$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa File: 5238a6c5-a106-4b94-9f46-2c619db863c6.roa (raw, json) Hash identifier: qaGLG7JIx7+wBXqFeJQQfoBr9YRiARh+3YfGHMubfNo= Subject key identifier: 2D:32:12:DA:42:FC:32:91:AD:84:B9:EB:27:0F:D6:35:53:6D:ED:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25638034C2FBB9611FDCB72F1369EDA3E07D9AED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 107.150.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:63:80:34:c2:fb:b9:61:1f:dc:b7:2f:13:69:ed:a3:e0:7d:9a:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=a09aca533e82895f1991be7e7431dbc8cdfcb13eec1c5e643bfb9cf7db2c9f3e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b9:d6:d3:20:02:bb:39:c4:af:42:dd:d1:34: 51:e2:2f:c0:2e:46:81:26:3f:fb:f1:6e:8a:ba:ed: a8:14:57:39:be:a4:bd:d6:b2:0f:33:31:a2:62:75: a8:14:f1:27:45:90:a3:f8:cb:cf:98:b7:04:d1:60: 10:0c:7b:b9:f4:c2:a3:0a:43:dd:64:5d:93:b8:dc: 0d:a7:10:e4:13:13:45:f9:e6:0b:63:fd:ce:82:ed: ef:87:3b:76:97:e5:b9:f7:e2:3a:78:90:4d:40:0c: 1d:7c:2f:8f:99:d5:99:b3:46:ea:be:b6:7a:8c:fc: 10:78:3e:73:48:17:00:2b:50:ae:c6:5b:c3:06:f0: cf:5f:2f:f1:c4:53:6b:91:11:32:8d:f0:7d:45:d6: 1c:62:68:0a:58:70:72:62:10:4a:78:13:a6:08:74: 4d:87:a0:e5:d3:3f:01:ad:85:23:68:99:f2:d6:ff: 11:04:f7:03:61:44:b5:fb:92:00:f1:6b:d5:8a:bd: 98:0b:a0:1d:f3:56:37:45:95:20:47:21:60:f0:d2: 2a:38:9d:7e:24:7e:cc:11:5b:7e:18:ec:2d:0e:b7: 38:44:2e:f0:9f:7b:4f:1e:97:5a:1b:eb:e6:e6:3c: e9:97:2c:3f:b4:a6:be:72:ad:ae:80:19:dd:ea:a8: f2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:32:12:DA:42:FC:32:91:AD:84:B9:EB:27:0F:D6:35:53:6D:ED:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.150.192.0/19 Signature Algorithm: sha256WithRSAEncryption 37:82:c7:4a:7b:09:e6:4d:ec:a5:a2:76:4b:89:7d:71:b0:51: d7:42:f8:c4:8b:8c:5d:3f:c1:fd:e6:bf:71:79:eb:8a:f9:e0: 70:2b:3b:4d:1f:c2:dc:a1:b5:97:ca:4f:89:68:6c:ce:3e:4a: aa:c7:e3:50:78:aa:ec:0d:d2:7c:83:b4:2d:b1:dc:9c:fd:12: 6e:18:2b:5e:65:15:9c:86:3b:ae:a7:41:74:82:05:53:eb:8f: c6:cd:29:2b:5f:db:43:e9:b3:0c:b2:9d:19:d4:b4:2c:b7:3f: 63:65:e2:9c:d9:c5:96:3f:cf:28:6b:46:1e:64:66:0c:b1:ed: a0:ce:b2:78:df:35:36:b0:fd:b2:1a:dc:f5:be:3f:9c:c7:dc: 20:42:16:7d:8c:dd:f6:ac:fb:56:5e:63:bd:60:3e:34:e4:a3: c0:d7:6b:cb:35:a5:3e:97:34:5d:2e:7d:44:21:bb:2b:c2:56: 5f:6b:c2:b7:da:25:8b:b9:d7:3b:f0:f2:13:5c:0f:32:59:d3: 8e:b4:e2:c8:ba:1d:bd:2b:63:d6:af:7b:07:11:58:14:ae:e7: c1:2f:4d:32:92:45:a3:43:27:85:de:0a:da:50:3c:d7:33:96: 70:b0:d6:9f:b7:49:a5:aa:cf:05:6a:85:c0:05:06:3a:74:e8: 8f:85:a0:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJWOANML7uWEf3LcvE2nto+B9mu0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEwMDAwMDAwWhcNMjQwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDlhY2E1MzNlODI4OTVmMTk5MWJlN2U3NDMxZGJjOGNk ZmNiMTNlZWMxYzVlNjQzYmZiOWNmN2RiMmM5ZjNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqudbTIAK7OcSvQt3RNFHiL8AuRoEmP/vxboq67agUVzm+ pL3Wsg8zMaJidagU8SdFkKP4y8+YtwTRYBAMe7n0wqMKQ91kXZO43A2nEOQTE0X5 5gtj/c6C7e+HO3aX5bn34jp4kE1ADB18L4+Z1ZmzRuq+tnqM/BB4PnNIFwArUK7G W8MG8M9fL/HEU2uRETKN8H1F1hxiaApYcHJiEEp4E6YIdE2HoOXTPwGthSNomfLW /xEE9wNhRLX7kgDxa9WKvZgLoB3zVjdFlSBHIWDw0io4nX4kfswRW34Y7C0OtzhE LvCfe08el1ob6+bmPOmXLD+0pr5yra6AGd3qqPLdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULTIS2kL8MpGthLnrJw/WNVNt7eYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyMzhhNmM1LWExMDYtNGI5NC05ZjQ2LTJjNjE5ZGI4NjNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrlsAwDQYJKoZIhvcNAQELBQADggEBADeCx0p7CeZN7KWidkuJfXGwUddC +MSLjF0/wf3mv3F564r54HArO00fwtyhtZfKT4lobM4+SqrH41B4quwN0nyDtC2x 3Jz9Em4YK15lFZyGO66nQXSCBVPrj8bNKStf20PpswyynRnUtCy3P2Nl4pzZxZY/ zyhrRh5kZgyx7aDOsnjfNTaw/bIa3PW+P5zH3CBCFn2M3fas+1ZeY71gPjTko8DX a8s1pT6XNF0ufUQhuyvCVl9rwrfaJYu51zvw8hNcDzJZ04604si6Hb0rY9avewcR WBSu58EvTTKSRaNDJ4XeCtpQPNczlnCw1p+3SaWqzwVqhcAFBjp06I+FoJI= -----END CERTIFICATE-----Generated at Wed Apr 24 15:49:00 2024 by rpki-client on console-ams.rpki-client.org