$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1156233f-7b5d-420d-b405-b7c48874676b.roa File: 1156233f-7b5d-420d-b405-b7c48874676b.roa (raw, json) Hash identifier: pMQa0Molr2S0GYToVhAKhDliV7Yt1nWhQn15zVXSdN4= Subject key identifier: AC:6E:B8:DE:5A:36:66:62:2C:5E:30:C9:75:23:2F:D0:15:60:54:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 567EA63E2BF2962546D0CAA3F182C591725CCE20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1156233f-7b5d-420d-b405-b7c48874676b.roa Signing time: Wed 08 May 2024 00:00:00 +0000 ROA not before: Wed 08 May 2024 00:00:00 +0000 ROA not after: Wed 12 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 207.202.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 11 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:7e:a6:3e:2b:f2:96:25:46:d0:ca:a3:f1:82:c5:91:72:5c:ce:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 00:00:00 2024 GMT Not After : Jun 12 23:59:59 2024 GMT Subject: serialNumber=319d5b7eed5dd6a018ff62c62dc8d00e8ce9ba353d195c13ad45d445667f42d4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:18:93:fa:00:84:4a:8e:2b:9e:1e:f9:51:81: 66:45:61:14:e6:73:01:40:d7:50:b5:ca:c5:c6:5c: 95:c1:48:3b:73:1f:f0:d5:1c:e9:e0:64:e7:0a:00: e4:70:bd:8b:04:a1:dc:8b:f8:f4:50:00:aa:28:df: f0:d0:ab:a2:d6:64:95:8b:20:b8:09:39:f2:73:63: c7:9a:1f:22:53:b4:36:68:2e:4a:95:04:84:60:c3: 85:4a:1d:fe:b4:91:a5:97:3c:e9:eb:74:50:bf:78: 28:55:ce:71:ed:a0:19:e7:e9:30:45:3e:02:3c:4a: 98:9d:40:9a:8d:47:61:13:9f:80:9e:6c:48:32:78: 1b:9e:d5:0b:04:d3:92:25:8c:23:a9:37:7b:ce:39: 46:0c:d1:b4:d9:d2:7e:d9:0c:29:c5:84:27:22:57: c0:4f:ef:fa:5e:7e:d6:21:56:39:ae:0c:7b:33:01: b6:cb:d8:fa:41:fe:e1:ee:99:49:4b:f2:cc:35:3d: 9b:72:bf:83:c8:0c:0b:66:6a:16:ab:34:1e:1b:41: e5:80:4d:d1:da:44:f3:d8:da:4b:cc:09:74:d2:73: b9:76:38:53:b7:7a:b2:5d:0f:9b:56:bb:c2:7c:f0: f4:0b:e5:40:41:de:5a:d5:60:ee:33:e0:0e:98:2d: 38:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:6E:B8:DE:5A:36:66:62:2C:5E:30:C9:75:23:2F:D0:15:60:54:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1156233f-7b5d-420d-b405-b7c48874676b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.202.128.0/17 Signature Algorithm: sha256WithRSAEncryption d5:ef:51:da:88:99:9e:6f:7b:3d:8d:b1:6b:9d:a4:35:e7:db: 3b:e1:19:21:51:75:97:1d:f4:c2:e1:b0:1f:dc:98:3f:20:09: d7:a4:02:5a:01:eb:e4:c6:9a:ca:72:3d:df:bd:72:f7:be:97: 91:fd:ab:9d:c5:97:e8:fd:2f:b0:76:c1:69:56:87:30:67:14: 12:3e:67:3d:7b:48:a6:4a:a7:71:96:0f:bd:e3:8e:e3:23:45: 38:43:4e:e7:b8:a0:34:20:24:13:d3:6a:47:cf:19:8c:47:93: ec:01:32:6f:33:2c:1e:c9:8e:1e:14:ed:7f:4b:16:a3:32:c7: 96:63:75:8d:20:25:8e:d1:58:cf:18:32:cd:16:cb:c9:7a:1e: b7:78:8a:11:ff:c0:a8:30:d3:8f:9c:2d:9a:36:6f:ce:29:0e: 30:3a:b9:8d:5b:78:9d:27:a7:58:9b:fb:a6:44:25:cd:6e:22: 6b:ac:6d:ec:9a:c0:68:bf:08:ee:3b:1d:53:a1:31:39:07:e1: 30:65:78:56:4b:9c:8e:d1:53:49:55:6f:2e:df:c3:15:a2:b4: 84:6a:e2:c7:7f:60:43:02:5c:f7:3f:e0:4c:9a:13:11:42:00: 16:69:63:90:3f:4d:12:49:7d:6e:b3:90:ee:08:96:48:13:9b: 38:05:54:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVn6mPivyliVG0Mqj8YLFkXJcziAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA4MDAwMDAwWhcNMjQwNjEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTlkNWI3ZWVkNWRkNmEwMThmZjYyYzYyZGM4ZDAwZThj ZTliYTM1M2QxOTVjMTNhZDQ1ZDQ0NTY2N2Y0MmQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiGJP6AIRKjiueHvlRgWZFYRTmcwFA11C1ysXGXJXBSDtz H/DVHOngZOcKAORwvYsEodyL+PRQAKoo3/DQq6LWZJWLILgJOfJzY8eaHyJTtDZo LkqVBIRgw4VKHf60kaWXPOnrdFC/eChVznHtoBnn6TBFPgI8SpidQJqNR2ETn4Ce bEgyeBue1QsE05IljCOpN3vOOUYM0bTZ0n7ZDCnFhCciV8BP7/peftYhVjmuDHsz AbbL2PpB/uHumUlL8sw1PZtyv4PIDAtmaharNB4bQeWATdHaRPPY2kvMCXTSc7l2 OFO3erJdD5tWu8J88PQL5UBB3lrVYO4z4A6YLTjlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrG643lo2ZmIsXjDJdSMv0BVgVPcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExNTYyMzNmLTdiNWQtNDIwZC1iNDA1LWI3YzQ4ODc0Njc2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfPyoAwDQYJKoZIhvcNAQELBQADggEBANXvUdqImZ5vez2NsWudpDXn2zvh GSFRdZcd9MLhsB/cmD8gCdekAloB6+TGmspyPd+9cve+l5H9q53Fl+j9L7B2wWlW hzBnFBI+Zz17SKZKp3GWD73jjuMjRThDTue4oDQgJBPTakfPGYxHk+wBMm8zLB7J jh4U7X9LFqMyx5ZjdY0gJY7RWM8YMs0Wy8l6Hrd4ihH/wKgw04+cLZo2b84pDjA6 uY1beJ0np1ib+6ZEJc1uImusbeyawGi/CO47HVOhMTkH4TBleFZLnI7RU0lVby7f wxWitIRq4sd/YEMCXPc/4EyaExFCABZpY5A/TRJJfW6zkO4IlkgTmzgFVOY= -----END CERTIFICATE-----Generated at Thu May 9 17:46:35 2024 by rpki-client on console-ams.rpki-client.org