$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d11215b-7a3d-4d28-b06b-d5e3ea095007.roa File: 0d11215b-7a3d-4d28-b06b-d5e3ea095007.roa (raw, json) Hash identifier: WPFdy+LzX2dzhrHwfptmPwN+4S+c+pr71It5P6zG35E= Subject key identifier: 84:72:9F:98:0B:74:DA:ED:AA:6C:19:E3:97:A9:D6:2D:C0:7B:55:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 22CA4F1A6281582B4CBCB7B4B4B36DD52BFC0DD4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d11215b-7a3d-4d28-b06b-d5e3ea095007.roa Signing time: Fri 10 May 2024 00:00:00 +0000 ROA not before: Fri 10 May 2024 00:00:00 +0000 ROA not after: Fri 14 Jun 2024 23:59:59 +0000 asID: 19047 IP address blocks: 70.130.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 25 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ca:4f:1a:62:81:58:2b:4c:bc:b7:b4:b4:b3:6d:d5:2b:fc:0d:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:00:00 2024 GMT Not After : Jun 14 23:59:59 2024 GMT Subject: serialNumber=77ab5f3ddcaf3071fa71238b8302bd3d961f44200f00b00cdd4be6be2b26f46e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:cf:f4:a9:33:47:8a:5e:0e:34:4d:ee:cf:99: 24:04:02:7c:f7:cb:ad:b3:b7:2f:3f:3c:53:05:9f: 00:43:92:f2:06:9c:93:63:3a:56:05:c7:15:b9:3a: 4a:81:71:e9:99:98:37:cb:88:ed:bb:64:04:92:6f: c2:95:5b:41:89:5d:2d:e9:84:d1:42:38:47:bb:7c: 74:70:61:3b:3c:41:09:62:96:0b:a4:e6:3d:97:31: 21:41:d5:23:17:f0:cb:c2:53:0c:4d:3d:68:66:77: 6f:4d:dc:1c:91:81:f2:84:20:70:4b:07:79:87:ca: a3:43:a1:1f:d0:0c:6f:6d:ad:8c:33:fb:56:a0:07: 85:43:eb:18:82:86:29:98:68:a3:50:16:e7:89:78: 77:47:bd:73:0f:56:2d:4c:f4:8e:a1:02:c9:e2:c4: 28:94:9b:06:b8:03:8d:eb:24:6f:bc:93:ee:83:07: dc:d5:86:29:82:d5:f7:a2:09:d4:50:c3:7c:e5:35: 0f:78:61:68:55:a5:94:40:83:bb:c2:79:fd:a7:8e: 75:7a:80:30:82:bc:3b:42:dc:3e:0e:ae:6a:58:11: 22:14:a7:27:e4:05:69:bd:50:78:da:a5:ef:2a:51: 25:e7:4e:5d:0d:48:dd:39:9d:45:a1:b3:ba:e6:9d: 26:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:72:9F:98:0B:74:DA:ED:AA:6C:19:E3:97:A9:D6:2D:C0:7B:55:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d11215b-7a3d-4d28-b06b-d5e3ea095007.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.130.205.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:50:d7:f0:45:56:c9:d5:5f:ff:59:b2:f3:50:22:c9:bc:af: 3c:e4:b0:0f:4e:56:20:4d:87:4e:72:69:1e:d5:e6:f1:7f:f1: 64:f8:ac:2e:00:c2:ed:a9:4f:15:c2:f7:fb:79:77:a0:8f:78: 87:44:64:3d:ae:b8:5a:78:14:d4:7c:f5:01:b3:73:c1:04:98: be:3a:ae:52:11:5c:be:fc:d6:33:1d:46:fc:89:74:bc:e8:17: 84:83:fa:80:f9:c5:2f:8c:f5:20:65:5b:d3:ed:c1:dc:a8:a5: 87:ac:cc:3c:45:45:f8:3d:45:63:10:55:e3:ea:ff:0c:37:0f: a3:cc:5d:01:ef:ce:16:b3:78:54:b9:d5:6c:ea:de:af:ab:53: 0d:d0:72:16:8c:a1:53:63:47:db:c6:94:c9:4a:fc:83:1e:e8: 72:58:61:a1:f7:9c:79:3d:99:ff:48:72:fa:86:b1:f9:ce:16: 6d:63:a1:f8:7e:b2:51:ba:cb:0d:3d:64:5b:e7:1d:a2:ab:9a: 0c:47:35:4b:92:37:e6:0f:78:4e:bc:63:47:5f:ae:0b:41:2a: 1d:bf:f5:9e:29:44:f6:c2:ab:2c:35:70:d7:29:57:a8:9b:6c: f5:0c:d7:21:ca:87:c1:1a:f9:be:32:d2:f0:9f:f3:6d:f9:ea: 91:6f:86:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIspPGmKBWCtMvLe0tLNt1Sv8DdQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTEwMDAwMDAwWhcNMjQwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2FiNWYzZGRjYWYzMDcxZmE3MTIzOGI4MzAyYmQzZDk2 MWY0NDIwMGYwMGIwMGNkZDRiZTZiZTJiMjZmNDZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkz/SpM0eKXg40Te7PmSQEAnz3y62zty8/PFMFnwBDkvIG nJNjOlYFxxW5OkqBcemZmDfLiO27ZASSb8KVW0GJXS3phNFCOEe7fHRwYTs8QQli lguk5j2XMSFB1SMX8MvCUwxNPWhmd29N3ByRgfKEIHBLB3mHyqNDoR/QDG9trYwz +1agB4VD6xiChimYaKNQFueJeHdHvXMPVi1M9I6hAsnixCiUmwa4A43rJG+8k+6D B9zVhimC1feiCdRQw3zlNQ94YWhVpZRAg7vCef2njnV6gDCCvDtC3D4OrmpYESIU pyfkBWm9UHjape8qUSXnTl0NSN05nUWhs7rmnSZDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhHKfmAt02u2qbBnjl6nWLcB7VbEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBkMTEyMTViLTdhM2QtNGQyOC1iMDZiLWQ1ZTNlYTA5NTAwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABGgs0wDQYJKoZIhvcNAQELBQADggEBAB1Q1/BFVsnVX/9ZsvNQIsm8rzzk sA9OViBNh05yaR7V5vF/8WT4rC4Awu2pTxXC9/t5d6CPeIdEZD2uuFp4FNR89QGz c8EEmL46rlIRXL781jMdRvyJdLzoF4SD+oD5xS+M9SBlW9PtwdyopYeszDxFRfg9 RWMQVePq/ww3D6PMXQHvzhazeFS51Wzq3q+rUw3QchaMoVNjR9vGlMlK/IMe6HJY YaH3nHk9mf9IcvqGsfnOFm1jofh+slG6yw09ZFvnHaKrmgxHNUuSN+YPeE68Y0df rgtBKh2/9Z4pRPbCqyw1cNcpV6ibbPUM1yHKh8Ea+b4y0vCf82356pFvhv0= -----END CERTIFICATE-----Generated at Fri May 24 01:07:58 2024 by rpki-client on console-ams.rpki-client.org