$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c254d5da-a5dc-406d-bc41-b6d5b53f8199.roa File: c254d5da-a5dc-406d-bc41-b6d5b53f8199.roa (raw, json) Hash identifier: WfugBLIpkrucGrerxS+kDT9bFR4ObA296xrRV43itAM= Subject key identifier: F0:9E:4F:6F:86:EB:3E:E0:F2:CE:51:C3:69:65:E8:1F:0F:F0:83:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2449CFD1C916FEC00EEB23F7F96BE0794E8A4AE4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c254d5da-a5dc-406d-bc41-b6d5b53f8199.roa Signing time: Tue 30 Apr 2024 00:00:00 +0000 ROA not before: Tue 30 Apr 2024 00:00:00 +0000 ROA not after: Tue 04 Jun 2024 23:59:59 +0000 asID: 14618 IP address blocks: 147.115.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:49:cf:d1:c9:16:fe:c0:0e:eb:23:f7:f9:6b:e0:79:4e:8a:4a:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 30 00:00:00 2024 GMT Not After : Jun 4 23:59:59 2024 GMT Subject: serialNumber=a67e2597694e8aa8ec14d48b8dddea36067f6ba07adbc480bcfd3633ef34ba68, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:da:ec:a1:45:bf:e5:36:10:54:69:5b:c4:a8: 39:64:12:4b:bf:15:40:81:99:d2:4f:9f:7e:42:d1: 69:39:cb:6d:52:ed:28:a6:de:83:86:35:1b:e5:f8: 4f:aa:6e:20:41:23:85:1c:62:03:09:f7:14:38:e3: b5:ce:ea:64:88:bc:f6:ee:e7:0b:8c:e7:a3:ce:85: 1c:7e:cb:f0:6d:dd:1d:8a:b1:6c:e4:25:1f:ff:e0: 0b:e7:c4:13:cf:15:b7:c2:b7:1d:a3:e3:97:0b:9d: ce:41:00:ff:31:a1:5f:17:13:03:7c:27:64:5e:3f: d5:9e:b8:8a:cc:d2:18:c4:56:85:dc:07:41:d2:10: cc:57:b8:98:bb:d0:26:5b:2c:d7:65:33:b4:02:6a: 42:3d:4b:d0:57:39:25:34:72:eb:6a:f1:6d:b6:57: 35:d6:cc:fe:d3:f0:cf:2b:82:b1:77:c8:e4:6b:bf: 82:3e:d7:28:67:0a:4b:52:8c:c3:f9:f1:30:b8:05: 14:07:62:ef:03:1f:6b:56:ca:6b:53:4f:5e:73:b9: 61:1b:e2:de:3e:96:69:d9:77:60:9d:ef:7d:b8:b8: f4:0b:4c:d6:a6:42:bc:c3:fc:7b:1f:00:43:dd:be: 9b:89:23:83:35:a0:11:a6:7c:a6:16:59:3f:a5:68: 68:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:9E:4F:6F:86:EB:3E:E0:F2:CE:51:C3:69:65:E8:1F:0F:F0:83:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c254d5da-a5dc-406d-bc41-b6d5b53f8199.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.115.0.0/16 Signature Algorithm: sha256WithRSAEncryption 31:25:72:e2:0a:eb:f3:d4:c8:4e:51:fd:f2:8e:5b:20:03:32: 7e:b3:2d:bf:e2:7d:28:9f:b2:12:f0:07:83:dc:6d:81:78:bf: e2:31:c4:13:1c:b0:3c:d6:fe:8c:95:ce:39:ea:2a:ed:ba:7c: 6c:5a:17:92:9a:a2:df:a1:33:98:ed:45:0d:db:59:0e:78:9f: a4:fb:16:2d:d4:29:73:8c:9f:9b:4d:c6:08:7c:c1:ae:d1:c5: 72:89:44:7f:6c:46:d8:16:6b:d5:e9:bc:df:47:eb:bf:5b:39: 52:65:12:18:24:3b:53:95:e9:89:fb:27:3b:80:96:34:ed:98: 30:5d:66:fe:97:bc:e7:2a:06:c0:17:de:9e:4c:8b:d2:e3:fc: 00:04:b9:65:84:8a:ef:5b:01:a4:3d:eb:b4:fd:8e:cd:98:18: 6f:2c:30:35:e8:c0:0a:1e:e3:e1:f1:d1:ae:04:d5:bf:42:ba: d2:73:d1:4d:e9:53:f6:d6:ae:72:b8:55:d4:8a:c3:96:3e:e6: 88:44:46:66:75:63:27:ab:ef:35:53:4b:36:b3:ae:f6:80:b2: 03:14:38:d6:e3:b2:86:61:30:b6:f0:e2:8e:65:48:82:9d:6f: db:51:25:a7:2a:f0:63:41:82:bc:58:fa:82:77:89:21:97:b1: 10:08:85:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJEnP0ckW/sAO6yP3+WvgeU6KSuQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDMwMDAwMDAwWhcNMjQwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjdlMjU5NzY5NGU4YWE4ZWMxNGQ0OGI4ZGRkZWEzNjA2 N2Y2YmEwN2FkYmM0ODBiY2ZkMzYzM2VmMzRiYTY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK2uyhRb/lNhBUaVvEqDlkEku/FUCBmdJPn35C0Wk5y21S 7Sim3oOGNRvl+E+qbiBBI4UcYgMJ9xQ447XO6mSIvPbu5wuM56POhRx+y/Bt3R2K sWzkJR//4AvnxBPPFbfCtx2j45cLnc5BAP8xoV8XEwN8J2ReP9WeuIrM0hjEVoXc B0HSEMxXuJi70CZbLNdlM7QCakI9S9BXOSU0cutq8W22VzXWzP7T8M8rgrF3yORr v4I+1yhnCktSjMP58TC4BRQHYu8DH2tWymtTT15zuWEb4t4+lmnZd2Cd7324uPQL TNamQrzD/HsfAEPdvpuJI4M1oBGmfKYWWT+laGgjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8J5Pb4brPuDyzlHDaWXoHw/wg/gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyNTRkNWRhLWE1ZGMtNDA2ZC1iYzQxLWI2ZDViNTNmODE5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCTczANBgkqhkiG9w0BAQsFAAOCAQEAMSVy4grr89TITlH98o5bIAMyfrMt v+J9KJ+yEvAHg9xtgXi/4jHEExywPNb+jJXOOeoq7bp8bFoXkpqi36EzmO1FDdtZ DnifpPsWLdQpc4yfm03GCHzBrtHFcolEf2xG2BZr1em830frv1s5UmUSGCQ7U5Xp ifsnO4CWNO2YMF1m/pe85yoGwBfenkyL0uP8AAS5ZYSK71sBpD3rtP2OzZgYbyww NejACh7j4fHRrgTVv0K60nPRTelT9taucrhV1IrDlj7miERGZnVjJ6vvNVNLNrOu 9oCyAxQ41uOyhmEwtvDijmVIgp1v21ElpyrwY0GCvFj6gneJIZexEAiFCw== -----END CERTIFICATE-----Generated at Thu May 2 00:52:13 2024 by rpki-client on console-ams.rpki-client.org