$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26707d2b-7042-4d38-bfb7-e0e1bac90514.roa File: 26707d2b-7042-4d38-bfb7-e0e1bac90514.roa (raw, json) Hash identifier: 59YZL9QwzOkAdYdSKmkgQA7ooWDkPRHT6mZ5pfZyN7o= Subject key identifier: AB:F8:2B:C8:18:D0:62:48:43:66:7E:68:C8:D7:18:7A:5B:73:F3:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4186993C3DBEB6D73DF9A4EB96702291C99FD1E6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26707d2b-7042-4d38-bfb7-e0e1bac90514.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 71.141.0.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:86:99:3c:3d:be:b6:d7:3d:f9:a4:eb:96:70:22:91:c9:9f:d1:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=fd51480008dd3927175369e6ee2f1355ab8f0aaa3f528aa300e620331d79dc8e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fa:28:17:d0:7c:b9:30:27:7f:7c:e3:7b:a7: 14:c2:a5:3c:65:b2:43:9c:f4:18:b3:04:57:2f:44: 70:c2:60:c4:7d:6c:44:51:c9:65:40:18:66:b6:d9: 60:29:24:0c:61:0b:2c:ed:54:6c:2a:ec:c1:ec:fc: ed:7d:bc:85:de:35:ee:66:06:61:9c:cd:fb:b6:c8: 1d:33:f9:f0:40:49:68:d3:3e:da:2c:c5:89:11:eb: be:71:b3:ee:83:71:6a:ed:00:e1:8f:87:96:e5:29: d2:f9:be:57:47:05:06:53:0a:97:14:b9:a9:c8:14: cd:ac:e0:c7:b4:8c:aa:a0:c4:8a:08:78:83:42:be: 2b:5b:74:0c:9d:2f:ab:25:34:3b:7b:d1:50:c5:d2: 9a:f6:27:8c:cd:e4:c6:a7:16:56:62:95:30:48:b6: f9:3f:44:d9:68:39:18:b4:0f:1e:2d:ed:ea:bc:03: 44:b3:54:02:9f:1b:e0:0b:27:f3:ae:58:4f:2a:b2: 4e:11:06:fc:79:f7:fc:cd:f6:13:91:86:54:95:64: 5a:30:46:01:c9:3e:3a:52:b9:6a:66:9d:91:1e:9c: 9f:9a:d2:44:f1:b6:22:da:63:17:dc:71:95:eb:a0: 82:66:8b:ef:83:d2:bd:66:e2:c5:36:c3:59:7f:41: fe:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:F8:2B:C8:18:D0:62:48:43:66:7E:68:C8:D7:18:7A:5B:73:F3:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26707d2b-7042-4d38-bfb7-e0e1bac90514.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.141.0.0/21 Signature Algorithm: sha256WithRSAEncryption c8:10:f7:dd:9e:08:b7:ff:9d:32:51:aa:bb:ec:91:5b:4b:a9: 4f:16:ac:1d:d2:80:8a:ac:69:96:1b:6f:ed:4c:c3:46:58:41: 0b:c5:c6:9e:4b:f2:fc:37:02:ee:d6:70:8c:1e:53:2c:ed:49: 02:2c:f6:e8:af:e5:92:ea:55:a6:fd:ca:f8:bb:4e:35:78:9c: 47:12:df:27:ca:27:38:db:d3:78:75:43:e2:48:ce:c5:c0:28: c5:46:a7:c7:3c:59:54:37:3e:55:1b:48:33:f0:a1:cb:0c:ca: ef:3e:59:38:fe:13:8f:16:c6:74:cc:a3:e0:d6:65:fd:81:96: 59:a2:c8:f0:b0:70:af:ac:8b:af:20:e4:b3:b1:df:18:5d:d9: 0c:3f:f0:36:cc:05:de:d9:13:29:53:5b:e6:c2:61:21:7b:d6: e9:a9:9b:18:21:41:4c:44:80:60:b5:09:0e:fe:1d:0b:cb:07: fd:cf:d4:b7:2f:19:c4:ff:86:f5:54:cf:40:e8:20:60:61:2b: 1c:f2:63:ec:e8:49:18:83:6a:d8:4b:83:ec:be:f6:d8:f8:0f: 73:57:67:b4:1c:8f:e8:16:cf:ca:95:3e:55:47:47:d0:21:40: 19:c2:d5:61:ff:5a:8f:73:07:b6:5f:b3:c9:92:c1:d0:42:4a: 51:da:a8:7e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQYaZPD2+ttc9+aTrlnAikcmf0eYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDUxNDgwMDA4ZGQzOTI3MTc1MzY5ZTZlZTJmMTM1NWFi OGYwYWFhM2Y1MjhhYTMwMGU2MjAzMzFkNzlkYzhlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDm+igX0Hy5MCd/fON7pxTCpTxlskOc9BizBFcvRHDCYMR9 bERRyWVAGGa22WApJAxhCyztVGwq7MHs/O19vIXeNe5mBmGczfu2yB0z+fBASWjT PtosxYkR675xs+6DcWrtAOGPh5blKdL5vldHBQZTCpcUuanIFM2s4Me0jKqgxIoI eINCvitbdAydL6slNDt70VDF0pr2J4zN5ManFlZilTBItvk/RNloORi0Dx4t7eq8 A0SzVAKfG+ALJ/OuWE8qsk4RBvx59/zN9hORhlSVZFowRgHJPjpSuWpmnZEenJ+a 0kTxtiLaYxfccZXroIJmi++D0r1m4sU2w1l/Qf5jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUq/gryBjQYkhDZn5oyNcYeltz88IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI2NzA3ZDJiLTcwNDItNGQzOC1iZmI3LWUwZTFiYWM5MDUxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANHjQAwDQYJKoZIhvcNAQELBQADggEBAMgQ992eCLf/nTJRqrvskVtLqU8W rB3SgIqsaZYbb+1Mw0ZYQQvFxp5L8vw3Au7WcIweUyztSQIs9uiv5ZLqVab9yvi7 TjV4nEcS3yfKJzjb03h1Q+JIzsXAKMVGp8c8WVQ3PlUbSDPwocsMyu8+WTj+E48W xnTMo+DWZf2BllmiyPCwcK+si68g5LOx3xhd2Qw/8DbMBd7ZEylTW+bCYSF71ump mxghQUxEgGC1CQ7+HQvLB/3P1LcvGcT/hvVUz0DoIGBhKxzyY+zoSRiDathLg+y+ 9tj4D3NXZ7Qcj+gWz8qVPlVHR9AhQBnC1WH/Wo9zB7Zfs8mSwdBCSlHaqH4= -----END CERTIFICATE-----Generated at Thu Apr 25 16:39:33 2024 by rpki-client on console-ams.rpki-client.org