$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/258e6f29-ec78-4849-a049-84a7edb4a611.roa File: 258e6f29-ec78-4849-a049-84a7edb4a611.roa (raw, json) Hash identifier: f3cQJ1DG2bAFcQcRxOnMjQdwuLSfXaGkB2iYAQmLVlI= Subject key identifier: A9:46:1C:2E:7F:A4:10:4D:23:3A:08:8A:F1:4E:E9:31:71:E3:AB:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5EA92B976D518C0EF84A2E4995CCD9AD8ECF85A2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/258e6f29-ec78-4849-a049-84a7edb4a611.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 74.190.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:a9:2b:97:6d:51:8c:0e:f8:4a:2e:49:95:cc:d9:ad:8e:cf:85:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=63718663853a2c1c9cda5509648e2de2cc90e2da67b3378aceb6ac182dca88b2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b3:d1:d6:b5:4a:f7:21:f7:62:92:48:8e:fc: 40:40:6d:0a:60:8e:86:16:de:a4:d4:24:cc:6f:1a: 69:f2:6a:f8:32:49:eb:68:f3:98:82:9b:12:9b:c7: d0:e4:90:4b:09:a0:01:5f:fa:4c:a3:df:61:25:e6: dc:c1:a3:02:6c:ce:ee:8e:98:a3:f5:cb:66:10:bc: 38:bb:04:31:f9:4d:31:d0:01:b0:12:8b:38:48:47: ee:04:7d:98:03:76:fd:fc:d2:d0:02:34:5d:a0:3d: 33:a9:bd:be:db:fd:79:ef:78:b9:f6:29:3c:d0:b6: 75:f4:5d:46:d1:2a:c4:8a:9e:64:58:27:29:00:4f: 0b:73:87:00:9c:72:c0:1e:f9:ac:17:4e:2c:b8:64: af:91:20:e3:56:c1:9c:0f:e0:d6:16:e8:a5:84:b6: 9e:86:2a:d2:b0:9a:3e:fa:88:86:31:fa:36:c7:b5: 60:b1:8c:dd:ec:4e:33:22:71:1b:65:e5:61:ef:52: c6:82:8f:26:aa:8d:b1:7e:63:42:02:b0:ef:cc:de: a2:2f:04:01:2d:d0:c5:4e:30:97:71:51:5c:a2:17: 09:78:b0:f5:d3:7e:c9:4a:96:1b:5f:48:72:a9:e0: 01:0f:27:c3:0f:7c:31:b8:45:99:53:30:3a:39:98: 6e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:46:1C:2E:7F:A4:10:4D:23:3A:08:8A:F1:4E:E9:31:71:E3:AB:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/258e6f29-ec78-4849-a049-84a7edb4a611.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.190.0.0/16 Signature Algorithm: sha256WithRSAEncryption ba:b9:25:cb:fa:eb:e3:58:42:ed:23:f6:99:f0:49:8d:97:72: d8:7b:b4:c9:20:e3:94:20:48:32:89:09:5a:10:87:af:e7:a1: e4:80:6e:f4:18:81:d0:20:a9:3f:da:d4:b7:27:bd:58:45:93: d9:3e:7a:27:0f:3c:5f:85:8c:46:81:4f:22:b7:ac:c6:45:8f: e1:fa:93:54:af:49:4f:9f:d8:2c:72:22:a0:43:0a:e6:2f:e1: f5:39:14:14:f1:ee:73:98:ac:42:0d:2d:89:7d:1c:14:6f:1c: 60:63:07:a4:ec:ee:44:81:3d:3b:a5:8d:bf:6f:62:e4:aa:a4: 6b:94:2b:68:45:7e:31:08:6e:3d:71:58:75:b1:3f:c2:80:06: 4e:e4:24:6e:f6:67:e2:27:ad:ae:1c:f0:54:72:04:b5:cb:8e: 21:12:78:a3:9f:2f:7e:3a:08:2b:f4:6b:82:19:3a:e5:58:d1: fd:e4:3f:e5:af:be:ac:aa:e8:87:04:e5:0e:e1:a2:4b:cd:2d: 6f:66:7b:47:15:e7:41:c4:cf:e7:69:32:49:eb:59:a7:52:b2: 13:8f:bc:69:5e:2e:9d:12:2b:24:13:b7:ab:c6:d3:ec:ca:58: 26:9b:d7:13:37:7d:9d:9a:a1:13:7f:39:52:8c:b5:06:41:f5: 08:61:19:de -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXqkrl21RjA74Si5JlczZrY7PhaIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEwMDAwMDAwWhcNMjQwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MzcxODY2Mzg1M2EyYzFjOWNkYTU1MDk2NDhlMmRlMmNj OTBlMmRhNjdiMzM3OGFjZWI2YWMxODJkY2E4OGIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJs9HWtUr3IfdikkiO/EBAbQpgjoYW3qTUJMxvGmnyavgy Seto85iCmxKbx9DkkEsJoAFf+kyj32El5tzBowJszu6OmKP1y2YQvDi7BDH5TTHQ AbASizhIR+4EfZgDdv380tACNF2gPTOpvb7b/XnveLn2KTzQtnX0XUbRKsSKnmRY JykATwtzhwCccsAe+awXTiy4ZK+RIONWwZwP4NYW6KWEtp6GKtKwmj76iIYx+jbH tWCxjN3sTjMicRtl5WHvUsaCjyaqjbF+Y0ICsO/M3qIvBAEt0MVOMJdxUVyiFwl4 sPXTfslKlhtfSHKp4AEPJ8MPfDG4RZlTMDo5mG7RAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqUYcLn+kEE0jOgiK8U7pMXHjqx8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1OGU2ZjI5LWVjNzgtNDg0OS1hMDQ5LTg0YTdlZGI0YTYxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBKvjANBgkqhkiG9w0BAQsFAAOCAQEAurkly/rr41hC7SP2mfBJjZdy2Hu0 ySDjlCBIMokJWhCHr+eh5IBu9BiB0CCpP9rUtye9WEWT2T56Jw88X4WMRoFPIres xkWP4fqTVK9JT5/YLHIioEMK5i/h9TkUFPHuc5isQg0tiX0cFG8cYGMHpOzuRIE9 O6WNv29i5Kqka5QraEV+MQhuPXFYdbE/woAGTuQkbvZn4ietrhzwVHIEtcuOIRJ4 o58vfjoIK/Rrghk65VjR/eQ/5a++rKrohwTlDuGiS80tb2Z7RxXnQcTP52kySetZ p1KyE4+8aV4unRIrJBO3q8bT7MpYJpvXEzd9nZqhE385Uoy1BkH1CGEZ3g== -----END CERTIFICATE-----Generated at Fri Apr 19 00:50:33 2024 by rpki-client on console-ams.rpki-client.org