$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4dfac91-2a48-4e4a-84ce-8765e9881c38.roa File: f4dfac91-2a48-4e4a-84ce-8765e9881c38.roa (raw, json) Hash identifier: ko6+2ipl5+Z46ujuI90tOi5z2SKNtp67bvNBMANkqzc= Subject key identifier: 1E:87:32:29:BC:68:71:F5:49:68:55:CC:A5:13:B0:2F:9D:34:3B:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C252956123277BA6CD90EBDA475167A0FFDFDBB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4dfac91-2a48-4e4a-84ce-8765e9881c38.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 54.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:25:29:56:12:32:77:ba:6c:d9:0e:bd:a4:75:16:7a:0f:fd:fd:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=38094a0d3aafee2b2841a956600847fbe8048856868ee60c5ad7c3dfbeeedcd9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:62:1e:85:66:51:f7:a8:12:1c:0e:79:28:47: 44:df:44:17:6d:c2:74:2d:b4:77:2f:40:cf:90:cc: 80:a6:9f:3c:b9:34:c7:8a:74:2b:e7:dc:77:12:33: 06:37:bc:8b:06:21:ee:6d:64:be:63:e0:cd:fa:e6: 81:84:62:77:4b:10:e3:0a:c2:06:08:ed:2f:b6:73: c7:26:37:2c:21:0d:f9:9e:d4:fd:65:76:21:38:49: 23:91:2d:d2:70:99:7d:12:49:b4:d6:b2:08:bb:9a: 10:5a:59:1d:26:86:78:7e:11:2e:6b:de:be:68:bc: d0:66:b4:fa:4d:3e:00:9d:4d:14:c9:8f:9a:0b:2f: f5:85:66:08:81:29:2c:40:9f:57:2c:d7:c2:aa:13: 0f:95:05:b5:09:49:f4:9b:3f:e2:06:67:94:65:6b: 20:3a:5c:19:80:14:ae:10:06:30:81:f0:32:c9:49: 13:43:88:12:6b:33:30:05:fa:53:d0:c5:92:db:93: 51:b4:ad:f6:ef:ee:82:4c:e5:ce:42:ef:49:ed:10: 29:4b:7b:93:7b:9c:78:8a:bf:40:6f:8c:d5:35:a1: d7:b1:de:9b:51:f8:2e:3f:91:d7:cc:69:46:2c:dc: f6:4b:60:51:a6:e4:ed:f5:0a:00:d8:80:04:ab:cc: 2f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:87:32:29:BC:68:71:F5:49:68:55:CC:A5:13:B0:2F:9D:34:3B:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4dfac91-2a48-4e4a-84ce-8765e9881c38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8e:ed:78:27:56:81:0f:19:d5:06:e7:2a:03:e6:48:6b:70:79: d5:d2:bd:50:92:b3:c0:7f:3a:31:3d:49:62:90:e3:e1:fe:5d: 51:b0:2f:fd:ab:72:3d:08:f9:f5:44:5b:dc:4e:cc:ac:45:9b: 56:69:55:5a:59:c6:d3:e9:96:80:b7:51:91:b7:c2:fb:90:4b: ac:f4:67:6a:b0:a8:44:43:2f:29:c5:ca:be:cd:ce:66:6e:23: 06:74:25:3d:41:4a:a8:6f:c5:8a:74:73:00:2f:94:ea:0d:42: 76:ca:b0:ea:90:17:6a:86:8b:81:1e:fc:90:6c:7d:dd:08:31: 65:94:07:70:30:c7:88:d3:5b:b6:f0:f3:12:77:47:b7:08:6a: 7b:83:05:87:c2:b8:8d:67:0a:b1:44:dc:ea:cb:2d:f5:f3:71: 95:bf:d0:06:07:6d:5b:2f:b0:23:a7:c3:5e:17:d6:e8:3b:0f: e2:74:d4:88:c2:93:7b:37:7f:93:9f:34:1a:2d:06:d6:18:f7: 04:db:1d:f4:f3:ff:53:ec:e4:81:00:88:d7:07:02:3a:0d:82: a1:d1:4e:a0:63:7c:7e:80:c2:c1:d4:82:53:71:a5:22:f1:69: 85:2f:0c:44:19:21:c2:8d:ba:2b:54:98:5a:eb:cc:9c:e8:b8: 21:18:ec:eb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTCUpVhIyd7ps2Q69pHUWeg/9/bswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzODA5NGEwZDNhYWZlZTJiMjg0MWE5NTY2MDA4NDdmYmU4 MDQ4ODU2ODY4ZWU2MGM1YWQ3YzNkZmJlZWVkY2Q5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7Yh6FZlH3qBIcDnkoR0TfRBdtwnQttHcvQM+QzICmnzy5 NMeKdCvn3HcSMwY3vIsGIe5tZL5j4M365oGEYndLEOMKwgYI7S+2c8cmNywhDfme 1P1ldiE4SSORLdJwmX0SSbTWsgi7mhBaWR0mhnh+ES5r3r5ovNBmtPpNPgCdTRTJ j5oLL/WFZgiBKSxAn1cs18KqEw+VBbUJSfSbP+IGZ5RlayA6XBmAFK4QBjCB8DLJ SRNDiBJrMzAF+lPQxZLbk1G0rfbv7oJM5c5C70ntEClLe5N7nHiKv0BvjNU1odex 3ptR+C4/kdfMaUYs3PZLYFGm5O31CgDYgASrzC9LAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHocyKbxocfVJaFXMpROwL500O1gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0ZGZhYzkxLTJhNDgtNGU0YS04NGNlLTg3NjVlOTg4MWMzOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2FjANBgkqhkiG9w0BAQsFAAOCAQEAju14J1aBDxnVBucqA+ZIa3B51dK9 UJKzwH86MT1JYpDj4f5dUbAv/atyPQj59URb3E7MrEWbVmlVWlnG0+mWgLdRkbfC +5BLrPRnarCoREMvKcXKvs3OZm4jBnQlPUFKqG/FinRzAC+U6g1Cdsqw6pAXaoaL gR78kGx93QgxZZQHcDDHiNNbtvDzEndHtwhqe4MFh8K4jWcKsUTc6sst9fNxlb/Q BgdtWy+wI6fDXhfW6DsP4nTUiMKTezd/k580Gi0G1hj3BNsd9PP/U+zkgQCI1wcC Og2CodFOoGN8foDCwdSCU3GlIvFphS8MRBkhwo26K1SYWuvMnOi4IRjs6w== -----END CERTIFICATE-----Generated at Thu May 2 03:11:39 2024 by rpki-client on console-ams.rpki-client.org