$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b7a7840-769e-43a3-87f1-4f1d679576e7.roa File: 4b7a7840-769e-43a3-87f1-4f1d679576e7.roa (raw, json) Hash identifier: 7tOgUSLGbRXs/r6Fb0v2oglqmrWXLet5iLOzvLWsqVk= Subject key identifier: 67:CE:36:3E:FB:20:52:62:2A:BF:9C:B1:2C:40:B8:35:2E:F6:4D:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 409CF6CD3CFC400B67D660712AAA542651C55562 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b7a7840-769e-43a3-87f1-4f1d679576e7.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 72.150.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:9c:f6:cd:3c:fc:40:0b:67:d6:60:71:2a:aa:54:26:51:c5:55:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=748bf44b024d966a2e4219e927642314de6bb0b11fbd00e47988dcb0aeae0039, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:06:60:3a:fa:f7:10:10:43:b5:1d:8d:f4:f6: 3a:93:6b:03:06:25:de:1d:26:43:8e:d6:bd:1c:17: 56:09:be:dd:ee:34:03:dd:be:90:9b:2a:67:d2:f2: 52:50:22:33:9a:81:4c:f7:7d:4b:1c:2f:0b:07:69: ff:28:82:cc:2b:16:f8:d1:24:02:8a:c3:5a:95:d5: 72:6a:a1:e5:49:2b:58:a9:5c:9d:48:06:2b:48:f5: 26:1a:5e:c7:04:85:fa:d7:cd:4e:fe:25:cd:05:a3: 11:69:49:e3:7d:a2:d4:e2:48:a2:9b:85:e7:f1:f1: e9:b6:71:70:ed:c5:a0:c6:1d:49:93:58:1a:b7:2a: 90:64:99:15:84:75:fe:6c:5a:e8:71:b8:87:75:d7: 39:d8:09:fd:9e:92:20:d2:6b:e7:85:25:80:61:43: 7f:4b:08:c3:0a:70:6c:99:f6:10:73:ed:8f:14:8b: f8:8d:98:8c:0c:9d:21:77:f6:f0:85:c9:48:ba:a5: 33:a2:03:17:1a:7e:9f:b1:0c:7d:ce:d5:1c:3b:24: 27:cb:c6:23:ea:4b:f3:48:86:58:4d:53:95:70:11: da:5b:50:9f:e5:b1:1b:f9:f2:2e:ff:c9:f6:82:8e: 2b:bd:1d:35:41:e5:fc:bc:99:64:2a:46:4a:b0:56: f1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CE:36:3E:FB:20:52:62:2A:BF:9C:B1:2C:40:B8:35:2E:F6:4D:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b7a7840-769e-43a3-87f1-4f1d679576e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.150.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0e:9e:85:06:34:11:63:65:1c:f6:03:9b:4e:7b:78:05:f5:9b: e8:aa:6c:3b:82:9f:4d:f3:2a:25:8d:c9:fa:66:3d:76:60:79: 7d:65:43:39:85:67:aa:fb:a8:5d:93:aa:93:7d:50:d8:9b:ec: b3:4d:dc:2b:05:e8:1f:2d:d2:8a:80:78:e7:e5:14:ac:5c:c6: a5:16:09:9c:d2:de:5b:1f:9e:ba:00:10:61:b5:58:6a:fe:18: 91:35:5c:64:97:c7:46:fb:89:bc:f1:fe:00:e3:7a:f1:b9:50: 66:21:78:2e:f0:f8:c6:70:6a:a1:d8:d9:68:e6:65:18:d4:e1: 0f:3b:59:78:7e:ce:24:11:11:79:92:08:c7:ed:32:60:9b:a1: e6:b3:a7:1b:1c:2b:76:48:76:36:9d:a9:88:96:de:f3:ea:eb: fd:e1:29:d7:39:1e:b4:66:97:85:75:75:ff:d1:d6:c9:fb:b1: 04:86:84:05:a0:97:c4:07:a7:99:80:13:b5:d6:fc:0b:ec:e9: 77:8d:4b:84:ed:ef:9f:db:4d:29:68:f5:7e:ab:f7:c6:3b:af: 5d:05:74:4e:a7:a6:d9:0f:a1:f3:9b:05:f7:0a:91:17:07:b3: 19:01:fe:87:a3:e6:30:d9:23:b4:af:bb:e2:46:32:f2:84:69: 0b:1e:93:5d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQJz2zTz8QAtn1mBxKqpUJlHFVWIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDhiZjQ0YjAyNGQ5NjZhMmU0MjE5ZTkyNzY0MjMxNGRl NmJiMGIxMWZiZDAwZTQ3OTg4ZGNiMGFlYWUwMDM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6BmA6+vcQEEO1HY309jqTawMGJd4dJkOO1r0cF1YJvt3u NAPdvpCbKmfS8lJQIjOagUz3fUscLwsHaf8ogswrFvjRJAKKw1qV1XJqoeVJK1ip XJ1IBitI9SYaXscEhfrXzU7+Jc0FoxFpSeN9otTiSKKbhefx8em2cXDtxaDGHUmT WBq3KpBkmRWEdf5sWuhxuId11znYCf2ekiDSa+eFJYBhQ39LCMMKcGyZ9hBz7Y8U i/iNmIwMnSF39vCFyUi6pTOiAxcafp+xDH3O1Rw7JCfLxiPqS/NIhlhNU5VwEdpb UJ/lsRv58i7/yfaCjiu9HTVB5fy8mWQqRkqwVvEnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZ842PvsgUmIqv5yxLEC4NS72TXUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRiN2E3ODQwLTc2OWUtNDNhMy04N2YxLTRmMWQ2Nzk1NzZlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBIljANBgkqhkiG9w0BAQsFAAOCAQEADp6FBjQRY2Uc9gObTnt4BfWb6Kps O4KfTfMqJY3J+mY9dmB5fWVDOYVnqvuoXZOqk31Q2Jvss03cKwXoHy3SioB45+UU rFzGpRYJnNLeWx+eugAQYbVYav4YkTVcZJfHRvuJvPH+AON68blQZiF4LvD4xnBq odjZaOZlGNThDztZeH7OJBEReZIIx+0yYJuh5rOnGxwrdkh2Np2piJbe8+rr/eEp 1zketGaXhXV1/9HWyfuxBIaEBaCXxAenmYATtdb8C+zpd41LhO3vn9tNKWj1fqv3 xjuvXQV0Tqem2Q+h85sF9wqRFwezGQH+h6PmMNkjtK+74kYy8oRpCx6TXQ== -----END CERTIFICATE-----Generated at Thu May 2 03:11:31 2024 by rpki-client on console-ams.rpki-client.org