$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec062942-7831-4a38-9996-3ae3710324e1.roa File: ec062942-7831-4a38-9996-3ae3710324e1.roa (raw, json) Hash identifier: FzcVX3c85/pxJZKF1JrhPpeM0pYaAgjKp/yVizvQVjk= Subject key identifier: 40:47:B6:B5:F5:C6:E2:74:48:78:6F:4E:8F:36:D8:40:96:E6:B1:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19AF625778521CA7925C950C5C99668E10CEC8AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec062942-7831-4a38-9996-3ae3710324e1.roa Signing time: Tue 09 Apr 2024 00:00:00 +0000 ROA not before: Tue 09 Apr 2024 00:00:00 +0000 ROA not after: Tue 14 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 208.78.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:af:62:57:78:52:1c:a7:92:5c:95:0c:5c:99:66:8e:10:ce:c8:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:00:00 2024 GMT Not After : May 14 23:59:59 2024 GMT Subject: serialNumber=5aee612f2ba70ec57dce502e27b00d418406043909d1e814353da29192070c38, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c1:bf:d6:d8:5e:6e:b9:16:c4:d9:cd:f1:2c: 8b:6b:14:af:d8:ad:f6:49:d4:e0:dd:b3:86:06:21: 1d:52:40:c3:ab:e7:a8:28:89:b5:f8:9b:fc:ba:da: 4e:fa:91:d2:1e:c8:93:62:7a:12:bc:29:9d:97:54: 29:f4:59:45:f8:bf:41:53:f6:2d:84:fd:ec:fe:1f: bf:2d:8d:84:01:c1:1c:3c:e4:da:8f:b8:39:66:63: 0f:15:b8:8b:e8:e0:20:62:a1:6d:7b:fb:f9:75:36: 70:2f:fa:e3:4f:3e:cd:97:d0:cd:96:35:ba:5f:54: 2d:a5:ab:3b:88:d4:da:25:26:be:0c:f2:1c:0f:75: 74:cc:f1:da:6a:1b:f8:b6:a2:e6:c0:73:96:0d:86: 49:9e:c7:ac:d6:92:fd:d0:69:bf:0a:71:be:21:b6: 37:6d:6b:74:a5:80:88:14:c3:e5:be:e1:a3:7f:4c: f2:99:19:1b:68:fa:c9:a1:78:cd:dd:02:96:18:1b: 02:79:47:6e:0a:1e:f2:e2:52:c3:54:53:a7:6a:ea: ea:ee:12:7f:c2:72:27:81:74:10:c8:6e:a2:e1:ff: c1:bf:34:63:02:d5:2c:ac:64:e0:19:08:1f:4e:1d: 3c:ff:c4:b3:a0:65:f9:0b:50:88:7b:14:00:57:b5: 57:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:47:B6:B5:F5:C6:E2:74:48:78:6F:4E:8F:36:D8:40:96:E6:B1:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec062942-7831-4a38-9996-3ae3710324e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.78.130.0/23 Signature Algorithm: sha256WithRSAEncryption 63:8e:08:19:fc:ef:22:96:28:4f:e7:d4:88:60:e9:11:57:23: 75:43:ca:4f:7f:c0:67:ee:b2:65:d4:a2:17:da:da:b4:4e:9e: e2:8c:0c:aa:a8:dc:da:8b:cd:7e:36:7b:c7:e3:db:63:90:4b: 49:77:a4:47:2c:47:93:22:5f:9f:63:64:87:81:b3:b6:88:ef: 4d:8d:44:14:79:ad:2f:63:1e:7a:e8:c2:20:06:db:0d:bb:2f: 00:e6:3e:b9:0f:38:d5:3a:5c:09:b1:4f:54:16:48:23:dc:b1: 1e:c6:7a:23:cb:38:cb:3f:bc:c3:94:7d:3f:43:8b:8f:1d:29: 2d:17:b0:8b:33:cb:59:ac:64:e9:7e:cd:1e:6f:6b:00:99:8e: 7a:90:52:a2:90:24:bd:cf:65:3e:5c:f2:85:6b:8c:e1:4a:7b: b8:38:00:c2:f7:dd:29:78:38:2d:91:df:08:8d:8f:7b:a3:ef: 1c:a8:85:d7:80:2f:ea:33:04:2c:29:78:eb:5c:f2:32:12:61: 0f:be:85:db:e8:ba:8c:a3:1d:43:61:c9:5b:8e:42:f7:03:22: de:ac:2b:12:c1:e5:0e:27:26:d2:96:c1:f3:5d:f3:88:ec:55: d4:e1:b7:7c:c2:67:28:17:09:12:29:30:f9:53:91:de:f6:e4: 59:05:2e:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGa9iV3hSHKeSXJUMXJlmjhDOyKwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA5MDAwMDAwWhcNMjQwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YWVlNjEyZjJiYTcwZWM1N2RjZTUwMmUyN2IwMGQ0MTg0 MDYwNDM5MDlkMWU4MTQzNTNkYTI5MTkyMDcwYzM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCywb/W2F5uuRbE2c3xLItrFK/YrfZJ1ODds4YGIR1SQMOr 56goibX4m/y62k76kdIeyJNiehK8KZ2XVCn0WUX4v0FT9i2E/ez+H78tjYQBwRw8 5NqPuDlmYw8VuIvo4CBioW17+/l1NnAv+uNPPs2X0M2WNbpfVC2lqzuI1NolJr4M 8hwPdXTM8dpqG/i2oubAc5YNhkmex6zWkv3Qab8Kcb4htjdta3SlgIgUw+W+4aN/ TPKZGRto+smheM3dApYYGwJ5R24KHvLiUsNUU6dq6uruEn/CcieBdBDIbqLh/8G/ NGMC1SysZOAZCB9OHTz/xLOgZfkLUIh7FABXtVfpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQEe2tfXG4nRIeG9OjzbYQJbmse4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VjMDYyOTQyLTc4MzEtNGEzOC05OTk2LTNhZTM3MTAzMjRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHQToIwDQYJKoZIhvcNAQELBQADggEBAGOOCBn87yKWKE/n1Ihg6RFXI3VD yk9/wGfusmXUohfa2rROnuKMDKqo3NqLzX42e8fj22OQS0l3pEcsR5MiX59jZIeB s7aI702NRBR5rS9jHnrowiAG2w27LwDmPrkPONU6XAmxT1QWSCPcsR7GeiPLOMs/ vMOUfT9Di48dKS0XsIszy1msZOl+zR5vawCZjnqQUqKQJL3PZT5c8oVrjOFKe7g4 AML33Sl4OC2R3wiNj3uj7xyohdeAL+ozBCwpeOtc8jISYQ++hdvouoyjHUNhyVuO QvcDIt6sKxLB5Q4nJtKWwfNd84jsVdTht3zCZygXCRIpMPlTkd725FkFLmA= -----END CERTIFICATE-----Generated at Thu May 2 22:12:20 2024 by rpki-client on console-fra.rpki-client.org