$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0607a85-59d4-41f8-a27e-6ca35a850925.roa File: f0607a85-59d4-41f8-a27e-6ca35a850925.roa (raw, json) Hash identifier: Lsxh/0n3IxD9JC+nFSsAcU8KmMUMi45cK9PsHQ+6RbM= Subject key identifier: 21:51:04:07:3F:BF:E3:A1:CA:0B:04:17:13:3A:47:19:7D:DF:17:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 37C8CBCA649A1262C426EC835C04A13D7DC91DD9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0607a85-59d4-41f8-a27e-6ca35a850925.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.139.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:c8:cb:ca:64:9a:12:62:c4:26:ec:83:5c:04:a1:3d:7d:c9:1d:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=e9d4e6bb1b3e2e2eddadc9cf08ec58d8fc331891cb4c4120c6f99f86f68242b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b5:9e:ca:4c:96:22:5c:91:6b:8a:27:56:5a: 90:14:79:8a:c8:29:39:f1:89:1d:86:bb:45:a8:9a: 8a:5d:fa:d0:d7:76:a4:e3:8f:cc:54:ae:45:1b:67: d9:fd:d6:ad:0a:ec:74:12:0e:1d:f0:6f:3b:55:8e: 6d:d7:72:6c:be:83:eb:a6:c3:aa:8a:ff:c5:1d:6c: 42:f5:18:bb:68:1d:36:7f:1a:5c:24:a7:28:8e:81: 3d:02:78:b1:36:9d:7d:1d:de:e1:eb:56:a0:1e:53: 61:86:2d:f0:3c:39:70:2d:a5:28:a7:de:32:13:47: 5c:29:64:64:b0:e4:b7:86:c0:5d:60:5f:94:ec:47: 31:32:f2:3c:a7:b8:d7:0d:28:92:49:11:1f:3f:14: a7:1f:ec:6b:43:3d:dd:31:d8:c9:38:af:bf:69:f2: 62:ec:0a:5d:f6:03:e2:98:18:28:90:f8:5d:36:5c: 21:b9:7c:70:98:a9:80:6f:b7:09:87:c1:0f:dc:0e: 12:6d:c8:34:61:be:97:90:8c:50:ea:b6:55:07:12: d8:b5:7c:4a:68:26:58:4f:41:b8:07:a0:9f:98:b9: 8c:83:8f:0d:04:a0:40:90:4c:10:ce:9c:28:3c:b7: 8a:05:b4:0e:d7:51:0b:0c:a4:35:e2:24:18:9c:de: 3c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:51:04:07:3F:BF:E3:A1:CA:0B:04:17:13:3A:47:19:7D:DF:17:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0607a85-59d4-41f8-a27e-6ca35a850925.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.139.0.0/16 Signature Algorithm: sha256WithRSAEncryption 86:8a:39:f8:3b:8b:8a:c4:cb:e7:5c:64:6f:fb:68:60:b7:08: a2:d9:6a:d5:22:70:fa:18:8a:80:18:24:83:97:bc:23:be:f8: c2:15:6b:cd:07:f7:a7:ca:1a:7e:42:c5:f7:4e:3a:d1:4a:6c: e8:16:67:40:e2:a1:c4:f3:99:8e:23:99:7e:53:e5:f1:63:7f: ce:15:85:b8:13:3d:d7:10:7c:37:fa:f4:ec:13:a2:d6:5f:3e: d6:be:46:71:1c:32:2f:5e:6d:cc:ca:11:0e:81:11:30:fa:57: 3a:bc:ec:35:0e:83:2a:02:cc:9c:e3:5a:20:20:2d:db:8c:9b: a9:37:b5:e8:58:df:bb:f8:82:13:30:e8:6b:7d:80:ef:3e:b8: f5:d4:e4:9d:b1:26:b4:da:2f:b9:aa:1a:21:6f:64:a8:15:97: 87:b1:ab:8f:e4:32:74:41:89:43:41:81:e4:87:05:b7:2d:02: 6d:64:73:b1:a6:fe:ec:6a:93:0c:45:d3:3f:3d:b1:d5:cc:9b: b8:ad:fe:8c:da:49:10:9d:ca:4a:ef:dc:6c:b8:9d:93:12:1d: 65:30:bf:2c:22:94:ec:7b:ee:e3:1a:99:2e:a5:43:b2:d9:a0: bf:f2:58:d1:bd:5d:0c:96:6b:74:0e:6c:0a:ce:88:e4:f9:b1: 25:c6:45:58 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUN8jLymSaEmLEJuyDXAShPX3JHdkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWQ0ZTZiYjFiM2UyZTJlZGRhZGM5Y2YwOGVjNThkOGZj MzMxODkxY2I0YzQxMjBjNmY5OWY4NmY2ODI0MmI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0tZ7KTJYiXJFriidWWpAUeYrIKTnxiR2Gu0Womopd+tDX dqTjj8xUrkUbZ9n91q0K7HQSDh3wbztVjm3Xcmy+g+umw6qK/8UdbEL1GLtoHTZ/ GlwkpyiOgT0CeLE2nX0d3uHrVqAeU2GGLfA8OXAtpSin3jITR1wpZGSw5LeGwF1g X5TsRzEy8jynuNcNKJJJER8/FKcf7GtDPd0x2Mk4r79p8mLsCl32A+KYGCiQ+F02 XCG5fHCYqYBvtwmHwQ/cDhJtyDRhvpeQjFDqtlUHEti1fEpoJlhPQbgHoJ+YuYyD jw0EoECQTBDOnCg8t4oFtA7XUQsMpDXiJBic3jxzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIVEEBz+/46HKCwQXEzpHGX3fF+4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwNjA3YTg1LTU5ZDQtNDFmOC1hMjdlLTZjYTM1YTg1MDkyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4izANBgkqhkiG9w0BAQsFAAOCAQEAhoo5+DuLisTL51xkb/toYLcIotlq 1SJw+hiKgBgkg5e8I774whVrzQf3p8oafkLF90460Ups6BZnQOKhxPOZjiOZflPl 8WN/zhWFuBM91xB8N/r07BOi1l8+1r5GcRwyL15tzMoRDoERMPpXOrzsNQ6DKgLM nONaICAt24ybqTe16Fjfu/iCEzDoa32A7z649dTknbEmtNovuaoaIW9kqBWXh7Gr j+QydEGJQ0GB5IcFty0CbWRzsab+7GqTDEXTPz2x1cybuK3+jNpJEJ3KSu/cbLid kxIdZTC/LCKU7Hvu4xqZLqVDstmgv/JY0b1dDJZrdA5sCs6I5PmxJcZFWA== -----END CERTIFICATE-----Generated at Thu May 2 22:28:12 2024 by rpki-client on console-ams.rpki-client.org