$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17cc2cf3-468b-4973-b759-41b6215bc7ca.roa File: 17cc2cf3-468b-4973-b759-41b6215bc7ca.roa (raw, json) Hash identifier: BwsOZqu8j5RSsLKsw4NR75W9aLZkrHWEF+otwH2vTlE= Subject key identifier: C4:FB:B9:A0:41:22:E7:6F:D6:C9:3E:84:E0:33:40:6F:DA:60:6F:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30CF644ACE182D2390FF162812721BA4C4D55A03 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17cc2cf3-468b-4973-b759-41b6215bc7ca.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.39.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:cf:64:4a:ce:18:2d:23:90:ff:16:28:12:72:1b:a4:c4:d5:5a:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=a599d9169a5bdcd1280ced8ee54a167d01cdfdb37e275269d1c41687121f6a99, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b3:fa:48:c0:32:55:5c:8b:1a:16:d2:a6:1f: 73:8b:4b:71:d0:55:46:ef:9e:17:ac:3a:ee:96:03: 82:c7:af:06:16:3c:05:6a:e1:7c:5b:8c:69:22:de: f5:7f:14:d4:a5:f4:e6:8a:6e:ae:1e:9a:e0:9f:c3: de:9b:af:3c:f6:0b:c2:be:81:bf:c4:5e:09:98:1f: 1c:1c:0a:d2:03:60:e1:e0:98:d1:5f:bc:bd:e1:ce: 7b:da:80:99:91:bd:a2:19:91:0d:57:e3:8a:32:59: 87:bc:f8:92:58:5a:33:d2:a2:ed:40:56:8a:34:b8: 1e:11:70:97:00:0a:23:a6:2c:a7:a3:24:87:b8:13: 6a:60:27:d7:25:f6:c4:63:68:53:7e:78:4b:71:63: bc:48:ab:38:17:da:66:18:6d:32:83:78:bc:85:49: bf:6d:42:5f:3e:4b:9e:ea:85:75:69:3d:8f:ca:d5: 10:8c:0e:bf:26:79:39:f4:2b:22:7e:98:a9:07:6a: c9:13:c7:57:d0:bb:6c:e3:ca:17:58:05:77:65:87: 70:10:a9:32:81:1f:f4:ea:95:d4:03:f4:0a:d9:37: 8b:2a:96:30:82:4b:a6:52:9d:03:20:a0:af:20:c5: 6a:9b:82:1a:05:91:e5:a2:fe:34:d1:3e:3c:9b:f6: d3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:FB:B9:A0:41:22:E7:6F:D6:C9:3E:84:E0:33:40:6F:DA:60:6F:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17cc2cf3-468b-4973-b759-41b6215bc7ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.39.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1a:95:d4:02:5c:46:9b:df:f6:08:d2:e6:d7:5e:97:09:82:aa: 68:f3:a2:36:d5:5e:78:99:48:f6:25:41:16:15:84:4f:a9:6d: 6f:18:ad:76:6f:59:58:c2:d4:89:73:8f:55:b4:10:53:87:83: d8:16:1b:14:4f:d7:5e:81:27:72:91:5a:e2:bd:57:9f:0c:26: ef:36:69:cc:85:71:24:7e:c6:90:eb:94:9d:ff:f7:7a:95:64: 2c:a7:5f:50:72:a9:e2:32:8a:04:cb:f2:30:06:f2:07:a7:1f: 90:da:db:6e:5a:07:c4:fa:d7:0a:b6:b4:77:e9:43:af:55:a4: 90:38:2b:3f:c6:45:50:c7:94:bd:b9:b9:c2:e3:66:a8:62:46: 9a:a2:bd:f4:93:66:a3:3e:f5:db:fb:00:76:1f:ee:17:f9:85: 07:ca:27:c8:b8:f3:62:58:a2:42:a8:aa:91:c4:7c:aa:66:bc: 3b:ca:23:24:2b:a4:8a:85:c8:8b:e3:7d:c1:4a:9a:10:1a:9c: 60:65:51:d3:6c:88:3a:ad:c0:dc:48:8f:c5:42:6e:20:9b:a6: 20:9f:13:a8:e3:0c:64:cf:cf:22:df:b5:23:8f:ca:9f:5f:99: 6b:9e:18:31:e8:c0:7a:81:8a:88:99:17:1d:1e:7a:c3:e1:14: 4a:0c:fe:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMM9kSs4YLSOQ/xYoEnIbpMTVWgMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTk5ZDkxNjlhNWJkY2QxMjgwY2VkOGVlNTRhMTY3ZDAx Y2RmZGIzN2UyNzUyNjlkMWM0MTY4NzEyMWY2YTk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCls/pIwDJVXIsaFtKmH3OLS3HQVUbvnhesOu6WA4LHrwYW PAVq4XxbjGki3vV/FNSl9OaKbq4emuCfw96brzz2C8K+gb/EXgmYHxwcCtIDYOHg mNFfvL3hznvagJmRvaIZkQ1X44oyWYe8+JJYWjPSou1AVoo0uB4RcJcACiOmLKej JIe4E2pgJ9cl9sRjaFN+eEtxY7xIqzgX2mYYbTKDeLyFSb9tQl8+S57qhXVpPY/K 1RCMDr8meTn0KyJ+mKkHaskTx1fQu2zjyhdYBXdlh3AQqTKBH/TqldQD9ArZN4sq ljCCS6ZSnQMgoK8gxWqbghoFkeWi/jTRPjyb9tNBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxPu5oEEi52/WyT6E4DNAb9pgbwcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3Y2MyY2YzLTQ2OGItNDk3My1iNzU5LTQxYjYyMTViYzdjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoJzANBgkqhkiG9w0BAQsFAAOCAQEAGpXUAlxGm9/2CNLm116XCYKqaPOi NtVeeJlI9iVBFhWET6ltbxitdm9ZWMLUiXOPVbQQU4eD2BYbFE/XXoEncpFa4r1X nwwm7zZpzIVxJH7GkOuUnf/3epVkLKdfUHKp4jKKBMvyMAbyB6cfkNrbbloHxPrX Cra0d+lDr1WkkDgrP8ZFUMeUvbm5wuNmqGJGmqK99JNmoz712/sAdh/uF/mFB8on yLjzYliiQqiqkcR8qma8O8ojJCukioXIi+N9wUqaEBqcYGVR02yIOq3A3EiPxUJu IJumIJ8TqOMMZM/PIt+1I4/Kn1+Za54YMejAeoGKiJkXHR56w+EUSgz+Kw== -----END CERTIFICATE-----Generated at Thu May 2 08:02:25 2024 by rpki-client on console-ams.rpki-client.org