$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0574c371-7eae-41e9-9572-6280d493ffff.roa File: 0574c371-7eae-41e9-9572-6280d493ffff.roa (raw, json) Hash identifier: 4/G5+k9EDOoAxN+XsTGaFAg2uDuawJaWMrBZHgKnebk= Subject key identifier: BF:20:0C:EB:F1:77:30:A1:70:7B:57:10:25:B5:4B:39:2F:18:2F:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0735E89AAE1CEBCA810715CC270917537E5A1170 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0574c371-7eae-41e9-9572-6280d493ffff.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 161.14.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:35:e8:9a:ae:1c:eb:ca:81:07:15:cc:27:09:17:53:7e:5a:11:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=57c75c96ed4bf742b16ce75e84def7dc789d61314fccb9173553ffa7dd1a422e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9b:88:20:5d:d8:10:d5:d8:bc:88:db:bc:e9: a4:38:1b:41:17:7b:74:50:7b:19:c4:4a:46:f4:e5: 40:59:14:80:78:30:1b:0b:05:67:21:85:a5:46:04: 4b:c0:76:2a:57:cc:9e:74:9f:4d:57:8e:7c:53:80: 11:fb:00:97:3a:f2:d6:05:37:65:da:7f:b3:f5:03: fa:cd:d1:9a:c9:5c:a3:8d:60:7a:78:57:70:d3:cc: 3e:75:7c:34:a1:b0:eb:82:6d:00:ee:ae:66:70:35: 73:19:17:34:36:88:ef:43:c9:d3:d6:de:98:4c:cf: e1:be:4c:8d:74:42:fd:6d:08:41:05:c7:96:6d:12: 98:ac:46:eb:65:e7:eb:1c:a3:9f:87:03:69:b4:7f: 89:07:53:dc:c1:a8:cb:53:02:8d:4f:3b:e0:66:e9: 3b:b8:d4:9c:c1:c9:de:ff:d9:1f:b5:68:ae:2c:f0: 60:62:e7:27:d7:f8:8a:54:35:44:c3:6f:15:2a:0f: 0c:bf:71:6d:dd:9c:46:04:76:c4:77:7b:0a:aa:2d: d8:54:bf:9f:b1:d8:b6:b0:e7:a5:b6:f7:dc:cf:37: 05:d7:4a:c0:dd:28:ce:f4:48:e4:a0:e9:19:62:31: ca:70:b5:99:cd:82:ea:8d:cf:d9:4e:0d:3c:ff:97: 8a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:20:0C:EB:F1:77:30:A1:70:7B:57:10:25:B5:4B:39:2F:18:2F:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0574c371-7eae-41e9-9572-6280d493ffff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.14.0.0/16 Signature Algorithm: sha256WithRSAEncryption 35:02:7c:a4:67:94:aa:31:f7:4e:6e:60:c2:7a:c9:83:11:54: 2b:8b:67:30:0d:48:63:5f:48:70:41:41:9e:90:09:b9:1d:43: f1:1e:48:54:41:6e:71:1c:e7:bb:be:0b:36:b6:43:6f:26:ea: 21:37:d1:bf:39:55:db:f3:0d:a9:d4:f8:ec:17:d4:85:08:f5: 92:d8:17:43:ba:9c:78:d0:d2:ca:aa:e3:3f:c0:0a:8d:12:37: 5a:4d:cb:fb:e2:7c:f8:65:0a:6c:90:ae:62:ac:7a:27:38:a7: df:57:0e:36:17:8f:26:c1:84:f9:e7:5d:3b:7e:68:52:87:a6: 41:51:4c:40:10:99:f7:09:0e:f2:8b:95:b8:42:ed:3e:b3:c8: d3:0c:ab:47:d8:fc:10:14:b9:ab:82:11:bc:07:20:ba:cf:b1: bf:99:80:64:4c:73:13:19:81:6a:2e:ab:e1:fd:19:3d:e2:e1: 3c:b9:4e:81:7c:71:d1:8c:f7:e9:f5:0a:03:5b:ff:b6:85:d0: f5:50:aa:19:08:92:3f:d7:5e:0e:ec:2d:2d:87:36:26:ec:57: 26:e8:0b:48:9c:c2:d0:12:3b:3d:bc:c0:20:66:95:82:aa:44: f3:65:f7:42:f7:67:fe:44:18:47:0f:5b:34:6e:5b:81:4e:f6: 70:f7:c1:5e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBzXomq4c68qBBxXMJwkXU35aEXAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2M3NWM5NmVkNGJmNzQyYjE2Y2U3NWU4NGRlZjdkYzc4 OWQ2MTMxNGZjY2I5MTczNTUzZmZhN2RkMWE0MjJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5m4ggXdgQ1di8iNu86aQ4G0EXe3RQexnESkb05UBZFIB4 MBsLBWchhaVGBEvAdipXzJ50n01XjnxTgBH7AJc68tYFN2Xaf7P1A/rN0ZrJXKON YHp4V3DTzD51fDShsOuCbQDurmZwNXMZFzQ2iO9DydPW3phMz+G+TI10Qv1tCEEF x5ZtEpisRutl5+sco5+HA2m0f4kHU9zBqMtTAo1PO+Bm6Tu41JzByd7/2R+1aK4s 8GBi5yfX+IpUNUTDbxUqDwy/cW3dnEYEdsR3ewqqLdhUv5+x2Law56W299zPNwXX SsDdKM70SOSg6RliMcpwtZnNguqNz9lODTz/l4qFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUvyAM6/F3MKFwe1cQJbVLOS8YLwkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1NzRjMzcxLTdlYWUtNDFlOS05NTcyLTYyODBkNDkzZmZmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwChDjANBgkqhkiG9w0BAQsFAAOCAQEANQJ8pGeUqjH3Tm5gwnrJgxFUK4tn MA1IY19IcEFBnpAJuR1D8R5IVEFucRznu74LNrZDbybqITfRvzlV2/MNqdT47BfU hQj1ktgXQ7qceNDSyqrjP8AKjRI3Wk3L++J8+GUKbJCuYqx6Jzin31cONhePJsGE +eddO35oUoemQVFMQBCZ9wkO8ouVuELtPrPI0wyrR9j8EBS5q4IRvAcgus+xv5mA ZExzExmBai6r4f0ZPeLhPLlOgXxx0Yz36fUKA1v/toXQ9VCqGQiSP9deDuwtLYc2 JuxXJugLSJzC0BI7PbzAIGaVgqpE82X3Qvdn/kQYRw9bNG5bgU72cPfBXg== -----END CERTIFICATE-----Generated at Thu May 9 01:26:05 2024 by rpki-client on console-ams.rpki-client.org