$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cbf798e-d927-4aad-b9d0-7145e6341534.roa File: 4cbf798e-d927-4aad-b9d0-7145e6341534.roa (raw, json) Hash identifier: pgo1FJkIdHWtDWRdhAflqSMWhTcD82F4Vjc99cqPqWo= Subject key identifier: 43:03:6C:D0:B0:D1:0C:A7:0B:E1:41:A1:34:C2:8B:A9:45:57:9B:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7DC50671C9C85BC873245F89694314D4D54A92F7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cbf798e-d927-4aad-b9d0-7145e6341534.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.163.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c5:06:71:c9:c8:5b:c8:73:24:5f:89:69:43:14:d4:d5:4a:92:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=569c1f637a4dcd20df62a72527617ab4a3a26f3aab880ed3b68cf42878c0f1e5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e5:8d:83:76:64:6d:33:17:0e:ca:58:f6:37: c2:80:ab:c6:5f:97:e1:fc:8b:4c:6b:48:02:ef:18: 8f:fe:4e:88:f3:9c:ac:55:11:6f:be:9a:d8:73:78: 94:fa:99:c4:a0:b3:c6:52:41:bf:0c:47:a7:db:1c: 24:2a:ad:b0:6b:b7:7a:5e:e0:20:26:69:94:e1:50: 1a:9d:6e:37:76:bf:cc:ab:b6:1f:a2:aa:fe:1d:91: cc:3a:d5:ab:cb:58:76:16:57:36:83:9c:58:03:05: ce:50:9c:17:00:64:d6:e2:5e:36:8e:8e:fe:0b:24: 66:14:ce:e5:1f:78:7f:85:18:2b:a6:59:f5:d0:2e: fe:3f:13:05:ca:06:51:1f:09:c0:31:81:d7:55:d1: af:ec:ed:c4:a9:fc:50:62:2e:c6:45:99:ff:87:c3: e4:54:37:0f:e6:c3:94:ee:d3:c3:97:c2:5b:fc:03: 9a:c0:09:ae:ed:fa:43:ea:41:c5:a9:19:da:93:d6: 3d:11:96:2a:4a:9e:13:8d:ab:6d:30:7c:ec:5a:64: 55:47:b7:d4:9c:16:16:bb:3f:e2:63:ca:d7:a7:a8: a3:b6:57:91:4a:c0:1e:ed:c8:6d:6f:8a:c5:88:e3: 11:2e:ac:91:e6:18:76:16:9c:02:09:e0:bb:de:aa: ca:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:03:6C:D0:B0:D1:0C:A7:0B:E1:41:A1:34:C2:8B:A9:45:57:9B:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cbf798e-d927-4aad-b9d0-7145e6341534.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.163.0.0/16 Signature Algorithm: sha256WithRSAEncryption a7:a7:c6:7c:a0:90:ba:ea:43:30:e4:cf:49:52:7e:e3:00:dc: ea:12:16:fb:0c:56:76:be:51:33:5f:68:c0:7a:d0:b5:e9:b7: 4e:d2:ff:2c:11:1f:20:d2:eb:5f:9a:6e:d2:d2:46:1d:95:41: d8:8c:d8:87:c3:5a:4c:0d:e9:9d:2c:37:4d:52:73:e5:b7:92: e0:7f:df:89:ae:be:4a:e8:dc:15:16:72:58:7a:b1:70:fd:cb: 3c:91:32:b4:f8:38:6d:e3:69:60:ee:bc:ae:4d:ff:69:e7:d8: d9:03:2d:41:96:e9:f6:fe:97:fe:fd:4f:a8:9a:1d:9b:d4:01: b6:2d:68:5b:d7:96:5e:39:44:8e:47:90:87:12:71:5e:10:35: a5:65:ca:c7:d1:bb:ed:d2:80:48:2f:03:71:31:82:e7:ef:89: 2e:e0:4f:0b:7c:3f:5a:6e:48:2c:b5:60:09:5b:76:b8:a4:b0: 37:e5:06:23:49:e6:68:55:41:78:9d:cf:10:b9:08:41:28:e4: ae:77:18:d6:dd:13:fc:84:99:05:54:17:82:ff:25:17:2f:9a: a8:11:8f:a6:cf:98:ce:f6:4b:d7:86:56:bd:7f:bd:1d:14:1f: ec:f8:84:4e:14:5f:8a:fb:77:10:48:ca:d0:76:d8:f4:c2:28: 0a:9e:58:cb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfcUGccnIW8hzJF+JaUMU1NVKkvcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjljMWY2MzdhNGRjZDIwZGY2MmE3MjUyNzYxN2FiNGEz YTI2ZjNhYWI4ODBlZDNiNjhjZjQyODc4YzBmMWU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC85Y2DdmRtMxcOylj2N8KAq8Zfl+H8i0xrSALvGI/+Tojz nKxVEW++mthzeJT6mcSgs8ZSQb8MR6fbHCQqrbBrt3pe4CAmaZThUBqdbjd2v8yr th+iqv4dkcw61avLWHYWVzaDnFgDBc5QnBcAZNbiXjaOjv4LJGYUzuUfeH+FGCum WfXQLv4/EwXKBlEfCcAxgddV0a/s7cSp/FBiLsZFmf+Hw+RUNw/mw5Tu08OXwlv8 A5rACa7t+kPqQcWpGdqT1j0RlipKnhONq20wfOxaZFVHt9ScFha7P+JjytenqKO2 V5FKwB7tyG1visWI4xEurJHmGHYWnAIJ4LveqsqRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQwNs0LDRDKcL4UGhNMKLqUVXm78wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjYmY3OThlLWQ5MjctNGFhZC1iOWQwLTcxNDVlNjM0MTUzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoozANBgkqhkiG9w0BAQsFAAOCAQEAp6fGfKCQuupDMOTPSVJ+4wDc6hIW +wxWdr5RM19owHrQtem3TtL/LBEfINLrX5pu0tJGHZVB2IzYh8NaTA3pnSw3TVJz 5beS4H/fia6+SujcFRZyWHqxcP3LPJEytPg4beNpYO68rk3/aefY2QMtQZbp9v6X /v1PqJodm9QBti1oW9eWXjlEjkeQhxJxXhA1pWXKx9G77dKASC8DcTGC5++JLuBP C3w/Wm5ILLVgCVt2uKSwN+UGI0nmaFVBeJ3PELkIQSjkrncY1t0T/ISZBVQXgv8l Fy+aqBGPps+YzvZL14ZWvX+9HRQf7PiEThRfivt3EEjK0HbY9MIoCp5Yyw== -----END CERTIFICATE-----Generated at Fri Apr 19 00:50:44 2024 by rpki-client on console-ams.rpki-client.org