$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d4ea817-9a30-46eb-adae-ea1411984c84.roa File: 9d4ea817-9a30-46eb-adae-ea1411984c84.roa (raw, json) Hash identifier: DSdjrGAHWM1DtnN9fW5fK/EAciBKCg9d+gO0z3V6bRw= Subject key identifier: EB:10:F0:14:5E:F7:09:9A:8A:EA:7C:00:DE:56:D3:B2:88:16:A7:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2549E6C3E55300F84D6EEC8108F89A7C261093 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d4ea817-9a30-46eb-adae-ea1411984c84.roa Signing time: Sat 18 May 2024 00:00:00 +0000 ROA not before: Sat 18 May 2024 00:00:00 +0000 ROA not after: Sat 22 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.45.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:49:e6:c3:e5:53:00:f8:4d:6e:ec:81:08:f8:9a:7c:26:10:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 18 00:00:00 2024 GMT Not After : Jun 22 23:59:59 2024 GMT Subject: serialNumber=4507f1c534035a932aa9e6baca83afd83e50647747bf4b9ef65b88b7f62831c6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ec:12:d4:eb:3c:51:52:7b:ea:1e:54:48:10: 98:a6:db:e0:78:93:6a:c2:4a:45:30:3d:e5:15:e8: 04:41:c8:72:26:18:86:62:15:b5:9e:50:40:a1:fb: 6a:fb:92:b6:0e:13:14:62:4d:8d:3b:51:96:93:65: d6:54:96:75:6a:d1:2e:5b:cf:31:e5:de:12:81:d2: 6d:4f:d3:91:05:b4:df:01:ce:54:30:32:4b:46:2f: 88:4b:00:a3:72:a2:f1:97:c5:cf:7a:c5:82:8e:53: 49:3f:1d:c9:ba:28:4b:78:72:46:ad:f1:48:d2:50: 97:8e:70:42:f8:30:fb:df:ad:5e:ec:e2:09:84:ef: 14:d7:bc:11:71:4c:b5:c8:df:03:84:cc:98:8f:7d: 3a:c2:30:ab:90:b8:2b:a5:7d:ba:27:ca:9e:87:3a: a0:70:6e:54:e6:22:fd:ab:4e:c7:92:d7:41:f0:60: 2a:6f:8a:36:49:d9:da:54:1c:bc:84:c3:4c:ee:22: 8d:21:69:ea:05:56:f5:fd:0c:1e:2b:11:26:6b:fa: a9:08:e0:f5:6d:16:0b:3b:c2:be:70:21:bb:1e:35: 5c:ae:2d:79:de:16:3e:51:17:22:57:d8:39:a2:ad: 3c:5b:1a:41:26:c4:2b:dd:7f:32:32:87:81:bf:c9: e2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:10:F0:14:5E:F7:09:9A:8A:EA:7C:00:DE:56:D3:B2:88:16:A7:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d4ea817-9a30-46eb-adae-ea1411984c84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.45.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:b6:10:91:54:cd:b4:50:27:18:21:6b:c9:49:2b:16:15:48: ad:aa:34:f1:16:09:90:f1:a7:5c:b0:0b:34:14:36:49:d8:ca: 1e:19:08:57:c2:c0:d5:4f:7a:fb:12:f4:64:90:37:7a:55:bd: 68:7c:90:52:60:68:39:f9:2b:50:02:18:de:47:27:35:06:66: c7:17:f7:bc:d1:06:63:31:c1:8b:5c:c6:fc:d1:cf:47:00:e2: 8a:1a:c1:40:6f:c1:84:89:f5:d3:b1:2a:17:68:f5:ec:2b:d8: 66:dd:35:47:1a:05:35:71:e4:fb:ca:cf:6a:e7:50:7b:af:ac: 1b:c9:26:58:8b:4c:e2:16:22:0a:90:c1:cf:ea:0f:ad:d1:fc: b9:c3:af:78:48:ad:a1:e1:b8:dd:71:ea:e6:94:31:6b:45:90: 41:52:1d:df:ff:71:ca:6e:f2:0d:77:bf:57:5a:08:01:84:37: db:c5:32:e9:92:f1:7e:8a:72:83:3b:66:b8:9e:0e:90:ac:cb: d1:02:88:42:89:d3:1b:38:ce:55:2c:f7:bc:55:eb:a9:9e:28: ee:20:cc:44:f0:0e:e7:bb:a5:ce:af:e7:66:23:5c:e7:6b:cb: 6f:b2:a2:50:f8:b3:52:1c:fb:1e:18:3d:88:ce:c6:56:2a:bb: 12:63:78:9b -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITJUnmw+VTAPhNbuyBCPiafCYQkzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDA1MTgwMDAwMDBaFw0yNDA2MjIyMzU5NTla MHoxSTBHBgNVBAUTQDQ1MDdmMWM1MzQwMzVhOTMyYWE5ZTZiYWNhODNhZmQ4M2U1 MDY0Nzc0N2JmNGI5ZWY2NWI4OGI3ZjYyODMxYzYxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAL3sEtTrPFFSe+oeVEgQmKbb4HiTasJKRTA95RXoBEHIciYY hmIVtZ5QQKH7avuStg4TFGJNjTtRlpNl1lSWdWrRLlvPMeXeEoHSbU/TkQW03wHO VDAyS0YviEsAo3Ki8ZfFz3rFgo5TST8dybooS3hyRq3xSNJQl45wQvgw+9+tXuzi CYTvFNe8EXFMtcjfA4TMmI99OsIwq5C4K6V9uifKnoc6oHBuVOYi/atOx5LXQfBg Km+KNknZ2lQcvITDTO4ijSFp6gVW9f0MHisRJmv6qQjg9W0WCzvCvnAhux41XK4t ed4WPlEXIlfYOaKtPFsaQSbEK91/MjKHgb/J4gsCAwEAAaOCArAwggKsMB0GA1Ud DgQWBBTrEPAUXvcJmorqfADeVtOyiBanYTAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvOWQ0ZWE4MTctOWEzMC00NmViLWFkYWUtZWExNDExOTg0Yzg0LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDACgtMA0GCSqGSIb3DQEBCwUAA4IBAQCTthCRVM20UCcYIWvJSSsWFUitqjTx FgmQ8adcsAs0FDZJ2MoeGQhXwsDVT3r7EvRkkDd6Vb1ofJBSYGg5+StQAhjeRyc1 BmbHF/e80QZjMcGLXMb80c9HAOKKGsFAb8GEifXTsSoXaPXsK9hm3TVHGgU1ceT7 ys9q51B7r6wbySZYi0ziFiIKkMHP6g+t0fy5w694SK2h4bjdcermlDFrRZBBUh3f /3HKbvINd79XWggBhDfbxTLpkvF+inKDO2a4ng6QrMvRAohCidMbOM5VLPe8Veup nijuIMxE8A7nu6XOr+dmI1zna8tvsqJQ+LNSHPseGD2IzsZWKrsSY3ib -----END CERTIFICATE-----Generated at Sun Jun 2 01:37:31 2024 by rpki-client on console-ams.rpki-client.org