$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8342510b-8286-41eb-a7c1-a8d9705f7f74.roa File: 8342510b-8286-41eb-a7c1-a8d9705f7f74.roa (raw, json) Hash identifier: 9GI8j3vubldk+TBOjj+QlqaN0GUrP45gr2l9WRiXgn4= Subject key identifier: 97:50:51:90:27:25:87:6D:60:D9:02:C4:0F:93:83:2C:8A:23:A9:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68D40CE29FE6B7A28ACD95739B0B047AD22ED9E9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8342510b-8286-41eb-a7c1-a8d9705f7f74.roa Signing time: Fri 03 May 2024 00:00:00 +0000 ROA not before: Fri 03 May 2024 00:00:00 +0000 ROA not after: Fri 07 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 40.210.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d4:0c:e2:9f:e6:b7:a2:8a:cd:95:73:9b:0b:04:7a:d2:2e:d9:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:00:00 2024 GMT Not After : Jun 7 23:59:59 2024 GMT Subject: serialNumber=95973533341e83fdbd363778983a1c8d414b7db3ca2df61fd51b62888da763f1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:5d:ce:d9:40:cb:99:42:17:d2:37:53:5f:32: ad:c5:2c:f9:de:55:82:47:56:37:03:12:96:71:e8: 49:35:6d:0a:1f:ec:89:48:d2:00:bd:1a:fa:d2:bc: b7:35:54:28:b4:0e:5e:04:b7:07:78:22:56:60:70: 42:21:ab:40:fb:b1:91:a4:23:fe:87:af:86:55:11: a7:53:9a:a9:7e:f2:35:bd:fa:e7:db:69:31:b3:41: 9f:52:d2:74:09:37:ed:bd:09:6e:79:56:54:67:6c: 4c:10:4b:35:1a:62:af:bb:97:81:60:65:08:41:b5: f8:49:7c:53:bc:6a:81:ee:bb:ba:ce:e4:5e:b4:41: 96:93:eb:c6:94:b5:1a:13:0c:42:a0:b5:8d:4d:87: 59:c7:7a:4e:fe:ba:71:cd:95:46:89:62:50:cb:3c: 6b:f2:7f:bc:f8:ff:af:2f:96:d1:8d:aa:13:2c:3f: e1:e7:d8:1f:16:71:6d:7e:7a:f1:de:bb:d6:65:fb: f1:39:a8:5a:1e:3d:d8:e7:46:e1:4c:06:f9:c3:82: de:c8:d6:72:a0:c5:51:dc:99:bd:c6:04:b3:6d:fd: ae:83:13:e8:3b:3d:14:e7:6a:aa:0c:bb:a1:4e:27: 25:ca:04:27:b3:ff:31:24:09:b4:df:24:7d:a6:61: d6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:50:51:90:27:25:87:6D:60:D9:02:C4:0F:93:83:2C:8A:23:A9:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8342510b-8286-41eb-a7c1-a8d9705f7f74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.210.0.0/16 Signature Algorithm: sha256WithRSAEncryption 44:ef:8c:cc:1c:85:69:cc:54:97:0a:7f:34:69:9f:85:aa:92: c6:2e:62:b0:27:1e:6c:b3:71:5e:d0:a8:41:48:6a:49:99:2b: a2:0d:50:9c:26:f4:1e:2c:55:d1:98:fb:0a:d7:f0:bd:21:70: cd:a1:98:2d:ff:a5:89:fa:de:e0:ba:e4:55:f2:59:be:37:5e: 7e:83:1f:52:d9:c5:c1:c0:48:23:d5:c2:0b:e2:c5:f2:3a:3e: fa:69:7f:97:27:c5:73:a2:25:82:a4:cd:63:8c:4f:b4:ec:f7: 7e:13:a8:80:b2:09:34:f9:1f:d3:8e:40:47:56:62:bd:7c:8f: e9:8d:d6:00:ff:dc:27:35:d6:ac:a3:4f:e3:66:8b:0b:9a:65: 56:cf:b8:b1:04:fc:bf:7f:3e:17:a9:32:d9:95:c3:d5:a5:97: 43:f0:ce:43:90:dc:a0:1b:24:00:1c:d0:b3:e1:49:57:56:b8: 74:b8:f7:23:a8:ce:c9:d1:49:f9:a6:22:bc:99:bf:b1:50:b9: a9:48:a1:d6:4d:d4:5c:4a:bc:27:72:04:2c:ba:42:d2:11:a4: f4:41:0d:24:53:01:0b:65:88:db:a9:c4:36:1b:9a:f0:16:57: 29:c9:47:b1:54:ab:52:2f:0e:da:18:04:66:c4:42:79:ee:b9: dd:ea:59:72 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaNQM4p/mt6KKzZVzmwsEetIu2ekwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTAzMDAwMDAwWhcNMjQwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTk3MzUzMzM0MWU4M2ZkYmQzNjM3Nzg5ODNhMWM4ZDQx NGI3ZGIzY2EyZGY2MWZkNTFiNjI4ODhkYTc2M2YxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUXc7ZQMuZQhfSN1NfMq3FLPneVYJHVjcDEpZx6Ek1bQof 7IlI0gC9GvrSvLc1VCi0Dl4Etwd4IlZgcEIhq0D7sZGkI/6Hr4ZVEadTmql+8jW9 +ufbaTGzQZ9S0nQJN+29CW55VlRnbEwQSzUaYq+7l4FgZQhBtfhJfFO8aoHuu7rO 5F60QZaT68aUtRoTDEKgtY1Nh1nHek7+unHNlUaJYlDLPGvyf7z4/68vltGNqhMs P+Hn2B8WcW1+evHeu9Zl+/E5qFoePdjnRuFMBvnDgt7I1nKgxVHcmb3GBLNt/a6D E+g7PRTnaqoMu6FOJyXKBCez/zEkCbTfJH2mYda7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUl1BRkCclh21g2QLED5ODLIojqYAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgzNDI1MTBiLTgyODYtNDFlYi1hN2MxLWE4ZDk3MDVmN2Y3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo0jANBgkqhkiG9w0BAQsFAAOCAQEARO+MzByFacxUlwp/NGmfhaqSxi5i sCcebLNxXtCoQUhqSZkrog1QnCb0HixV0Zj7CtfwvSFwzaGYLf+lifre4LrkVfJZ vjdefoMfUtnFwcBII9XCC+LF8jo++ml/lyfFc6IlgqTNY4xPtOz3fhOogLIJNPkf 045AR1ZivXyP6Y3WAP/cJzXWrKNP42aLC5plVs+4sQT8v38+F6ky2ZXD1aWXQ/DO Q5DcoBskABzQs+FJV1a4dLj3I6jOydFJ+aYivJm/sVC5qUih1k3UXEq8J3IELLpC 0hGk9EENJFMBC2WI26nENhua8BZXKclHsVSrUi8O2hgEZsRCee653epZcg== -----END CERTIFICATE-----Generated at Thu May 9 01:26:18 2024 by rpki-client on console-ams.rpki-client.org