$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0364ab8d-ad59-40f9-a140-7bb40cb409fa.roa File: 0364ab8d-ad59-40f9-a140-7bb40cb409fa.roa (raw, json) Hash identifier: 1DZVO7raMHA9CukSJAQzRYn+xo12OApCPYZYRE3dns4= Subject key identifier: DB:63:CA:D0:F9:D2:3F:68:83:8A:A5:20:81:1B:3D:10:FD:C5:5C:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3611485B19CE4DCC06156F693F79B2FD085D3814 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0364ab8d-ad59-40f9-a140-7bb40cb409fa.roa Signing time: Mon 06 May 2024 00:00:00 +0000 ROA not before: Mon 06 May 2024 00:00:00 +0000 ROA not after: Mon 10 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 139.89.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:11:48:5b:19:ce:4d:cc:06:15:6f:69:3f:79:b2:fd:08:5d:38:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:00:00 2024 GMT Not After : Jun 10 23:59:59 2024 GMT Subject: serialNumber=c42bb1866ea851ba51f1ddb7273f2f69914ea99ccbae39009ee027601d90c7ae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2d:24:4b:e9:20:84:ec:47:a7:e3:58:9a:a2: 87:cc:ce:9e:f2:f0:6f:88:23:24:14:97:0f:74:c6: 8c:c0:a8:34:f6:a0:49:83:f5:d4:d6:8c:5e:73:ab: 56:8f:66:05:ed:3d:ee:e0:d6:9f:fc:33:98:37:75: ed:b3:f3:71:44:05:4e:29:06:50:42:7e:28:0e:d0: ae:24:f1:6f:f9:ff:c7:74:92:2c:c1:62:06:a8:67: 8f:4b:d3:c6:6a:9c:36:84:91:cf:1e:5c:d7:20:60: 34:2d:54:b3:01:42:39:8e:e7:ee:70:07:5e:51:0a: 40:bc:00:3a:9f:91:09:9e:56:3a:33:6d:a1:ab:77: a8:13:0a:58:ed:f9:45:a1:5a:2e:cf:21:cd:20:e1: 04:51:74:5d:48:75:31:ed:a2:1d:d2:a3:0f:ea:08: b1:44:56:e2:de:41:44:68:a0:67:32:ca:13:70:22: f8:89:77:e4:65:fa:99:aa:1f:fe:0f:bb:b3:fe:b0: 6f:b5:85:ef:14:69:4f:fd:51:25:81:55:9f:96:db: 37:f2:e3:2f:b9:d8:46:e3:b3:6c:a2:ae:ac:c1:ec: 16:0d:83:e0:dc:c4:fe:a7:c3:94:12:e7:a1:ef:70: 36:09:24:89:e9:c6:49:d1:19:f1:16:7e:5f:8d:ac: 51:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:63:CA:D0:F9:D2:3F:68:83:8A:A5:20:81:1B:3D:10:FD:C5:5C:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0364ab8d-ad59-40f9-a140-7bb40cb409fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption 49:6c:3d:f4:90:bf:9d:d2:89:14:0a:6f:72:ad:56:77:11:56: b3:20:ad:5e:b3:b7:72:02:9e:4e:3d:d3:12:e2:a0:55:f6:c8: ba:c7:af:04:e4:e6:06:9c:4d:a8:e8:10:dd:e1:4a:03:2f:9b: 83:dc:4c:ef:59:89:8c:80:4f:68:b2:01:ee:e0:2f:47:9c:4b: fd:80:6e:e8:0a:ff:4e:9e:8d:e0:ae:77:50:71:4c:80:1c:df: cb:9e:54:8f:49:7f:f0:73:05:ee:4b:11:ef:49:5b:75:5b:88: 40:bb:32:9c:5a:42:b3:58:e4:33:3b:44:45:69:20:50:e1:db: 4f:e4:06:29:e4:08:5d:7f:18:2f:43:2e:51:c6:1f:c3:b2:fb: 94:0a:41:f0:3c:f6:6c:58:5b:d4:5a:8d:d3:dc:49:36:27:e6: 0d:e6:f8:93:b5:16:60:73:7c:4f:60:6b:7e:fb:fc:e1:0e:40: 73:3c:ad:66:3e:ef:47:c5:ff:3a:8f:61:72:45:99:f8:7e:6a: 7e:86:a0:3a:d4:80:19:b6:72:c8:e6:a8:ac:00:cd:03:1a:76: 69:e0:06:71:a2:20:21:5c:7e:c6:e6:00:e5:d0:92:6d:ff:e5: f7:e9:bf:03:ce:0c:14:bb:51:9e:7a:50:cc:5b:53:86:9d:fc: 3c:57:ca:87 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNhFIWxnOTcwGFW9pP3my/QhdOBQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA2MDAwMDAwWhcNMjQwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDJiYjE4NjZlYTg1MWJhNTFmMWRkYjcyNzNmMmY2OTkx NGVhOTljY2JhZTM5MDA5ZWUwMjc2MDFkOTBjN2FlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPLSRL6SCE7Een41iaoofMzp7y8G+IIyQUlw90xozAqDT2 oEmD9dTWjF5zq1aPZgXtPe7g1p/8M5g3de2z83FEBU4pBlBCfigO0K4k8W/5/8d0 kizBYgaoZ49L08ZqnDaEkc8eXNcgYDQtVLMBQjmO5+5wB15RCkC8ADqfkQmeVjoz baGrd6gTCljt+UWhWi7PIc0g4QRRdF1IdTHtoh3Sow/qCLFEVuLeQURooGcyyhNw IviJd+Rl+pmqH/4Pu7P+sG+1he8UaU/9USWBVZ+W2zfy4y+52Ebjs2yirqzB7BYN g+DcxP6nw5QS56HvcDYJJInpxknRGfEWfl+NrFEbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU22PK0PnSP2iDiqUggRs9EP3FXEIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzNjRhYjhkLWFkNTktNDBmOS1hMTQwLTdiYjQwY2I0MDlmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLWTANBgkqhkiG9w0BAQsFAAOCAQEASWw99JC/ndKJFApvcq1WdxFWsyCt XrO3cgKeTj3TEuKgVfbIusevBOTmBpxNqOgQ3eFKAy+bg9xM71mJjIBPaLIB7uAv R5xL/YBu6Ar/Tp6N4K53UHFMgBzfy55Uj0l/8HMF7ksR70lbdVuIQLsynFpCs1jk MztERWkgUOHbT+QGKeQIXX8YL0MuUcYfw7L7lApB8Dz2bFhb1FqN09xJNifmDeb4 k7UWYHN8T2Brfvv84Q5AczytZj7vR8X/Oo9hckWZ+H5qfoagOtSAGbZyyOaorADN Axp2aeAGcaIgIVx+xuYA5dCSbf/l9+m/A84MFLtRnnpQzFtThp38PFfKhw== -----END CERTIFICATE-----Generated at Thu May 9 01:26:04 2024 by rpki-client on console-ams.rpki-client.org