$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a33f34-eeff-4ec0-b12d-bac4dfa79fea.roa File: 33a33f34-eeff-4ec0-b12d-bac4dfa79fea.roa (raw, json) Hash identifier: HYJ4DAXUWllyTEyN97yGNvnY90v3n9vymKjaG0exT3Y= Subject key identifier: F9:D4:67:F1:B4:02:45:92:69:54:5A:5C:04:38:20:EA:C9:EC:2A:85 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11FA8C586479FA760D10CA188A8F9E461254228C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a33f34-eeff-4ec0-b12d-bac4dfa79fea.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 139.89.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:fa:8c:58:64:79:fa:76:0d:10:ca:18:8a:8f:9e:46:12:54:22:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=f4bedbe638430299be71b3b8243fc0d8c239a90e2ab33486b849ae1e7e3863c8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fd:89:96:9d:a4:7f:09:87:48:1f:16:95:df: 2a:3b:8f:c2:c0:8d:e8:f1:70:5b:c5:85:f1:89:10: 76:d7:4f:9d:56:31:42:c9:84:49:33:35:af:57:de: 39:0b:ae:bc:1b:4c:88:fc:6d:1f:e1:94:0d:6e:89: 5d:33:10:a6:c3:62:c6:4d:0f:e5:68:f1:8f:d2:d8: 43:29:02:38:37:fc:ab:a4:ed:8d:37:a4:b9:62:07: fa:63:5c:98:0a:d2:af:d4:fc:07:5e:55:9e:f1:b3: 73:f0:5a:62:17:55:6a:67:b8:ba:df:5f:44:83:05: c3:82:dd:f8:3c:b7:1f:70:53:5b:de:b7:80:e4:2b: 2f:b5:4f:fd:91:c6:03:50:e2:3a:db:f0:0d:2a:86: cc:f7:34:f1:d3:cb:7b:f2:9b:db:1c:fd:32:93:58: 08:44:50:8a:67:fc:1a:b3:5b:f0:09:82:6c:ce:50: 07:4a:46:a3:43:bf:87:cf:e9:fd:08:84:7a:35:6e: e8:db:8d:be:87:83:05:bf:f0:60:9b:cd:e2:6d:03: ec:4e:15:df:2d:49:89:9c:18:6a:5c:1e:77:3e:c1: 0b:a5:f4:aa:57:f8:f8:87:83:0a:8c:57:d4:d5:cd: 16:90:88:cc:32:49:ad:4c:83:ff:81:78:d2:a3:52: 13:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D4:67:F1:B4:02:45:92:69:54:5A:5C:04:38:20:EA:C9:EC:2A:85 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a33f34-eeff-4ec0-b12d-bac4dfa79fea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption d2:a0:60:31:76:9d:52:e3:6a:b5:bf:69:9d:a2:fc:be:a4:3f: 65:43:0b:ce:b7:1d:b8:97:ce:52:50:21:64:dc:46:7f:f1:45: f5:de:ab:3d:84:70:58:d2:71:cc:9c:17:e8:43:49:82:86:87: 4d:ca:a5:30:d9:48:45:cd:8d:e2:b5:a8:66:c6:5a:01:49:5c: f2:5e:85:00:51:dc:db:39:da:a6:e1:f7:49:7d:46:89:14:e8: d7:85:a7:53:10:ab:4b:07:ea:c1:f2:25:0c:b6:ec:c1:d1:44: c0:66:40:f4:b3:31:df:f6:1f:2b:49:c5:16:81:65:de:9f:b5: 75:2e:c5:d3:31:ec:98:b6:a5:8b:58:95:13:11:57:04:9f:d5: a5:33:4d:79:82:f2:6f:2d:e7:90:85:60:9c:23:a0:c6:f0:38: 91:26:6a:a6:dc:f6:04:ea:f6:36:2c:4c:a2:91:27:9d:80:9d: cc:6c:c8:54:62:f5:5b:c1:42:d2:d3:5d:3b:65:29:49:74:1b: fb:45:d4:83:34:83:b6:c8:2e:ee:0f:7f:ac:66:44:89:2a:a6: 52:f5:dc:c2:eb:b6:f2:8a:72:24:16:97:66:0b:cb:0c:57:ae: 50:12:9e:5e:9e:c2:c4:56:e6:1d:79:1b:0d:c6:3f:93:7b:ea: 91:df:a8:eb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEfqMWGR5+nYNEMoYio+eRhJUIowwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEwMDAwMDAwWhcNMjQwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNGJlZGJlNjM4NDMwMjk5YmU3MWIzYjgyNDNmYzBkOGMy MzlhOTBlMmFiMzM0ODZiODQ5YWUxZTdlMzg2M2M4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn/YmWnaR/CYdIHxaV3yo7j8LAjejxcFvFhfGJEHbXT51W MULJhEkzNa9X3jkLrrwbTIj8bR/hlA1uiV0zEKbDYsZND+Vo8Y/S2EMpAjg3/Kuk 7Y03pLliB/pjXJgK0q/U/AdeVZ7xs3PwWmIXVWpnuLrfX0SDBcOC3fg8tx9wU1ve t4DkKy+1T/2RxgNQ4jrb8A0qhsz3NPHTy3vym9sc/TKTWAhEUIpn/BqzW/AJgmzO UAdKRqNDv4fP6f0IhHo1bujbjb6HgwW/8GCbzeJtA+xOFd8tSYmcGGpcHnc+wQul 9KpX+PiHgwqMV9TVzRaQiMwySa1Mg/+BeNKjUhPJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+dRn8bQCRZJpVFpcBDgg6snsKoUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzYTMzZjM0LWVlZmYtNGVjMC1iMTJkLWJhYzRkZmE3OWZlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLWTANBgkqhkiG9w0BAQsFAAOCAQEA0qBgMXadUuNqtb9pnaL8vqQ/ZUML zrcduJfOUlAhZNxGf/FF9d6rPYRwWNJxzJwX6ENJgoaHTcqlMNlIRc2N4rWoZsZa AUlc8l6FAFHc2znapuH3SX1GiRTo14WnUxCrSwfqwfIlDLbswdFEwGZA9LMx3/Yf K0nFFoFl3p+1dS7F0zHsmLali1iVExFXBJ/VpTNNeYLyby3nkIVgnCOgxvA4kSZq ptz2BOr2NixMopEnnYCdzGzIVGL1W8FC0tNdO2UpSXQb+0XUgzSDtsgu7g9/rGZE iSqmUvXcwuu28opyJBaXZgvLDFeuUBKeXp7CxFbmHXkbDcY/k3vqkd+o6w== -----END CERTIFICATE-----Generated at Wed Apr 24 15:48:58 2024 by rpki-client on console-ams.rpki-client.org