$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfc9b5ac-4e98-45e7-8768-d64f53fde5cb.roa File: dfc9b5ac-4e98-45e7-8768-d64f53fde5cb.roa (raw, json) Hash identifier: jdIqfe6Ae/C6zDK3XnM16UfTVLnJ1zqybO8dr3rm2/M= Subject key identifier: 72:77:47:B6:B4:2D:71:0A:F2:D6:15:CE:0E:B7:D9:29:CB:44:28:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B50FB2ECDC93496815FE33653D3DE720A6506FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfc9b5ac-4e98-45e7-8768-d64f53fde5cb.roa Signing time: Mon 03 Jun 2024 00:00:00 +0000 ROA not before: Mon 03 Jun 2024 00:00:00 +0000 ROA not after: Mon 08 Jul 2024 23:59:59 +0000 asID: 8987 IP address blocks: 15.217.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 27 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:50:fb:2e:cd:c9:34:96:81:5f:e3:36:53:d3:de:72:0a:65:06:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 3 00:00:00 2024 GMT Not After : Jul 8 23:59:59 2024 GMT Subject: serialNumber=b9c20c75b2e8978eb7561365d8dc18ba292b1db11ddbf651cd40c607d51c8207, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:04:c1:5f:3a:56:69:6f:4a:e8:73:f7:f2:9b: f8:a1:5b:ee:40:2e:de:08:aa:77:96:5c:1c:cb:27: af:b6:93:fc:59:e2:91:53:45:7e:f5:24:da:dc:2e: 3a:22:83:34:1d:94:48:d1:f6:07:3a:ad:ad:85:d4: d1:83:e6:dd:e4:14:68:49:d9:b3:bd:16:da:1c:bc: f7:be:8b:ca:53:66:ca:23:2e:3d:f3:7c:6c:23:86: 46:a7:49:4d:20:14:81:66:d5:95:4f:a7:01:80:94: c6:9f:14:f4:ba:d7:be:46:78:16:0b:57:8c:41:f8: 67:4a:9f:63:2a:4d:37:b6:2f:ca:cd:13:06:72:65: 06:02:e0:30:3b:8c:a8:69:4f:a5:cd:d8:f7:ab:8f: 3b:cf:5b:9b:ac:8f:50:9a:1d:f6:55:3d:61:ae:f1: 52:4a:43:69:a6:dc:58:71:55:19:98:e9:4f:6d:20: 7f:8f:83:d5:aa:86:df:a1:a6:a9:2e:fd:dc:a4:87: 59:4b:0a:0f:10:81:92:7e:55:dd:e6:0c:db:8e:c9: 87:34:c6:58:30:8b:10:18:fe:7a:92:12:5d:b3:b2: 9d:50:a4:db:9e:eb:6f:ea:cc:aa:c3:3a:91:e8:96: 48:80:82:aa:7c:a8:f4:38:ff:46:b3:bc:96:88:c9: b0:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:77:47:B6:B4:2D:71:0A:F2:D6:15:CE:0E:B7:D9:29:CB:44:28:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfc9b5ac-4e98-45e7-8768-d64f53fde5cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.217.0.0/16 Signature Algorithm: sha256WithRSAEncryption 96:ad:cf:7c:58:ba:7b:32:57:ce:72:3e:a6:ed:d1:cd:6c:03: 50:78:46:3d:e1:c8:eb:57:c0:ac:40:55:ce:ad:42:d6:4b:bc: b1:e5:2b:a2:92:37:c4:17:20:22:4c:9e:6a:21:4e:0d:c8:ce: 76:1a:a7:3d:e0:e6:83:4d:ce:c9:0c:ed:18:57:13:8a:df:c2: 32:12:7b:82:59:4d:6b:b7:23:e5:83:41:a4:11:56:f4:fc:cc: 64:b8:71:97:db:0f:88:17:d8:d4:27:27:38:1b:66:99:73:8f: 8e:bd:bf:19:78:13:1a:d8:c5:48:fd:21:06:55:74:e1:89:a7: 22:ba:37:f3:bb:3b:a0:40:79:b5:da:0b:3d:93:33:42:19:49: 26:40:a2:a4:bc:91:ea:fe:a7:f0:00:49:6b:c5:cf:01:39:e8: f6:e8:38:3f:2e:7b:99:73:e9:9a:52:d8:9b:56:3f:73:71:6b: cb:52:45:4e:fe:5c:09:46:d9:de:e4:34:ce:d7:50:cc:55:9f: 11:08:f3:ce:59:c0:2d:e6:8f:10:c5:37:68:2d:07:0f:f1:f8: 27:2c:c5:66:76:66:f8:eb:ec:a0:2d:48:39:11:9a:b4:e5:6f: ef:c3:47:1b:81:67:23:d0:78:bf:c2:4d:c7:e9:57:52:67:41: 44:ca:4f:c9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUK1D7Ls3JNJaBX+M2U9PecgplBv8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNjAzMDAwMDAwWhcNMjQwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWMyMGM3NWIyZTg5NzhlYjc1NjEzNjVkOGRjMThiYTI5 MmIxZGIxMWRkYmY2NTFjZDQwYzYwN2Q1MWM4MjA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkBMFfOlZpb0roc/fym/ihW+5ALt4IqneWXBzLJ6+2k/xZ 4pFTRX71JNrcLjoigzQdlEjR9gc6ra2F1NGD5t3kFGhJ2bO9FtocvPe+i8pTZsoj Lj3zfGwjhkanSU0gFIFm1ZVPpwGAlMafFPS6175GeBYLV4xB+GdKn2MqTTe2L8rN EwZyZQYC4DA7jKhpT6XN2PerjzvPW5usj1CaHfZVPWGu8VJKQ2mm3FhxVRmY6U9t IH+Pg9Wqht+hpqku/dykh1lLCg8QgZJ+Vd3mDNuOyYc0xlgwixAY/nqSEl2zsp1Q pNue62/qzKrDOpHolkiAgqp8qPQ4/0azvJaIybBVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcndHtrQtcQry1hXODrfZKctEKNQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmYzliNWFjLTRlOTgtNDVlNy04NzY4LWQ2NGY1M2ZkZTVjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP2TANBgkqhkiG9w0BAQsFAAOCAQEAlq3PfFi6ezJXznI+pu3RzWwDUHhG PeHI61fArEBVzq1C1ku8seUropI3xBcgIkyeaiFODcjOdhqnPeDmg03OyQztGFcT it/CMhJ7gllNa7cj5YNBpBFW9PzMZLhxl9sPiBfY1CcnOBtmmXOPjr2/GXgTGtjF SP0hBlV04YmnIro387s7oEB5tdoLPZMzQhlJJkCipLyR6v6n8ABJa8XPATno9ug4 Py57mXPpmlLYm1Y/c3Fry1JFTv5cCUbZ3uQ0ztdQzFWfEQjzzlnALeaPEMU3aC0H D/H4JyzFZnZm+OvsoC1IORGatOVv78NHG4FnI9B4v8JNx+lXUmdBRMpPyQ== -----END CERTIFICATE-----Generated at Wed Jun 26 02:09:46 2024 by rpki-client on console-ams.rpki-client.org