$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f0d22ee-6042-49d0-9ef3-4b08feed0f2d.roa File: 9f0d22ee-6042-49d0-9ef3-4b08feed0f2d.roa (raw, json) Hash identifier: 9ZitWzyXNK6x6dWMgiv/yx9AG8LLTHnncJcgUh1dpts= Subject key identifier: 22:35:43:6F:31:87:BB:4E:E6:CC:5E:6D:BB:28:48:FA:34:99:21:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2499648EA47215E963A0F5D24B0DF6253279712F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f0d22ee-6042-49d0-9ef3-4b08feed0f2d.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 158.254.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:99:64:8e:a4:72:15:e9:63:a0:f5:d2:4b:0d:f6:25:32:79:71:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=2b8d0941f61de938c76089d2b51badd40631a2af4d48418b236dcc53aca46e4e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:dc:20:b6:5c:42:7a:da:92:ad:8f:22:a8:79: 8c:c0:c2:1a:ba:60:63:44:04:e8:aa:85:0d:27:6b: e3:5e:b8:18:94:0e:18:7f:5b:8a:c0:51:72:a1:e4: 6e:a0:dd:82:19:8b:09:ee:cc:eb:09:65:dc:25:f8: 33:4a:66:1b:7c:9b:49:27:cb:85:bf:fb:fb:35:3f: 6d:4c:6e:99:1c:4a:b9:7d:47:fa:7f:8c:ae:93:72: fa:89:43:46:35:e6:10:19:f8:3a:42:bc:d2:27:65: a5:c8:b0:18:d5:53:3e:50:59:b7:77:0f:9f:93:2e: 59:49:e8:50:be:49:26:82:5d:94:49:b0:40:a7:e4: 1b:bb:3a:c3:69:3e:7a:4f:9c:82:f5:1d:54:f9:c0: 27:1f:94:bc:17:bb:12:39:0d:7a:bf:7b:1f:71:7f: 77:97:0d:29:58:89:11:10:4e:80:67:da:d9:e8:ac: 16:5e:cb:c5:04:23:2a:a5:8f:e9:96:d3:c0:b5:aa: e3:15:3b:51:ac:b1:8f:ac:af:74:ea:8a:77:28:9e: 67:cf:19:38:42:f0:b6:c0:91:06:9e:e9:a7:ee:0a: 81:8d:8f:d4:05:0a:a7:0f:74:84:d2:4b:0a:53:bb: f8:8b:14:05:34:6b:f6:3d:60:29:db:ba:a8:dc:b6: 80:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:35:43:6F:31:87:BB:4E:E6:CC:5E:6D:BB:28:48:FA:34:99:21:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f0d22ee-6042-49d0-9ef3-4b08feed0f2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.254.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0e:3e:a5:6f:0c:1b:e5:1a:12:a7:0d:76:bf:81:69:66:49:fc: 51:5f:9b:9e:25:99:dc:3c:66:57:95:c9:a7:9d:7b:99:45:9f: d8:5b:ed:f7:86:2a:7d:d0:97:49:77:45:cf:79:5c:e3:15:20: dd:e7:00:94:aa:c6:ce:b2:80:93:a5:1e:f7:9f:42:7f:12:03: 7f:94:35:b4:09:ed:e7:f6:a2:5d:b8:bc:00:c4:b9:b5:ae:3c: 70:1e:70:3b:32:be:26:f6:56:18:dd:a6:d4:9f:60:3d:1f:16: 2f:af:01:18:0a:d3:c2:09:2e:f7:21:1f:49:b2:9c:92:51:5c: d1:a0:d2:a9:5e:11:d6:60:9e:b2:71:f2:ec:d6:17:20:b1:d9: b7:3f:d1:5e:2f:06:9f:ca:37:55:7d:3a:f0:d3:ae:bd:b8:31: ae:c8:ad:ac:06:0f:cb:a2:a2:d3:3d:71:43:88:8c:1d:29:e6: e1:a9:ef:9c:1b:8c:c5:fc:ad:99:97:2a:b1:fd:ea:9c:16:1f: ea:3f:3b:15:4d:32:8e:64:0d:81:68:11:12:5b:08:fc:12:c2: 67:99:8c:f8:55:42:fd:6f:f5:e4:cc:b8:64:7d:0b:ea:0a:42: e0:b9:3a:d0:f2:5e:9e:ab:b3:d1:ee:b3:89:42:64:a3:2d:1c: e5:62:79:d2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJJlkjqRyFeljoPXSSw32JTJ5cS8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjhkMDk0MWY2MWRlOTM4Yzc2MDg5ZDJiNTFiYWRkNDA2 MzFhMmFmNGQ0ODQxOGIyMzZkY2M1M2FjYTQ2ZTRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy3CC2XEJ62pKtjyKoeYzAwhq6YGNEBOiqhQ0na+NeuBiU Dhh/W4rAUXKh5G6g3YIZiwnuzOsJZdwl+DNKZht8m0kny4W/+/s1P21MbpkcSrl9 R/p/jK6TcvqJQ0Y15hAZ+DpCvNInZaXIsBjVUz5QWbd3D5+TLllJ6FC+SSaCXZRJ sECn5Bu7OsNpPnpPnIL1HVT5wCcflLwXuxI5DXq/ex9xf3eXDSlYiREQToBn2tno rBZey8UEIyqlj+mW08C1quMVO1GssY+sr3TqinconmfPGThC8LbAkQae6afuCoGN j9QFCqcPdITSSwpTu/iLFAU0a/Y9YCnbuqjctoDPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIjVDbzGHu07mzF5tuyhI+jSZIaswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmMGQyMmVlLTYwNDItNDlkMC05ZWYzLTRiMDhmZWVkMGYyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCe/jANBgkqhkiG9w0BAQsFAAOCAQEADj6lbwwb5RoSpw12v4FpZkn8UV+b niWZ3DxmV5XJp517mUWf2Fvt94YqfdCXSXdFz3lc4xUg3ecAlKrGzrKAk6Ue959C fxIDf5Q1tAnt5/aiXbi8AMS5ta48cB5wOzK+JvZWGN2m1J9gPR8WL68BGArTwgku 9yEfSbKcklFc0aDSqV4R1mCesnHy7NYXILHZtz/RXi8Gn8o3VX068NOuvbgxrsit rAYPy6Ki0z1xQ4iMHSnm4anvnBuMxfytmZcqsf3qnBYf6j87FU0yjmQNgWgRElsI /BLCZ5mM+FVC/W/15My4ZH0L6gpC4Lk60PJenquz0e6ziUJkoy0c5WJ50g== -----END CERTIFICATE-----Generated at Thu May 9 01:26:20 2024 by rpki-client on console-ams.rpki-client.org