$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa File: 53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa (raw, json) Hash identifier: UFoGc9YWe8SGLI0lmsF5fhicly/BYlczr/eJ0qTzXKU= Subject key identifier: 03:4D:FF:4C:CB:95:A8:63:52:5E:C1:96:A7:69:F2:A7:C4:FB:20:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05049570170D907C0ADC02DFA4BCF82EA77E72A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa Signing time: Tue 27 Aug 2024 00:00:00 +0000 ROA not before: Tue 27 Aug 2024 00:00:00 +0000 ROA not after: Tue 01 Oct 2024 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Sep 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:04:95:70:17:0d:90:7c:0a:dc:02:df:a4:bc:f8:2e:a7:7e:72:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 27 00:00:00 2024 GMT Not After : Oct 1 23:59:59 2024 GMT Subject: serialNumber=fb43123cee200e2f11f04fbc28b8705c6790a2347339ab7a1828c5314cab3daf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:62:94:a8:a6:a7:d7:c3:07:cc:7b:fd:6b:b2: 4b:5f:76:e2:da:4a:b2:51:54:a6:03:cf:d0:75:52: 5d:af:19:92:59:47:42:b3:ed:12:c9:83:ee:6e:97: 4c:d7:1c:77:ff:0d:29:c9:49:aa:d2:38:d5:d3:dc: 1e:47:f3:f5:0f:5f:f0:89:77:27:60:c8:60:82:be: a2:a1:26:c9:be:47:d3:4a:1c:7d:87:60:90:8d:28: 32:04:d8:9f:a0:5c:8a:de:a0:d5:bf:08:21:51:d2: a6:d3:d2:78:09:09:55:58:f7:c0:aa:c4:44:3e:3f: 8c:63:7f:f2:c4:5e:89:dd:8e:85:14:6f:7c:1a:40: 0e:4a:fd:32:e9:31:6e:04:ba:25:be:37:7c:fc:29: af:fd:33:e6:81:b6:ca:5c:25:05:32:fe:42:77:f9: ff:9e:c1:60:00:15:ed:75:a7:84:d3:cb:44:65:93: 23:36:14:6f:70:9a:9d:7b:4f:22:58:b6:9e:dc:00: 3d:27:78:c4:c6:0d:8a:14:8c:44:9c:74:80:bc:b6: d6:06:d7:6e:50:ae:3a:5c:a8:bd:c2:d5:7b:a7:39: b3:7c:b0:ca:08:8b:1d:62:e3:8b:ea:fa:a3:b7:7c: 18:22:66:2d:e2:ca:9c:10:4a:9d:68:1f:da:f4:2c: b2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4D:FF:4C:CB:95:A8:63:52:5E:C1:96:A7:69:F2:A7:C4:FB:20:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.20.0/24 Signature Algorithm: sha256WithRSAEncryption 89:46:1f:5a:f6:0a:67:d9:83:9d:a1:47:81:c6:2b:7c:5f:5c: 4a:96:8e:5e:eb:c8:7f:96:2a:a1:64:43:ec:af:7e:a6:07:d0: d9:54:6c:fe:cd:9c:7b:fb:27:29:87:9c:3d:91:11:b8:01:e2: 73:be:83:cc:45:ca:ac:48:8a:d2:4e:12:38:ae:21:72:e7:65: 57:64:fc:b5:d6:80:38:a2:fc:77:bc:8f:7b:02:5f:3f:7a:ec: ef:bf:3d:74:29:f6:00:2d:e8:9e:69:8c:91:e9:8b:e2:f2:f2: f7:d7:ef:1b:10:0e:2e:75:47:5f:c2:ed:ca:b2:ee:f1:04:12: 9e:45:ca:6b:75:44:01:1a:c0:26:41:e6:5c:c3:f2:3d:9a:6e: f7:1a:ab:75:60:25:1d:c6:df:b0:82:b8:93:b9:be:ef:c3:5e: a4:f6:67:9b:21:f8:b4:b0:e7:9a:fc:52:41:db:6b:98:54:09: 67:27:2b:9a:4e:59:75:a9:9e:bc:c6:8e:b7:09:78:e2:a9:4f: 0d:b3:15:a4:ab:b1:cc:dc:8d:ea:d8:02:a6:60:99:fa:a0:0e: a5:a3:2f:cc:a6:f7:56:0a:08:78:75:d9:cd:78:89:f2:86:af: 94:a6:b4:d3:95:b5:43:f8:4b:de:49:13:12:62:fe:c8:21:0e: cb:b5:9b:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBQSVcBcNkHwK3ALfpLz4Lqd+cqEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwODI3MDAwMDAwWhcNMjQxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjQzMTIzY2VlMjAwZTJmMTFmMDRmYmMyOGI4NzA1YzY3 OTBhMjM0NzMzOWFiN2ExODI4YzUzMTRjYWIzZGFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJYpSopqfXwwfMe/1rsktfduLaSrJRVKYDz9B1Ul2vGZJZ R0Kz7RLJg+5ul0zXHHf/DSnJSarSONXT3B5H8/UPX/CJdydgyGCCvqKhJsm+R9NK HH2HYJCNKDIE2J+gXIreoNW/CCFR0qbT0ngJCVVY98CqxEQ+P4xjf/LEXondjoUU b3waQA5K/TLpMW4EuiW+N3z8Ka/9M+aBtspcJQUy/kJ3+f+ewWAAFe11p4TTy0Rl kyM2FG9wmp17TyJYtp7cAD0neMTGDYoUjEScdIC8ttYG125QrjpcqL3C1XunObN8 sMoIix1i44vq+qO3fBgiZi3iypwQSp1oH9r0LLK9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUA03/TMuVqGNSXsGWp2nyp8T7IOEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzZTBjYWZkLTBkZTYtNDhiOC1iZDQzLWY4MWJkNDRmNmZjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACXlBQwDQYJKoZIhvcNAQELBQADggEBAIlGH1r2CmfZg52hR4HGK3xfXEqW jl7ryH+WKqFkQ+yvfqYH0NlUbP7NnHv7JymHnD2REbgB4nO+g8xFyqxIitJOEjiu IXLnZVdk/LXWgDii/He8j3sCXz967O+/PXQp9gAt6J5pjJHpi+Ly8vfX7xsQDi51 R1/C7cqy7vEEEp5Fymt1RAEawCZB5lzD8j2abvcaq3VgJR3G37CCuJO5vu/DXqT2 Z5sh+LSw55r8UkHba5hUCWcnK5pOWXWpnrzGjrcJeOKpTw2zFaSrsczcjerYAqZg mfqgDqWjL8ym91YKCHh12c14ifKGr5SmtNOVtUP4S95JExJi/sghDsu1m8w= -----END CERTIFICATE-----Generated at Sat Sep 7 01:39:15 2024 by rpki-client on console-ams.rpki-client.org