$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8323e23-44d9-4456-98f9-272a41e01241.roa File: f8323e23-44d9-4456-98f9-272a41e01241.roa (raw, json) Hash identifier: vMayttoD0HGTnfszTSwQiLLo1Dr2mDf0peLFNKbOsIM= Subject key identifier: 3A:CE:BA:31:3B:7A:92:39:36:44:71:56:FB:96:60:4F:B7:FF:7F:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20378722101F28E8593356540DE423ABB69E5F7D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8323e23-44d9-4456-98f9-272a41e01241.roa Signing time: Sat 01 Jun 2024 00:00:00 +0000 ROA not before: Sat 01 Jun 2024 00:00:00 +0000 ROA not after: Sat 06 Jul 2024 23:59:59 +0000 asID: 8987 IP address blocks: 192.157.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:37:87:22:10:1f:28:e8:59:33:56:54:0d:e4:23:ab:b6:9e:5f:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 1 00:00:00 2024 GMT Not After : Jul 6 23:59:59 2024 GMT Subject: serialNumber=fb9010637cd978cbcd04402f1262a44dc32ffce51933a3a7e2a7278164bd2172, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:30:3d:89:0a:95:5c:a8:a5:b8:9f:4e:5f:7c: d1:14:81:3c:59:49:11:80:1c:79:f0:2c:99:71:a2: 9c:bc:2a:08:33:e9:53:a5:b3:97:4d:d8:ac:05:a5: ca:e9:30:a3:47:34:1d:63:5a:50:28:86:46:8c:5d: 7b:35:02:92:5f:07:f5:bc:c2:69:11:a1:5d:21:80: ad:6f:dd:ae:72:9b:bf:ee:61:4f:3a:d5:bf:76:53: a5:a4:1a:fb:53:8c:05:3b:0d:a2:c9:60:da:43:16: 5b:3e:d2:3d:94:e3:a8:97:91:90:22:81:62:d3:b4: d9:fc:c9:07:31:05:05:db:bb:3c:21:d3:bc:f9:b3: ae:d6:d8:e9:93:96:ef:5f:18:0f:1b:fa:28:d8:ff: db:28:1a:5d:83:bb:a3:49:7f:66:82:d4:0c:bc:9a: b1:6c:75:97:81:4d:9c:56:ca:43:87:81:70:d1:a1: b7:01:02:fd:47:2b:fc:d0:c1:58:17:09:c3:8a:ae: 1f:40:13:47:19:72:f6:e8:f4:67:56:14:14:75:b5: c1:af:51:b7:71:0a:ce:3f:3b:80:0e:12:71:71:43: 65:28:a1:45:72:d4:a1:8e:06:76:cd:02:74:9e:56: 71:52:bd:ea:a7:db:ea:10:5a:8e:0c:51:71:b2:63: fc:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:CE:BA:31:3B:7A:92:39:36:44:71:56:FB:96:60:4F:B7:FF:7F:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8323e23-44d9-4456-98f9-272a41e01241.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.157.64.0/21 Signature Algorithm: sha256WithRSAEncryption 1d:97:25:78:09:23:cb:96:7e:6b:06:69:9a:03:69:f5:ea:4f: 23:c0:61:54:03:91:1f:4a:b8:c1:10:18:49:35:3e:b9:d4:3e: cc:8a:d5:e2:78:56:8d:dc:bc:f2:74:8b:de:57:00:dc:18:2c: bc:d1:b4:5e:a1:51:ac:59:21:8f:7f:2d:74:6d:9e:42:f8:18: 01:de:b3:29:a5:3e:3c:ef:91:63:92:21:79:e4:69:a4:8c:d4: b4:7e:c5:5a:68:0b:e9:49:ed:cd:58:c8:7b:77:ab:5e:4e:c6: 88:47:2f:dc:ce:2a:b5:58:f3:7d:2a:3c:af:ce:dd:53:e3:b4: 7a:97:be:e9:48:8e:51:45:7a:a4:27:0e:06:68:d5:99:3e:17: ec:da:87:8b:25:85:77:40:fa:c8:34:78:88:37:2b:a0:a2:ef: 5b:b2:e8:cd:ee:12:6e:8c:45:27:30:c7:0d:fe:06:98:aa:8b: 2f:0b:d1:8c:03:a8:e0:9f:55:5f:9b:6e:59:71:a5:49:1d:58: 81:7f:79:0a:43:96:63:3e:73:3e:93:41:e5:18:f3:05:d5:af: e1:2f:97:00:22:e7:b5:4b:f8:dd:b3:81:28:61:93:32:d0:ab: 89:41:68:7c:27:6f:12:f5:6f:eb:cf:10:f5:39:0a:a6:8c:dd: c7:1d:3a:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIDeHIhAfKOhZM1ZUDeQjq7aeX30wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNjAxMDAwMDAwWhcNMjQwNzA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjkwMTA2MzdjZDk3OGNiY2QwNDQwMmYxMjYyYTQ0ZGMz MmZmY2U1MTkzM2EzYTdlMmE3Mjc4MTY0YmQyMTcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrMD2JCpVcqKW4n05ffNEUgTxZSRGAHHnwLJlxopy8Kggz 6VOls5dN2KwFpcrpMKNHNB1jWlAohkaMXXs1ApJfB/W8wmkRoV0hgK1v3a5ym7/u YU861b92U6WkGvtTjAU7DaLJYNpDFls+0j2U46iXkZAigWLTtNn8yQcxBQXbuzwh 07z5s67W2OmTlu9fGA8b+ijY/9soGl2Du6NJf2aC1Ay8mrFsdZeBTZxWykOHgXDR obcBAv1HK/zQwVgXCcOKrh9AE0cZcvbo9GdWFBR1tcGvUbdxCs4/O4AOEnFxQ2Uo oUVy1KGOBnbNAnSeVnFSveqn2+oQWo4MUXGyY/xlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOs66MTt6kjk2RHFW+5ZgT7f/fwQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y4MzIzZTIzLTQ0ZDktNDQ1Ni05OGY5LTI3MmE0MWUwMTI0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPAnUAwDQYJKoZIhvcNAQELBQADggEBAB2XJXgJI8uWfmsGaZoDafXqTyPA YVQDkR9KuMEQGEk1PrnUPsyK1eJ4Vo3cvPJ0i95XANwYLLzRtF6hUaxZIY9/LXRt nkL4GAHesymlPjzvkWOSIXnkaaSM1LR+xVpoC+lJ7c1YyHt3q15OxohHL9zOKrVY 830qPK/O3VPjtHqXvulIjlFFeqQnDgZo1Zk+F+zah4slhXdA+sg0eIg3K6Ci71uy 6M3uEm6MRScwxw3+Bpiqiy8L0YwDqOCfVV+bbllxpUkdWIF/eQpDlmM+cz6TQeUY 8wXVr+EvlwAi57VL+N2zgShhkzLQq4lBaHwnbxL1b+vPEPU5CqaM3ccdOsc= -----END CERTIFICATE-----Generated at Sun Jun 2 01:37:47 2024 by rpki-client on console-ams.rpki-client.org