$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/100fc626-c172-4319-b3e2-b8430704d954.roa File: 100fc626-c172-4319-b3e2-b8430704d954.roa (raw, json) Hash identifier: nKKX8c8d9q4BtZ73bhQNrWiL7osRWez6NTEvQFZjqGw= Subject key identifier: 54:B8:CA:35:73:51:92:73:CB:0D:29:C1:48:99:09:60:52:C5:42:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AA0DE2E304ADB12A09DC3C8B65728E35421FFBE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/100fc626-c172-4319-b3e2-b8430704d954.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 192.157.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:a0:de:2e:30:4a:db:12:a0:9d:c3:c8:b6:57:28:e3:54:21:ff:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=8046be49bd896bb12038b11d08d998b5fb8b2c47b57ec12afd8f901b8c97e496, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e8:38:38:6c:40:64:ab:b7:64:72:80:6a:1c: 6b:ca:b9:5c:c3:85:51:b0:8e:dd:ec:2d:bd:4e:38: 58:8c:7d:79:e0:4c:0a:25:bd:0d:c9:55:cb:11:a9: 18:26:30:5d:c4:4a:e7:d1:c3:c0:c4:ab:26:67:d8: 8f:70:de:e8:20:84:7f:89:44:97:84:41:96:9e:e8: 43:0d:37:e8:a1:54:b9:06:19:3c:91:56:f4:90:f7: 3c:19:6f:f2:86:3f:cd:87:22:88:01:f2:f0:d7:42: ef:af:44:ea:20:aa:56:20:4a:40:e7:ce:e4:50:25: d3:ee:53:69:d5:e1:2c:e7:01:f4:6a:f0:1f:9f:98: 8f:20:40:aa:7b:5f:2f:21:75:78:01:27:e9:4a:14: 3a:17:31:5d:fb:ba:36:50:64:1c:45:db:a3:84:73: 39:ba:b0:e5:42:dd:41:42:ad:17:1d:0a:f6:c6:0e: 02:2d:99:cb:f2:d8:e1:8e:c9:e2:51:4c:a9:13:7a: 0e:71:f3:61:20:c0:ee:8a:ee:40:5e:f5:ce:0e:e2: 8c:17:0a:9b:01:28:5b:ea:b1:23:d8:aa:59:a6:ad: 94:bd:cb:cf:7d:36:cf:ed:50:cf:7b:aa:c0:e4:88: 1f:3c:9a:ea:83:fa:42:ac:ba:7c:56:58:32:b4:6c: e4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B8:CA:35:73:51:92:73:CB:0D:29:C1:48:99:09:60:52:C5:42:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/100fc626-c172-4319-b3e2-b8430704d954.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.157.33.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:a2:c9:2c:ca:81:d1:3f:e8:be:1d:af:d1:10:1d:4c:cb:bc: 57:b7:99:86:85:99:43:8f:64:86:8b:52:fa:b0:14:13:d5:0b: 87:2a:28:60:85:f7:a5:a7:0f:8f:0b:bb:34:03:3e:43:01:55: 63:62:41:fe:22:f6:43:f3:f2:f9:f1:23:15:f9:e5:62:77:68: a1:03:b7:d1:df:5d:e4:de:4d:7d:7e:47:42:28:36:e8:e3:e3: 4b:cd:90:a9:7c:e5:f7:26:c2:a1:b4:73:8a:f1:0f:db:7c:4b: f5:2b:93:a5:90:54:c7:3f:30:ce:40:c7:f0:3e:91:80:02:46: 79:6b:fd:18:39:6e:23:31:af:dd:12:58:f9:52:bd:63:71:9a: 2f:22:4a:6f:05:42:b3:68:8f:40:28:65:c5:cb:33:a4:00:43: d3:b9:66:61:f0:65:46:38:17:82:bc:80:a5:74:29:a2:32:61: 94:07:58:db:d0:a8:73:f4:63:2f:23:bb:f4:cf:49:e7:4c:bd: 95:31:93:d4:ed:72:89:b1:d2:21:05:3d:75:9b:03:70:e5:4d: 08:ef:2e:ea:44:d1:73:cc:e8:24:92:85:fb:94:c3:e6:26:2c: a4:c7:8c:0b:84:d0:6f:0a:ef:6d:0a:11:fc:90:89:85:d8:d5: dc:13:69:79 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKqDeLjBK2xKgncPItlco41Qh/74wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDQ2YmU0OWJkODk2YmIxMjAzOGIxMWQwOGQ5OThiNWZi OGIyYzQ3YjU3ZWMxMmFmZDhmOTAxYjhjOTdlNDk2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm6Dg4bEBkq7dkcoBqHGvKuVzDhVGwjt3sLb1OOFiMfXng TAolvQ3JVcsRqRgmMF3ESufRw8DEqyZn2I9w3ugghH+JRJeEQZae6EMNN+ihVLkG GTyRVvSQ9zwZb/KGP82HIogB8vDXQu+vROogqlYgSkDnzuRQJdPuU2nV4SznAfRq 8B+fmI8gQKp7Xy8hdXgBJ+lKFDoXMV37ujZQZBxF26OEczm6sOVC3UFCrRcdCvbG DgItmcvy2OGOyeJRTKkTeg5x82EgwO6K7kBe9c4O4owXCpsBKFvqsSPYqlmmrZS9 y899Ns/tUM97qsDkiB88muqD+kKsunxWWDK0bOThAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVLjKNXNRknPLDSnBSJkJYFLFQmkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwMGZjNjI2LWMxNzItNDMxOS1iM2UyLWI4NDMwNzA0ZDk1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAnSEwDQYJKoZIhvcNAQELBQADggEBAFqiySzKgdE/6L4dr9EQHUzLvFe3 mYaFmUOPZIaLUvqwFBPVC4cqKGCF96WnD48LuzQDPkMBVWNiQf4i9kPz8vnxIxX5 5WJ3aKEDt9HfXeTeTX1+R0IoNujj40vNkKl85fcmwqG0c4rxD9t8S/Urk6WQVMc/ MM5Ax/A+kYACRnlr/Rg5biMxr90SWPlSvWNxmi8iSm8FQrNoj0AoZcXLM6QAQ9O5 ZmHwZUY4F4K8gKV0KaIyYZQHWNvQqHP0Yy8ju/TPSedMvZUxk9Ttcomx0iEFPXWb A3DlTQjvLupE0XPM6CSShfuUw+YmLKTHjAuE0G8K720KEfyQiYXY1dwTaXk= -----END CERTIFICATE-----Generated at Fri May 3 00:47:17 2024 by rpki-client on console-ams.rpki-client.org