$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/956d4119-22f4-41ab-9e60-3b5db4dd915e.roa File: 956d4119-22f4-41ab-9e60-3b5db4dd915e.roa (raw, json) Hash identifier: p2SbUwEHkMvYkVbtKTf2gIVO9YKqHcnOMY82DvNTE1g= Subject key identifier: 38:16:D0:63:3D:A1:8C:96:0A:3C:6A:53:83:CC:87:0F:F4:A7:26:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 321446CE4D6B86FB848BBCEE0C41FA68B0CDC2B0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/956d4119-22f4-41ab-9e60-3b5db4dd915e.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 54.33.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:14:46:ce:4d:6b:86:fb:84:8b:bc:ee:0c:41:fa:68:b0:cd:c2:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=db55329618c70b55867f4203870d8f65de109bdc158e45cffd00a6f6b781dab9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ef:6e:22:d5:56:8a:89:0f:76:ba:78:88:3c: 34:5e:ac:82:ad:4f:56:d7:3a:fa:8d:32:3b:55:50: 02:96:1d:9d:4b:93:e7:3e:27:f5:c0:1b:0b:82:2b: 5f:12:7a:f8:d3:d7:74:65:0f:2a:d2:21:2b:5a:78: 86:33:5b:34:16:2b:11:fe:ea:e5:95:9c:f3:31:6f: 32:88:8b:e0:d2:4e:38:62:4e:18:bf:a9:d9:4e:c1: d9:64:bd:77:0a:2f:8a:3d:77:6a:72:e8:c8:7f:87: fc:70:7b:31:7c:b6:98:aa:a8:5f:4b:b5:f9:0b:bb: 71:f1:40:47:1b:a6:19:3a:c1:c6:0e:a4:be:6c:f9: d3:71:ba:23:b2:0f:07:f5:ca:3e:dc:60:37:27:d0: 50:8d:e7:3b:e2:d9:35:18:cf:c8:38:f4:fe:6e:e8: 00:45:42:17:2e:fc:48:3b:d3:69:c8:8f:02:f4:31: 2b:0f:0d:ee:0c:f4:06:4d:db:28:f7:db:da:52:4d: 92:69:79:74:2c:cc:c1:24:bc:d2:dc:69:8c:a8:a5: 85:5b:89:60:c6:79:89:1d:16:2b:7d:c2:b5:23:5e: 57:71:ca:5a:36:13:d8:b4:12:d7:33:d1:45:ce:c0: e5:02:d5:4c:76:ee:ff:54:df:66:f2:a8:ad:fa:9b: 3e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:16:D0:63:3D:A1:8C:96:0A:3C:6A:53:83:CC:87:0F:F4:A7:26:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/956d4119-22f4-41ab-9e60-3b5db4dd915e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.33.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:12:e6:31:00:8f:93:69:c1:c4:8c:4e:20:e6:27:94:72:86: 14:b9:7e:cf:8e:43:ba:0d:1b:c1:10:48:83:77:0b:64:a7:8e: 06:b7:01:e0:54:c3:2a:1e:2c:03:46:24:32:e1:b0:e1:ed:e0: 4e:33:2d:19:41:84:60:0a:ad:9f:5c:2a:1f:3d:2a:22:81:88: 28:0a:4d:2f:b4:39:49:68:d2:ea:03:a9:d8:a5:33:ec:e9:6c: 66:04:c5:9f:98:e8:28:74:fb:77:52:53:8e:87:0c:ba:3c:35: 12:9d:ea:1e:ef:61:2b:b1:82:5f:54:56:5f:01:9a:cf:cd:a3: 13:42:db:ea:fd:19:0a:b7:e8:07:35:14:69:a9:dd:34:2d:63: 4d:44:39:40:78:b6:2b:a2:b5:54:89:87:57:80:80:bb:cb:dc: d6:96:dc:54:f4:35:4a:5f:26:8d:b1:50:59:55:4d:86:e6:6b: f8:d5:2a:5f:7f:36:e7:4e:ad:a4:8b:ed:4a:4e:b6:f5:60:fc: d8:44:4c:e9:40:f2:f1:e3:e1:9c:21:4e:40:63:20:31:81:bd: d6:d8:cf:68:75:99:91:f3:f1:37:59:31:bc:8d:66:62:17:4c: 41:be:8d:c4:de:13:f7:aa:78:80:c9:49:6b:a5:9a:ca:03:e2: f2:da:22:79 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMhRGzk1rhvuEi7zuDEH6aLDNwrAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjU1MzI5NjE4YzcwYjU1ODY3ZjQyMDM4NzBkOGY2NWRl MTA5YmRjMTU4ZTQ1Y2ZmZDAwYTZmNmI3ODFkYWI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDc724i1VaKiQ92uniIPDRerIKtT1bXOvqNMjtVUAKWHZ1L k+c+J/XAGwuCK18SevjT13RlDyrSIStaeIYzWzQWKxH+6uWVnPMxbzKIi+DSTjhi Thi/qdlOwdlkvXcKL4o9d2py6Mh/h/xwezF8tpiqqF9LtfkLu3HxQEcbphk6wcYO pL5s+dNxuiOyDwf1yj7cYDcn0FCN5zvi2TUYz8g49P5u6ABFQhcu/Eg702nIjwL0 MSsPDe4M9AZN2yj329pSTZJpeXQszMEkvNLcaYyopYVbiWDGeYkdFit9wrUjXldx ylo2E9i0Etcz0UXOwOUC1Ux27v9U32byqK36mz65AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOBbQYz2hjJYKPGpTg8yHD/SnJlowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1NmQ0MTE5LTIyZjQtNDFhYi05ZTYwLTNiNWRiNGRkOTE1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2ITANBgkqhkiG9w0BAQsFAAOCAQEAeRLmMQCPk2nBxIxOIOYnlHKGFLl+ z45Dug0bwRBIg3cLZKeOBrcB4FTDKh4sA0YkMuGw4e3gTjMtGUGEYAqtn1wqHz0q IoGIKApNL7Q5SWjS6gOp2KUz7OlsZgTFn5joKHT7d1JTjocMujw1Ep3qHu9hK7GC X1RWXwGaz82jE0Lb6v0ZCrfoBzUUaandNC1jTUQ5QHi2K6K1VImHV4CAu8vc1pbc VPQ1Sl8mjbFQWVVNhuZr+NUqX382506tpIvtSk629WD82ERM6UDy8ePhnCFOQGMg MYG91tjPaHWZkfPxN1kxvI1mYhdMQb6NxN4T96p4gMlJa6WaygPi8toieQ== -----END CERTIFICATE-----Generated at Thu May 2 00:52:10 2024 by rpki-client on console-ams.rpki-client.org