$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c448d31a-a303-4172-a8af-980ce51838a6.roa File: c448d31a-a303-4172-a8af-980ce51838a6.roa (raw, json) Hash identifier: mhP7A0EcBWJYHrFqG0AfXuAHZaun62qmgXmmTV152Ys= Subject key identifier: 2D:E7:1D:3D:CF:9C:56:83:A7:F0:92:C8:EB:5F:43:34:B2:02:91:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 687F212BF163A01EFE33F2FB0CC19CCFA2740846 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c448d31a-a303-4172-a8af-980ce51838a6.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:7f:21:2b:f1:63:a0:1e:fe:33:f2:fb:0c:c1:9c:cf:a2:74:08:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=09238e208e050ef3d1a962109159278528c871691cb684ccbf7d8f5ae2dfe8a8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2e:43:0f:52:99:15:f0:d8:94:8f:f6:b0:80: dc:c1:4d:cc:61:cd:58:09:52:98:f5:64:45:0d:06: f4:8c:d0:89:25:64:1f:0e:4e:bb:6d:53:06:67:d8: 0d:b8:6d:98:a5:8e:7e:aa:2e:84:31:48:eb:cb:94: f3:33:c3:94:eb:96:92:b0:46:da:b9:79:73:3a:ac: a8:de:2e:32:ec:f3:88:a8:a6:12:f7:2b:9c:f0:e9: 4e:bf:90:4e:f0:dc:8c:f6:fc:2d:18:b2:66:9c:f0: 8c:25:59:0d:e0:a9:47:2b:89:d3:fb:f9:3c:36:b2: b3:69:f7:f0:62:48:71:0c:08:9c:af:ce:42:ad:44: f2:a7:2d:1c:67:78:c4:e1:0d:b4:51:81:a9:13:b5: 8f:d2:6a:cf:86:0b:7c:08:b3:82:dd:a1:94:67:a9: 51:7d:1a:4f:cd:43:ad:d6:ca:67:29:93:96:58:25: 81:c9:be:85:c9:92:50:eb:d1:8a:dc:b3:cc:66:dd: 3f:7a:06:0a:8a:c0:89:de:65:27:c1:3b:a8:82:65: 62:25:3a:0d:2f:72:26:65:e6:3d:e2:9d:79:4c:ec: 2d:e2:9c:8f:0a:03:1a:32:dd:42:25:fc:57:95:be: 3e:9c:7b:61:8f:ae:07:24:ae:9b:73:e4:33:30:76: 91:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E7:1D:3D:CF:9C:56:83:A7:F0:92:C8:EB:5F:43:34:B2:02:91:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c448d31a-a303-4172-a8af-980ce51838a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.158.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:71:36:ba:c7:38:59:58:47:6a:54:d8:82:31:33:1a:c2:7a: 12:4b:89:6e:ad:5e:b5:b4:ef:6e:f7:cc:4f:c8:95:2f:34:df: ce:a0:2c:7e:a2:49:4a:9c:60:6d:de:93:d8:a8:55:92:a3:82: 4f:4a:b8:0f:c1:d2:2f:2e:ec:5c:1f:7a:c4:10:07:ff:d6:ba: f7:71:fe:42:4c:80:99:12:70:4d:d0:f5:4c:5d:a4:a8:b0:54: 31:f0:23:73:9f:d4:51:69:87:58:80:44:cc:19:df:c3:a8:69: 95:89:a1:eb:9b:4f:2e:19:f0:fe:bf:b0:cc:ee:70:69:8d:4c: 6c:64:ce:d1:a8:36:93:08:14:e0:d0:d8:81:63:4c:71:bf:b2: fb:83:31:7d:34:cc:92:37:ef:35:fc:04:a7:20:58:49:e0:03: 14:9f:82:62:d4:ff:bf:ed:b2:c0:13:f7:73:7e:c7:9d:93:10: 7d:47:52:59:8b:f6:4e:a0:44:e0:2d:12:71:1d:fb:43:01:c6: 05:80:1f:8a:a3:a2:40:b2:5a:06:d6:22:3d:fb:86:6f:38:c4: 73:4b:9f:df:50:2d:5f:85:90:21:85:49:63:fd:d9:90:73:33: 20:15:6e:05:09:17:9b:84:b6:93:33:31:d7:49:81:6f:14:91: 2c:ca:0b:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaH8hK/FjoB7+M/L7DMGcz6J0CEYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTIzOGUyMDhlMDUwZWYzZDFhOTYyMTA5MTU5Mjc4NTI4 Yzg3MTY5MWNiNjg0Y2NiZjdkOGY1YWUyZGZlOGE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwLkMPUpkV8NiUj/awgNzBTcxhzVgJUpj1ZEUNBvSM0Ikl ZB8OTrttUwZn2A24bZiljn6qLoQxSOvLlPMzw5TrlpKwRtq5eXM6rKjeLjLs84io phL3K5zw6U6/kE7w3Iz2/C0Ysmac8IwlWQ3gqUcridP7+Tw2srNp9/BiSHEMCJyv zkKtRPKnLRxneMThDbRRgakTtY/Sas+GC3wIs4LdoZRnqVF9Gk/NQ63Wymcpk5ZY JYHJvoXJklDr0Yrcs8xm3T96BgqKwIneZSfBO6iCZWIlOg0vciZl5j3inXlM7C3i nI8KAxoy3UIl/FeVvj6ce2GPrgckrptz5DMwdpHNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULecdPc+cVoOn8JLI619DNLICkYgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0NDhkMzFhLWEzMDMtNDE3Mi1hOGFmLTk4MGNlNTE4MzhhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFM354wDQYJKoZIhvcNAQELBQADggEBAFxxNrrHOFlYR2pU2IIxMxrCehJL iW6tXrW07273zE/IlS80386gLH6iSUqcYG3ek9ioVZKjgk9KuA/B0i8u7FwfesQQ B//Wuvdx/kJMgJkScE3Q9UxdpKiwVDHwI3Of1FFph1iARMwZ38OoaZWJoeubTy4Z 8P6/sMzucGmNTGxkztGoNpMIFODQ2IFjTHG/svuDMX00zJI37zX8BKcgWEngAxSf gmLU/7/tssAT93N+x52TEH1HUlmL9k6gROAtEnEd+0MBxgWAH4qjokCyWgbWIj37 hm84xHNLn99QLV+FkCGFSWP92ZBzMyAVbgUJF5uEtpMzMddJgW8UkSzKC9Q= -----END CERTIFICATE-----Generated at Fri May 3 01:28:06 2024 by rpki-client on console-fra.rpki-client.org