:e0:e6: 6c:3c:26:d2:5d:c2:27:d0:69:23:a4:f1:0b:d9:21: 26:83:45:bf:48:5f:03:3e:6d:b7:58:bc:34:b9:69: 5f:a8:14:03:25:b8:85:9b:03:61:53:ba:da:fe:f2: bb:3a:64:1e:49:56:b9:40:31:e4:f2:fb:4c:c1:21: 9a:59:e8:32:dc:32:cf:b8:06:78:8f:b2:0e:02:82: e5:1e:10:96:32:fc:5c:3e:10:6e:23:7b:19:f4:e8: 5c:df:55:6d:51:5f:5c:3c:ed:4b:c3:43:1c:7b:a3: 4f:7b:fa:63:74:49:2a:80:14:f9:64:15:00:06:f9: f1:82:3d:b9:ec:0e:f1:91:e6:9e:ef:da:14:f1:50: bc:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:1E:15:B7:95:EA:FF:AD:0C:2D:0F:D7:1B:1B:65:FA:EB:84:85:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c081ceb3-c25b-4b93-b50e-5403edadd6f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.116.0.0/15 Signature Algorithm: sha256WithRSAEncryption 10:0b:66:c8:7d:fc:02:5c:b9:a7:e4:5a:fb:48:45:be:02:2a: aa:75:d4:48:2c:cb:02:c0:2c:4c:70:e6:d3:3f:31:50:25:23: 55:6f:29:f5:ae:95:af:5c:57:13:52:e6:8b:0f:1f:4b:d5:0d: aa:65:84:c7:42:96:bd:0b:da:a2:12:ef:f7:20:34:6c:93:34: 49:78:0b:1b:71:57:81:12:09:93:77:00:76:c9:78:6d:45:43: d6:6b:de:6d:09:4c:03:73:0e:96:a3:1d:10:4e:44:e2:ac:74: 06:15:d8:50:e6:54:ad:7f:27:90:a8:7c:a0:d6:f4:74:2f:65: 05:86:3c:1e:2c:7b:60:e4:8e:49:2e:b3:6d:cb:a4:e6:53:07: 9b:ff:8b:28:39:c3:61:90:75:34:6b:88:48:76:6b:e2:58:e0: 60:53:0c:a9:aa:37:8c:12:74:5a:3b:5c:d5:36:00:9f:37:04: ec:62:e8:91:df:6d:4c:f1:6c:94:2a:01:dd:2a:45:43:95:2f: de:61:06:e3:64:c9:72:67:fa:7b:0a:01:08:c6:8d:f8:5b:57: b0:28:12:59:c9:80:53:c1:af:77:cf:58:4f:22:39:13:a9:b5: d8:98:d9:aa:5d:35:f5:34:09:da:b4:e6:45:77:f7:d7:fd:6f: fb:c8:9d:f6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJHb4Xbsa8bn69uRzvmxXbP01KXUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmRkZGY2M2FlNTQ4OTE5YWU3MmMyZjQxNjYzZmI2YjA0 N2FhNzc3ZDNhNzRkYTU2NjE5NWI2OGRlZjMxYmVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/V5G3GD6mzz9VfNyHDT0CaBihJZQxJecWrhmht/AO/OQO RqOXfn5VFzNg3SPdA084YGvxEx3AD943xyj2a7BwgM+5inBCKqKBk6X+z9WRTUz4 8eXBmKzO/q4n2iuo4vQsiENAloC8Kok8rPlUM26E6baDO/zg5mw8JtJdwifQaSOk 8QvZISaDRb9IXwM+bbdYvDS5aV+oFAMluIWbA2FTutr+8rs6ZB5JVrlAMeTy+0zB IZpZ6DLcMs+4BniPsg4CguUeEJYy/Fw+EG4jexn06FzfVW1RX1w87UvDQxx7o097 +mN0SSqAFPlkFQAG+fGCPbnsDvGR5p7v2hTxULzFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVh4Vt5Xq/60MLQ/XGxtl+uuEhW0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwODFjZWIzLWMyNWItNGI5My1iNTBlLTU0MDNlZGFkZDZmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2dDANBgkqhkiG9w0BAQsFAAOCAQEAEAtmyH38Aly5p+Ra+0hFvgIqqnXU SCzLAsAsTHDm0z8xUCUjVW8p9a6Vr1xXE1Lmiw8fS9UNqmWEx0KWvQvaohLv9yA0 bJM0SXgLG3FXgRIJk3cAdsl4bUVD1mvebQlMA3MOlqMdEE5E4qx0BhXYUOZUrX8n kKh8oNb0dC9lBYY8Hix7YOSOSS6zbcuk5lMHm/+LKDnDYZB1NGuISHZr4ljgYFMM qao3jBJ0Wjtc1TYAnzcE7GLokd9tTPFslCoB3SpFQ5Uv3mEG42TJcmf6ewoBCMaN +FtXsCgSWcmAU8Gvd89YTyI5E6m12JjZql019TQJ2rTmRXf31/1v+8id9g== -----END CERTIFICATE-----Generated at Thu Apr 25 16:16:35 2024 by rpki-client on console-fra.rpki-client.org