$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/297c1ae1-725c-4b7d-89cf-0414aa1d6c72.roa File: 297c1ae1-725c-4b7d-89cf-0414aa1d6c72.roa (raw, json) Hash identifier: fvgpeJYJlmIaG6NL0pTG3GZ5ICam0vo+mnnn/mGePx8= Subject key identifier: 05:70:D7:2E:19:38:4D:0B:6A:EF:57:B5:D2:E2:FC:03:0D:21:2F:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31F709AA7BA6630852B250EE92F4C1D60963570C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/297c1ae1-725c-4b7d-89cf-0414aa1d6c72.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.172.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:f7:09:aa:7b:a6:63:08:52:b2:50:ee:92:f4:c1:d6:09:63:57:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=e06dab1efa7e9837f0901eb18d963204f3d8084f5fb94315702f75a230c99884, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:e4:2f:e4:0e:90:41:8b:1d:dd:91:a8:65:e2: 3a:46:5d:f8:48:0d:c1:bb:9c:a5:94:8a:0d:09:11: 79:3b:ff:2f:eb:eb:38:32:2c:b1:a4:60:b9:59:09: 21:af:c8:fd:64:f4:43:05:45:3e:64:f1:e6:2f:13: 6b:cc:df:56:60:f7:fb:ad:18:66:da:ca:e1:4d:0c: e5:57:9e:e4:76:32:47:b7:e2:12:a2:f4:f4:b6:92: 19:e9:d4:61:f5:73:bb:3a:4c:01:18:f1:27:76:f4: 61:53:93:8d:f2:e2:ca:a1:1a:a9:a5:60:bb:33:77: a9:10:16:c7:ec:86:b6:52:fa:b7:4e:7a:ba:08:d0: ea:a3:5e:44:3e:5a:5d:25:fb:2c:e2:9b:69:d1:40: 03:5d:8e:de:6b:68:de:b5:77:83:0b:0d:58:b6:75: 13:f3:b6:5a:aa:56:b6:e5:be:03:89:47:2b:bb:42: c7:00:48:30:af:00:f0:6f:b3:52:38:c1:1a:e8:8f: 08:94:05:d1:94:c7:0f:79:a2:8e:6a:f8:b7:04:90: 65:df:ff:e7:bc:a5:9d:aa:c1:2b:56:41:45:ff:ec: 67:89:54:ee:5d:88:e4:8e:96:b2:ed:66:52:1a:b5: f7:1c:9a:ba:6d:fc:21:fe:1d:25:a1:4c:99:b1:c7: 08:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:70:D7:2E:19:38:4D:0B:6A:EF:57:B5:D2:E2:FC:03:0D:21:2F:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/297c1ae1-725c-4b7d-89cf-0414aa1d6c72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.172.0.0/14 Signature Algorithm: sha256WithRSAEncryption cc:59:18:ff:34:35:92:e1:51:52:29:49:90:46:54:8a:a8:55: 21:01:f8:43:de:d6:9e:da:85:1d:eb:db:b0:89:32:8d:b6:02: 53:b8:d9:8a:ea:21:43:11:d1:eb:2e:c2:3f:8b:27:c0:0c:ce: a2:9c:a6:98:76:1a:b6:ba:e8:83:96:89:c2:45:4f:ca:cd:4b: 2a:92:3c:6d:25:f3:34:cf:f1:8f:a8:f0:c1:a6:b7:a1:6f:32: a8:bd:fa:dd:d2:1b:84:bb:15:56:66:37:bf:ee:90:e1:87:c0: 8d:6a:b1:0f:fe:bd:ba:2a:eb:b7:17:4f:be:42:79:ba:f2:a1: 39:c3:89:fb:96:75:60:1e:31:02:f0:90:bf:20:b2:8c:a7:e5: cd:be:c5:c7:fe:d1:84:39:3e:49:e5:ca:4f:e0:8c:f7:d7:59: cd:c9:de:51:f1:9c:5f:76:6d:01:dc:24:e5:de:dd:7a:89:98: ff:ab:ae:a2:aa:94:80:5d:69:f6:ab:f9:00:19:4a:2c:e2:93: 6a:4d:05:bb:15:45:c1:d6:00:31:82:b9:63:b7:57:a5:86:cd: b7:e5:4f:bb:c3:30:cf:1c:b0:3d:84:18:e4:4b:73:a1:79:90: d0:9c:59:33:61:be:39:13:ba:53:d0:18:ee:d2:f7:8d:38:0f: 4f:79:33:68 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMfcJqnumYwhSslDukvTB1gljVwwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDZkYWIxZWZhN2U5ODM3ZjA5MDFlYjE4ZDk2MzIwNGYz ZDgwODRmNWZiOTQzMTU3MDJmNzVhMjMwYzk5ODg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCP5C/kDpBBix3dkahl4jpGXfhIDcG7nKWUig0JEXk7/y/r 6zgyLLGkYLlZCSGvyP1k9EMFRT5k8eYvE2vM31Zg9/utGGbayuFNDOVXnuR2Mke3 4hKi9PS2khnp1GH1c7s6TAEY8Sd29GFTk43y4sqhGqmlYLszd6kQFsfshrZS+rdO eroI0OqjXkQ+Wl0l+yzim2nRQANdjt5raN61d4MLDVi2dRPztlqqVrblvgOJRyu7 QscASDCvAPBvs1I4wRrojwiUBdGUxw95oo5q+LcEkGXf/+e8pZ2qwStWQUX/7GeJ VO5diOSOlrLtZlIatfccmrpt/CH+HSWhTJmxxwjRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBXDXLhk4TQtq71e10uL8Aw0hL5owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5N2MxYWUxLTcyNWMtNGI3ZC04OWNmLTA0MTRhYTFkNmM3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIorDANBgkqhkiG9w0BAQsFAAOCAQEAzFkY/zQ1kuFRUilJkEZUiqhVIQH4 Q97WntqFHevbsIkyjbYCU7jZiuohQxHR6y7CP4snwAzOopymmHYatrrog5aJwkVP ys1LKpI8bSXzNM/xj6jwwaa3oW8yqL363dIbhLsVVmY3v+6Q4YfAjWqxD/69uirr txdPvkJ5uvKhOcOJ+5Z1YB4xAvCQvyCyjKflzb7Fx/7RhDk+SeXKT+CM99dZzcne UfGcX3ZtAdwk5d7deomY/6uuoqqUgF1p9qv5ABlKLOKTak0FuxVFwdYAMYK5Y7dX pYbNt+VPu8MwzxywPYQY5EtzoXmQ0JxZM2G+ORO6U9AY7tL3jTgPT3kzaA== -----END CERTIFICATE-----Generated at Thu May 2 03:11:28 2024 by rpki-client on console-ams.rpki-client.org