$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8c26364-7c30-45ce-b34d-4ac607637a8f.roa File: d8c26364-7c30-45ce-b34d-4ac607637a8f.roa (raw, json) Hash identifier: 32xczf3VJUQJKxffGwxyrTtfIlVYT6Toxa0gKhv/Ub8= Subject key identifier: C5:43:09:00:C9:17:87:CA:C2:91:17:94:9D:C2:D1:00:58:47:6B:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 64687CD1881E1E62C96CBDD43F43995E2AE0E467 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8c26364-7c30-45ce-b34d-4ac607637a8f.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 37.7.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:68:7c:d1:88:1e:1e:62:c9:6c:bd:d4:3f:43:99:5e:2a:e0:e4:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=997c2996ad5de46db24429e49ee5261b42e8d46d71e1d9ee43fc4f5ac0ae8b45, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bd:9e:32:46:a6:f9:0e:46:73:02:44:8c:79: 24:09:02:38:23:d2:89:b3:af:8d:32:18:8e:e4:d9: b5:44:f4:7b:b5:ed:38:9e:a3:ac:2b:6f:98:b1:43: 5d:58:e0:9d:11:2b:40:4b:54:04:86:4f:f6:24:be: 69:e5:41:86:6f:b1:84:4c:bc:15:38:2c:2e:db:49: 70:ec:42:e4:2b:45:64:4c:f7:92:c0:82:0e:2f:8d: d1:b0:9a:98:a4:4a:d6:62:d2:de:5a:77:ad:ca:8b: 9d:03:3c:5d:c3:09:b2:e5:b8:ff:6c:03:08:b4:57: 10:02:e1:50:31:66:64:b3:ac:8f:9b:8c:02:9f:22: b4:b3:f3:65:c1:36:e6:48:da:49:76:79:31:f7:72: bc:e8:cb:67:e9:66:0d:bb:7e:ee:a7:2f:fa:13:5a: df:d1:2c:ad:aa:b0:39:ca:f2:29:18:3f:cc:28:ad: d7:0c:ab:ae:b8:09:7e:05:ee:fe:55:81:21:29:f9: eb:c5:b0:8c:5b:57:6b:57:ba:22:c3:f6:6b:b6:f2: fe:48:e8:1f:48:98:52:16:df:24:11:89:3f:a6:97: 40:c3:ff:03:a1:5b:6c:18:27:d5:e5:c0:65:43:e9: d8:24:fa:f9:3a:c0:48:6c:e7:f3:5a:2c:b4:8d:71: 72:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:43:09:00:C9:17:87:CA:C2:91:17:94:9D:C2:D1:00:58:47:6B:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8c26364-7c30-45ce-b34d-4ac607637a8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.7.0.0/16 Signature Algorithm: sha256WithRSAEncryption 53:df:92:6c:2f:d9:4b:4a:41:ba:93:8e:73:c1:33:8c:57:1d: f0:9e:d1:f5:57:73:73:20:a8:ca:c5:be:bc:03:e1:00:bb:bd: 90:bc:69:38:6a:4f:d8:b1:94:4d:18:de:7e:62:8d:ba:b3:72: 41:3a:4a:d1:02:6c:b1:73:a1:21:c9:13:3c:0d:eb:e3:db:48: 03:42:1a:ab:73:62:18:34:7a:6f:a5:9d:68:50:46:c7:9d:39: 87:f7:2d:6e:72:47:2e:98:59:f1:bd:aa:7a:e0:34:e8:91:cf: f2:57:2a:f5:c0:d1:72:62:3e:46:d7:61:4e:98:f2:cb:51:d3: d6:4d:67:5e:c1:3f:5e:f3:5c:c4:56:ae:c9:a3:01:96:3a:21: 7f:bf:ec:85:21:92:00:0e:f2:9c:22:34:dd:5d:9e:0e:56:1b: 3a:d5:bf:6a:8c:47:a5:3b:d5:2c:6f:35:45:9b:fd:ac:08:43: 5e:b4:db:1a:c4:ce:5e:27:ab:ec:df:99:be:e4:e2:b6:53:24: 01:f8:e4:e4:6d:1a:06:b4:39:1a:dd:71:59:af:7b:93:28:46: b6:91:0a:60:77:f3:ba:20:51:c2:92:91:e8:92:4e:f8:83:2f: bb:9e:7f:21:88:e2:52:0b:02:41:03:e4:c6:a1:6c:9f:dd:a1: 26:0c:ac:48 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZGh80YgeHmLJbL3UP0OZXirg5GcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTdjMjk5NmFkNWRlNDZkYjI0NDI5ZTQ5ZWU1MjYxYjQy ZThkNDZkNzFlMWQ5ZWU0M2ZjNGY1YWMwYWU4YjQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFvZ4yRqb5DkZzAkSMeSQJAjgj0omzr40yGI7k2bVE9Hu1 7Tieo6wrb5ixQ11Y4J0RK0BLVASGT/YkvmnlQYZvsYRMvBU4LC7bSXDsQuQrRWRM 95LAgg4vjdGwmpikStZi0t5ad63Ki50DPF3DCbLluP9sAwi0VxAC4VAxZmSzrI+b jAKfIrSz82XBNuZI2kl2eTH3crzoy2fpZg27fu6nL/oTWt/RLK2qsDnK8ikYP8wo rdcMq664CX4F7v5VgSEp+evFsIxbV2tXuiLD9mu28v5I6B9ImFIW3yQRiT+ml0DD /wOhW2wYJ9XlwGVD6dgk+vk6wEhs5/NaLLSNcXKZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxUMJAMkXh8rCkReUncLRAFhHa1YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4YzI2MzY0LTdjMzAtNDVjZS1iMzRkLTRhYzYwNzYzN2E4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAlBzANBgkqhkiG9w0BAQsFAAOCAQEAU9+SbC/ZS0pBupOOc8EzjFcd8J7R 9VdzcyCoysW+vAPhALu9kLxpOGpP2LGUTRjefmKNurNyQTpK0QJssXOhIckTPA3r 49tIA0Iaq3NiGDR6b6WdaFBGx505h/ctbnJHLphZ8b2qeuA06JHP8lcq9cDRcmI+ RtdhTpjyy1HT1k1nXsE/XvNcxFauyaMBljohf7/shSGSAA7ynCI03V2eDlYbOtW/ aoxHpTvVLG81RZv9rAhDXrTbGsTOXier7N+ZvuTitlMkAfjk5G0aBrQ5Gt1xWa97 kyhGtpEKYHfzuiBRwpKR6JJO+IMvu55/IYjiUgsCQQPkxqFsn92hJgysSA== -----END CERTIFICATE-----Generated at Thu May 2 11:33:25 2024 by rpki-client on console-fra.rpki-client.org