$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/423308a5-20c2-47d9-92bf-059eab892199.roa File: 423308a5-20c2-47d9-92bf-059eab892199.roa (raw, json) Hash identifier: WKPjV3XyZI2KPc3GPc/0gSLlpHYx0XRdJpWst/XBiU0= Subject key identifier: 17:12:1E:AB:6F:7E:59:B0:C5:1C:5E:21:85:01:9B:09:19:98:E7:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BAD21EACE0ECD2E72345E2F005853EAE9E189F8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/423308a5-20c2-47d9-92bf-059eab892199.roa Signing time: Fri 10 May 2024 00:00:00 +0000 ROA not before: Fri 10 May 2024 00:00:00 +0000 ROA not after: Fri 14 Jun 2024 23:59:59 +0000 asID: 7224 IP address blocks: 173.83.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 13 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ad:21:ea:ce:0e:cd:2e:72:34:5e:2f:00:58:53:ea:e9:e1:89:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:00:00 2024 GMT Not After : Jun 14 23:59:59 2024 GMT Subject: serialNumber=e2a095db6f477fc5da76c9dad6485357463973151c528bf6e16eb47b05df7af9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fd:cb:77:0c:42:62:39:9e:53:75:17:49:29: 02:95:10:bf:40:da:52:75:a6:4d:93:5a:8b:e6:72: 13:ef:b2:7c:09:2f:3b:e3:ec:f7:c3:40:bb:dc:3e: 92:e3:7f:c4:24:5e:4f:14:ea:e4:f0:8f:07:fc:9f: fb:b4:89:d3:e7:ac:65:55:38:c2:01:fd:1f:39:7b: ff:eb:64:28:ad:b2:43:95:ba:14:4d:f2:7a:f0:b1: 46:de:11:76:f4:57:77:fe:02:39:90:63:dc:2a:b5: e5:76:6d:72:db:ac:ac:88:39:3d:89:1f:1f:da:cf: 8e:ff:dd:b5:84:7a:09:46:0f:55:b8:9d:be:bd:db: bb:dc:64:93:a8:99:07:ec:05:1e:78:fb:32:4b:6b: cf:11:6d:68:bc:f1:35:79:1b:1c:c5:5f:6c:ce:61: 5c:75:f6:f1:e4:1b:2c:ec:5c:40:c4:ed:17:99:ad: 8c:1e:06:05:cf:96:ac:05:4d:68:5b:7e:69:e1:ac: 49:6f:cf:6a:c5:2d:9c:bd:6d:be:06:6d:ba:3d:ca: 34:b6:c2:5c:71:27:fc:de:a6:86:f1:9d:a4:26:ff: 7f:60:b5:36:42:78:6f:e6:94:e8:90:fc:ee:73:0f: a4:f4:30:7c:5f:8b:92:1d:ca:d0:a9:0d:12:00:01: 9d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:12:1E:AB:6F:7E:59:B0:C5:1C:5E:21:85:01:9B:09:19:98:E7:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/423308a5-20c2-47d9-92bf-059eab892199.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.83.128.0/18 Signature Algorithm: sha256WithRSAEncryption c8:12:e6:97:cb:c8:2b:68:58:44:ba:1b:5f:39:71:51:d2:fc: c8:83:3c:16:b4:30:af:55:40:4c:8b:21:29:87:8d:43:bf:df: d5:00:cd:ef:6a:03:7d:41:e1:cb:e0:57:57:0d:8c:e2:88:64: 5b:67:f9:ea:e8:c9:b3:32:e8:5b:2d:f7:1a:45:0b:1f:08:78: 3e:8c:e9:3e:81:ed:ce:17:ab:41:37:91:62:25:ef:21:00:d8: 61:a6:92:b2:58:0f:08:0f:68:98:87:8a:2b:3d:20:86:4b:39: ba:92:ea:3c:a4:e3:cc:11:9f:6d:b7:f5:cc:40:4b:e0:cb:16: e1:68:ce:f6:37:27:b6:ce:2b:8a:d2:86:38:06:3c:fb:9c:b6: a5:16:26:bd:69:6c:e8:1f:30:25:5a:06:e5:00:9c:5f:b2:39: 40:30:f6:ab:65:b3:77:b9:9f:ce:1b:c8:34:68:62:79:ba:b1: eb:8c:55:e5:46:ad:b1:a6:15:58:49:a8:66:87:1b:13:7d:fa: 59:a3:9d:fe:50:e3:29:06:89:88:1a:45:52:e3:2e:9f:48:94: 64:9c:92:d0:95:8e:4f:0d:b3:78:1d:4b:81:a3:d4:99:68:2a: a9:69:15:fe:de:05:29:28:85:d5:0c:3f:79:71:88:66:dd:84: 0b:db:3d:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS60h6s4OzS5yNF4vAFhT6unhifgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTEwMDAwMDAwWhcNMjQwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMmEwOTVkYjZmNDc3ZmM1ZGE3NmM5ZGFkNjQ4NTM1NzQ2 Mzk3MzE1MWM1MjhiZjZlMTZlYjQ3YjA1ZGY3YWY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz/ct3DEJiOZ5TdRdJKQKVEL9A2lJ1pk2TWovmchPvsnwJ Lzvj7PfDQLvcPpLjf8QkXk8U6uTwjwf8n/u0idPnrGVVOMIB/R85e//rZCitskOV uhRN8nrwsUbeEXb0V3f+AjmQY9wqteV2bXLbrKyIOT2JHx/az47/3bWEeglGD1W4 nb6927vcZJOomQfsBR54+zJLa88RbWi88TV5GxzFX2zOYVx19vHkGyzsXEDE7ReZ rYweBgXPlqwFTWhbfmnhrElvz2rFLZy9bb4Gbbo9yjS2wlxxJ/zepobxnaQm/39g tTZCeG/mlOiQ/O5zD6T0MHxfi5IdytCpDRIAAZ0DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFxIeq29+WbDFHF4hhQGbCRmY55swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyMzMwOGE1LTIwYzItNDdkOS05MmJmLTA1OWVhYjg5MjE5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAatU4AwDQYJKoZIhvcNAQELBQADggEBAMgS5pfLyCtoWES6G185cVHS/MiD PBa0MK9VQEyLISmHjUO/39UAze9qA31B4cvgV1cNjOKIZFtn+eroybMy6Fst9xpF Cx8IeD6M6T6B7c4Xq0E3kWIl7yEA2GGmkrJYDwgPaJiHiis9IIZLObqS6jyk48wR n2239cxAS+DLFuFozvY3J7bOK4rShjgGPPuctqUWJr1pbOgfMCVaBuUAnF+yOUAw 9qtls3e5n84byDRoYnm6seuMVeVGrbGmFVhJqGaHGxN9+lmjnf5Q4ykGiYgaRVLj Lp9IlGScktCVjk8Ns3gdS4Gj1JloKqlpFf7eBSkohdUMP3lxiGbdhAvbPYs= -----END CERTIFICATE-----Generated at Sun May 12 02:01:32 2024 by rpki-client on console-ams.rpki-client.org