$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bebf1806-3dfa-4efa-83c4-045398afd502.roa File: bebf1806-3dfa-4efa-83c4-045398afd502.roa (raw, json) Hash identifier: CRdGbI4sGdFlIOHYQ1CREGEICWVJE+jz007caA8S9QM= Subject key identifier: 66:6F:96:AE:1B:4A:DF:55:0F:E2:42:E9:B5:BB:45:49:5F:87:A9:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E1635EF6627C64C7A17000CDD9A006C10B8CB69 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bebf1806-3dfa-4efa-83c4-045398afd502.roa Signing time: Fri 07 Jun 2024 00:00:00 +0000 ROA not before: Fri 07 Jun 2024 00:00:00 +0000 ROA not after: Fri 12 Jul 2024 23:59:59 +0000 asID: 16509 IP address blocks: 100.20.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 27 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:16:35:ef:66:27:c6:4c:7a:17:00:0c:dd:9a:00:6c:10:b8:cb:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 7 00:00:00 2024 GMT Not After : Jul 12 23:59:59 2024 GMT Subject: serialNumber=96a7e61d88b38df7f9f703870d0a79958c7c9b879e2f23c16e1253673c4b8a57, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:66:f5:59:5d:93:0a:16:e5:f8:38:48:54:4f: e2:e1:96:f7:ee:1d:c6:68:a3:e7:b1:76:b0:0d:12: df:68:02:25:f6:97:6a:4d:27:91:04:a6:09:19:44: 2d:bc:3e:a6:82:03:c9:f6:76:8c:e5:eb:93:f5:95: 32:19:e3:0b:56:19:77:e0:82:d9:c4:a8:b8:13:a3: 06:02:69:22:b0:f9:69:86:24:b6:10:aa:1d:94:0f: 6b:e4:97:e4:9e:5d:c5:a3:dd:ec:20:1c:8b:ad:fc: 1f:65:5a:ae:41:68:9b:c1:0f:72:d9:ac:30:01:35: e8:cc:83:db:57:58:9e:38:38:60:6b:aa:41:9d:df: 29:6f:c0:78:27:ec:23:81:95:36:80:ac:cd:7d:1b: 97:93:c8:7b:c2:04:7c:7d:56:7b:6f:15:0b:49:63: 92:06:c4:65:a5:6d:f9:77:57:c6:64:cb:0a:d0:45: 85:ed:42:52:6e:ce:59:4e:7c:3b:c0:ed:e4:e0:04: a7:67:c2:ab:7a:9a:90:9b:25:6d:80:1b:b2:77:5c: 20:7e:a7:52:3d:59:da:45:f0:2c:11:be:5a:9a:ef: 2e:04:a3:a5:04:0a:a1:2b:10:ef:c7:6f:b3:97:c6: 93:00:93:ef:1d:6b:39:60:26:57:d3:30:96:f6:bb: c1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:6F:96:AE:1B:4A:DF:55:0F:E2:42:E9:B5:BB:45:49:5F:87:A9:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bebf1806-3dfa-4efa-83c4-045398afd502.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 100.20.0.0/14 Signature Algorithm: sha256WithRSAEncryption 47:43:cf:36:26:38:4e:13:2a:8d:8d:a5:72:fc:fe:5e:83:ca: 8d:3e:05:e0:12:eb:4f:09:4f:4a:3a:c7:5a:f4:84:80:cb:f8: 00:ea:8b:0f:51:ee:11:71:92:e8:7e:2b:dc:8c:9e:5f:27:f0: af:40:e4:33:d6:68:46:7d:ad:df:16:0a:4d:02:c3:45:27:15: cc:58:4c:be:2e:50:49:c4:54:a0:83:f6:d2:50:80:00:18:4e: be:02:7a:c1:5b:21:59:be:79:b4:55:10:0d:80:7d:30:f3:ee: ce:f7:66:49:c5:dd:b1:03:c8:b3:35:e5:37:08:1b:57:b5:3f: 0b:44:de:0d:29:16:17:01:a7:41:0d:2a:68:10:72:c5:43:35: 2b:ba:b2:f2:dc:3d:01:2c:b7:69:de:4c:70:52:8e:69:cb:6c: e4:bd:a1:92:88:69:96:cf:18:4d:be:5c:bc:f2:0c:01:18:d4: 9d:9c:69:1c:24:82:d9:25:db:5a:02:d6:75:42:7b:1b:1b:60: bc:00:7f:25:f2:66:eb:53:29:b0:37:e4:7b:ff:59:e3:db:73: a1:13:56:94:81:aa:4b:6d:cb:62:de:3f:f9:9c:9b:2a:97:56: 2b:6f:e2:9d:41:88:ee:8c:5c:02:5e:1d:85:fa:68:e7:c4:91: c3:e7:59:c5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHhY172Ynxkx6FwAM3ZoAbBC4y2kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNjA3MDAwMDAwWhcNMjQwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NmE3ZTYxZDg4YjM4ZGY3ZjlmNzAzODcwZDBhNzk5NThj N2M5Yjg3OWUyZjIzYzE2ZTEyNTM2NzNjNGI4YTU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2ZvVZXZMKFuX4OEhUT+LhlvfuHcZoo+exdrANEt9oAiX2 l2pNJ5EEpgkZRC28PqaCA8n2dozl65P1lTIZ4wtWGXfggtnEqLgTowYCaSKw+WmG JLYQqh2UD2vkl+SeXcWj3ewgHIut/B9lWq5BaJvBD3LZrDABNejMg9tXWJ44OGBr qkGd3ylvwHgn7COBlTaArM19G5eTyHvCBHx9VntvFQtJY5IGxGWlbfl3V8ZkywrQ RYXtQlJuzllOfDvA7eTgBKdnwqt6mpCbJW2AG7J3XCB+p1I9WdpF8CwRvlqa7y4E o6UECqErEO/Hb7OXxpMAk+8dazlgJlfTMJb2u8GnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZm+WrhtK31UP4kLptbtFSV+HqcgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JlYmYxODA2LTNkZmEtNGVmYS04M2M0LTA0NTM5OGFmZDUwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJkFDANBgkqhkiG9w0BAQsFAAOCAQEAR0PPNiY4ThMqjY2lcvz+XoPKjT4F 4BLrTwlPSjrHWvSEgMv4AOqLD1HuEXGS6H4r3IyeXyfwr0DkM9ZoRn2t3xYKTQLD RScVzFhMvi5QScRUoIP20lCAABhOvgJ6wVshWb55tFUQDYB9MPPuzvdmScXdsQPI szXlNwgbV7U/C0TeDSkWFwGnQQ0qaBByxUM1K7qy8tw9ASy3ad5McFKOacts5L2h kohpls8YTb5cvPIMARjUnZxpHCSC2SXbWgLWdUJ7GxtgvAB/JfJm61MpsDfke/9Z 49tzoRNWlIGqS23LYt4/+ZybKpdWK2/inUGI7oxcAl4dhfpo58SRw+dZxQ== -----END CERTIFICATE-----Generated at Wed Jun 26 02:09:41 2024 by rpki-client on console-ams.rpki-client.org