$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ac1bae2-f52b-45fd-b119-470c899ff333.roa File: 5ac1bae2-f52b-45fd-b119-470c899ff333.roa (raw, json) Hash identifier: hAbn6FGq5TOinloPowAln/kWNp7DZ0YRiZTR0q1qQbg= Subject key identifier: 58:95:70:7F:F2:5E:98:01:D0:57:DB:43:6C:49:23:EF:C0:E1:6F:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B688CCE27D2472EE2387AE04D9AD7BC90EFC92F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ac1bae2-f52b-45fd-b119-470c899ff333.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.126.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:68:8c:ce:27:d2:47:2e:e2:38:7a:e0:4d:9a:d7:bc:90:ef:c9:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=e8b20424330e856772caf22a12da20857d6810e64e004d8fbe5e5cc56f989af5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bf:8f:50:64:14:d1:f3:38:05:2b:08:67:58: d8:e8:18:58:d1:eb:3c:65:25:83:bb:be:67:0d:e4: 49:00:b2:4f:3a:6f:1f:a3:7d:d5:71:75:b5:2a:e3: ec:dd:e9:59:7a:2f:97:12:4f:33:81:c2:c0:2b:0f: 37:62:a8:3e:03:90:d8:4c:c3:39:38:a3:49:68:a8: f3:4f:74:c7:26:65:f6:c6:fd:7b:62:b2:59:03:7d: 78:05:cb:0c:ff:e0:f0:a1:8a:a1:dc:52:3c:00:bb: 66:6b:74:e6:a1:9b:36:cd:80:e5:e7:94:85:54:93: 71:69:22:c8:27:54:dd:03:3e:56:2f:70:95:96:3b: 88:af:ca:e8:ce:c6:a2:6f:9c:c5:fe:8c:b7:3a:a3: a3:2c:44:44:4b:c7:05:0e:f5:fe:8a:d4:a8:c2:2a: 3a:aa:3d:25:65:c5:af:8b:30:04:10:9c:fd:95:fd: 4b:d2:9e:90:6e:b7:a4:3f:26:7b:c1:b0:4c:9c:2b: 0d:cd:f2:3d:b7:6f:1f:42:6a:f0:63:26:e3:e9:17: 8d:04:7b:dd:c0:8d:b6:56:4e:94:08:1c:1a:81:56: 1f:75:cb:e5:b4:ad:26:7e:b5:40:7b:42:f2:ef:e5: ef:28:bb:16:2b:14:a8:9e:db:cc:93:51:ac:97:13: b7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:95:70:7F:F2:5E:98:01:D0:57:DB:43:6C:49:23:EF:C0:E1:6F:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ac1bae2-f52b-45fd-b119-470c899ff333.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.126.0.0/16 Signature Algorithm: sha256WithRSAEncryption 67:44:e6:09:96:2e:3a:8d:89:90:aa:4f:b0:c5:bf:9c:0f:84: 7a:85:47:4e:7f:77:d9:81:7d:06:18:12:5c:cd:57:5c:d6:9a: 7f:93:f4:3d:7c:88:93:00:00:e3:66:64:9b:a3:05:55:b3:1a: 42:af:1f:f4:91:87:df:ac:86:a3:bf:56:3a:90:51:4d:b4:56: 51:50:8e:b1:21:7f:5a:0f:5c:9f:22:0e:af:bc:4e:91:bb:01: 78:de:d3:83:51:94:6a:a2:a4:72:dd:9e:ad:e1:2d:9f:dd:48: 3d:2c:4d:bf:fb:13:ea:fc:d3:5e:ee:14:49:af:29:ec:9b:4a: b9:7b:e5:f2:70:6a:00:b1:d2:aa:7c:a6:38:85:e9:93:ab:8c: 59:03:5d:fd:54:0e:bf:4e:dd:d5:f4:f1:3f:b7:f6:db:bf:c6: 80:c7:9f:2f:d7:77:e0:25:61:84:05:62:bb:8a:66:a3:68:f4: f9:4e:72:3b:44:0c:e7:73:b2:20:e0:e5:87:ea:ee:5c:5f:f8: 0b:ff:db:2b:7c:39:9f:3c:ad:06:98:76:34:f9:52:da:a7:a8: fd:8f:b7:90:72:ce:65:ef:2c:1a:52:7d:27:5f:cd:62:1e:f8: ca:be:68:f9:62:e3:77:82:36:f9:65:ff:63:67:5d:ff:70:75: 5e:57:f8:ff -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUa2iMzifSRy7iOHrgTZrXvJDvyS8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOGIyMDQyNDMzMGU4NTY3NzJjYWYyMmExMmRhMjA4NTdk NjgxMGU2NGUwMDRkOGZiZTVlNWNjNTZmOTg5YWY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5v49QZBTR8zgFKwhnWNjoGFjR6zxlJYO7vmcN5EkAsk86 bx+jfdVxdbUq4+zd6Vl6L5cSTzOBwsArDzdiqD4DkNhMwzk4o0loqPNPdMcmZfbG /XtislkDfXgFywz/4PChiqHcUjwAu2ZrdOahmzbNgOXnlIVUk3FpIsgnVN0DPlYv cJWWO4ivyujOxqJvnMX+jLc6o6MsRERLxwUO9f6K1KjCKjqqPSVlxa+LMAQQnP2V /UvSnpBut6Q/JnvBsEycKw3N8j23bx9CavBjJuPpF40Ee93AjbZWTpQIHBqBVh91 y+W0rSZ+tUB7QvLv5e8ouxYrFKie28yTUayXE7cDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWJVwf/JemAHQV9tDbEkj78Dhb/AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhYzFiYWUyLWY1MmItNDVmZC1iMTE5LTQ3MGM4OTlmZjMzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4fjANBgkqhkiG9w0BAQsFAAOCAQEAZ0TmCZYuOo2JkKpPsMW/nA+EeoVH Tn932YF9BhgSXM1XXNaaf5P0PXyIkwAA42Zkm6MFVbMaQq8f9JGH36yGo79WOpBR TbRWUVCOsSF/Wg9cnyIOr7xOkbsBeN7Tg1GUaqKkct2ereEtn91IPSxNv/sT6vzT Xu4USa8p7JtKuXvl8nBqALHSqnymOIXpk6uMWQNd/VQOv07d1fTxP7f227/GgMef L9d34CVhhAViu4pmo2j0+U5yO0QM53OyIODlh+ruXF/4C//bK3w5nzytBph2NPlS 2qeo/Y+3kHLOZe8sGlJ9J1/NYh74yr5o+WLjd4I2+WX/Y2dd/3B1Xlf4/w== -----END CERTIFICATE-----Generated at Wed Apr 24 15:49:00 2024 by rpki-client on console-ams.rpki-client.org