$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf01fc62-e245-4777-9199-e7322afe5fb6.roa File: bf01fc62-e245-4777-9199-e7322afe5fb6.roa (raw, json) Hash identifier: FbaTzgWdWUD+jl1ud4YxBBj5tt8UMv8yrZBwr6rGKUM= Subject key identifier: DF:D7:CE:EC:C7:B1:61:16:91:D5:07:64:DD:FD:FE:3E:C5:B9:99:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2182EF82F5DA47C4095F5803B9B3A476C41A1557 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf01fc62-e245-4777-9199-e7322afe5fb6.roa Signing time: Fri 03 May 2024 00:00:00 +0000 ROA not before: Fri 03 May 2024 00:00:00 +0000 ROA not after: Fri 07 Jun 2024 23:59:59 +0000 asID: 14618 IP address blocks: 56.215.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 07 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:82:ef:82:f5:da:47:c4:09:5f:58:03:b9:b3:a4:76:c4:1a:15:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:00:00 2024 GMT Not After : Jun 7 23:59:59 2024 GMT Subject: serialNumber=d3923e315b5039e34bd3a155d5bcfa85039cde7daf274117eac51d4c23d7ee46, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:27:b3:22:77:6f:f6:94:08:0b:43:6d:c5:4d: ed:9e:b3:7c:4d:88:96:e5:7c:34:a2:9d:77:8e:c9: a7:92:1e:72:b3:c0:b1:83:0a:5e:b7:47:bd:1f:ec: e6:12:54:92:55:ca:3e:5d:34:b8:a7:48:1e:18:bb: 9d:ef:cb:f3:f2:6c:94:8d:e7:c9:5e:64:14:35:5f: dd:6f:53:e5:23:29:d6:7b:5f:b2:34:2d:85:e6:7d: f4:77:bc:2b:a7:b2:a4:4f:93:a3:b7:57:a2:d9:0f: 9c:f5:22:a8:a6:ac:4d:36:17:dc:13:d0:c9:68:25: 4a:dd:81:7f:a7:29:fa:8f:b6:6b:fb:96:8a:2c:5f: 0c:4b:be:3c:40:85:2c:ae:ce:d4:d3:bf:10:88:82: 76:59:16:18:ee:8e:ec:da:b6:c9:28:c1:2f:7f:20: a9:0b:5d:a4:6b:85:35:3c:39:18:11:bf:12:a9:b5: 5b:26:39:12:77:d4:7b:90:bd:48:76:c8:b4:eb:e4: 0a:64:0b:c5:aa:59:f3:a2:e2:e3:c4:a6:39:d5:9f: a5:50:5b:7f:fd:02:1d:4d:ae:82:bb:81:ad:3d:9d: 84:e3:8f:02:4e:16:b1:5f:57:43:26:67:cf:c6:ac: 31:87:39:4b:f4:15:92:53:1c:1f:72:a0:fb:f6:61: 03:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:D7:CE:EC:C7:B1:61:16:91:D5:07:64:DD:FD:FE:3E:C5:B9:99:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf01fc62-e245-4777-9199-e7322afe5fb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.215.0.0/16 Signature Algorithm: sha256WithRSAEncryption b1:91:c0:63:d0:5e:bd:6d:27:11:87:2b:c5:d3:d3:42:23:54: 8e:64:b3:d9:68:8e:0d:96:0a:46:58:be:d9:26:99:6b:36:85: 37:49:b8:73:05:e0:9e:87:01:c7:ae:ee:7f:02:3d:9b:24:26: 40:ff:0e:e0:91:ca:94:4f:af:6f:f5:76:bc:22:f4:5a:9e:b6: de:0f:05:f7:ae:8c:cd:c0:e4:f7:ac:67:86:00:f7:83:5a:53: 5e:a1:52:54:ad:a2:7c:22:af:07:c0:07:d4:c9:a5:7a:d8:26: e3:97:f1:48:95:bf:00:a8:97:0f:f8:87:2b:a7:bc:85:c7:d9: 43:7c:52:ac:38:ca:dd:4a:52:18:61:8d:56:5c:e7:04:17:e2: df:3c:02:ea:43:eb:cd:85:69:f0:a0:77:3b:5c:bd:dd:8b:4d: d7:59:07:ed:59:b2:4b:40:6a:c4:8d:bd:1b:17:3a:ee:68:c4: 46:e1:69:db:ec:a8:7f:ce:33:0d:aa:55:c0:7e:c9:8e:63:f7: 8f:e8:06:e8:09:ae:50:a4:e6:49:87:7e:0c:ef:f9:32:20:af: ae:50:15:23:b1:88:14:4e:36:a1:1a:22:2b:fe:c6:13:d1:e3: ed:30:7a:7e:af:6e:ab:a7:82:0f:9b:c2:0a:ca:89:d7:9f:27: a5:39:72:ba -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIYLvgvXaR8QJX1gDubOkdsQaFVcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTAzMDAwMDAwWhcNMjQwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzkyM2UzMTViNTAzOWUzNGJkM2ExNTVkNWJjZmE4NTAz OWNkZTdkYWYyNzQxMTdlYWM1MWQ0YzIzZDdlZTQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0J7Mid2/2lAgLQ23FTe2es3xNiJblfDSinXeOyaeSHnKz wLGDCl63R70f7OYSVJJVyj5dNLinSB4Yu53vy/PybJSN58leZBQ1X91vU+UjKdZ7 X7I0LYXmffR3vCunsqRPk6O3V6LZD5z1IqimrE02F9wT0MloJUrdgX+nKfqPtmv7 loosXwxLvjxAhSyuztTTvxCIgnZZFhjujuzatskowS9/IKkLXaRrhTU8ORgRvxKp tVsmORJ31HuQvUh2yLTr5ApkC8WqWfOi4uPEpjnVn6VQW3/9Ah1NroK7ga09nYTj jwJOFrFfV0MmZ8/GrDGHOUv0FZJTHB9yoPv2YQNNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU39fO7MexYRaR1Qdk3f3+PsW5mR8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmMDFmYzYyLWUyNDUtNDc3Ny05MTk5LWU3MzIyYWZlNWZiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA41zANBgkqhkiG9w0BAQsFAAOCAQEAsZHAY9BevW0nEYcrxdPTQiNUjmSz 2WiODZYKRli+2SaZazaFN0m4cwXgnocBx67ufwI9myQmQP8O4JHKlE+vb/V2vCL0 Wp623g8F966MzcDk96xnhgD3g1pTXqFSVK2ifCKvB8AH1Mmletgm45fxSJW/AKiX D/iHK6e8hcfZQ3xSrDjK3UpSGGGNVlznBBfi3zwC6kPrzYVp8KB3O1y93YtN11kH 7VmyS0BqxI29Gxc67mjERuFp2+yof84zDapVwH7JjmP3j+gG6AmuUKTmSYd+DO/5 MiCvrlAVI7GIFE42oRoiK/7GE9Hj7TB6fq9uq6eCD5vCCsqJ158npTlyug== -----END CERTIFICATE-----Generated at Mon May 6 00:46:58 2024 by rpki-client on console-ams.rpki-client.org