$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa File: 7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa (raw, json) Hash identifier: /8DtPtWc5Rx9UfSKm6oyx23DNLgCx8r+7lQ/vh4Pxgs= Subject key identifier: E7:E6:1D:55:7F:16:2A:4E:8D:9E:F4:42:32:D7:A0:58:A3:A4:EA:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 64C250731E479C8ACCAD23F98175F79D74A2AF1E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 137.160.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:c2:50:73:1e:47:9c:8a:cc:ad:23:f9:81:75:f7:9d:74:a2:af:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=da36c93563b8539c92da6bd7e78554b4ee07cd46318a6988c7fbccfc1c6f79d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5a:8b:ff:bd:c1:10:aa:b8:13:c4:bd:47:cf: 97:29:0a:82:6d:29:97:dc:bc:df:b9:d1:65:06:54: fc:c7:20:70:06:98:02:06:b6:78:96:4a:0c:61:80: bb:4c:17:1b:7f:75:18:a9:bc:dc:90:7d:0c:8c:7b: cb:e9:17:40:d0:16:ba:8b:ef:6a:8a:15:a7:ad:a7: cc:9b:bf:6f:6f:1b:80:9c:54:2f:b9:19:b2:74:88: 5e:9a:bc:f7:97:0f:9f:dc:04:21:4c:96:36:16:72: bd:24:87:db:13:03:00:7a:00:bf:dc:9b:7b:6e:9a: 80:34:d1:af:e7:77:94:1f:d7:7d:e6:a1:ac:4d:9f: af:3d:95:bc:8f:3a:b1:20:68:99:e7:ed:ee:a4:f8: 5c:3f:5c:e2:9c:cc:fc:46:ab:fd:22:9e:f5:8e:24: 33:0f:ae:48:14:a5:ea:8e:d2:74:7d:7b:4e:46:5b: 17:71:95:65:bb:4e:2c:ff:73:5a:39:04:fb:67:2a: d5:0b:16:67:bf:6e:4f:12:08:e3:f8:a6:8b:89:5d: ca:6a:4d:32:8e:23:ce:a1:df:7d:72:3d:00:c7:04: 47:39:f2:2b:f4:9b:3f:d5:ab:03:78:86:87:f9:b4: 6a:67:a0:d7:a2:d4:1c:71:b4:84:b2:2e:59:ed:11: 93:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E6:1D:55:7F:16:2A:4E:8D:9E:F4:42:32:D7:A0:58:A3:A4:EA:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.160.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:ff:b2:8c:15:df:02:f6:c2:10:f1:a9:2f:29:ac:b5:a2:18: 97:28:d9:58:fc:fd:0f:7a:24:f2:53:a2:46:61:45:c3:03:ec: 14:b1:dc:13:1c:b9:d3:67:a0:e3:24:70:45:31:c9:d4:34:2c: 6b:5d:62:53:c6:d2:62:88:32:37:b2:f5:a7:88:2f:bb:7b:f3: 0b:2f:fe:29:90:f9:93:74:74:93:5b:ea:93:cf:da:7b:97:9c: f2:7e:79:67:9b:68:7e:eb:8e:12:6b:fa:64:31:3e:c7:83:85: d0:aa:03:44:78:a5:cd:13:9d:cf:f5:7e:76:b9:87:8c:f0:b4: fe:ba:37:fa:e3:25:0b:1e:7e:13:5c:aa:79:2f:92:6f:96:0f: 70:97:bf:bf:1d:ba:a7:fd:8d:4c:49:1d:72:69:2d:bf:69:02: a2:e4:1f:65:12:02:a0:4a:23:5b:a8:b3:4b:cf:88:04:3d:6d: a0:c7:a2:44:0f:9c:dc:6e:5d:82:97:77:86:2d:f1:88:e8:11: c0:08:22:40:5f:95:10:49:67:9e:7e:3f:53:8c:13:ca:24:fa: 68:31:fb:56:c0:78:ef:45:be:72:51:15:4e:5e:ca:76:34:95: f4:0f:19:24:6e:37:da:a8:02:83:13:e5:23:09:a2:4e:6c:26: 75:88:e5:08 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZMJQcx5HnIrMrSP5gXX3nXSirx4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTM2YzkzNTYzYjg1MzljOTJkYTZiZDdlNzg1NTRiNGVl MDdjZDQ2MzE4YTY5ODhjN2ZiY2NmYzFjNmY3OWQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZWov/vcEQqrgTxL1Hz5cpCoJtKZfcvN+50WUGVPzHIHAG mAIGtniWSgxhgLtMFxt/dRipvNyQfQyMe8vpF0DQFrqL72qKFaetp8ybv29vG4Cc VC+5GbJ0iF6avPeXD5/cBCFMljYWcr0kh9sTAwB6AL/cm3tumoA00a/nd5Qf133m oaxNn689lbyPOrEgaJnn7e6k+Fw/XOKczPxGq/0invWOJDMPrkgUpeqO0nR9e05G WxdxlWW7Tiz/c1o5BPtnKtULFme/bk8SCOP4pouJXcpqTTKOI86h331yPQDHBEc5 8iv0mz/VqwN4hof5tGpnoNei1BxxtISyLlntEZNLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5+YdVX8WKk6NnvRCMtegWKOk6nEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjN2MwN2VlLTA5MTctNDFmOC05OTdiLWQ1MjUzYWQ1NmNiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCJoDANBgkqhkiG9w0BAQsFAAOCAQEAFf+yjBXfAvbCEPGpLymstaIYlyjZ WPz9D3ok8lOiRmFFwwPsFLHcExy502eg4yRwRTHJ1DQsa11iU8bSYogyN7L1p4gv u3vzCy/+KZD5k3R0k1vqk8/ae5ec8n55Z5tofuuOEmv6ZDE+x4OF0KoDRHilzROd z/V+drmHjPC0/ro3+uMlCx5+E1yqeS+Sb5YPcJe/vx26p/2NTEkdcmktv2kCouQf ZRICoEojW6izS8+IBD1toMeiRA+c3G5dgpd3hi3xiOgRwAgiQF+VEElnnn4/U4wT yiT6aDH7VsB470W+clEVTl7KdjSV9A8ZJG432qgCgxPlIwmiTmwmdYjlCA== -----END CERTIFICATE-----Generated at Wed Apr 24 15:49:02 2024 by rpki-client on console-ams.rpki-client.org