$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65258b34-5141-4495-8461-b0210b9b4965.roa File: 65258b34-5141-4495-8461-b0210b9b4965.roa (raw, json) Hash identifier: vy3LKBVkEup/gbyIK+vXyXHnm+U6UeR4lLPBpTzUaxg= Subject key identifier: 67:AB:C6:A4:DF:A8:E2:7C:3F:2B:08:EF:D4:0B:C3:FE:C8:66:23:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 13B04AADE1FB6313FF5E267194569B6B98BFFF19 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65258b34-5141-4495-8461-b0210b9b4965.roa Signing time: Sat 13 Apr 2024 00:00:00 +0000 ROA not before: Sat 13 Apr 2024 00:00:00 +0000 ROA not after: Sat 18 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.164.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:b0:4a:ad:e1:fb:63:13:ff:5e:26:71:94:56:9b:6b:98:bf:ff:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 13 00:00:00 2024 GMT Not After : May 18 23:59:59 2024 GMT Subject: serialNumber=d1b5c428cc9935fc06b4e47804977ac1788e2a4ac15acc757ea8a369d0d424ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:21:bc:9a:dc:01:69:30:8b:d5:1a:7e:6f:0f: 7c:4b:07:76:e2:ed:8a:ab:1b:f2:a0:91:8b:84:d5: 54:2f:33:68:b9:77:83:d9:ad:bd:43:0a:37:fa:84: 95:92:f9:cd:fd:fa:3e:6f:e7:94:d8:5f:59:f6:78: 93:e8:30:0f:81:81:d7:6f:97:40:c3:58:ad:29:e2: cb:99:d2:0f:e1:3d:ac:6e:5c:fd:39:dd:f4:b3:2e: 3a:cc:8f:e0:cc:16:19:10:75:48:cb:c3:78:00:5c: 38:0c:3c:96:91:3d:fa:35:1f:74:6e:d2:52:bf:51: 2b:f9:02:3c:1a:c4:6b:8a:5b:03:b3:3a:47:e9:e8: 77:6d:2a:e4:6f:0e:52:04:95:89:e7:a9:eb:f1:54: 0d:b5:79:36:7b:21:61:a3:ba:e1:81:2d:f3:3e:d9: 03:1e:8c:e3:c1:79:75:97:d5:40:e3:39:48:b9:f1: 39:f1:47:6c:23:ec:51:9e:c2:1a:7a:4d:16:66:54: 88:0b:dc:ea:43:f9:a9:c2:eb:3a:0e:34:85:9a:62: c7:59:74:23:e7:37:49:82:d4:66:c8:5a:2c:4e:01: 19:fa:6b:67:c3:12:9a:24:38:de:f8:aa:35:e5:8c: c9:e8:b7:f8:44:f2:72:96:46:72:33:9b:4a:05:30: da:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AB:C6:A4:DF:A8:E2:7C:3F:2B:08:EF:D4:0B:C3:FE:C8:66:23:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65258b34-5141-4495-8461-b0210b9b4965.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.164.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:61:46:1c:d1:2b:b2:c8:7d:a8:96:ba:90:6a:42:58:f1:4c: d0:6f:d8:03:de:dd:06:fc:fa:3e:e0:62:8f:ab:c0:15:b1:d2: d4:74:eb:43:f3:94:17:db:d8:b2:ef:85:5c:be:9b:3c:14:e5: 5b:68:3c:9c:d0:03:41:e8:9f:fd:bc:7c:2a:39:8b:9b:a4:8c: f7:77:86:5b:d3:c2:f5:e2:a7:db:44:0f:a0:5e:0b:04:4e:68: 58:0e:be:8d:00:77:f0:83:d3:c6:3f:a3:41:f8:fe:fb:57:f5: 0e:06:ed:19:03:11:01:d2:a3:f5:7c:c0:88:42:aa:ab:f0:0f: b2:e0:5e:6f:0e:26:68:aa:89:a4:ea:c7:41:87:7c:ea:ba:bf: da:34:90:6f:82:46:f4:97:84:a5:79:e4:ba:38:f5:99:35:11: 2c:79:5f:e1:40:80:3b:27:46:b5:bb:fa:9a:72:b6:9e:1e:30: e4:77:4d:e2:ea:64:a3:e7:15:a6:95:de:f9:4f:8f:36:e5:81: b0:e3:74:63:c7:2c:8c:6f:38:f5:ef:19:65:ca:e6:4e:d8:09: 7b:23:c5:e6:b3:4f:b7:d9:ca:2c:f3:4b:09:9a:ec:bd:27:03: c7:21:b9:63:c3:d7:16:9e:a0:fb:b5:ab:e5:8d:c3:64:0e:7e: 84:f6:fb:46 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUE7BKreH7YxP/XiZxlFaba5i//xkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEzMDAwMDAwWhcNMjQwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWI1YzQyOGNjOTkzNWZjMDZiNGU0NzgwNDk3N2FjMTc4 OGUyYTRhYzE1YWNjNzU3ZWE4YTM2OWQwZDQyNGNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnIbya3AFpMIvVGn5vD3xLB3bi7YqrG/KgkYuE1VQvM2i5 d4PZrb1DCjf6hJWS+c39+j5v55TYX1n2eJPoMA+Bgddvl0DDWK0p4suZ0g/hPaxu XP053fSzLjrMj+DMFhkQdUjLw3gAXDgMPJaRPfo1H3Ru0lK/USv5AjwaxGuKWwOz Okfp6HdtKuRvDlIElYnnqevxVA21eTZ7IWGjuuGBLfM+2QMejOPBeXWX1UDjOUi5 8TnxR2wj7FGewhp6TRZmVIgL3OpD+anC6zoONIWaYsdZdCPnN0mC1GbIWixOARn6 a2fDEpokON74qjXljMnot/hE8nKWRnIzm0oFMNrZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZ6vGpN+o4nw/Kwjv1AvD/shmI08wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1MjU4YjM0LTUxNDEtNDQ5NS04NDYxLWIwMjEwYjliNDk2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4pDANBgkqhkiG9w0BAQsFAAOCAQEAqmFGHNErssh9qJa6kGpCWPFM0G/Y A97dBvz6PuBij6vAFbHS1HTrQ/OUF9vYsu+FXL6bPBTlW2g8nNADQeif/bx8KjmL m6SM93eGW9PC9eKn20QPoF4LBE5oWA6+jQB38IPTxj+jQfj++1f1DgbtGQMRAdKj 9XzAiEKqq/APsuBebw4maKqJpOrHQYd86rq/2jSQb4JG9JeEpXnkujj1mTURLHlf 4UCAOydGtbv6mnK2nh4w5HdN4upko+cVppXe+U+PNuWBsON0Y8csjG849e8ZZcrm TtgJeyPF5rNPt9nKLPNLCZrsvScDxyG5Y8PXFp6g+7Wr5Y3DZA5+hPb7Rg== -----END CERTIFICATE-----Generated at Wed May 1 20:47:58 2024 by rpki-client on console-ams.rpki-client.org