$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97785c3c-9e15-4fda-a575-3e8b3a99732b.roa File: 97785c3c-9e15-4fda-a575-3e8b3a99732b.roa (raw, json) Hash identifier: ZWPVKqaFLIEZLya+5kikKxHfIBo1yYeHn6LtgeEK6Wk= Subject key identifier: D1:D5:D3:E4:99:B1:A4:A8:63:3A:0F:F7:87:99:88:B5:BC:F0:CA:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6303EFFF2726F08B881E5250A98F38D5F9472CA7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97785c3c-9e15-4fda-a575-3e8b3a99732b.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 149.186.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:03:ef:ff:27:26:f0:8b:88:1e:52:50:a9:8f:38:d5:f9:47:2c:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=58cf22ed687b43385a0e823c1c39a40ad714b310d3f0f7698333802206d6cc00, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:38:b5:9b:3a:5b:5f:38:21:01:6f:f9:70:0a: b6:7c:7b:c7:13:93:57:e0:d4:28:75:9d:27:0b:ab: 9d:42:04:78:e1:e1:5a:fa:0d:2a:6d:14:bc:9b:a7: 81:f0:8e:32:00:a8:a0:10:f0:ec:eb:ce:fe:f3:cc: 47:19:97:28:6a:1a:82:33:ce:bf:70:d0:ac:65:97: 2d:91:4f:74:2f:dd:5b:7a:bf:b5:7a:f1:61:d8:18: 5d:16:31:93:9b:82:53:83:65:85:c8:53:98:6f:7f: 30:c1:f9:36:0f:20:b6:e7:78:9e:ed:66:ef:1d:0b: 4b:4f:14:5e:97:bb:de:8a:40:c1:79:b3:fa:13:77: d9:b0:b0:eb:59:b2:b4:d9:08:ce:06:f5:d8:d9:68: e3:2e:c7:0b:0a:41:ef:48:82:93:11:2b:01:48:63: 7f:21:75:00:7a:30:70:86:c6:b6:e3:73:23:31:4a: fd:5e:8a:be:72:98:90:6f:2e:a6:bf:da:e2:c1:f9: a9:b8:c8:d8:8b:45:17:b9:80:4b:93:f4:d8:59:49: 89:51:e8:6e:9b:ae:57:fa:a4:02:06:b3:96:fe:81: 96:41:7d:1d:12:c8:c9:fc:ba:4a:db:1d:d2:fa:48: 6a:ef:cb:ce:91:6f:84:a0:86:fd:f9:4e:a1:f6:5b: b0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D5:D3:E4:99:B1:A4:A8:63:3A:0F:F7:87:99:88:B5:BC:F0:CA:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97785c3c-9e15-4fda-a575-3e8b3a99732b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.186.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9c:2f:8a:63:45:0d:af:15:7c:97:00:61:96:00:6c:38:50:49: 5d:c8:47:bc:22:11:68:db:af:1f:80:d2:d0:ce:97:6a:91:0e: 31:3f:cf:90:1c:29:35:c3:3c:b6:e7:3c:d8:9e:a7:1c:87:c2: c9:64:a6:5d:a1:a0:b0:16:03:e1:cc:ba:c1:b2:29:20:1d:bc: 9f:5e:36:8d:83:61:7a:03:61:b4:8c:35:1c:55:9e:32:a9:d1: f1:bd:c7:a5:0f:68:21:d1:e7:cc:99:00:3f:7e:b8:26:72:44: 27:79:80:5f:ec:09:db:d6:7b:32:a7:d7:63:31:28:6d:06:cc: b5:a4:7b:01:e1:f5:95:56:b6:ab:50:1e:2e:e7:9c:21:8d:75: e0:f9:fe:0c:bb:f8:17:f3:c9:4c:28:97:23:e2:06:1b:43:fa: 5a:a7:aa:be:86:f5:fb:1a:36:58:a7:cd:98:8f:cd:61:b9:39: e8:7f:a9:3e:67:33:03:07:d8:57:eb:24:b3:5c:79:16:03:d1: 12:c3:4a:1d:0f:e7:da:f5:a8:f6:c9:10:5b:3d:0a:e2:07:2c: d7:3f:ae:9c:07:f1:9a:9e:a1:66:03:12:7c:c9:4b:b8:cb:97: dd:f9:45:e3:75:0c:62:cc:d9:e4:d8:15:8f:e1:90:fa:84:74: ed:dd:bd:16 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYwPv/ycm8IuIHlJQqY841flHLKcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGNmMjJlZDY4N2I0MzM4NWEwZTgyM2MxYzM5YTQwYWQ3 MTRiMzEwZDNmMGY3Njk4MzMzODAyMjA2ZDZjYzAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIOLWbOltfOCEBb/lwCrZ8e8cTk1fg1Ch1nScLq51CBHjh 4Vr6DSptFLybp4HwjjIAqKAQ8Ozrzv7zzEcZlyhqGoIzzr9w0Kxlly2RT3Qv3Vt6 v7V68WHYGF0WMZObglODZYXIU5hvfzDB+TYPILbneJ7tZu8dC0tPFF6Xu96KQMF5 s/oTd9mwsOtZsrTZCM4G9djZaOMuxwsKQe9IgpMRKwFIY38hdQB6MHCGxrbjcyMx Sv1eir5ymJBvLqa/2uLB+am4yNiLRRe5gEuT9NhZSYlR6G6brlf6pAIGs5b+gZZB fR0SyMn8ukrbHdL6SGrvy86Rb4Sghv35TqH2W7DzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0dXT5JmxpKhjOg/3h5mItbzwynEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3Nzg1YzNjLTllMTUtNGZkYS1hNTc1LTNlOGIzYTk5NzMyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVujANBgkqhkiG9w0BAQsFAAOCAQEAnC+KY0UNrxV8lwBhlgBsOFBJXchH vCIRaNuvH4DS0M6XapEOMT/PkBwpNcM8tuc82J6nHIfCyWSmXaGgsBYD4cy6wbIp IB28n142jYNhegNhtIw1HFWeMqnR8b3HpQ9oIdHnzJkAP364JnJEJ3mAX+wJ29Z7 MqfXYzEobQbMtaR7AeH1lVa2q1AeLuecIY114Pn+DLv4F/PJTCiXI+IGG0P6Wqeq vob1+xo2WKfNmI/NYbk56H+pPmczAwfYV+sks1x5FgPREsNKHQ/n2vWo9skQWz0K 4gcs1z+unAfxmp6hZgMSfMlLuMuX3flF43UMYszZ5NgVj+GQ+oR07d29Fg== -----END CERTIFICATE-----Generated at Thu May 2 08:02:36 2024 by rpki-client on console-ams.rpki-client.org