$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68c4982b-424f-4758-ab4b-70c50ea9d85b.roa File: 68c4982b-424f-4758-ab4b-70c50ea9d85b.roa (raw, json) Hash identifier: XU7WPUP0OElcEkJFe5Biemq/lN5GMi9UpvvihLcQnZw= Subject key identifier: 86:95:F0:C9:F2:2E:76:D2:79:64:05:F4:F8:8E:C2:11:AA:39:2F:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30669C50721D8398D15F9E94C5C468E9F68C4BBB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68c4982b-424f-4758-ab4b-70c50ea9d85b.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 32.184.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:66:9c:50:72:1d:83:98:d1:5f:9e:94:c5:c4:68:e9:f6:8c:4b:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=ee58d9bb701ee6dfaf76589fc178c9a8f3b61fa7b19ccaf57d4fb406255a4267, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:32:2e:99:43:d6:c5:6b:56:a9:3e:bc:63:f3: 01:c3:8f:68:3e:60:9d:53:bb:f5:79:62:90:b1:62: 18:b7:8f:46:9a:78:f6:ad:32:02:af:c4:d1:f7:37: 94:34:44:3e:85:f0:31:57:83:68:38:2d:6a:5d:c3: 91:7a:ee:02:61:f6:e8:4d:17:60:d1:27:25:c8:5b: 4d:16:39:58:ab:97:3e:ae:c0:16:fc:39:a4:e3:cb: 6a:22:78:e4:14:74:01:8c:4d:15:1d:3d:18:72:fd: dc:f5:78:bf:7a:15:ff:38:fb:39:52:ef:b6:af:80: 59:5b:46:78:71:08:32:de:0c:bd:a6:cb:90:aa:3f: ba:02:a7:22:af:0d:11:3e:1d:14:00:9e:34:5a:42: 55:16:75:f0:29:1e:07:fb:7d:66:1b:73:8c:95:e3: 4e:54:de:b0:11:c7:76:00:02:cb:15:74:3b:76:8f: c5:9e:b7:8c:5f:5e:13:af:93:5e:3f:71:3f:f9:e2: 5f:99:f3:79:49:29:df:eb:28:e0:94:98:9d:24:cb: b5:da:0b:0b:24:bc:0f:ab:24:35:4c:c7:59:6a:5a: 6f:48:ec:0a:44:fb:6e:07:b3:64:a4:10:41:4b:86: a0:df:17:ef:d5:3a:e4:35:d3:3e:ae:f2:ee:73:d3: ba:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:95:F0:C9:F2:2E:76:D2:79:64:05:F4:F8:8E:C2:11:AA:39:2F:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68c4982b-424f-4758-ab4b-70c50ea9d85b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.184.0.0/13 Signature Algorithm: sha256WithRSAEncryption 61:96:dd:66:3c:38:c4:3e:38:51:9b:95:23:e0:0b:5e:82:c6: 7f:14:38:14:c3:8c:ee:ea:63:1b:de:6a:7f:75:4c:58:68:91: cf:21:95:b4:9d:c6:dc:16:4b:4d:08:af:3d:ee:5e:fb:1d:f4: 65:2d:47:4c:46:08:90:ff:95:b5:f5:4d:7f:e0:d5:f9:62:aa: 80:bc:77:f8:db:5c:cf:13:13:a9:8f:1f:c4:29:d0:af:c0:8a: 5f:bf:fa:88:87:a3:a0:e7:c8:04:74:f9:62:f6:f1:06:65:1b: 5e:12:c4:e3:ef:88:3e:eb:bb:02:5b:3e:6c:2a:fa:8e:f7:cf: d8:cd:0e:e8:dd:38:cd:9a:50:5f:cc:81:fb:12:fc:14:a2:07: b0:6f:14:f6:06:86:dc:01:f9:41:80:d9:03:84:74:7f:e7:55: de:dd:68:6c:6c:4b:55:25:5d:8d:d1:00:16:df:c3:1f:d6:95: e0:90:1e:8b:79:08:24:ce:06:da:4f:0e:2a:c2:96:3e:dd:ce: 76:42:af:72:bd:26:fb:23:d5:ef:cb:1b:f8:d5:2e:4e:2d:c0: 27:60:6a:b8:e2:d1:03:eb:2a:22:eb:0a:47:ce:16:5f:30:39: 2a:69:48:65:0f:d7:07:b5:29:f3:14:13:12:d4:06:3d:74:48: a7:fb:9e:e6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMGacUHIdg5jRX56UxcRo6faMS7swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTU4ZDliYjcwMWVlNmRmYWY3NjU4OWZjMTc4YzlhOGYz YjYxZmE3YjE5Y2NhZjU3ZDRmYjQwNjI1NWE0MjY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLMi6ZQ9bFa1apPrxj8wHDj2g+YJ1Tu/V5YpCxYhi3j0aa ePatMgKvxNH3N5Q0RD6F8DFXg2g4LWpdw5F67gJh9uhNF2DRJyXIW00WOVirlz6u wBb8OaTjy2oieOQUdAGMTRUdPRhy/dz1eL96Ff84+zlS77avgFlbRnhxCDLeDL2m y5CqP7oCpyKvDRE+HRQAnjRaQlUWdfApHgf7fWYbc4yV405U3rARx3YAAssVdDt2 j8Wet4xfXhOvk14/cT/54l+Z83lJKd/rKOCUmJ0ky7XaCwskvA+rJDVMx1lqWm9I 7ApE+24Hs2SkEEFLhqDfF+/VOuQ10z6u8u5z07plAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhpXwyfIudtJ5ZAX0+I7CEao5L4owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4YzQ5ODJiLTQyNGYtNDc1OC1hYjRiLTcwYzUwZWE5ZDg1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwMguDANBgkqhkiG9w0BAQsFAAOCAQEAYZbdZjw4xD44UZuVI+ALXoLGfxQ4 FMOM7upjG95qf3VMWGiRzyGVtJ3G3BZLTQivPe5e+x30ZS1HTEYIkP+VtfVNf+DV +WKqgLx3+NtczxMTqY8fxCnQr8CKX7/6iIejoOfIBHT5YvbxBmUbXhLE4++IPuu7 Als+bCr6jvfP2M0O6N04zZpQX8yB+xL8FKIHsG8U9gaG3AH5QYDZA4R0f+dV3t1o bGxLVSVdjdEAFt/DH9aV4JAei3kIJM4G2k8OKsKWPt3OdkKvcr0m+yPV78sb+NUu Ti3AJ2BquOLRA+sqIusKR84WXzA5KmlIZQ/XB7Up8xQTEtQGPXRIp/ue5g== -----END CERTIFICATE-----Generated at Fri Apr 26 00:35:32 2024 by rpki-client on console-ams.rpki-client.org