$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54e42db5-0b5b-478b-82ca-813f1638abd2.roa File: 54e42db5-0b5b-478b-82ca-813f1638abd2.roa (raw, json) Hash identifier: 4JVSa9rW2le2uD8Bn9wZpRrYNzCumHqMx8CUE9WNabE= Subject key identifier: B7:32:69:1E:4E:F3:CB:73:B3:0F:6D:AA:F9:30:84:16:4D:42:87:26 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 320E127D68C040226A3028E662650B3395048C74 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54e42db5-0b5b-478b-82ca-813f1638abd2.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 65.176.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:0e:12:7d:68:c0:40:22:6a:30:28:e6:62:65:0b:33:95:04:8c:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=18c28fd4f7452d8f802c38a2efa1d3369151751a481c206b164e7dcd763087b4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:c8:d0:4f:25:fc:67:5d:ee:82:f9:e6:01:c3: 9b:62:2d:42:47:9a:65:6f:7a:fc:ad:73:d8:3a:62: f8:7e:4b:a6:9c:b4:f5:18:e7:92:ac:60:71:04:7d: ba:29:43:87:fe:03:e7:7d:1d:60:92:82:81:9f:02: 22:b3:05:05:9c:f6:38:99:82:64:31:99:df:03:65: 21:d5:c2:d3:73:a2:43:c3:4d:db:50:ad:05:59:04: 2d:4c:1a:50:74:d0:a0:f3:6e:2d:93:75:76:4e:a6: 4d:45:36:7a:08:5a:aa:99:a3:6a:4f:af:18:ec:38: 34:3f:f2:75:1a:4b:13:5b:c7:32:c0:81:16:de:31: b8:5e:8c:2a:9e:5c:2c:03:cc:16:a5:ad:c3:f6:9f: e2:41:70:78:fc:0e:40:7a:1f:cf:ca:85:69:f7:47: d7:74:7b:92:71:b2:8d:61:42:22:9e:36:9f:19:64: b1:67:84:6b:0a:b3:59:1a:f8:aa:af:f3:63:71:14: 99:cc:c0:8e:09:d1:01:10:ca:d4:82:01:f9:53:0a: 9e:58:78:58:3d:81:04:00:90:84:aa:49:a4:a6:78: 88:34:3f:8c:6b:ab:b1:03:9a:74:1c:30:1e:95:14: e0:e1:94:60:7d:54:c0:ca:de:1d:a2:04:c5:83:82: f1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:32:69:1E:4E:F3:CB:73:B3:0F:6D:AA:F9:30:84:16:4D:42:87:26 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54e42db5-0b5b-478b-82ca-813f1638abd2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.176.0.0/14 Signature Algorithm: sha256WithRSAEncryption 8e:85:0d:53:52:83:47:53:27:43:0a:e2:ed:e8:88:7b:93:58: a1:fc:46:e7:9a:ad:3f:19:c8:f2:ed:34:b0:83:a6:b6:c6:2c: 60:6a:c6:f3:ed:99:1e:70:29:a6:8e:cb:77:5e:a6:03:ca:1f: f6:84:c9:67:b8:0e:33:5d:7e:4e:82:c8:c4:ad:70:cd:1a:41: dc:15:0b:b0:db:b3:58:12:49:7e:58:50:28:3e:80:03:b6:42: 11:e4:1c:9e:4e:62:4a:78:a2:43:66:43:1a:5a:7f:65:6d:01: 57:ae:0e:0f:0f:26:81:b7:9e:5d:75:2f:53:c2:7a:c4:dc:e8: b9:43:b5:fc:76:c4:c7:2c:38:f0:03:a5:b3:2b:ad:45:ef:4b: a0:73:46:b0:60:15:71:de:fe:e1:8d:3e:73:14:e0:2a:3e:45: ed:f3:d4:6d:1f:d7:37:1d:24:f1:5a:9e:30:4c:1d:1c:2a:ca: ac:12:e0:ed:99:4c:b1:b8:f9:24:bf:79:c6:1c:b1:ca:61:88: a4:ca:65:78:10:8d:7b:4d:eb:bf:83:d5:7f:af:ad:40:c2:34: a9:b8:fb:65:f3:e4:f4:91:14:92:8a:e7:09:00:b7:90:72:c5: 87:f5:94:21:a5:54:98:65:3e:be:8b:b0:3e:53:f8:69:4a:e7: e3:b9:78:c6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMg4SfWjAQCJqMCjmYmULM5UEjHQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGMyOGZkNGY3NDUyZDhmODAyYzM4YTJlZmExZDMzNjkx NTE3NTFhNDgxYzIwNmIxNjRlN2RjZDc2MzA4N2I0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1yNBPJfxnXe6C+eYBw5tiLUJHmmVvevytc9g6Yvh+S6ac tPUY55KsYHEEfbopQ4f+A+d9HWCSgoGfAiKzBQWc9jiZgmQxmd8DZSHVwtNzokPD TdtQrQVZBC1MGlB00KDzbi2TdXZOpk1FNnoIWqqZo2pPrxjsODQ/8nUaSxNbxzLA gRbeMbhejCqeXCwDzBalrcP2n+JBcHj8DkB6H8/KhWn3R9d0e5Jxso1hQiKeNp8Z ZLFnhGsKs1ka+Kqv82NxFJnMwI4J0QEQytSCAflTCp5YeFg9gQQAkISqSaSmeIg0 P4xrq7EDmnQcMB6VFODhlGB9VMDK3h2iBMWDgvGzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtzJpHk7zy3OzD22q+TCEFk1ChyYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZTQyZGI1LTBiNWItNDc4Yi04MmNhLTgxM2YxNjM4YWJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJBsDANBgkqhkiG9w0BAQsFAAOCAQEAjoUNU1KDR1MnQwri7eiIe5NYofxG 55qtPxnI8u00sIOmtsYsYGrG8+2ZHnAppo7Ld16mA8of9oTJZ7gOM11+ToLIxK1w zRpB3BULsNuzWBJJflhQKD6AA7ZCEeQcnk5iSniiQ2ZDGlp/ZW0BV64ODw8mgbee XXUvU8J6xNzouUO1/HbExyw48AOlsyutRe9LoHNGsGAVcd7+4Y0+cxTgKj5F7fPU bR/XNx0k8VqeMEwdHCrKrBLg7ZlMsbj5JL95xhyxymGIpMpleBCNe03rv4PVf6+t QMI0qbj7ZfPk9JEUkornCQC3kHLFh/WUIaVUmGU+vouwPlP4aUrn47l4xg== -----END CERTIFICATE-----Generated at Wed Apr 24 15:49:00 2024 by rpki-client on console-ams.rpki-client.org