$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa File: 6a459199-d80a-4790-b99e-d7e340b000a0.roa (raw, json) Hash identifier: jl4xPbVocC3VNm4xFi4QzEDJfWx2uHkqIGZGs0jgNis= Subject key identifier: F4:7C:2C:14:44:33:BD:2C:CA:9C:FF:43:45:7C:46:D9:F0:C9:19:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 042A545AB588226BC3007EA386EAC73E6492A01A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.184.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:2a:54:5a:b5:88:22:6b:c3:00:7e:a3:86:ea:c7:3e:64:92:a0:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=2f1ffe79dd18ce7b3b8d7db6afba64241779336391c00c5fa9b3349bb28e2887, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4c:ab:ab:30:4c:d8:70:8d:63:dc:15:5e:5c: d2:7f:ef:34:bd:4c:34:ec:70:9f:a2:dc:b0:a9:8a: b7:fc:ae:f7:5f:67:f9:ff:a6:2a:24:a3:b4:1f:22: 1c:cb:0a:1b:9c:b6:41:18:52:fb:a8:4f:fa:f9:80: 8e:e8:08:b3:68:f9:cb:b6:ef:6c:df:a5:d6:1c:f9: 19:9a:4e:5d:d4:fe:70:bf:f7:02:45:e3:9f:1c:75: 2d:aa:32:5b:f2:d4:e3:f4:85:31:92:62:60:48:fb: 65:78:b4:72:03:ff:30:eb:8d:5e:3f:92:37:7d:e2: 5a:f8:48:21:69:6c:71:90:f9:91:d6:90:0c:ab:33: 1c:15:43:f2:3d:03:d0:be:88:e0:c1:bc:b9:4f:f5: 57:8a:82:4c:a9:37:ac:bd:54:03:65:41:33:9d:ab: cc:b5:96:d1:d0:87:98:ea:14:c4:c8:df:ad:61:f4: 0f:a5:39:a6:08:0c:82:4f:df:24:f7:0c:8f:20:9b: 40:17:99:03:f8:66:42:38:62:0a:09:25:bb:73:e0: c5:fc:1e:c8:6d:5f:37:18:d7:b0:f6:ca:dd:97:bb: 48:fb:37:0a:e2:be:10:7b:b7:4f:75:b7:99:52:97: 23:1e:44:ba:56:35:ae:84:fe:98:3f:da:39:dc:c7: ea:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:7C:2C:14:44:33:BD:2C:CA:9C:FF:43:45:7C:46:D9:F0:C9:19:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.184.0.0/16 Signature Algorithm: sha256WithRSAEncryption 46:a3:2b:ed:b4:41:d2:b9:f6:93:53:c9:c0:a6:83:d9:06:47: a1:bc:e9:53:9a:ca:82:38:a8:2d:9c:3e:8b:f4:bc:a9:74:23: 88:33:a1:9a:31:db:9e:a9:d5:b3:ba:4c:75:95:9e:85:9e:bf: 3e:3c:7f:fa:94:a8:13:84:c6:60:7d:c2:28:c7:64:6f:6d:11: ac:a2:c7:9c:52:b1:ef:af:c4:a6:c8:e0:36:5a:0e:f1:c5:73: ef:59:11:a3:3d:a6:d0:8f:55:7d:c3:06:1e:e6:e7:cb:a3:6e: 37:1b:b3:66:7e:6d:42:44:43:6d:05:27:de:d2:6c:fd:a7:42: c6:45:55:8d:e9:4e:3a:78:2a:63:dc:df:0a:d2:29:3e:a4:cc: de:26:ef:59:40:27:d3:3d:8d:80:3a:77:fc:24:02:c2:8f:7a: b6:32:28:14:28:92:5e:a4:15:8f:10:d9:7b:3a:86:a2:35:c3: 3f:04:e6:70:34:f6:b2:ad:a8:f7:d1:fa:e4:46:9f:d5:1c:d2: d9:b7:94:74:cd:34:42:94:f8:7c:b9:0f:19:b0:de:61:06:f0: 44:08:06:c0:aa:18:de:c8:71:4a:04:c6:47:b7:5d:39:d1:2d: 56:b4:aa:37:44:03:b6:bf:9b:da:6a:0b:a4:7e:96:bd:4b:4d: f1:37:65:f1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBCpUWrWIImvDAH6jhurHPmSSoBowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjFmZmU3OWRkMThjZTdiM2I4ZDdkYjZhZmJhNjQyNDE3 NzkzMzYzOTFjMDBjNWZhOWIzMzQ5YmIyOGUyODg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4TKurMEzYcI1j3BVeXNJ/7zS9TDTscJ+i3LCpirf8rvdf Z/n/pioko7QfIhzLChuctkEYUvuoT/r5gI7oCLNo+cu272zfpdYc+RmaTl3U/nC/ 9wJF458cdS2qMlvy1OP0hTGSYmBI+2V4tHID/zDrjV4/kjd94lr4SCFpbHGQ+ZHW kAyrMxwVQ/I9A9C+iODBvLlP9VeKgkypN6y9VANlQTOdq8y1ltHQh5jqFMTI361h 9A+lOaYIDIJP3yT3DI8gm0AXmQP4ZkI4YgoJJbtz4MX8HshtXzcY17D2yt2Xu0j7 NwrivhB7t091t5lSlyMeRLpWNa6E/pg/2jncx+pxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9HwsFEQzvSzKnP9DRXxG2fDJGWswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhNDU5MTk5LWQ4MGEtNDc5MC1iOTllLWQ3ZTM0MGIwMDBhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4uDANBgkqhkiG9w0BAQsFAAOCAQEARqMr7bRB0rn2k1PJwKaD2QZHobzp U5rKgjioLZw+i/S8qXQjiDOhmjHbnqnVs7pMdZWehZ6/Pjx/+pSoE4TGYH3CKMdk b20RrKLHnFKx76/EpsjgNloO8cVz71kRoz2m0I9VfcMGHubny6NuNxuzZn5tQkRD bQUn3tJs/adCxkVVjelOOngqY9zfCtIpPqTM3ibvWUAn0z2NgDp3/CQCwo96tjIo FCiSXqQVjxDZezqGojXDPwTmcDT2sq2o99H65Eaf1RzS2beUdM00QpT4fLkPGbDe YQbwRAgGwKoY3shxSgTGR7ddOdEtVrSqN0QDtr+b2moLpH6WvUtN8Tdl8Q== -----END CERTIFICATE-----Generated at Wed Apr 24 15:49:01 2024 by rpki-client on console-ams.rpki-client.org