$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5332305c-c8b1-46fd-8dda-7611f9f17bf9.roa File: 5332305c-c8b1-46fd-8dda-7611f9f17bf9.roa (raw, json) Hash identifier: hc4k5uJDBDDAyfvtTkStcCkOjDebvR+Ee7LJiU/Kimg= Subject key identifier: 51:F4:FC:AE:3B:CB:29:6B:6D:37:9E:6E:9E:10:31:53:38:CF:CD:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31364839677CFDE29185900C56A31B391F0BB51A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5332305c-c8b1-46fd-8dda-7611f9f17bf9.roa Signing time: Mon 13 May 2024 00:00:00 +0000 ROA not before: Mon 13 May 2024 00:00:00 +0000 ROA not after: Mon 17 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:36:48:39:67:7c:fd:e2:91:85:90:0c:56:a3:1b:39:1f:0b:b5:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 13 00:00:00 2024 GMT Not After : Jun 17 23:59:59 2024 GMT Subject: serialNumber=4f79781c63a7ae9ee482438c3d0049a995deaecfe181bde5e7fa92169b18fbd1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:32:bd:ef:1c:e4:ed:67:8b:63:6a:10:a4:22: 65:41:8d:3a:b6:3d:fe:67:5d:c2:25:7b:46:fd:d7: 0a:da:01:ed:ee:30:1a:f7:6e:c6:93:16:50:83:3b: 49:40:2a:6d:ef:ad:b3:10:20:68:ff:44:d0:53:38: 39:59:f9:15:d0:75:c0:48:d1:cc:4f:41:9d:19:77: 2d:ec:7f:5d:c6:6e:f7:f0:4e:29:85:20:14:a6:ba: 4c:f3:69:ff:3c:5a:76:5d:2f:ea:b5:87:a0:36:28: 53:8c:aa:83:98:f6:d5:28:b9:7e:92:c1:77:b7:a7: e8:58:ea:70:67:9c:94:9a:f7:20:19:d9:11:b5:76: 74:cd:6f:8d:df:93:b5:98:85:c6:a4:ec:00:06:fa: a3:15:6f:d2:76:c6:f8:12:60:02:f6:4b:ad:85:c2: f7:7c:29:69:f1:84:f5:ea:fa:b0:f1:95:6c:a5:38: 46:9f:5d:20:4b:a5:52:75:ba:c1:82:30:b4:6e:83: f4:99:a6:5f:71:b6:eb:be:a9:22:81:f3:fd:6f:9b: fa:35:4b:5d:86:c7:41:47:1e:a3:a6:80:c1:54:82: ce:0f:14:10:81:e2:9e:8f:f1:f5:21:df:ad:ab:81: 24:b6:4c:20:f8:85:0f:b3:93:08:99:95:a7:cf:07: 89:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F4:FC:AE:3B:CB:29:6B:6D:37:9E:6E:9E:10:31:53:38:CF:CD:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5332305c-c8b1-46fd-8dda-7611f9f17bf9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.60.0/22 Signature Algorithm: sha256WithRSAEncryption 03:8b:49:9f:26:c8:08:5f:aa:37:c7:89:6f:88:5c:79:62:21: 68:ef:68:88:f4:d8:7f:aa:d2:e4:0b:c3:48:a1:a6:d9:e2:e2: 5e:ae:2f:d6:31:e4:72:a5:8f:3a:98:ad:8d:33:f6:15:26:1b: 6d:78:df:5a:b0:d6:24:37:a5:d0:70:94:3e:a8:b2:1a:f3:93: d6:84:35:41:cf:bf:22:cc:32:52:ad:6c:d9:33:40:3b:99:5a: 26:e2:e1:57:eb:d4:27:35:94:40:24:2b:9e:7b:cb:e4:7a:d2: 69:86:e3:3e:a1:00:54:d1:30:19:d0:81:e4:bb:6a:14:f1:be: 50:19:3c:51:15:05:5a:29:5c:68:e7:59:c5:d3:91:57:ec:1f: ae:e8:90:5d:96:06:60:b6:82:26:50:b8:5f:91:e8:52:10:1e: eb:df:d6:2e:df:f5:9c:b1:0b:12:72:4b:b8:4a:44:4f:d3:a5: cb:ea:87:47:e7:b7:9b:98:ce:ed:f8:6b:ec:12:b9:d2:e4:42: 8d:0e:ac:90:df:59:09:69:7a:4d:ed:d5:ea:83:0b:e1:8c:0a: 8c:92:d1:4a:cb:9f:71:79:a3:f3:15:66:fd:eb:91:02:90:f4: bf:39:a1:a4:c1:2f:76:68:3e:08:f6:ea:3d:84:12:9e:1c:5d: 6b:e6:fa:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMTZIOWd8/eKRhZAMVqMbOR8LtRowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTEzMDAwMDAwWhcNMjQwNjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Zjc5NzgxYzYzYTdhZTllZTQ4MjQzOGMzZDAwNDlhOTk1 ZGVhZWNmZTE4MWJkZTVlN2ZhOTIxNjliMThmYmQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVMr3vHOTtZ4tjahCkImVBjTq2Pf5nXcIle0b91wraAe3u MBr3bsaTFlCDO0lAKm3vrbMQIGj/RNBTODlZ+RXQdcBI0cxPQZ0Zdy3sf13Gbvfw TimFIBSmukzzaf88WnZdL+q1h6A2KFOMqoOY9tUouX6SwXe3p+hY6nBnnJSa9yAZ 2RG1dnTNb43fk7WYhcak7AAG+qMVb9J2xvgSYAL2S62Fwvd8KWnxhPXq+rDxlWyl OEafXSBLpVJ1usGCMLRug/SZpl9xtuu+qSKB8/1vm/o1S12Gx0FHHqOmgMFUgs4P FBCB4p6P8fUh362rgSS2TCD4hQ+zkwiZlafPB4mNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUfT8rjvLKWttN55unhAxUzjPzWswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMzIzMDVjLWM4YjEtNDZmZC04ZGRhLTc2MTFmOWYxN2JmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgADwwDQYJKoZIhvcNAQELBQADggEBAAOLSZ8myAhfqjfHiW+IXHliIWjv aIj02H+q0uQLw0ihptni4l6uL9Yx5HKljzqYrY0z9hUmG21431qw1iQ3pdBwlD6o shrzk9aENUHPvyLMMlKtbNkzQDuZWibi4Vfr1Cc1lEAkK557y+R60mmG4z6hAFTR MBnQgeS7ahTxvlAZPFEVBVopXGjnWcXTkVfsH67okF2WBmC2giZQuF+R6FIQHuvf 1i7f9ZyxCxJyS7hKRE/Tpcvqh0fnt5uYzu34a+wSudLkQo0OrJDfWQlpek3t1eqD C+GMCoyS0UrLn3F5o/MVZv3rkQKQ9L85oaTBL3ZoPgj26j2EEp4cXWvm+vA= -----END CERTIFICATE-----Generated at Sun Jun 2 01:37:16 2024 by rpki-client on console-ams.rpki-client.org