$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41e68f22-6572-4979-9cb6-534fd279a73d.roa File: 41e68f22-6572-4979-9cb6-534fd279a73d.roa (raw, json) Hash identifier: XmYq40JjoB1pn81K0TL5Q3xgQ1ZLNPc+mXH9WP3f3wE= Subject key identifier: 71:1C:65:83:3E:3D:81:FD:4E:E6:A0:85:FD:17:BD:EE:F5:76:B3:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FF5DA3B66C57B2E3FDD60D4225918E14AB502F9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41e68f22-6572-4979-9cb6-534fd279a73d.roa Signing time: Mon 06 May 2024 00:00:00 +0000 ROA not before: Mon 06 May 2024 00:00:00 +0000 ROA not after: Mon 10 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.127.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 11 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:f5:da:3b:66:c5:7b:2e:3f:dd:60:d4:22:59:18:e1:4a:b5:02:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:00:00 2024 GMT Not After : Jun 10 23:59:59 2024 GMT Subject: serialNumber=e8c8bac4de13824ef768583b5186dd3cfd3a085b2bd451d11d845d6d77025aae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ae:d7:cc:d5:06:e3:39:7a:c5:d8:8d:b6:4b: d5:68:bb:62:da:3a:d6:af:54:84:42:0a:09:70:b7: e8:97:c0:25:b7:0c:31:15:40:7e:c4:09:b7:e5:17: fa:d2:67:dc:bc:32:a9:ff:8f:56:21:c7:7f:e5:cc: 5d:ad:e5:38:9e:d5:56:f2:17:70:4e:00:56:29:31: d3:4e:47:d8:8e:d7:8c:95:6a:78:c3:9a:bf:89:85: fd:e5:8d:ba:48:03:4d:cc:3d:b1:5f:ec:eb:d8:71: 47:02:c6:97:38:12:99:4e:3c:95:14:96:0d:b6:a6: 4f:f1:9a:47:f3:06:e1:c7:e5:7f:d8:57:a0:f5:45: 9f:c7:87:9c:6f:82:b5:16:b4:b9:a1:d5:41:71:aa: 65:52:1a:30:08:54:b5:82:14:40:8d:f1:08:29:f0: 95:0e:d1:06:f0:11:31:c6:6b:5a:07:ee:a8:e1:94: 2c:db:59:0c:bc:da:6b:26:8e:5a:8d:23:a2:41:9f: 16:e2:48:08:78:b7:48:61:65:6c:06:ac:6e:f0:9c: 0f:b7:83:ad:3c:9f:98:4d:e8:81:68:23:1d:ca:11: 86:05:08:6c:4f:d2:c2:81:ff:4e:43:82:1d:45:76: 72:91:a7:bd:8f:15:0e:a0:ff:11:c5:1d:fc:a0:09: 67:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:1C:65:83:3E:3D:81:FD:4E:E6:A0:85:FD:17:BD:EE:F5:76:B3:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41e68f22-6572-4979-9cb6-534fd279a73d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.127.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4f:51:2e:b5:c4:f4:30:85:39:0d:ee:73:36:e6:31:a8:69:0a: 72:b7:6c:16:09:2a:67:42:59:83:d6:8e:df:7e:d8:85:1d:0e: 04:55:96:4d:c5:b0:28:4e:7e:b3:ec:d5:f3:e2:d6:da:82:e7: 32:5a:0b:46:54:20:f0:8e:33:0c:ef:d4:fe:5c:e5:8d:81:f9: 6c:d2:db:bd:f9:05:0e:51:75:5a:54:49:9a:ca:61:31:a0:ee: a4:ae:ee:85:2b:3e:02:26:d9:9f:d4:4f:04:eb:75:37:04:c3: 0f:f1:04:9d:6f:19:5b:74:4a:a1:e9:48:f9:d9:b9:e5:57:04: af:d7:0c:fe:c0:e6:2c:c3:37:48:81:0e:0a:65:04:ef:5c:c1: c5:68:86:3b:cf:c9:cd:66:28:f7:63:16:03:33:6e:b2:63:81: 36:20:7c:9b:8b:f1:2e:a7:22:3a:84:7d:cd:eb:45:36:ac:ef: c5:0a:5f:7d:15:70:ff:4a:3c:3b:42:0d:17:0a:eb:8f:de:b6: 99:8c:e7:1a:8e:78:39:bd:43:30:67:a2:97:67:53:11:bf:be: 7c:16:40:4a:fe:c7:9b:33:f8:b2:d9:81:0b:7b:e1:2c:21:e8: bc:c3:f5:7e:cd:e3:3e:66:55:4f:e7:6a:53:f6:5c:72:84:a2: ad:c5:d9:07 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUf/XaO2bFey4/3WDUIlkY4Uq1AvkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA2MDAwMDAwWhcNMjQwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOGM4YmFjNGRlMTM4MjRlZjc2ODU4M2I1MTg2ZGQzY2Zk M2EwODViMmJkNDUxZDExZDg0NWQ2ZDc3MDI1YWFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwrtfM1QbjOXrF2I22S9Vou2LaOtavVIRCCglwt+iXwCW3 DDEVQH7ECbflF/rSZ9y8Mqn/j1Yhx3/lzF2t5Tie1VbyF3BOAFYpMdNOR9iO14yV anjDmr+Jhf3ljbpIA03MPbFf7OvYcUcCxpc4EplOPJUUlg22pk/xmkfzBuHH5X/Y V6D1RZ/Hh5xvgrUWtLmh1UFxqmVSGjAIVLWCFECN8Qgp8JUO0QbwETHGa1oH7qjh lCzbWQy82msmjlqNI6JBnxbiSAh4t0hhZWwGrG7wnA+3g608n5hN6IFoIx3KEYYF CGxP0sKB/05Dgh1FdnKRp72PFQ6g/xHFHfygCWevAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcRxlgz49gf1O5qCF/Re97vV2sx8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxZTY4ZjIyLTY1NzItNDk3OS05Y2I2LTUzNGZkMjc5YTczZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4fzANBgkqhkiG9w0BAQsFAAOCAQEAT1EutcT0MIU5De5zNuYxqGkKcrds FgkqZ0JZg9aO337YhR0OBFWWTcWwKE5+s+zV8+LW2oLnMloLRlQg8I4zDO/U/lzl jYH5bNLbvfkFDlF1WlRJmsphMaDupK7uhSs+AibZn9RPBOt1NwTDD/EEnW8ZW3RK oelI+dm55VcEr9cM/sDmLMM3SIEOCmUE71zBxWiGO8/JzWYo92MWAzNusmOBNiB8 m4vxLqciOoR9zetFNqzvxQpffRVw/0o8O0INFwrrj962mYznGo54Ob1DMGeil2dT Eb++fBZASv7HmzP4stmBC3vhLCHovMP1fs3jPmZVT+dqU/ZccoSircXZBw== -----END CERTIFICATE-----Generated at Thu May 9 17:46:44 2024 by rpki-client on console-ams.rpki-client.org