$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89f9e216-a406-404e-9214-7c62aef79db6.roa File: 89f9e216-a406-404e-9214-7c62aef79db6.roa (raw, json) Hash identifier: jsbIBnM+io52ivw7muujRk9XBVzhWmKZNMxYB4wCpL0= Subject key identifier: A3:52:E9:57:7D:FC:55:1D:E3:BC:10:F6:5E:84:53:38:FC:BF:62:EC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B68537C91581B4B5CDE304F4D90BCE872483CD8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89f9e216-a406-404e-9214-7c62aef79db6.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 54.32.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:68:53:7c:91:58:1b:4b:5c:de:30:4f:4d:90:bc:e8:72:48:3c:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=36cb02296a6b0ab94501c58d935e10ba53cba354c42bbd4c0527d883471d17a1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e3:f8:b2:a9:09:cf:2c:b2:7f:f5:8c:46:3d: 93:4d:dd:10:62:14:f4:51:e8:51:62:f8:cc:51:bf: ac:cb:be:a4:46:a0:48:6a:9f:47:80:cf:62:15:a6: 0b:b4:bd:b5:83:4b:1a:04:bc:5f:20:73:9a:79:ba: 81:76:02:b1:3e:75:33:da:90:20:df:96:36:16:84: cf:bf:14:a3:ed:fe:6a:46:95:69:79:92:fb:2a:16: 3e:f0:16:b6:5c:d7:a0:79:e1:bf:fe:3a:66:56:55: 4f:a8:ee:76:29:86:d7:b8:1b:41:d1:c9:27:e9:92: f1:46:e7:6c:49:6d:a4:b7:f2:1b:6d:99:13:aa:33: 36:df:cc:15:41:95:e3:dc:5f:69:16:a8:9a:20:d9: 33:0b:29:27:7f:d7:42:61:00:e0:27:11:88:14:7c: e6:59:4b:2a:32:65:ab:19:df:2f:0e:63:69:97:e0: d2:96:c8:7a:d7:cf:78:86:ef:00:d0:6d:ac:b9:b7: 0e:09:43:14:fa:75:3d:09:63:5a:d7:8d:0f:df:26: ac:de:ee:46:4c:64:e9:7d:5c:6b:d4:3b:7f:92:44: 58:0b:cb:2a:68:4b:65:04:79:5d:d0:34:89:04:ff: a1:da:88:2c:bc:18:8d:65:95:3e:b4:6f:66:9e:24: 83:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:52:E9:57:7D:FC:55:1D:E3:BC:10:F6:5E:84:53:38:FC:BF:62:EC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89f9e216-a406-404e-9214-7c62aef79db6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.32.0.0/16 Signature Algorithm: sha256WithRSAEncryption 81:7b:85:6a:18:02:37:9a:ed:53:cd:c5:1b:cb:c0:6b:27:d0: 33:96:cd:13:61:fe:e2:25:db:b4:62:8b:90:46:00:b0:82:bd: cd:d8:8b:17:0f:cc:51:9b:42:6c:1e:b7:da:4b:43:95:ba:8c: c6:9f:f5:fd:3a:b5:6b:81:d3:d2:d3:3b:62:9b:a9:74:d2:c1: 78:cd:64:0b:b3:b4:a3:e3:c2:8c:ae:60:c3:ea:7e:f3:fd:63: 86:a5:66:a7:ce:6b:bf:03:5f:45:68:6b:a6:c4:99:1d:96:f3: 59:25:5f:61:0e:c4:80:9a:2c:42:dc:e7:1c:0a:35:2c:c1:35: 05:e1:c7:11:9b:5f:40:34:84:24:cf:4b:bf:8c:cc:1e:33:e7: 96:02:3d:e1:74:d6:51:59:d6:37:65:f7:05:c4:4f:22:2c:80: 9a:d6:bf:98:7c:0e:e9:fd:e2:86:83:32:f9:f6:ea:71:a3:a5: 99:7e:e3:32:73:6e:01:a2:d4:b2:27:ed:70:ff:4f:fa:cd:77: c1:4c:c1:45:da:b1:d9:48:b8:1f:49:b9:ca:ab:4a:f1:88:53: f6:da:05:7f:99:d8:fd:2e:fc:40:b6:9b:5d:62:b9:67:d9:b5: 92:be:80:c9:d5:2f:4d:c8:5e:c3:d1:7b:e0:d0:fc:b1:95:19: 17:8e:8e:e2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUW2hTfJFYG0tc3jBPTZC86HJIPNgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmNiMDIyOTZhNmIwYWI5NDUwMWM1OGQ5MzVlMTBiYTUz Y2JhMzU0YzQyYmJkNGMwNTI3ZDg4MzQ3MWQxN2ExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm4/iyqQnPLLJ/9YxGPZNN3RBiFPRR6FFi+MxRv6zLvqRG oEhqn0eAz2IVpgu0vbWDSxoEvF8gc5p5uoF2ArE+dTPakCDfljYWhM+/FKPt/mpG lWl5kvsqFj7wFrZc16B54b/+OmZWVU+o7nYphte4G0HRySfpkvFG52xJbaS38htt mROqMzbfzBVBlePcX2kWqJog2TMLKSd/10JhAOAnEYgUfOZZSyoyZasZ3y8OY2mX 4NKWyHrXz3iG7wDQbay5tw4JQxT6dT0JY1rXjQ/fJqze7kZMZOl9XGvUO3+SRFgL yypoS2UEeV3QNIkE/6HaiCy8GI1llT60b2aeJINnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUo1LpV338VR3jvBD2XoRTOPy/YuwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5ZjllMjE2LWE0MDYtNDA0ZS05MjE0LTdjNjJhZWY3OWRiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2IDANBgkqhkiG9w0BAQsFAAOCAQEAgXuFahgCN5rtU83FG8vAayfQM5bN E2H+4iXbtGKLkEYAsIK9zdiLFw/MUZtCbB632ktDlbqMxp/1/Tq1a4HT0tM7Ypup dNLBeM1kC7O0o+PCjK5gw+p+8/1jhqVmp85rvwNfRWhrpsSZHZbzWSVfYQ7EgJos QtznHAo1LME1BeHHEZtfQDSEJM9Lv4zMHjPnlgI94XTWUVnWN2X3BcRPIiyAmta/ mHwO6f3ihoMy+fbqcaOlmX7jMnNuAaLUsiftcP9P+s13wUzBRdqx2Ui4H0m5yqtK 8YhT9toFf5nY/S78QLabXWK5Z9m1kr6AydUvTchew9F74ND8sZUZF46O4g== -----END CERTIFICATE-----Generated at Wed May 1 22:06:37 2024 by rpki-client on console-fra.rpki-client.org