$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4dc98777-6d3b-48a6-ac2a-131d1fd621c6.roa File: 4dc98777-6d3b-48a6-ac2a-131d1fd621c6.roa (raw, json) Hash identifier: o9lRC93V1+T4mwf7/gEt+nOtnCIGQrGEvxcHouxM28w= Subject key identifier: 74:31:1F:63:CD:8E:4A:7C:53:68:F0:1A:D8:E8:15:BB:F5:84:F5:48 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C726401AF96B3A6257422338E8967482882F72D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4dc98777-6d3b-48a6-ac2a-131d1fd621c6.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 70.131.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:72:64:01:af:96:b3:a6:25:74:22:33:8e:89:67:48:28:82:f7:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=1ee9f1bc484a5b69b33be97239cf328993b3a27952a01de18d9abff6b76bdaf9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ff:f3:30:ca:65:d2:4a:9a:b6:58:ea:47:18: 3e:ed:33:be:0f:04:a8:e9:fc:3b:6a:4c:e8:22:c2: da:9d:10:68:02:3b:d4:f7:45:27:4c:6a:81:89:a3: 6e:1b:7e:1e:0b:6e:b6:23:9b:e5:32:21:66:77:30: ea:44:74:ae:d9:60:b4:f2:55:a0:60:78:54:3e:38: 51:fb:37:68:0b:bc:91:b1:4a:27:36:d7:0b:19:55: ee:83:b5:09:5e:27:8d:6e:86:11:be:d0:83:22:26: df:fa:8e:36:37:ce:ac:e2:51:68:0a:eb:72:db:a1: a9:9a:d8:87:14:2c:35:97:f0:c9:69:d8:7d:67:7d: 94:8e:8e:ef:37:0b:25:d6:48:63:be:21:d6:d3:dc: e8:a6:d0:fc:0e:b9:f9:31:d8:ba:c4:c5:8a:3c:e1: ca:2f:f3:e5:fd:d4:20:d4:5d:84:e0:f7:9b:20:3f: b2:6a:43:de:fb:ff:19:00:03:54:5e:eb:3b:ff:ee: 04:9f:a3:03:89:32:46:c2:cc:40:5a:cd:47:f5:b8: 79:4d:60:c1:ba:88:64:95:a7:2b:1d:37:3e:48:d1: 91:69:1d:8f:f6:95:f1:76:7a:23:88:26:6b:87:f0: 73:e1:0a:56:7a:6e:77:c4:7c:8c:40:9a:fa:86:47: 61:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:31:1F:63:CD:8E:4A:7C:53:68:F0:1A:D8:E8:15:BB:F5:84:F5:48 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4dc98777-6d3b-48a6-ac2a-131d1fd621c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.131.192.0/18 Signature Algorithm: sha256WithRSAEncryption bf:8f:c6:67:a2:fc:69:90:f0:cb:42:db:ef:14:fd:b0:47:7c: fe:6b:50:a1:02:89:94:64:86:9a:53:76:18:4d:6b:7d:ce:55: 3f:a0:d3:6d:ba:c5:b6:07:3e:87:f9:c2:2b:77:8a:61:e9:a3: b1:52:f5:71:21:56:ac:56:e0:3c:e4:f2:72:3f:dc:c1:45:58: 3b:85:71:fa:ad:78:0a:a7:1d:e5:f5:fa:d8:4c:67:a6:bf:2e: 1a:25:e6:e1:e0:a7:2c:4a:ed:ea:7d:50:11:ce:e2:99:4b:07: 8c:e0:bd:ad:84:61:9a:1a:b7:8b:9d:84:24:0b:00:99:98:a8: a9:fb:1f:13:ed:d5:40:69:07:fa:83:bb:02:6b:65:2f:8f:a5: 48:7f:6f:38:bf:ec:6a:a7:2b:14:16:19:64:52:6e:71:ae:ed: 1a:ae:fb:35:bf:ae:dc:49:7b:50:de:d1:92:1f:f5:5d:c6:8c: b3:6f:0a:a4:1c:18:f7:03:f8:3d:88:f5:71:a5:b6:bb:d5:bd: dd:78:27:d2:d0:eb:b3:0a:31:31:b2:5d:8b:52:f8:03:fa:00: d9:64:c7:17:f8:2d:86:fa:01:bf:eb:d7:49:df:1a:ee:44:b3: 74:93:23:65:8c:95:30:1b:be:a7:06:6c:a2:f0:4d:7e:d7:85: cf:c7:5a:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbHJkAa+Ws6YldCIzjolnSCiC9y0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWU5ZjFiYzQ4NGE1YjY5YjMzYmU5NzIzOWNmMzI4OTkz YjNhMjc5NTJhMDFkZTE4ZDlhYmZmNmI3NmJkYWY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO//MwymXSSpq2WOpHGD7tM74PBKjp/DtqTOgiwtqdEGgC O9T3RSdMaoGJo24bfh4LbrYjm+UyIWZ3MOpEdK7ZYLTyVaBgeFQ+OFH7N2gLvJGx Sic21wsZVe6DtQleJ41uhhG+0IMiJt/6jjY3zqziUWgK63Lboama2IcULDWX8Mlp 2H1nfZSOju83CyXWSGO+IdbT3Oim0PwOufkx2LrExYo84cov8+X91CDUXYTg95sg P7JqQ977/xkAA1Re6zv/7gSfowOJMkbCzEBazUf1uHlNYMG6iGSVpysdNz5I0ZFp HY/2lfF2eiOIJmuH8HPhClZ6bnfEfIxAmvqGR2E7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdDEfY82OSnxTaPAa2OgVu/WE9UgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkYzk4Nzc3LTZkM2ItNDhhNi1hYzJhLTEzMWQxZmQ2MjFjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZGg8AwDQYJKoZIhvcNAQELBQADggEBAL+Pxmei/GmQ8MtC2+8U/bBHfP5r UKECiZRkhppTdhhNa33OVT+g0226xbYHPof5wit3imHpo7FS9XEhVqxW4Dzk8nI/ 3MFFWDuFcfqteAqnHeX1+thMZ6a/Lhol5uHgpyxK7ep9UBHO4plLB4zgva2EYZoa t4udhCQLAJmYqKn7HxPt1UBpB/qDuwJrZS+PpUh/bzi/7GqnKxQWGWRSbnGu7Rqu +zW/rtxJe1De0ZIf9V3GjLNvCqQcGPcD+D2I9XGltrvVvd14J9LQ67MKMTGyXYtS +AP6ANlkxxf4LYb6Ab/r10nfGu5Es3STI2WMlTAbvqcGbKLwTX7Xhc/HWjA= -----END CERTIFICATE-----Generated at Thu May 9 01:26:12 2024 by rpki-client on console-ams.rpki-client.org