$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6595489f-598b-4c8b-9989-e5cec93894f3.roa File: 6595489f-598b-4c8b-9989-e5cec93894f3.roa (raw, json) Hash identifier: 0VYfXR7qcwzcvZC7/IO6Bl6SUNfHE9Givrmyxfjs4lI= Subject key identifier: C7:AA:0B:56:2B:06:FD:5A:5B:42:1A:40:AA:EF:C0:D6:59:91:91:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 073E8EB45579A3A6B062945896338AD626045632 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6595489f-598b-4c8b-9989-e5cec93894f3.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 168.241.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3e:8e:b4:55:79:a3:a6:b0:62:94:58:96:33:8a:d6:26:04:56:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=aa17dbddd5c63348edf9d3bbc646891964d16bfaba59c171b507d767eca89542, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b1:2e:3d:37:05:4d:12:52:26:95:e0:93:62: 90:2f:97:f4:2b:82:a6:b0:87:d4:ab:a4:f0:33:3a: 6e:c7:bc:bf:4a:8c:82:2d:aa:d7:ca:52:be:31:c7: 41:32:8a:cb:ca:40:69:f7:22:ed:d6:06:95:57:af: 92:91:93:89:6a:85:00:a2:39:6f:7d:4a:9c:3d:44: d4:84:86:77:d0:5b:ec:6b:f0:a6:e3:c2:94:7a:b8: 15:b7:ea:27:c4:46:b6:61:89:6d:e5:b6:05:41:ad: 9f:12:a8:89:93:5b:f2:da:3e:c1:de:c1:6c:96:58: 21:09:d1:9b:8b:2f:59:7b:80:e9:7a:4e:67:9d:4f: 1c:44:75:f6:d0:26:e5:d0:71:81:2b:ca:9b:e8:0f: 09:45:d9:f5:f2:6d:d9:b6:35:8e:9e:e2:8c:81:83: 23:5a:10:6b:41:a5:1c:05:4a:76:bb:e9:18:11:7b: ba:ba:8e:48:47:1a:49:05:35:ab:f0:db:3d:7d:cb: 62:d0:58:46:5c:37:cf:b1:80:50:09:00:8c:60:96: cd:85:77:63:d1:b7:c1:b4:7b:45:a3:c0:25:1a:69: 94:4a:9d:53:2e:54:71:52:fc:cd:c6:98:ea:f1:6b: c3:d7:0a:3a:d4:56:9c:4c:87:60:f9:3d:73:f7:88: b0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:AA:0B:56:2B:06:FD:5A:5B:42:1A:40:AA:EF:C0:D6:59:91:91:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6595489f-598b-4c8b-9989-e5cec93894f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.241.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9d:96:23:6b:a1:90:a0:f4:92:b4:27:04:e3:51:7e:6e:97:0e: 99:75:07:4a:fc:60:f6:57:37:00:50:2c:58:ce:e4:e5:71:0a: 43:60:e9:07:5c:75:1d:da:3a:f7:eb:59:5f:23:db:77:1e:55: 36:aa:61:1a:d4:c9:f6:68:77:8e:89:9b:4d:ed:5b:ac:d9:d8: b7:ee:72:e4:b7:b9:b1:68:d3:63:4f:e1:32:16:5f:ca:05:0a: 39:fd:0d:7e:ab:22:b3:38:02:e0:c7:90:bb:17:bb:c1:3a:f9: 4f:35:63:97:a2:61:f2:d8:39:d4:90:24:f5:b4:6d:59:bb:c4: 61:74:ec:62:74:5e:e8:e9:b5:b0:bf:98:6d:73:2e:43:8c:1e: 41:6b:74:c4:e2:76:91:77:ca:78:b1:15:ab:3d:06:78:e4:47: 28:eb:a2:a3:49:e7:05:f8:e1:78:06:ee:0e:b0:32:7c:f5:1b: ac:b7:d8:4c:e6:4a:93:b1:94:1b:3b:82:58:31:7d:0f:0f:9f: 82:9e:3b:f9:ae:60:75:38:60:eb:8b:9a:6d:2b:36:30:b7:7c: ba:7d:3d:7e:9d:a1:3c:10:72:87:e8:f8:2f:5e:94:f0:bf:79: 6d:d8:75:fe:01:21:cd:c5:4b:d4:78:6f:d8:1c:e3:e3:72:96: 2d:92:f3:62 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBz6OtFV5o6awYpRYljOK1iYEVjIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTE3ZGJkZGQ1YzYzMzQ4ZWRmOWQzYmJjNjQ2ODkxOTY0 ZDE2YmZhYmE1OWMxNzFiNTA3ZDc2N2VjYTg5NTQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3sS49NwVNElImleCTYpAvl/Qrgqawh9SrpPAzOm7HvL9K jIItqtfKUr4xx0EyisvKQGn3Iu3WBpVXr5KRk4lqhQCiOW99Spw9RNSEhnfQW+xr 8KbjwpR6uBW36ifERrZhiW3ltgVBrZ8SqImTW/LaPsHewWyWWCEJ0ZuLL1l7gOl6 TmedTxxEdfbQJuXQcYErypvoDwlF2fXybdm2NY6e4oyBgyNaEGtBpRwFSna76RgR e7q6jkhHGkkFNavw2z19y2LQWEZcN8+xgFAJAIxgls2Fd2PRt8G0e0WjwCUaaZRK nVMuVHFS/M3GmOrxa8PXCjrUVpxMh2D5PXP3iLBPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUx6oLVisG/VpbQhpAqu/A1lmRkSUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1OTU0ODlmLTU5OGItNGM4Yi05OTg5LWU1Y2VjOTM4OTRmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCo8TANBgkqhkiG9w0BAQsFAAOCAQEAnZYja6GQoPSStCcE41F+bpcOmXUH Svxg9lc3AFAsWM7k5XEKQ2DpB1x1Hdo69+tZXyPbdx5VNqphGtTJ9mh3jombTe1b rNnYt+5y5Le5sWjTY0/hMhZfygUKOf0NfqsiszgC4MeQuxe7wTr5TzVjl6Jh8tg5 1JAk9bRtWbvEYXTsYnRe6Om1sL+YbXMuQ4weQWt0xOJ2kXfKeLEVqz0GeORHKOui o0nnBfjheAbuDrAyfPUbrLfYTOZKk7GUGzuCWDF9Dw+fgp47+a5gdThg64uabSs2 MLd8un09fp2hPBByh+j4L16U8L95bdh1/gEhzcVL1Hhv2Bzj43KWLZLzYg== -----END CERTIFICATE-----Generated at Thu May 2 00:52:06 2024 by rpki-client on console-ams.rpki-client.org