$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa File: 48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa (raw, json) Hash identifier: CvT4bK1QKfsa/gg7yCjLVuv6qhZzf8nE6JPXLv2CcSE= Subject key identifier: 45:D8:07:9A:99:9E:5F:4D:0A:57:4C:7F:41:56:17:8C:F8:F6:4B:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14FE3645A08E039C30331DFD0133E1D9F860292D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.159.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:fe:36:45:a0:8e:03:9c:30:33:1d:fd:01:33:e1:d9:f8:60:29:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=65ee5bbbdd8095a3c2a3b7312f7ef8179b25a582b44877a981b9e4814bc1a3cb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:20:22:98:06:c8:69:c9:e8:0d:04:49:49:c0: bb:d0:eb:35:7f:53:0a:b6:e8:04:8c:bd:07:9a:a9: 26:50:4e:02:e3:57:f7:a8:5a:2a:4b:d8:68:0b:fd: 72:77:31:ca:5a:39:ac:ff:7d:78:29:8e:14:3e:9f: e7:a1:85:97:d2:b2:0e:cb:08:f0:8e:36:16:f7:4b: d9:9b:90:0a:67:8c:90:76:f6:d1:8b:ed:01:e0:82: 62:ac:ee:f4:df:1a:8d:86:81:e3:ff:d0:d8:88:48: df:95:66:11:c0:76:17:f5:8c:87:28:15:60:c4:bc: 2a:2e:d0:70:d8:04:5c:a9:ac:a2:5a:28:cd:df:a3: 23:49:54:ec:e3:1d:cd:92:70:76:c4:80:a8:37:65: 7a:87:61:a4:90:a6:a3:7a:37:4a:eb:7c:00:63:71: 68:65:58:3a:06:2a:e0:29:b3:58:95:16:61:45:77: 09:2e:58:99:0f:97:22:d2:ef:97:b3:d2:2e:7c:76: d8:08:5c:48:e1:83:01:8e:15:b7:f6:d3:24:10:aa: 20:0a:ed:1d:b6:98:fe:a5:07:e9:a7:56:dd:55:30: 7f:51:99:64:29:ea:81:57:bd:8b:71:98:01:ca:c6: c7:1a:b2:59:95:19:22:2e:f7:3f:d4:88:ba:ad:27: 2f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D8:07:9A:99:9E:5F:4D:0A:57:4C:7F:41:56:17:8C:F8:F6:4B:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.159.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:6f:53:6e:5d:23:76:e7:56:11:40:3a:65:ab:9f:82:43:ef: 2e:4c:9b:cb:b5:e0:ce:40:d2:00:6e:ff:42:38:17:5f:71:50: 42:85:de:c5:a6:f3:0c:f9:50:44:77:51:98:90:76:23:7a:30: e7:3f:b5:fe:76:90:cf:98:33:46:2e:f4:8d:20:2f:84:77:92: 97:21:5d:74:79:b3:7e:ac:3d:c0:4f:86:3e:1a:e6:de:68:6b: 04:e7:38:38:1c:ea:ef:9a:2e:e6:d0:8d:41:a7:92:ad:e0:47: 72:04:ad:aa:b3:3e:da:44:b3:be:5e:4e:0a:b6:12:59:a1:0f: 28:c3:1f:df:2a:d2:2a:0a:b7:c1:7e:84:e7:f8:59:b2:7c:b1: 54:b3:74:9b:31:1f:e7:e6:74:95:e6:09:39:9f:a3:5e:db:f9: 74:fd:ac:5e:8e:9c:d3:65:04:9c:d8:be:a8:99:b5:a0:05:18: 5a:cb:8b:0f:43:e6:a0:48:c4:c0:48:4c:1d:15:08:1c:88:84: 20:07:eb:77:14:40:c9:a9:6d:d6:45:a7:76:bb:e0:65:f4:44: 3f:55:3a:94:b0:03:b2:13:a7:a6:71:43:21:cf:2e:67:8f:19: f5:3e:e3:60:6f:64:a9:ce:98:c0:61:ab:b1:dd:f2:fb:dd:d5: 49:1b:cb:da -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFP42RaCOA5wwMx39ATPh2fhgKS0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEwMDAwMDAwWhcNMjQwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWVlNWJiYmRkODA5NWEzYzJhM2I3MzEyZjdlZjgxNzli MjVhNTgyYjQ0ODc3YTk4MWI5ZTQ4MTRiYzFhM2NiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQICKYBshpyegNBElJwLvQ6zV/Uwq26ASMvQeaqSZQTgLj V/eoWipL2GgL/XJ3McpaOaz/fXgpjhQ+n+ehhZfSsg7LCPCONhb3S9mbkApnjJB2 9tGL7QHggmKs7vTfGo2GgeP/0NiISN+VZhHAdhf1jIcoFWDEvCou0HDYBFyprKJa KM3foyNJVOzjHc2ScHbEgKg3ZXqHYaSQpqN6N0rrfABjcWhlWDoGKuAps1iVFmFF dwkuWJkPlyLS75ez0i58dtgIXEjhgwGOFbf20yQQqiAK7R22mP6lB+mnVt1VMH9R mWQp6oFXvYtxmAHKxscaslmVGSIu9z/UiLqtJy+DAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURdgHmpmeX00KV0x/QVYXjPj2SwMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4YmMwMmUxLTRkMmItNDg1NC05MTU1LWQyMThlMmZlMGUyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4nzANBgkqhkiG9w0BAQsFAAOCAQEAjW9Tbl0jdudWEUA6ZaufgkPvLkyb y7XgzkDSAG7/QjgXX3FQQoXexabzDPlQRHdRmJB2I3ow5z+1/naQz5gzRi70jSAv hHeSlyFddHmzfqw9wE+GPhrm3mhrBOc4OBzq75ou5tCNQaeSreBHcgStqrM+2kSz vl5OCrYSWaEPKMMf3yrSKgq3wX6E5/hZsnyxVLN0mzEf5+Z0leYJOZ+jXtv5dP2s Xo6c02UEnNi+qJm1oAUYWsuLD0PmoEjEwEhMHRUIHIiEIAfrdxRAyalt1kWndrvg ZfREP1U6lLADshOnpnFDIc8uZ48Z9T7jYG9kqc6YwGGrsd3y+93VSRvL2g== -----END CERTIFICATE-----Generated at Thu Apr 18 17:41:54 2024 by rpki-client on console-ams.rpki-client.org