$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/007ac275-e097-449e-aeb9-21516b3e3995.roa File: 007ac275-e097-449e-aeb9-21516b3e3995.roa (raw, json) Hash identifier: G1b7M/i5Yh4xcI/fOjPco+YTWjas4XtqO7pRswcTkDw= Subject key identifier: 60:0A:44:3D:BF:F8:F0:60:87:69:96:E2:CB:4E:FD:5C:9A:52:49:99 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B7FB199863B426ACC509C3F35DB2C60917147D3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/007ac275-e097-449e-aeb9-21516b3e3995.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 166.117.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:7f:b1:99:86:3b:42:6a:cc:50:9c:3f:35:db:2c:60:91:71:47:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=b1799c24cb49143b2abf4921baa7ab1d85bf536dbe8ad2eeaedb1db467875576, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:28:f1:0a:a4:a1:12:ce:ca:08:2f:33:29:2d: 59:be:4d:3a:a8:68:f0:cd:42:3f:ef:8b:84:bc:ef: 18:9d:f8:f7:38:f8:dc:8e:1f:f6:5d:92:e3:5f:5e: 9e:45:a9:01:90:13:83:c9:14:16:85:8e:6d:c4:c8: c7:82:ba:8f:de:98:4c:37:ea:80:67:61:83:1e:76: 91:4c:c9:a2:16:d0:23:ab:59:ad:b1:70:5a:41:73: 1b:17:2a:66:17:07:6a:13:3a:56:d7:29:4b:09:99: b9:48:b3:00:cc:aa:78:16:90:5b:2b:3e:57:5b:55: 0d:21:15:d8:45:2c:3f:d5:95:dc:ce:7a:22:b5:ba: 2b:14:29:e4:2b:88:15:b4:52:f4:bf:05:e3:45:c6: ef:9b:6b:7e:3b:7a:30:af:0b:e1:06:0d:04:fa:60: 0b:a7:51:97:85:8c:61:d4:eb:68:1a:23:ac:9e:be: 8f:7a:5a:70:26:04:d8:f0:31:6a:17:12:b7:59:33: 14:af:24:54:e2:7d:ec:f2:f4:74:d5:4f:63:2a:0e: 8a:a1:3d:f6:12:7a:d1:e8:a7:d6:0c:7e:64:cc:7b: 9e:34:81:45:c0:52:bd:1a:1d:e2:df:4f:90:39:de: d0:87:c7:b2:bf:0f:ca:83:5a:89:ac:0c:ca:bd:62: 56:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:0A:44:3D:BF:F8:F0:60:87:69:96:E2:CB:4E:FD:5C:9A:52:49:99 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/007ac275-e097-449e-aeb9-21516b3e3995.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 166.117.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0c:26:67:00:db:99:97:c8:72:8b:e6:cb:dc:3f:0b:9a:fe:0e: 8d:f9:3e:4d:d8:1c:6e:e6:11:d4:41:9e:ef:d2:2a:b5:81:44: 3c:97:59:bf:3a:07:b5:bf:53:94:ea:94:93:ad:c1:47:2e:2b: b9:af:b7:2e:94:ef:7d:40:8e:a4:78:71:83:09:f4:29:b6:62: a8:59:28:2f:7f:2c:38:c2:84:e1:fc:10:b5:29:0b:27:a8:31: bc:e6:a0:0c:95:cd:13:83:26:1c:bd:fe:87:8c:d4:d2:35:05: 75:58:c2:e5:6d:ff:11:c3:0f:ac:4b:54:1e:d2:fa:d0:65:65: 15:20:8a:c6:5f:c9:50:89:55:5f:ab:86:39:b7:a3:b2:35:87: 25:a1:96:0d:40:a5:e3:a9:5a:9d:ad:83:95:41:6f:06:39:40: 86:11:08:1d:76:aa:8d:1e:8b:a7:e1:7e:5a:a8:5f:cf:ee:f4: db:cc:eb:41:56:b7:2f:68:65:de:08:2d:c7:9b:7e:88:8a:15: 1c:ce:f0:c4:b3:b7:27:fa:24:8b:b3:57:db:2a:c1:0a:b2:4a: 7f:4e:6a:cd:a3:c5:34:d1:5c:4e:a9:6a:18:03:e6:25:7e:9b: f7:1e:3c:7e:75:18:f4:a2:c5:8e:5c:43:2c:2d:87:70:65:9f: 13:be:db:32 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUC3+xmYY7QmrMUJw/NdssYJFxR9MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTc5OWMyNGNiNDkxNDNiMmFiZjQ5MjFiYWE3YWIxZDg1 YmY1MzZkYmU4YWQyZWVhZWRiMWRiNDY3ODc1NTc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCKPEKpKESzsoILzMpLVm+TTqoaPDNQj/vi4S87xid+Pc4 +NyOH/ZdkuNfXp5FqQGQE4PJFBaFjm3EyMeCuo/emEw36oBnYYMedpFMyaIW0COr Wa2xcFpBcxsXKmYXB2oTOlbXKUsJmblIswDMqngWkFsrPldbVQ0hFdhFLD/VldzO eiK1uisUKeQriBW0UvS/BeNFxu+ba347ejCvC+EGDQT6YAunUZeFjGHU62gaI6ye vo96WnAmBNjwMWoXErdZMxSvJFTifezy9HTVT2MqDoqhPfYSetHop9YMfmTMe540 gUXAUr0aHeLfT5A53tCHx7K/D8qDWomsDMq9YlbdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYApEPb/48GCHaZbiy079XJpSSZkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAwN2FjMjc1LWUwOTctNDQ5ZS1hZWI5LTIxNTE2YjNlMzk5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCmdTANBgkqhkiG9w0BAQsFAAOCAQEADCZnANuZl8hyi+bL3D8Lmv4Ojfk+ TdgcbuYR1EGe79IqtYFEPJdZvzoHtb9TlOqUk63BRy4rua+3LpTvfUCOpHhxgwn0 KbZiqFkoL38sOMKE4fwQtSkLJ6gxvOagDJXNE4MmHL3+h4zU0jUFdVjC5W3/EcMP rEtUHtL60GVlFSCKxl/JUIlVX6uGObejsjWHJaGWDUCl46lana2DlUFvBjlAhhEI HXaqjR6Lp+F+Wqhfz+7028zrQVa3L2hl3ggtx5t+iIoVHM7wxLO3J/oki7NX2yrB CrJKf05qzaPFNNFcTqlqGAPmJX6b9x48fnUY9KLFjlxDLC2HcGWfE77bMg== -----END CERTIFICATE-----Generated at Thu May 2 08:02:23 2024 by rpki-client on console-ams.rpki-client.org