$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1bd5a2ef-f97f-49d1-b1a6-425ddca1c806.roa File: 1bd5a2ef-f97f-49d1-b1a6-425ddca1c806.roa (raw, json) Hash identifier: r9TbG2wm77rEoouyy7PJhoTtD29wS5W3KLwcrcfOUBk= Subject key identifier: D7:8C:20:05:95:1B:78:18:1C:13:56:5B:F8:CB:49:3D:56:43:3A:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5079B1742C5C0A38BEC869640B2DE8BE278B49F7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1bd5a2ef-f97f-49d1-b1a6-425ddca1c806.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 151.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:79:b1:74:2c:5c:0a:38:be:c8:69:64:0b:2d:e8:be:27:8b:49:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=2348a475e471bfb1b23bd89bb3ce752766846544be1f61c9bb769a9b02a48f5c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:35:15:c2:5c:42:3c:fc:92:aa:95:95:91:ed: eb:73:4a:7a:b2:5d:70:61:42:81:f2:4c:b1:20:d5: a4:81:65:de:a3:04:69:d8:7e:1e:20:5b:1e:1e:11: 27:9b:68:fb:88:af:54:94:f9:1c:5f:00:58:82:20: 8b:41:f6:d0:37:9e:90:eb:c1:30:0f:8f:db:28:f3: ad:96:22:ab:2d:7e:b2:d7:38:f4:f8:95:bd:a8:40: 1e:bb:61:ed:19:4d:7a:6c:81:42:82:4c:2d:af:50: 75:72:1f:63:67:3b:4e:11:ee:43:81:21:be:95:2c: d2:2c:86:b3:a0:70:21:f3:8e:d2:29:a9:e9:ad:a9: 5a:0f:75:5e:59:b7:90:4a:d2:64:58:85:0c:ef:bd: 44:21:cb:6f:27:1f:76:ce:9e:cc:0c:a9:b4:55:51: 20:f3:aa:7a:d6:ba:05:fc:2c:a5:26:9b:eb:2f:4e: eb:64:ee:af:c1:ca:6a:17:a0:70:7d:9d:ba:8c:c5: 53:17:1c:84:1e:bf:e3:e0:a6:8e:df:5b:e8:d0:df: f5:7d:7c:2e:39:04:e2:ac:43:76:a7:ae:b8:35:83: 52:14:45:d7:06:56:5c:fe:fc:dd:81:81:3e:67:e8: 8c:ec:5e:63:a1:d9:40:3b:68:87:ce:2f:3e:b4:46: 27:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8C:20:05:95:1B:78:18:1C:13:56:5B:F8:CB:49:3D:56:43:3A:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1bd5a2ef-f97f-49d1-b1a6-425ddca1c806.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9b:0c:4b:52:4b:21:54:f7:77:58:ab:ed:cd:92:6a:0b:e5:8b: 9b:69:35:31:39:a7:6e:72:c6:2f:4b:7f:80:32:56:8f:d4:28: 22:2d:2c:29:f8:a7:8f:1c:14:a0:8c:56:f8:4e:a1:fd:fe:da: 32:3b:34:40:12:a8:5d:4d:e6:bc:14:97:8d:68:0a:4c:76:55: 8c:2f:70:d6:e1:8f:d3:20:ad:15:c7:0a:ec:d3:e1:28:1b:5e: c4:04:bf:e7:6e:b2:8b:dd:99:a2:a4:9d:5b:20:26:1e:27:85: ac:6b:01:2c:ad:c6:c7:a2:15:e6:63:68:05:e6:b7:bd:e0:7b: 48:f2:d6:b8:c3:b4:de:4d:c3:21:68:80:c5:33:9a:7c:4d:01: af:dc:2d:c4:a3:2f:f7:df:86:47:f6:43:e4:dd:00:54:b4:09: e5:45:6d:0f:4c:04:b8:65:27:17:4f:db:0a:f8:00:11:08:da: 8f:bc:80:3d:5b:84:0a:8c:06:26:1d:f5:be:82:57:6b:cb:80: 55:26:0f:ff:45:4e:63:20:7e:4a:f2:69:dd:92:dc:33:f5:9c: 1f:e6:bd:53:f9:f4:2b:bc:b6:65:7d:f2:d2:84:4b:66:0d:d2: 9f:75:90:40:72:21:c1:9a:b1:3b:db:13:77:81:67:dd:7b:94: 53:94:2c:9a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUHmxdCxcCji+yGlkCy3ovieLSfcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzQ4YTQ3NWU0NzFiZmIxYjIzYmQ4OWJiM2NlNzUyNzY2 ODQ2NTQ0YmUxZjYxYzliYjc2OWE5YjAyYTQ4ZjVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXNRXCXEI8/JKqlZWR7etzSnqyXXBhQoHyTLEg1aSBZd6j BGnYfh4gWx4eESebaPuIr1SU+RxfAFiCIItB9tA3npDrwTAPj9so862WIqstfrLX OPT4lb2oQB67Ye0ZTXpsgUKCTC2vUHVyH2NnO04R7kOBIb6VLNIshrOgcCHzjtIp qemtqVoPdV5Zt5BK0mRYhQzvvUQhy28nH3bOnswMqbRVUSDzqnrWugX8LKUmm+sv Tutk7q/BymoXoHB9nbqMxVMXHIQev+Pgpo7fW+jQ3/V9fC45BOKsQ3anrrg1g1IU RdcGVlz+/N2BgT5n6IzsXmOh2UA7aIfOLz60RidDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU14wgBZUbeBgcE1Zb+MtJPVZDOocwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFiZDVhMmVmLWY5N2YtNDlkMS1iMWE2LTQyNWRkY2ExYzgwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCXhjANBgkqhkiG9w0BAQsFAAOCAQEAmwxLUkshVPd3WKvtzZJqC+WLm2k1 MTmnbnLGL0t/gDJWj9QoIi0sKfinjxwUoIxW+E6h/f7aMjs0QBKoXU3mvBSXjWgK THZVjC9w1uGP0yCtFccK7NPhKBtexAS/526yi92ZoqSdWyAmHieFrGsBLK3Gx6IV 5mNoBea3veB7SPLWuMO03k3DIWiAxTOafE0Br9wtxKMv99+GR/ZD5N0AVLQJ5UVt D0wEuGUnF0/bCvgAEQjaj7yAPVuECowGJh31voJXa8uAVSYP/0VOYyB+SvJp3ZLc M/WcH+a9U/n0K7y2ZX3y0oRLZg3Sn3WQQHIhwZqxO9sTd4Fn3XuUU5Qsmg== -----END CERTIFICATE-----Generated at Thu May 9 01:26:07 2024 by rpki-client on console-ams.rpki-client.org