$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f26ecf3-79e2-4ca0-b6bf-a3fa30627792.roa File: 1f26ecf3-79e2-4ca0-b6bf-a3fa30627792.roa (raw, json) Hash identifier: erVWfk6xrvWiEa/SQw6dy0bWz5DDMddISOreMZaTjYs= Subject key identifier: CE:57:FA:3F:83:F7:DE:97:52:29:61:50:03:0A:0D:82:21:5D:CA:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 642475263B2DCAE85CBE4BACFEEA9FECC45AD5A2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f26ecf3-79e2-4ca0-b6bf-a3fa30627792.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 104.200.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 11 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:24:75:26:3b:2d:ca:e8:5c:be:4b:ac:fe:ea:9f:ec:c4:5a:d5:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=061bf2d1c1b083dfcbae4e33a44eda2d03ca2252141658fafcab15a68ab2605c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c1:54:b3:48:91:b2:2f:02:0f:58:af:f8:7f: c9:48:ee:9d:b0:b6:4f:a6:75:15:eb:7e:d2:82:3c: fa:e5:b3:9a:a8:83:35:bf:f6:14:f0:37:2d:d8:9a: af:f0:20:c1:28:4d:eb:3a:ca:70:50:2e:a5:a1:7d: 7d:bc:80:66:31:29:bb:45:3a:fc:01:ee:14:82:b4: d5:63:23:80:4b:d1:b0:67:e9:a8:ed:23:de:24:7b: 36:46:0b:83:6a:10:7b:ff:e6:77:75:54:31:21:46: ef:a2:b2:95:c4:e1:9f:99:34:39:3c:42:b4:1e:4b: 79:be:8f:72:84:e3:9a:71:f4:19:78:32:e3:3f:20: 57:94:4c:e9:b3:83:fd:b9:c6:7a:4d:91:07:88:53: 60:27:5f:75:06:30:fa:af:87:c9:d1:b0:2a:15:6f: a3:e8:2e:37:8c:d9:9f:60:58:46:1c:1e:e9:ac:e9: 97:a4:3f:f7:6b:a0:0f:67:c7:01:a1:fc:f4:08:2e: b5:56:a7:7c:d5:64:d9:90:96:bb:1d:34:b8:db:a3: 82:31:03:74:b7:10:6d:0d:7e:a4:38:1c:bf:90:00: cc:38:c2:05:8e:48:d4:c8:49:6e:6d:e2:14:11:09: ba:c3:db:72:75:19:a0:65:0a:ad:40:b2:4f:e5:e0: 42:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:57:FA:3F:83:F7:DE:97:52:29:61:50:03:0A:0D:82:21:5D:CA:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f26ecf3-79e2-4ca0-b6bf-a3fa30627792.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.200.224.0/19 Signature Algorithm: sha256WithRSAEncryption 54:40:d7:1c:0f:ac:e5:ee:20:6e:e1:fd:4e:ce:ef:0e:57:97: c9:5b:04:74:70:7e:c3:7a:d7:33:15:1b:55:08:ed:53:76:a8: 8f:16:1e:61:a0:38:4a:d2:ca:a6:ef:03:29:b0:de:3c:3c:15: 86:a2:87:05:79:88:1d:bc:9c:08:27:bf:3f:cd:f7:06:12:18: a5:db:e0:63:ce:2f:b7:52:35:5a:9f:fd:c4:d9:e4:dc:2b:22: 3d:da:98:75:d9:4c:6a:59:5d:01:8b:c3:c4:96:93:96:62:7f: 82:2b:f8:92:1b:30:41:8e:27:3e:da:c3:07:05:f4:f7:cf:53: 15:99:1f:b3:e9:2c:ae:23:1c:3b:c3:05:63:1b:fc:7c:23:5a: 0a:dc:2a:2f:5b:76:fa:0a:2f:b3:b9:da:7e:b2:2b:af:97:ff: 0c:c1:dc:1a:01:91:e1:ce:0d:cb:1b:4f:07:45:e7:0f:02:22: bf:f6:0d:6d:6f:c3:a4:bf:e2:81:54:13:a4:ff:9f:28:f1:d8: c6:36:5d:1a:ed:e0:91:d2:86:70:f0:6a:3b:18:a9:cb:8e:d8: 9e:47:14:71:56:b3:a8:01:6f:3a:f5:21:7b:e6:22:2f:60:14: 7a:99:22:78:ff:6d:a2:ea:8f:e8:0f:04:14:24:58:40:49:61: a9:ac:d9:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZCR1Jjstyuhcvkus/uqf7MRa1aIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjFiZjJkMWMxYjA4M2RmY2JhZTRlMzNhNDRlZGEyZDAz Y2EyMjUyMTQxNjU4ZmFmY2FiMTVhNjhhYjI2MDVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSwVSzSJGyLwIPWK/4f8lI7p2wtk+mdRXrftKCPPrls5qo gzW/9hTwNy3Ymq/wIMEoTes6ynBQLqWhfX28gGYxKbtFOvwB7hSCtNVjI4BL0bBn 6ajtI94kezZGC4NqEHv/5nd1VDEhRu+ispXE4Z+ZNDk8QrQeS3m+j3KE45px9Bl4 MuM/IFeUTOmzg/25xnpNkQeIU2AnX3UGMPqvh8nRsCoVb6PoLjeM2Z9gWEYcHums 6ZekP/droA9nxwGh/PQILrVWp3zVZNmQlrsdNLjbo4IxA3S3EG0NfqQ4HL+QAMw4 wgWOSNTISW5t4hQRCbrD23J1GaBlCq1Ask/l4EJbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzlf6P4P33pdSKWFQAwoNgiFdyggwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmMjZlY2YzLTc5ZTItNGNhMC1iNmJmLWEzZmEzMDYyNzc5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVoyOAwDQYJKoZIhvcNAQELBQADggEBAFRA1xwPrOXuIG7h/U7O7w5Xl8lb BHRwfsN61zMVG1UI7VN2qI8WHmGgOErSyqbvAymw3jw8FYaihwV5iB28nAgnvz/N 9wYSGKXb4GPOL7dSNVqf/cTZ5NwrIj3amHXZTGpZXQGLw8SWk5Zif4Ir+JIbMEGO Jz7awwcF9PfPUxWZH7PpLK4jHDvDBWMb/HwjWgrcKi9bdvoKL7O52n6yK6+X/wzB 3BoBkeHODcsbTwdF5w8CIr/2DW1vw6S/4oFUE6T/nyjx2MY2XRrt4JHShnDwajsY qcuO2J5HFHFWs6gBbzr1IXvmIi9gFHqZInj/baLqj+gPBBQkWEBJYams2TA= -----END CERTIFICATE-----Generated at Thu May 9 17:46:36 2024 by rpki-client on console-ams.rpki-client.org