$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/611bb031-6f48-4c84-9cea-78b35ce0782a.roa File: 611bb031-6f48-4c84-9cea-78b35ce0782a.roa (raw, json) Hash identifier: q1TOqy3QdZ+quzlcWLwfC/4v8WnQojD3nGo3KBYSrec= Subject key identifier: 61:9A:02:C4:1C:6A:27:3F:A4:DA:EA:6B:5F:CE:FE:C2:89:9D:04:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A8962647BE7C1268F47B6A9E0B51C0D36AE9E6B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/611bb031-6f48-4c84-9cea-78b35ce0782a.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:89:62:64:7b:e7:c1:26:8f:47:b6:a9:e0:b5:1c:0d:36:ae:9e:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=7cd528d6849b438696cdd93a75df34777240ba47effd61b8804d421b93a52ef6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:57:c3:03:eb:04:47:75:a9:c6:4e:df:02:da: 3b:1e:7f:fe:e2:4a:cb:d0:dc:81:14:07:5c:4f:af: b7:a3:a9:4f:62:4d:5a:ca:3d:37:59:4f:17:52:7c: 89:21:7c:79:b6:39:0c:3e:99:1f:2c:3a:e4:eb:89: 1c:56:27:bd:0a:d9:90:78:66:d8:48:de:a9:81:51: 22:a1:f4:d5:75:fa:ed:9b:23:5f:01:4a:c4:c0:1b: 42:80:46:a5:1b:22:5f:90:af:66:e4:9f:9a:75:34: 89:20:91:dc:0b:db:d9:78:6c:f0:d8:5e:a2:94:7c: 3d:c1:2f:dc:b7:e1:0f:8d:65:95:c7:73:b0:4b:95: 2f:f9:a3:78:74:14:43:57:81:ac:c8:6c:94:ca:7b: 47:08:6e:f6:3f:be:22:14:16:56:f0:9e:1b:28:48: 29:55:74:7e:e0:b2:b1:3e:3d:04:3b:53:73:58:81: 07:c1:5f:35:f7:e5:81:6d:61:be:3e:1f:3f:32:f6: 5b:34:27:fe:10:e6:76:be:28:70:ef:81:08:8f:13: 6a:e6:e9:16:7e:39:9b:6d:91:b3:d6:da:92:ab:9a: 4b:37:d0:63:e8:02:1c:bb:3a:4b:ec:4a:8c:a6:1b: e9:8c:df:d3:2d:ca:42:62:43:70:72:32:67:86:14: 04:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9A:02:C4:1C:6A:27:3F:A4:DA:EA:6B:5F:CE:FE:C2:89:9D:04:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/611bb031-6f48-4c84-9cea-78b35ce0782a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7c:99:7c:38:e4:f6:16:ad:86:09:8f:8e:53:4a:08:96:ce:61: 2c:cf:97:20:2d:dc:41:1e:52:e0:cc:8d:b0:75:48:aa:97:f8: 0d:c9:b6:6a:1d:26:3b:fb:0a:1a:38:f9:87:dd:c4:4f:b6:59: 66:ee:1f:23:10:d7:eb:f4:29:29:f1:4f:29:6d:fb:4f:08:fc: 4a:c4:d9:ef:84:df:27:68:e0:53:e6:6c:c9:b5:2f:6e:0b:15: 2c:8f:1c:3f:da:38:8a:9b:ab:84:9e:74:c1:db:22:b6:98:f9: a1:6d:9d:40:5d:5c:ef:3e:47:ce:30:b1:03:da:6a:fc:f7:05: 83:95:bb:0a:68:d7:a2:7a:44:93:3a:5c:dc:35:a8:d8:a2:88: 40:fb:ad:bd:f5:ec:41:9d:26:22:ab:b1:6f:ee:33:f6:fa:47: e7:4c:9c:0b:75:f8:79:08:b8:60:17:33:6c:c0:ed:2e:06:81: f0:c5:58:c4:f9:0a:4e:d7:1a:6f:6b:fb:75:a1:3e:1d:7f:33: b7:77:a8:0a:37:dc:2c:55:50:60:83:57:5f:05:44:4b:07:9a: 5c:ae:65:8d:a5:46:df:44:15:cb:31:5c:37:14:4b:40:9c:f4: 0f:7a:8a:4c:dc:0f:cc:08:f8:e7:d1:e6:91:1a:8c:e8:9f:cf: 09:c1:9f:2e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOoliZHvnwSaPR7ap4LUcDTaunmswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3Y2Q1MjhkNjg0OWI0Mzg2OTZjZGQ5M2E3NWRmMzQ3Nzcy NDBiYTQ3ZWZmZDYxYjg4MDRkNDIxYjkzYTUyZWY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYV8MD6wRHdanGTt8C2jsef/7iSsvQ3IEUB1xPr7ejqU9i TVrKPTdZTxdSfIkhfHm2OQw+mR8sOuTriRxWJ70K2ZB4ZthI3qmBUSKh9NV1+u2b I18BSsTAG0KARqUbIl+Qr2bkn5p1NIkgkdwL29l4bPDYXqKUfD3BL9y34Q+NZZXH c7BLlS/5o3h0FENXgazIbJTKe0cIbvY/viIUFlbwnhsoSClVdH7gsrE+PQQ7U3NY gQfBXzX35YFtYb4+Hz8y9ls0J/4Q5na+KHDvgQiPE2rm6RZ+OZttkbPW2pKrmks3 0GPoAhy7OkvsSoymG+mM39MtykJiQ3ByMmeGFATjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYZoCxBxqJz+k2uprX87+womdBMMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxMWJiMDMxLTZmNDgtNGM4NC05Y2VhLTc4YjM1Y2UwNzgyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQpjANBgkqhkiG9w0BAQsFAAOCAQEAfJl8OOT2Fq2GCY+OU0oIls5hLM+X IC3cQR5S4MyNsHVIqpf4Dcm2ah0mO/sKGjj5h93ET7ZZZu4fIxDX6/QpKfFPKW37 Twj8SsTZ74TfJ2jgU+ZsybUvbgsVLI8cP9o4ipurhJ50wdsitpj5oW2dQF1c7z5H zjCxA9pq/PcFg5W7CmjXonpEkzpc3DWo2KKIQPutvfXsQZ0mIquxb+4z9vpH50yc C3X4eQi4YBczbMDtLgaB8MVYxPkKTtcab2v7daE+HX8zt3eoCjfcLFVQYINXXwVE SweaXK5ljaVG30QVyzFcNxRLQJz0D3qKTNwPzAj459HmkRqM6J/PCcGfLg== -----END CERTIFICATE-----Generated at Thu May 9 01:26:14 2024 by rpki-client on console-ams.rpki-client.org