$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13634d03-d4a5-4a0f-87d0-f2045d0c3fa2.roa File: 13634d03-d4a5-4a0f-87d0-f2045d0c3fa2.roa (raw, json) Hash identifier: yN3IzHbP4dSoYzJmbA2701EWkYBHglx+NUrX76Jye7o= Subject key identifier: D6:84:C3:43:8B:B2:E6:BC:B7:BA:DF:08:F4:4C:66:10:80:EC:C3:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F0BED559937D0831251A8EEE209E6B3E7803724 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13634d03-d4a5-4a0f-87d0-f2045d0c3fa2.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 161.193.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:0b:ed:55:99:37:d0:83:12:51:a8:ee:e2:09:e6:b3:e7:80:37:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=b721e22f78b59b5cfce961ff2fac4834327c9aa39068d6565c83d309a5a85377, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ab:f8:27:6e:3c:df:f3:25:6f:89:54:ff:b0: 97:b6:7e:36:b2:db:52:17:6c:8d:dd:d9:00:33:c2: 97:76:b6:bc:b2:c3:de:27:0b:21:5c:7f:56:cb:ed: ae:bc:71:b3:c5:db:4f:66:2f:6e:db:86:3e:03:c2: 0c:85:b6:be:5a:d9:3d:9e:d4:2b:80:37:b9:25:57: 69:75:3f:ef:c4:5d:11:b2:31:3f:d7:d1:56:32:6e: 7f:3b:8e:84:10:7e:e3:c0:8c:62:1e:44:c7:de:f1: a2:2e:33:fb:c5:e0:65:5c:0d:bd:ab:18:53:b9:cd: 54:9c:e5:b0:e3:84:4e:42:fc:e5:74:b8:d5:cb:43: dc:f2:e2:4f:6b:da:e0:e8:78:f5:aa:96:c6:d0:44: 9a:5f:e1:4f:cb:66:fc:3d:cd:0f:ab:36:11:51:92: a7:6e:e6:d0:01:c3:58:28:3a:fc:80:53:57:48:4e: 52:d2:7c:a4:0f:34:3e:56:5c:09:69:51:d0:5e:cc: 3d:cb:84:20:9c:24:fa:78:95:62:97:49:3e:a9:71: 87:88:73:2a:7a:16:b2:80:98:7b:c2:6b:10:eb:6f: 0c:2f:c3:06:68:db:c8:3b:84:cc:97:9d:c1:55:ce: 27:d9:9f:18:4b:2c:bf:f5:55:04:dc:70:39:52:76: 3a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:84:C3:43:8B:B2:E6:BC:B7:BA:DF:08:F4:4C:66:10:80:EC:C3:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13634d03-d4a5-4a0f-87d0-f2045d0c3fa2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.193.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8c:c6:e7:e0:7d:57:ea:e3:4a:29:63:da:5e:64:78:6a:3a:66: a5:09:b2:0d:65:15:5b:10:3f:b8:8a:61:12:9c:3e:6e:d5:1e: 97:94:bf:ac:0e:5a:2e:53:ed:b7:7b:0a:a4:9f:96:9d:2e:09: 4a:3d:02:aa:2b:e7:40:f5:dc:f5:ef:ca:54:0f:59:70:d1:32: e7:8f:88:64:d3:e9:5e:bd:0b:f4:2c:41:67:10:78:1e:d7:0a: 7f:b2:eb:cb:44:d4:af:d8:5f:2d:32:f6:5f:59:cd:de:b7:09: e8:7a:19:6c:f1:5f:e3:ca:b0:4d:86:79:b1:31:c1:aa:a0:4c: 8c:83:ca:52:03:fd:83:c8:23:c0:9c:0c:e1:ba:a2:e8:93:cf: 0c:3a:d3:e4:6e:f3:a4:f8:de:87:75:04:d0:19:77:51:a1:ac: d5:66:bc:d4:5b:07:e1:65:30:76:aa:2c:a3:08:de:34:05:bb: ed:3c:ee:cf:7d:b1:be:f7:3b:d4:7a:7f:5a:7e:0b:82:8d:02: f5:46:60:ad:36:cc:f6:77:a8:2d:0c:77:37:66:a6:af:14:88: 7e:76:04:19:34:b3:9c:5c:a5:9b:72:00:7e:74:b9:ea:fe:a6: 96:23:26:9a:b6:7b:4a:95:d0:5d:ea:e3:4b:80:be:6f:ad:e8: 81:8d:ac:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPwvtVZk30IMSUaju4gnms+eANyQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzIxZTIyZjc4YjU5YjVjZmNlOTYxZmYyZmFjNDgzNDMy N2M5YWEzOTA2OGQ2NTY1YzgzZDMwOWE1YTg1Mzc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqq/gnbjzf8yVviVT/sJe2fjay21IXbI3d2QAzwpd2tryy w94nCyFcf1bL7a68cbPF209mL27bhj4DwgyFtr5a2T2e1CuAN7klV2l1P+/EXRGy MT/X0VYybn87joQQfuPAjGIeRMfe8aIuM/vF4GVcDb2rGFO5zVSc5bDjhE5C/OV0 uNXLQ9zy4k9r2uDoePWqlsbQRJpf4U/LZvw9zQ+rNhFRkqdu5tABw1goOvyAU1dI TlLSfKQPND5WXAlpUdBezD3LhCCcJPp4lWKXST6pcYeIcyp6FrKAmHvCaxDrbwwv wwZo28g7hMyXncFVzifZnxhLLL/1VQTccDlSdjo1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1oTDQ4uy5ry3ut8I9ExmEIDsw8kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEzNjM0ZDAzLWQ0YTUtNGEwZi04N2QwLWYyMDQ1ZDBjM2ZhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwChwTANBgkqhkiG9w0BAQsFAAOCAQEAjMbn4H1X6uNKKWPaXmR4ajpmpQmy DWUVWxA/uIphEpw+btUel5S/rA5aLlPtt3sKpJ+WnS4JSj0CqivnQPXc9e/KVA9Z cNEy54+IZNPpXr0L9CxBZxB4HtcKf7Lry0TUr9hfLTL2X1nN3rcJ6HoZbPFf48qw TYZ5sTHBqqBMjIPKUgP9g8gjwJwM4bqi6JPPDDrT5G7zpPjeh3UE0Bl3UaGs1Wa8 1FsH4WUwdqosowjeNAW77Tzuz32xvvc71Hp/Wn4Lgo0C9UZgrTbM9neoLQx3N2am rxSIfnYEGTSznFylm3IAfnS56v6mliMmmrZ7SpXQXerjS4C+b63ogY2saQ== -----END CERTIFICATE-----Generated at Wed May 1 20:47:51 2024 by rpki-client on console-ams.rpki-client.org