$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/814a1304-f90c-4e23-82d9-6fe21bfdb541.roa File: 814a1304-f90c-4e23-82d9-6fe21bfdb541.roa (raw, json) Hash identifier: LUJJoci0OE0xKZ4cXcQWXTe0JrOYHwkBNMK8YuQhLYE= Subject key identifier: C7:50:6C:EA:4E:C7:40:C0:86:A3:C4:AB:F0:A9:5C:8A:89:B0:A7:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59542E928595257ABA14C4902A77F8D811EDDDE8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/814a1304-f90c-4e23-82d9-6fe21bfdb541.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 104.144.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:54:2e:92:85:95:25:7a:ba:14:c4:90:2a:77:f8:d8:11:ed:dd:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=d23ad1ce3416e7029eec86c3dfa3d18f228f55e8f8f50f14c31f343ac68eb8a1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:32:c4:de:0d:a6:38:42:da:69:19:7b:eb:b4: 31:fa:74:a1:ae:c2:68:e0:a8:00:e5:2b:a4:5d:2e: e2:93:29:24:96:10:94:e8:53:51:3e:c2:c6:64:05: 61:dd:db:e6:e0:9f:2b:c8:ac:25:1c:59:9b:8e:a6: 00:a6:ba:d1:53:43:c9:df:fe:06:ae:07:13:7b:64: e8:68:95:aa:0b:70:79:e6:2a:9d:75:78:32:ec:25: 2a:e5:a7:0f:ec:64:ba:5b:29:52:3a:40:55:ca:e5: 05:01:00:14:f9:4f:29:f9:d6:03:2b:cf:b6:69:49: b6:5b:80:12:78:f3:97:f6:8a:24:0d:ca:06:b1:94: 1e:13:e6:47:aa:f4:7b:8e:c1:5c:5c:e6:25:36:3c: 4d:29:dc:c1:81:03:7d:f0:36:8a:ca:70:9e:9e:73: db:bd:09:cd:3a:ad:7a:13:61:b2:0a:dc:8e:13:bc: df:58:1c:3e:4c:95:15:9a:93:f5:e3:5b:b0:63:1b: 5a:86:e3:20:26:a9:24:cc:71:32:bd:a4:1e:ed:87: 35:68:3d:7f:2a:16:ec:ac:89:36:11:ce:43:39:cf: 2f:ad:6f:6d:09:ad:62:12:ff:82:40:4f:d9:59:1d: 4f:af:18:83:84:b2:f4:d5:6d:ce:20:eb:47:f9:0f: 73:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:50:6C:EA:4E:C7:40:C0:86:A3:C4:AB:F0:A9:5C:8A:89:B0:A7:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/814a1304-f90c-4e23-82d9-6fe21bfdb541.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.144.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:ef:12:d6:ff:f3:80:e1:58:d5:bf:a8:25:c8:f4:2a:e3:6c: cf:7b:57:db:40:a8:77:8a:60:13:0d:b8:50:48:df:3b:65:42: 30:0f:71:a6:2f:b3:5b:c6:f5:9e:e8:9f:6e:c7:4a:26:97:e9: 28:bc:74:10:df:65:e7:2d:de:1a:85:7e:4a:9c:15:ca:24:f8: 80:39:bd:f5:de:4b:c5:52:2f:05:fe:cb:bd:eb:c0:74:54:4d: c9:ab:8b:d2:64:2f:95:e5:7a:8a:f5:5e:9c:67:03:d0:9f:bf: 3b:93:87:f6:88:29:87:d2:3a:51:c4:6c:58:56:d9:77:28:c1: db:b6:d8:4e:8b:b4:17:c8:a6:28:f7:f0:57:48:2c:cc:88:dd: 11:f0:be:e2:4f:11:b3:32:a3:b7:c8:fa:13:7c:5d:dd:eb:38: ea:13:c8:7b:ee:7b:79:bd:72:78:e2:b3:44:1d:87:77:0f:b7: 54:e1:d0:0a:8b:62:a9:ba:74:5c:0f:16:0e:ce:fe:08:43:6b: 87:58:b0:cc:37:8f:8e:aa:e1:78:de:89:ef:cf:4f:61:a1:53: 65:6f:5c:e8:00:e7:94:92:34:15:9c:ad:bf:5b:0d:83:ee:d3: 2e:b0:4f:58:81:81:1a:8a:80:7f:a4:a3:58:55:38:ef:aa:df: 23:55:0f:be -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWVQukoWVJXq6FMSQKnf42BHt3egwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjNhZDFjZTM0MTZlNzAyOWVlYzg2YzNkZmEzZDE4ZjIy OGY1NWU4ZjhmNTBmMTRjMzFmMzQzYWM2OGViOGExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCMsTeDaY4QtppGXvrtDH6dKGuwmjgqADlK6RdLuKTKSSW EJToU1E+wsZkBWHd2+bgnyvIrCUcWZuOpgCmutFTQ8nf/gauBxN7ZOholaoLcHnm Kp11eDLsJSrlpw/sZLpbKVI6QFXK5QUBABT5Tyn51gMrz7ZpSbZbgBJ485f2iiQN ygaxlB4T5keq9HuOwVxc5iU2PE0p3MGBA33wNorKcJ6ec9u9Cc06rXoTYbIK3I4T vN9YHD5MlRWak/XjW7BjG1qG4yAmqSTMcTK9pB7thzVoPX8qFuysiTYRzkM5zy+t b20JrWIS/4JAT9lZHU+vGIOEsvTVbc4g60f5D3O3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUx1Bs6k7HQMCGo8Sr8Klciomwp+IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxNGExMzA0LWY5MGMtNGUyMy04MmQ5LTZmZTIxYmZkYjU0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBokDANBgkqhkiG9w0BAQsFAAOCAQEAje8S1v/zgOFY1b+oJcj0KuNsz3tX 20Cod4pgEw24UEjfO2VCMA9xpi+zW8b1nuifbsdKJpfpKLx0EN9l5y3eGoV+SpwV yiT4gDm99d5LxVIvBf7LvevAdFRNyauL0mQvleV6ivVenGcD0J+/O5OH9ogph9I6 UcRsWFbZdyjB27bYTou0F8imKPfwV0gszIjdEfC+4k8RszKjt8j6E3xd3es46hPI e+57eb1yeOKzRB2Hdw+3VOHQCotiqbp0XA8WDs7+CENrh1iwzDePjqrheN6J789P YaFTZW9c6ADnlJI0FZytv1sNg+7TLrBPWIGBGoqAf6SjWFU476rfI1UPvg== -----END CERTIFICATE-----Generated at Thu May 2 17:17:13 2024 by rpki-client on console-ams.rpki-client.org