$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa File: 76e74dd0-5733-4c2f-b500-2d75cab973be.roa (raw, json) Hash identifier: TYbQGVSMlHCwxbBl9dqjw2uwgyuY8zhk4LPAk8IgbHc= Subject key identifier: AD:A0:A2:10:13:71:43:42:12:82:5F:36:B1:8E:DF:C8:13:0F:54:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06E9B0161B885D4E32BBB11D5740748357A7FDA9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.44.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e9:b0:16:1b:88:5d:4e:32:bb:b1:1d:57:40:74:83:57:a7:fd:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=e15877ea0f4f76bd988b8bdb5194d8f10fb832791f1de17f6ee04fddc22de849, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:8d:2d:cf:fd:ff:d8:36:cc:95:86:96:73:98: 98:fe:6e:1b:60:5f:c1:f7:57:11:1d:71:3b:37:4d: df:73:31:84:43:ce:78:ee:f2:f3:79:27:75:fa:a8: 1c:59:f7:3f:e8:9b:66:7d:67:f3:0e:63:87:50:6f: 79:ab:d4:76:6c:3a:e4:fc:90:38:1b:7b:8d:7d:d9: 8d:4c:ca:7b:4d:73:e3:4c:9a:ab:6a:ed:19:bb:0e: 1d:4b:0e:dc:39:6e:ac:df:b2:43:ba:ee:ba:a0:71: 12:04:94:3e:04:5e:72:a9:0d:de:67:29:72:f9:84: 56:1b:4e:8a:f9:a5:fd:01:9d:44:55:25:73:ba:e6: 0c:81:7e:81:ce:f7:25:fc:dc:08:8b:ac:37:a7:44: 5f:f0:18:07:ff:9f:02:9b:a5:ec:1c:ed:b6:cf:e5: d3:5f:d9:45:5b:50:78:bc:8b:f7:cf:9c:df:fb:93: 02:1a:b3:f6:2a:53:2e:46:c8:e5:ee:07:5a:f4:b6: ae:8d:7d:6c:68:5c:02:b8:41:f7:46:ea:b1:4c:5c: 68:24:5b:90:8d:68:3e:c9:d5:83:71:ad:58:6f:77: b0:0a:5e:44:f7:02:90:47:71:b4:7d:d4:95:9f:f1: 25:70:7c:9c:56:4f:8c:df:8a:1b:e0:c7:4e:43:e6: c8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:A0:A2:10:13:71:43:42:12:82:5F:36:B1:8E:DF:C8:13:0F:54:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.44.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9f:c1:37:8e:a5:16:0a:26:f8:02:17:3b:64:30:76:91:09:03: 11:a2:af:c6:82:94:ca:fd:66:d7:66:4e:a0:00:83:72:ae:d0: 01:48:98:82:ff:34:8a:47:ea:05:0c:dd:51:af:6c:8a:b8:30: a2:48:a3:d1:5c:3a:67:b9:3c:c6:f0:61:3f:5c:d2:b7:64:c8: d9:7c:8d:0e:d4:84:d4:c6:a1:05:09:f1:e9:96:9f:63:44:b6: 8a:fd:df:cb:1d:4a:99:e8:6c:03:1e:1d:10:b6:01:0e:d1:c5: d0:60:3c:f1:2e:5e:36:f6:70:1a:49:ae:16:43:63:c0:46:14: 60:65:c5:e1:43:b8:30:89:68:6a:56:52:a0:05:37:f6:6a:09: 77:61:d7:97:20:a9:e9:6c:32:04:cb:4c:4a:41:8f:aa:f8:a4: 50:83:ef:7f:9b:a7:9d:66:ce:36:74:8a:d6:c2:c5:12:95:86: ae:2b:de:a5:7d:51:9c:9a:00:12:14:27:e0:94:cd:12:06:55: ff:84:65:ed:db:19:f8:f2:e9:d9:7c:a4:59:cc:3d:61:54:37: 38:8a:c4:a5:7e:ac:02:48:b3:07:8a:fc:05:42:0e:10:81:93: fb:74:53:a2:01:e0:2a:95:77:d6:f0:19:e8:73:df:12:d7:08: 37:49:ee:9b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBumwFhuIXU4yu7EdV0B0g1en/akwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMTU4NzdlYTBmNGY3NmJkOTg4YjhiZGI1MTk0ZDhmMTBm YjgzMjc5MWYxZGUxN2Y2ZWUwNGZkZGMyMmRlODQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCEjS3P/f/YNsyVhpZzmJj+bhtgX8H3VxEdcTs3Td9zMYRD znju8vN5J3X6qBxZ9z/om2Z9Z/MOY4dQb3mr1HZsOuT8kDgbe4192Y1MyntNc+NM mqtq7Rm7Dh1LDtw5bqzfskO67rqgcRIElD4EXnKpDd5nKXL5hFYbTor5pf0BnURV JXO65gyBfoHO9yX83AiLrDenRF/wGAf/nwKbpewc7bbP5dNf2UVbUHi8i/fPnN/7 kwIas/YqUy5GyOXuB1r0tq6NfWxoXAK4QfdG6rFMXGgkW5CNaD7J1YNxrVhvd7AK XkT3ApBHcbR91JWf8SVwfJxWT4zfihvgx05D5sgnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUraCiEBNxQ0ISgl82sY7fyBMPVKEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc2ZTc0ZGQwLTU3MzMtNGMyZi1iNTAwLTJkNzVjYWI5NzNiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4LDANBgkqhkiG9w0BAQsFAAOCAQEAn8E3jqUWCib4Ahc7ZDB2kQkDEaKv xoKUyv1m12ZOoACDcq7QAUiYgv80ikfqBQzdUa9sirgwokij0Vw6Z7k8xvBhP1zS t2TI2XyNDtSE1MahBQnx6ZafY0S2iv3fyx1KmehsAx4dELYBDtHF0GA88S5eNvZw GkmuFkNjwEYUYGXF4UO4MIloalZSoAU39moJd2HXlyCp6WwyBMtMSkGPqvikUIPv f5unnWbONnSK1sLFEpWGrivepX1RnJoAEhQn4JTNEgZV/4Rl7dsZ+PLp2XykWcw9 YVQ3OIrEpX6sAkizB4r8BUIOEIGT+3RTogHgKpV31vAZ6HPfEtcIN0numw== -----END CERTIFICATE-----Generated at Wed Apr 17 01:26:02 2024 by rpki-client on console-ams.rpki-client.org