$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7be82cf8-62dd-44fd-8f2a-7e5a7be6a94f.roa File: 7be82cf8-62dd-44fd-8f2a-7e5a7be6a94f.roa (raw, json) Hash identifier: tC8VPc7DBF085l0wrAqgyNyMUd1vgea4Z7pHnkXk0cc= Subject key identifier: F4:6F:79:F1:AA:BF:D3:4D:FA:F3:46:82:39:33:AE:C5:AF:5E:91:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02EAF97C637BF894B037AD462A4E54CFB0BB5DED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7be82cf8-62dd-44fd-8f2a-7e5a7be6a94f.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 66.157.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ea:f9:7c:63:7b:f8:94:b0:37:ad:46:2a:4e:54:cf:b0:bb:5d:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=58da2b80e78aec47df2c5033f72a115fc2f9ec7a1785468dae544afd6c312668, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:31:5d:08:fb:9f:ec:0b:81:b0:28:b8:81:79: f1:18:8a:16:3d:d2:30:e5:dd:07:a2:ce:61:af:e5: 45:c5:bc:5f:23:53:30:71:09:ea:4e:ce:1d:d2:37: 42:68:33:18:7c:30:07:45:66:90:bb:4d:0b:e7:a4: fc:e1:54:0b:f3:cf:8d:3b:68:49:f9:f3:79:e7:1b: 35:ff:24:cf:af:8a:c8:83:67:65:55:84:f5:67:43: 3c:78:09:a5:ee:8e:cf:22:6e:08:9a:23:f8:01:d2: 5f:5e:18:56:cd:fa:3a:13:f6:0b:8d:00:a2:2f:0a: 92:39:5f:46:fd:56:37:78:30:7b:80:ac:74:cd:89: 01:34:11:e7:40:1c:c2:03:b6:39:de:a4:96:0b:42: 7d:00:39:a5:27:06:c6:fd:f3:e2:54:cd:06:de:73: bb:b1:b9:d8:e4:f3:3f:6c:03:99:e6:80:a1:7a:39: c7:2b:15:09:da:27:a1:8b:7d:74:38:97:4d:1a:19: 73:65:4e:d8:12:bb:37:6e:45:5d:35:f3:42:db:54: ce:b2:41:7c:65:63:0b:f3:53:6c:fc:3c:50:e2:c7: aa:50:b7:52:04:02:5f:df:78:f3:c8:96:5b:d3:ea: 22:98:26:1c:15:07:48:89:4e:01:70:39:87:04:e9: 7a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:6F:79:F1:AA:BF:D3:4D:FA:F3:46:82:39:33:AE:C5:AF:5E:91:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7be82cf8-62dd-44fd-8f2a-7e5a7be6a94f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.157.0.0/16 Signature Algorithm: sha256WithRSAEncryption c4:fb:9a:fd:6e:03:18:03:44:4b:cf:3b:69:d1:77:41:98:ff: 77:f4:b0:74:b7:6e:27:85:ac:d3:9c:d5:0f:96:59:74:44:f5: 05:b5:ce:f4:f6:39:36:cf:da:56:4f:ac:5c:41:be:9b:1b:c7: 55:71:38:a6:58:ee:cf:8a:47:65:5c:a8:a0:bf:a1:ba:b4:84: f5:d8:5e:ba:b1:39:bc:c0:74:bc:08:c9:c6:c0:cf:40:eb:de: c6:16:77:2f:c5:84:5a:03:dd:1d:8b:aa:12:92:9b:df:0f:29: 58:aa:7f:53:eb:74:3d:b8:d7:ae:b0:71:8a:8a:b8:a8:3a:49: f2:f4:a5:c3:33:33:65:f8:4b:c6:28:fd:04:09:35:69:25:fe: df:3c:7b:c5:30:24:2e:e7:26:df:eb:79:6e:88:2e:66:84:0d: a7:d9:77:40:bd:ee:37:65:24:db:93:35:78:69:4f:4e:5a:ec: cd:22:da:16:0f:7d:6a:38:4e:c8:12:4b:2a:80:e9:2e:de:7e: d0:43:19:d9:3b:ff:fb:0e:ac:8b:a5:32:e1:32:a1:c5:43:58: 8a:4b:2e:4b:f4:09:7b:69:1d:d7:67:8d:0e:bc:00:ca:c3:2d: c2:b3:93:20:a6:17:cc:4e:5f:4f:20:be:83:f7:0e:92:50:3a: bf:b7:2d:a4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAur5fGN7+JSwN61GKk5Uz7C7Xe0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGRhMmI4MGU3OGFlYzQ3ZGYyYzUwMzNmNzJhMTE1ZmMy ZjllYzdhMTc4NTQ2OGRhZTU0NGFmZDZjMzEyNjY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAMV0I+5/sC4GwKLiBefEYihY90jDl3QeizmGv5UXFvF8j UzBxCepOzh3SN0JoMxh8MAdFZpC7TQvnpPzhVAvzz407aEn583nnGzX/JM+visiD Z2VVhPVnQzx4CaXujs8ibgiaI/gB0l9eGFbN+joT9guNAKIvCpI5X0b9Vjd4MHuA rHTNiQE0EedAHMIDtjnepJYLQn0AOaUnBsb98+JUzQbec7uxudjk8z9sA5nmgKF6 OccrFQnaJ6GLfXQ4l00aGXNlTtgSuzduRV0180LbVM6yQXxlYwvzU2z8PFDix6pQ t1IEAl/fePPIllvT6iKYJhwVB0iJTgFwOYcE6XqVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9G958aq/003680aCOTOuxa9ekaIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdiZTgyY2Y4LTYyZGQtNDRmZC04ZjJhLTdlNWE3YmU2YTk0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBCnTANBgkqhkiG9w0BAQsFAAOCAQEAxPua/W4DGANES887adF3QZj/d/Sw dLduJ4Ws05zVD5ZZdET1BbXO9PY5Ns/aVk+sXEG+mxvHVXE4pljuz4pHZVyooL+h urSE9dheurE5vMB0vAjJxsDPQOvexhZ3L8WEWgPdHYuqEpKb3w8pWKp/U+t0PbjX rrBxioq4qDpJ8vSlwzMzZfhLxij9BAk1aSX+3zx7xTAkLucm3+t5boguZoQNp9l3 QL3uN2Uk25M1eGlPTlrszSLaFg99ajhOyBJLKoDpLt5+0EMZ2Tv/+w6si6Uy4TKh xUNYiksuS/QJe2kd12eNDrwAysMtwrOTIKYXzE5fTyC+g/cOklA6v7ctpA== -----END CERTIFICATE-----Generated at Thu May 9 01:26:17 2024 by rpki-client on console-ams.rpki-client.org