$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa File: e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa (raw, json) Hash identifier: iIBhUfWatJxNQZWpUF79hDeCHEyN86LUNIveSQv4hE0= Subject key identifier: C1:54:C4:06:94:3E:41:69:76:5D:3C:63:2A:C5:B7:97:F3:E7:C9:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31349DC4F1A774FAC3534917DD70AA0565937E4B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 16.192.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:34:9d:c4:f1:a7:74:fa:c3:53:49:17:dd:70:aa:05:65:93:7e:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=6622ba347cc3b844eb9059926385dfdac25d51126815ec030c1b8b1bf5faf201, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:49:07:15:f5:1d:5e:8b:9d:6d:e2:2e:78:a3: 17:8e:e8:fe:2d:a0:2e:a3:1a:c1:80:97:e2:37:ed: 09:eb:df:80:8c:70:0b:44:b6:7a:09:ea:ab:bd:03: df:43:a6:ff:9c:ce:dd:f5:b1:56:7b:2c:01:cd:9a: 5c:b5:72:b3:29:79:cf:04:0e:62:f1:4a:d7:f1:18: a1:79:03:9e:6f:c3:7c:db:e9:80:1c:7b:51:d2:f7: 77:7f:ab:14:44:2f:70:48:ca:8f:99:e2:df:a6:37: 79:7d:75:63:18:a0:bd:28:47:19:b9:d5:4b:3c:c9: d6:79:1e:1a:85:fa:6e:9c:b6:6b:60:fa:5e:6f:3a: 9e:2b:15:1b:70:71:96:b0:8e:51:78:37:53:ff:fc: 0a:b0:8d:d0:f3:20:57:c9:8d:64:62:dd:9f:67:a9: b5:f6:40:93:dd:64:42:00:e3:5f:37:26:29:2d:df: ea:e9:b5:18:8a:f4:25:f2:b3:d7:1c:ca:14:12:2c: d9:a7:d5:d8:27:00:f2:2e:d0:b6:6e:38:76:a3:82: 17:fb:59:14:27:b4:fa:27:5d:e9:c7:14:fe:c5:3e: 31:c6:83:ac:ef:51:18:50:b7:ec:d8:23:46:64:5c: d7:42:6b:1e:f4:ae:b5:c4:b4:00:ed:2e:4a:8d:00: af:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:54:C4:06:94:3E:41:69:76:5D:3C:63:2A:C5:B7:97:F3:E7:C9:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0aba60b-aaf0-4d0c-ba8e-e61e702347bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 18:c5:36:68:4b:f5:34:c3:79:b0:99:9b:8b:1d:c5:61:4a:c6: c9:62:e3:85:32:94:aa:e4:bc:8a:f7:d5:35:e3:be:c4:65:05: 86:2c:e1:11:00:f6:56:1e:f0:d5:1f:b7:fe:46:7f:76:ee:99: 36:fd:36:58:fc:b9:80:68:a9:b7:97:8e:68:2f:ce:31:c5:76: 0e:f6:5e:bf:20:fc:03:3e:ef:ea:bd:91:de:f0:64:82:a5:03: 9c:9f:7d:24:f1:48:93:18:23:cb:4a:2a:17:60:24:5a:cd:00: 50:bb:7d:cf:04:51:6c:3d:7b:cd:a5:37:3d:d1:cf:d7:ef:16: 06:fb:f9:7e:ef:03:ec:92:00:82:63:0b:35:4d:67:b7:86:ff: c7:cf:87:4e:65:22:f4:0f:f0:6f:79:b1:98:45:ba:00:b1:7c: a4:fe:d8:69:f5:29:e4:6b:34:ca:7d:38:30:35:20:b6:b5:64: 23:6e:b9:56:5e:d3:d7:1f:65:d8:53:70:a3:aa:38:c8:48:fb: 4d:19:7f:5a:a7:fc:3f:46:9d:b2:66:1e:04:7c:88:e4:b1:04: 7b:6f:40:ff:ec:f1:8d:15:2f:dc:24:ad:bc:fb:5f:eb:07:8b: 57:a4:c6:19:e0:39:b1:be:47:78:cd:83:97:29:c3:c3:1a:24: f4:2d:04:bd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMTSdxPGndPrDU0kX3XCqBWWTfkswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NjIyYmEzNDdjYzNiODQ0ZWI5MDU5OTI2Mzg1ZGZkYWMy NWQ1MTEyNjgxNWVjMDMwYzFiOGIxYmY1ZmFmMjAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdSQcV9R1ei51t4i54oxeO6P4toC6jGsGAl+I37Qnr34CM cAtEtnoJ6qu9A99Dpv+czt31sVZ7LAHNmly1crMpec8EDmLxStfxGKF5A55vw3zb 6YAce1HS93d/qxREL3BIyo+Z4t+mN3l9dWMYoL0oRxm51Us8ydZ5HhqF+m6ctmtg +l5vOp4rFRtwcZawjlF4N1P//AqwjdDzIFfJjWRi3Z9nqbX2QJPdZEIA4183Jikt 3+rptRiK9CXys9ccyhQSLNmn1dgnAPIu0LZuOHajghf7WRQntPonXenHFP7FPjHG g6zvURhQt+zYI0ZkXNdCax70rrXEtADtLkqNAK/lAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwVTEBpQ+QWl2XTxjKsW3l/PnycIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwYWJhNjBiLWFhZjAtNGQwYy1iYThlLWU2MWU3MDIzNDdiYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQwDANBgkqhkiG9w0BAQsFAAOCAQEAGMU2aEv1NMN5sJmbix3FYUrGyWLj hTKUquS8ivfVNeO+xGUFhizhEQD2Vh7w1R+3/kZ/du6ZNv02WPy5gGipt5eOaC/O McV2DvZevyD8Az7v6r2R3vBkgqUDnJ99JPFIkxgjy0oqF2AkWs0AULt9zwRRbD17 zaU3PdHP1+8WBvv5fu8D7JIAgmMLNU1nt4b/x8+HTmUi9A/wb3mxmEW6ALF8pP7Y afUp5Gs0yn04MDUgtrVkI265Vl7T1x9l2FNwo6o4yEj7TRl/Wqf8P0adsmYeBHyI 5LEEe29A/+zxjRUv3CStvPtf6weLV6TGGeA5sb5HeM2DlynDwxok9C0EvQ== -----END CERTIFICATE-----Generated at Thu May 2 22:12:19 2024 by rpki-client on console-fra.rpki-client.org