$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4db2414b-fca9-4126-81de-756a9d53d164.roa File: 4db2414b-fca9-4126-81de-756a9d53d164.roa (raw, json) Hash identifier: RAiaa1d2EqdS0W8tNK/1DiIlaYPwjFshi4uQ53OtsEo= Subject key identifier: DE:58:9A:49:D8:33:A8:7B:CA:4E:5F:FB:A6:15:FE:0F:E9:C0:F8:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 61193F55599212B1B326F468373698CD0A0AFD54 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4db2414b-fca9-4126-81de-756a9d53d164.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 70.131.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:19:3f:55:59:92:12:b1:b3:26:f4:68:37:36:98:cd:0a:0a:fd:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=0fc037841adf456bc28b3336733262b0dc2aef2f8e7ee06469136494fe0b8f29, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:14:8f:82:33:3b:b6:49:7c:e2:7a:13:73:5b: 45:94:1c:58:32:3e:c0:04:f0:91:5a:c9:c8:a2:01: 0d:b7:ad:11:c1:55:76:7a:08:5a:8f:88:85:eb:1c: 17:97:a8:a5:b0:27:62:c4:d5:0f:78:d7:c9:da:81: af:2d:99:87:e8:0f:bc:b3:94:dd:1b:10:f1:26:a3: 2c:62:de:26:fc:ee:40:de:d0:de:fb:0c:96:d2:43: 59:80:0d:c3:f2:c8:1a:4f:78:0f:96:4c:f3:64:b2: 2d:c5:ee:cc:3b:6e:f1:56:2e:56:4d:62:39:bb:0d: 3e:ce:c0:3d:09:07:a9:1c:c4:f8:ab:d9:15:ab:41: 26:04:a3:de:46:96:31:b6:d9:6d:54:7c:49:0e:02: 66:e4:ce:6e:93:12:c0:8f:65:37:ed:cc:96:b3:f2: ee:3f:07:6c:87:32:be:0a:a7:cd:fe:7f:e5:d6:9e: c8:18:ab:72:05:6b:3c:3c:bd:bf:40:18:e0:7e:13: 0e:92:94:76:6d:d2:63:ce:8a:dd:26:41:7d:9e:b5: b9:98:48:9a:8b:46:72:08:4d:2d:8d:3b:40:88:b8: 5a:33:16:56:f3:ad:1e:3a:e1:a6:12:03:68:b9:52: e4:e9:a1:1b:49:75:27:a0:f2:8b:c5:84:34:8d:66: 76:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:58:9A:49:D8:33:A8:7B:CA:4E:5F:FB:A6:15:FE:0F:E9:C0:F8:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4db2414b-fca9-4126-81de-756a9d53d164.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.131.192.0/18 Signature Algorithm: sha256WithRSAEncryption 29:0f:19:a5:a4:1e:b2:bb:29:d0:1e:92:5f:52:89:5f:4d:af: eb:26:cc:c7:7b:39:dd:8c:59:05:e7:28:8d:cd:de:81:89:b6: 98:00:38:cd:7d:a3:77:0d:3e:b1:a4:1f:34:37:df:e9:19:f9: a6:42:f8:d6:94:55:bc:57:27:e1:89:e4:74:fc:ac:56:96:20: 80:c2:ad:33:d5:a6:7d:7e:2d:74:d4:ce:a9:05:84:ba:d4:04: 8c:71:22:9a:04:e9:55:e1:1a:78:14:b9:98:d7:b7:d8:78:c3: 77:30:c0:13:71:99:b0:5d:82:25:96:8f:f0:d5:b7:d6:19:29: 63:e1:b3:6d:ee:a1:d9:a3:5c:fe:52:be:3b:99:97:b7:dd:6a: 61:bf:9f:2f:ce:05:f7:8a:c6:1c:a5:c7:f1:4f:22:70:9f:94: 3f:00:bd:3e:0a:12:54:1c:5d:13:d6:c1:0a:b2:31:da:01:00: be:20:ef:18:2e:4c:8b:e3:88:5e:b8:1a:79:22:32:fd:e6:e8: cb:e2:c4:e7:25:de:77:42:11:be:40:06:9c:47:ac:3d:af:8a: f6:0e:8a:5e:53:f0:97:aa:0c:0f:e7:52:96:28:62:6b:d6:c4: d8:76:93:a8:e7:a0:bb:96:c2:09:e6:01:9b:b1:4a:8b:e1:6d: 85:db:37:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYRk/VVmSErGzJvRoNzaYzQoK/VQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZmMwMzc4NDFhZGY0NTZiYzI4YjMzMzY3MzMyNjJiMGRj MmFlZjJmOGU3ZWUwNjQ2OTEzNjQ5NGZlMGI4ZjI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5FI+CMzu2SXziehNzW0WUHFgyPsAE8JFayciiAQ23rRHB VXZ6CFqPiIXrHBeXqKWwJ2LE1Q9418naga8tmYfoD7yzlN0bEPEmoyxi3ib87kDe 0N77DJbSQ1mADcPyyBpPeA+WTPNksi3F7sw7bvFWLlZNYjm7DT7OwD0JB6kcxPir 2RWrQSYEo95GljG22W1UfEkOAmbkzm6TEsCPZTftzJaz8u4/B2yHMr4Kp83+f+XW nsgYq3IFazw8vb9AGOB+Ew6SlHZt0mPOit0mQX2etbmYSJqLRnIITS2NO0CIuFoz FlbzrR464aYSA2i5UuTpoRtJdSeg8ovFhDSNZnaNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3liaSdgzqHvKTl/7phX+D+nA+IAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkYjI0MTRiLWZjYTktNDEyNi04MWRlLTc1NmE5ZDUzZDE2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZGg8AwDQYJKoZIhvcNAQELBQADggEBACkPGaWkHrK7KdAekl9SiV9Nr+sm zMd7Od2MWQXnKI3N3oGJtpgAOM19o3cNPrGkHzQ33+kZ+aZC+NaUVbxXJ+GJ5HT8 rFaWIIDCrTPVpn1+LXTUzqkFhLrUBIxxIpoE6VXhGngUuZjXt9h4w3cwwBNxmbBd giWWj/DVt9YZKWPhs23uodmjXP5SvjuZl7fdamG/ny/OBfeKxhylx/FPInCflD8A vT4KElQcXRPWwQqyMdoBAL4g7xguTIvjiF64GnkiMv3m6MvixOcl3ndCEb5ABpxH rD2vivYOil5T8JeqDA/nUpYoYmvWxNh2k6jnoLuWwgnmAZuxSovhbYXbN9Q= -----END CERTIFICATE-----Generated at Thu May 2 03:11:31 2024 by rpki-client on console-ams.rpki-client.org