$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d33aabf-1516-47ef-8fb9-27462d6033d4.roa File: 1d33aabf-1516-47ef-8fb9-27462d6033d4.roa (raw, json) Hash identifier: XrWlD6hPY7i6jYQUkKrhRzocIxF99OSK0InP7XE+sQY= Subject key identifier: F0:8A:6B:CE:95:A3:03:03:9A:95:F0:4B:5B:42:00:F4:EC:A6:17:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 521BA2ADA46612F0CF45555622275D1C94449205 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d33aabf-1516-47ef-8fb9-27462d6033d4.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 56.97.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:1b:a2:ad:a4:66:12:f0:cf:45:55:56:22:27:5d:1c:94:44:92:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=e6b687d7dece13a661f93f75d33025748f0e1b3308a9b6ffa2567494660b7ece, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a5:a6:e1:1f:9c:60:f5:ed:8f:11:4c:19:0d: ba:5e:72:c7:37:bb:5a:b1:0b:6d:b5:f9:d1:f4:eb: 01:44:02:ed:11:38:67:13:5d:ff:0f:fd:a9:9e:50: b6:de:c6:d3:97:ae:22:8b:ac:f2:4a:90:e5:0d:8a: a8:56:51:fc:e3:9a:fd:a6:cd:73:ac:b5:07:ec:bf: 58:d7:17:3e:68:d9:91:44:9d:32:e7:64:0f:8c:f1: 87:6d:b9:64:8e:ba:57:50:a8:ac:93:58:a1:0a:39: 35:df:e4:f5:99:eb:19:7c:87:aa:03:a9:3c:d0:e4: af:fe:d9:96:f7:e9:00:76:e5:37:7c:48:cd:96:89: 74:22:9f:d2:c1:51:77:fc:b9:0a:63:e0:aa:90:47: 59:88:b9:94:2c:47:5a:f4:7c:66:95:fb:5a:e4:26: 35:ce:c0:81:20:a8:d8:5d:f1:d3:e9:5d:83:f9:e3: d8:b1:e4:e8:c7:4e:0b:e8:46:67:f8:b7:77:22:e7: cd:e2:e3:07:c5:1d:16:40:81:d1:c2:db:f3:9d:ac: fe:ae:a9:5b:3c:18:d2:09:d0:9a:1d:4e:0a:19:a6: cb:9f:8b:2c:9e:89:0d:94:7b:05:88:80:6b:b4:5e: 1e:10:8e:d6:7e:bb:f5:fb:75:bc:8f:ab:2e:16:be: 5f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:8A:6B:CE:95:A3:03:03:9A:95:F0:4B:5B:42:00:F4:EC:A6:17:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d33aabf-1516-47ef-8fb9-27462d6033d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption b2:24:8b:cb:8f:97:80:6a:67:d6:74:c9:74:dd:aa:65:91:e6: 87:fe:09:89:3d:ed:7e:a6:23:ab:43:95:71:c7:60:7e:1a:8e: 42:3e:a2:b0:50:00:3b:0b:44:71:cd:d3:da:5c:00:16:a7:80: 50:f4:b7:b8:b6:e3:87:82:e2:8a:70:ba:a4:28:2f:82:14:ea: 1a:4c:0b:b6:1c:03:bb:58:35:31:7f:4e:64:4e:21:b9:08:13: 40:ff:14:b7:38:65:c4:1d:88:a5:e8:73:ed:19:5a:1f:98:d5: f1:74:9f:bc:7a:ee:4d:c1:0b:10:61:54:ef:bf:05:c5:77:2c: 90:0f:ed:91:ec:7d:64:7d:6e:ef:ec:99:31:10:a1:b8:69:7e: 60:ce:e0:30:fd:dc:e1:44:66:01:ca:db:39:1e:aa:bb:40:e0: ea:31:86:8c:82:25:af:63:e5:c7:52:89:a7:d9:91:dd:76:ee: fc:2e:cb:8a:b2:ef:5a:55:a8:e2:8e:9a:f1:6c:42:2c:6f:fc: 1f:54:f6:bf:4f:0b:2b:46:cb:11:4b:3b:45:50:01:07:8f:92: 2d:03:29:d8:11:cc:13:cd:f1:99:a4:3b:7b:ff:b5:07:63:b9: 75:1e:e1:48:a4:5c:40:ce:9d:73:58:55:d9:25:02:02:55:13: 0f:0f:69:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUhuiraRmEvDPRVVWIiddHJREkgUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmI2ODdkN2RlY2UxM2E2NjFmOTNmNzVkMzMwMjU3NDhm MGUxYjMzMDhhOWI2ZmZhMjU2NzQ5NDY2MGI3ZWNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdpabhH5xg9e2PEUwZDbpecsc3u1qxC221+dH06wFEAu0R OGcTXf8P/ameULbextOXriKLrPJKkOUNiqhWUfzjmv2mzXOstQfsv1jXFz5o2ZFE nTLnZA+M8YdtuWSOuldQqKyTWKEKOTXf5PWZ6xl8h6oDqTzQ5K/+2Zb36QB25Td8 SM2WiXQin9LBUXf8uQpj4KqQR1mIuZQsR1r0fGaV+1rkJjXOwIEgqNhd8dPpXYP5 49ix5OjHTgvoRmf4t3ci583i4wfFHRZAgdHC2/OdrP6uqVs8GNIJ0JodTgoZpsuf iyyeiQ2UewWIgGu0Xh4QjtZ+u/X7dbyPqy4Wvl8fAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8IprzpWjAwOalfBLW0IA9OymFwgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFkMzNhYWJmLTE1MTYtNDdlZi04ZmI5LTI3NDYyZDYwMzNkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4YTANBgkqhkiG9w0BAQsFAAOCAQEAsiSLy4+XgGpn1nTJdN2qZZHmh/4J iT3tfqYjq0OVccdgfhqOQj6isFAAOwtEcc3T2lwAFqeAUPS3uLbjh4LiinC6pCgv ghTqGkwLthwDu1g1MX9OZE4huQgTQP8UtzhlxB2Ipehz7RlaH5jV8XSfvHruTcEL EGFU778FxXcskA/tkex9ZH1u7+yZMRChuGl+YM7gMP3c4URmAcrbOR6qu0Dg6jGG jIIlr2Plx1KJp9mR3Xbu/C7LirLvWlWo4o6a8WxCLG/8H1T2v08LK0bLEUs7RVAB B4+SLQMp2BHME83xmaQ7e/+1B2O5dR7hSKRcQM6dc1hV2SUCAlUTDw9pQQ== -----END CERTIFICATE-----Generated at Thu May 2 08:02:25 2024 by rpki-client on console-ams.rpki-client.org