$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa File: c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa (raw, json) Hash identifier: b/dBhdrwcRDn73rk7IySRUFvj/VaOTlz1i3P6xVVP74= Subject key identifier: EC:7B:3C:06:C3:42:68:39:B3:8C:CB:F2:82:CE:23:81:66:4B:BD:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 78C75AE0BECE3EB1AEE0E6E680CB09C2680A887A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa Signing time: Tue 19 Mar 2024 00:00:00 +0000 ROA not before: Tue 19 Mar 2024 00:00:00 +0000 ROA not after: Tue 23 Apr 2024 23:59:59 +0000 asID: 16509 IP address blocks: 162.213.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 29 Mar 2024 12:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c7:5a:e0:be:ce:3e:b1:ae:e0:e6:e6:80:cb:09:c2:68:0a:88:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 19 00:00:00 2024 GMT Not After : Apr 23 23:59:59 2024 GMT Subject: serialNumber=74a053fc4f58b17131eef390d581548d55a3002f398b6675d24058885a88bc0d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:02:ca:c7:e5:a5:82:a1:fd:ee:1f:9c:ae:87: 14:29:68:ea:47:c0:cd:51:c0:ab:ff:22:2d:86:96: 02:7c:c7:3a:69:1e:e3:49:fb:75:a2:ba:bb:c2:40: d7:06:a3:bb:f0:b4:a1:e1:71:df:98:9d:0f:9b:2c: 89:10:70:5f:45:96:e5:17:03:04:b3:4a:fd:ee:a2: 48:cb:91:b6:ab:54:31:37:22:48:24:56:25:a6:a5: 78:ef:79:9d:70:5b:71:20:f9:46:1c:a1:83:fe:86: f1:f2:01:c7:c4:58:33:17:da:7a:66:c2:72:7b:1b: 3f:05:55:18:01:f7:25:93:54:b8:c5:98:ff:8a:7b: ca:f0:3e:dc:ee:ec:f1:36:46:8c:94:eb:8d:2f:3f: 73:19:38:8f:fe:32:74:b5:06:66:ce:98:f6:fe:d1: 14:14:50:69:a5:49:ab:cc:a4:4b:a8:76:57:85:8c: 93:fe:80:26:ba:88:9e:d5:7b:e5:0c:f6:bd:11:31: f4:f9:eb:d8:df:ec:c0:69:e4:5b:9b:4e:d9:64:6a: 19:27:66:1a:a2:10:15:bd:6f:99:09:fd:1a:1b:e5: 88:dc:94:7e:58:fd:90:b3:93:81:87:79:45:6a:20: 45:cd:46:d6:45:49:d7:ed:c0:95:41:32:cc:9f:13: 62:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7B:3C:06:C3:42:68:39:B3:8C:CB:F2:82:CE:23:81:66:4B:BD:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.213.233.0/24 Signature Algorithm: sha256WithRSAEncryption bf:c4:3d:56:71:b3:d6:4d:80:29:76:8e:5d:89:3d:0a:e2:40: b4:0e:b6:2f:55:12:b4:52:9f:a0:11:c9:6a:65:ea:ca:bc:fb: 2c:e9:0e:e9:c5:28:b9:1c:f3:e3:bf:bd:f4:1f:5f:ed:ad:d0: 9d:af:5e:dd:73:c5:d9:54:61:46:12:a3:83:0a:72:ff:5d:58: 31:94:3f:93:e1:5a:7c:ee:28:81:34:1f:f6:1e:11:19:2c:fd: 6c:f9:81:02:55:d5:76:aa:b4:47:65:e1:62:7b:65:ee:20:0b: 99:ad:36:d0:75:0e:c0:c0:4c:0b:47:2f:80:8f:10:56:5b:05: 41:d9:2a:26:37:db:7f:ee:3a:ff:1f:f0:55:0a:1a:81:9e:20: 6e:77:85:99:96:bd:50:e7:a9:61:d1:d9:de:b8:c2:ab:eb:4f: bf:25:9e:9a:70:c5:66:1d:40:22:f9:fc:74:50:67:60:d1:10: 9e:4c:45:aa:08:8b:50:31:53:57:77:eb:ae:17:07:76:91:b8: d6:89:3b:5c:87:a7:a1:cb:07:32:f6:f8:44:3a:9b:94:25:c2: 9f:57:f9:44:1b:48:89:cf:58:ad:bb:43:bc:93:a0:ab:48:9a: 9b:88:06:47:54:b6:1e:11:99:65:df:67:13:5d:0a:90:26:1d: 53:aa:1d:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeMda4L7OPrGu4ObmgMsJwmgKiHowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwMzE5MDAwMDAwWhcNMjQwNDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGEwNTNmYzRmNThiMTcxMzFlZWYzOTBkNTgxNTQ4ZDU1 YTMwMDJmMzk4YjY2NzVkMjQwNTg4ODVhODhiYzBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqAsrH5aWCof3uH5yuhxQpaOpHwM1RwKv/Ii2GlgJ8xzpp HuNJ+3WiurvCQNcGo7vwtKHhcd+YnQ+bLIkQcF9FluUXAwSzSv3uokjLkbarVDE3 IkgkViWmpXjveZ1wW3Eg+UYcoYP+hvHyAcfEWDMX2npmwnJ7Gz8FVRgB9yWTVLjF mP+Ke8rwPtzu7PE2RoyU640vP3MZOI/+MnS1BmbOmPb+0RQUUGmlSavMpEuodleF jJP+gCa6iJ7Ve+UM9r0RMfT569jf7MBp5FubTtlkahknZhqiEBW9b5kJ/Rob5Yjc lH5Y/ZCzk4GHeUVqIEXNRtZFSdftwJVBMsyfE2LVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7Hs8BsNCaDmzjMvygs4jgWZLvcAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1OTg5YjVhLTZjYTctNGYzYi05NGQxLTgyOTVhYjcyNjMyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi1ekwDQYJKoZIhvcNAQELBQADggEBAL/EPVZxs9ZNgCl2jl2JPQriQLQO ti9VErRSn6ARyWpl6sq8+yzpDunFKLkc8+O/vfQfX+2t0J2vXt1zxdlUYUYSo4MK cv9dWDGUP5PhWnzuKIE0H/YeERks/Wz5gQJV1XaqtEdl4WJ7Ze4gC5mtNtB1DsDA TAtHL4CPEFZbBUHZKiY323/uOv8f8FUKGoGeIG53hZmWvVDnqWHR2d64wqvrT78l nppwxWYdQCL5/HRQZ2DREJ5MRaoIi1AxU1d3664XB3aRuNaJO1yHp6HLBzL2+EQ6 m5Qlwp9X+UQbSInPWK27Q7yToKtImpuIBkdUth4RmWXfZxNdCpAmHVOqHe0= -----END CERTIFICATE-----Generated at Thu Mar 28 02:05:47 2024 by rpki-client on console-ams.rpki-client.org