$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7016da9-3ba0-49db-a184-72bb19d4a3c4.roa File: a7016da9-3ba0-49db-a184-72bb19d4a3c4.roa (raw, json) Hash identifier: PZqmZfmX0i/2OvQ3OTQIah8CjeARbpiCvI0YXMPDoq8= Subject key identifier: 00:A4:94:63:B3:36:34:EB:53:37:D8:3C:81:CF:C3:4B:F3:5C:F0:85 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D50EF11A8FA471A19CAEFA77E9151BC3D1ACBE6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7016da9-3ba0-49db-a184-72bb19d4a3c4.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.212.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:50:ef:11:a8:fa:47:1a:19:ca:ef:a7:7e:91:51:bc:3d:1a:cb:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=4ce0f8ff266af5505965be0b2103604c19a029519396de8b6b9285461d4accc2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:3c:c0:29:2e:39:2d:2d:fd:09:09:fd:0b:73: d4:0b:ad:c0:7c:bf:99:6b:87:b4:65:05:58:dd:27: d1:d4:13:09:52:26:a6:cf:0e:54:45:8f:1f:81:7e: 53:e8:0c:41:cd:6b:1a:fa:e5:56:12:ff:c3:79:29: e1:b1:4a:91:1e:73:1b:1c:5e:c6:39:53:32:2e:7c: 1f:4d:32:05:fa:6e:b9:83:17:8e:0d:81:2a:ad:be: 0b:d6:ea:70:a9:61:5e:ce:14:7d:5c:08:07:37:bb: 20:b8:61:09:f2:30:70:b0:80:13:ed:f1:d8:61:3f: 54:b8:99:14:6c:1b:79:9a:15:75:ee:59:88:38:51: b5:4b:88:83:18:3f:a8:e2:e8:fe:1f:ff:77:eb:ba: 50:c4:0e:6b:b2:4e:57:b1:9b:7e:11:41:8c:d1:79: 70:4c:3f:2e:2e:14:eb:1c:a2:d3:a8:c2:66:06:b6: f9:ed:b2:ea:c0:b1:4e:ac:d2:5a:16:58:5e:8d:f4: d8:66:2b:dc:26:40:6d:b5:c5:c5:26:13:fb:35:e5: 22:ba:b1:ab:f2:57:a2:45:6e:93:26:ac:06:77:38: 92:d4:0b:24:02:ab:09:1d:22:6f:49:12:a6:a8:53: c7:87:42:b0:7b:d5:9f:e0:d0:be:1d:05:ba:ca:c9: 59:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A4:94:63:B3:36:34:EB:53:37:D8:3C:81:CF:C3:4B:F3:5C:F0:85 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7016da9-3ba0-49db-a184-72bb19d4a3c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.212.0.0/16 Signature Algorithm: sha256WithRSAEncryption a7:4d:81:4a:50:1b:1a:82:97:01:10:19:a2:df:2d:11:13:ac: 5d:11:ca:12:97:2d:cf:cc:d1:4b:ca:8b:7e:e3:80:77:2e:83: a5:47:ca:48:70:36:d8:b3:db:58:05:ce:da:b1:c2:ce:2a:94: dd:57:90:9d:15:18:ae:1a:ff:b3:ab:51:f9:9f:95:e7:e0:60: 66:c3:e1:ca:0a:29:08:6a:db:1c:05:98:fc:c3:d4:98:b5:5a: 10:49:5a:ed:a1:35:59:ae:ae:15:7a:db:d6:c8:b5:8f:33:bf: d2:25:b7:5a:86:4a:e1:9a:5e:ba:c4:32:6e:8c:88:ea:bd:d9: 10:67:2b:37:04:4e:68:fe:54:25:b6:46:f2:7e:82:38:df:d9: de:20:06:da:48:55:88:1e:8a:3c:7b:93:c4:02:c6:59:54:04: 6e:45:a5:1a:02:83:8e:67:23:03:53:e2:81:3b:88:30:4a:b3: 19:e7:b3:4b:09:ff:85:06:a3:89:7e:d2:d8:aa:fa:0f:96:cf: d9:86:e1:90:9c:9f:40:ea:43:20:a9:68:62:34:54:88:23:38: b2:b5:79:07:93:1c:b7:8c:67:9e:fd:34:d8:e0:93:65:02:a6: b0:61:3e:56:9f:0e:8e:95:ac:57:6f:27:2d:ee:c4:4d:8b:91: df:19:c3:bf -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTVDvEaj6RxoZyu+nfpFRvD0ay+YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2UwZjhmZjI2NmFmNTUwNTk2NWJlMGIyMTAzNjA0YzE5 YTAyOTUxOTM5NmRlOGI2YjkyODU0NjFkNGFjY2MyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdPMApLjktLf0JCf0Lc9QLrcB8v5lrh7RlBVjdJ9HUEwlS JqbPDlRFjx+BflPoDEHNaxr65VYS/8N5KeGxSpEecxscXsY5UzIufB9NMgX6brmD F44NgSqtvgvW6nCpYV7OFH1cCAc3uyC4YQnyMHCwgBPt8dhhP1S4mRRsG3maFXXu WYg4UbVLiIMYP6ji6P4f/3frulDEDmuyTlexm34RQYzReXBMPy4uFOscotOowmYG tvntsurAsU6s0loWWF6N9NhmK9wmQG21xcUmE/s15SK6savyV6JFbpMmrAZ3OJLU CyQCqwkdIm9JEqaoU8eHQrB71Z/g0L4dBbrKyVmjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAKSUY7M2NOtTN9g8gc/DS/Nc8IUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3MDE2ZGE5LTNiYTAtNDlkYi1hMTg0LTcyYmIxOWQ0YTNjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA41DANBgkqhkiG9w0BAQsFAAOCAQEAp02BSlAbGoKXARAZot8tEROsXRHK Epctz8zRS8qLfuOAdy6DpUfKSHA22LPbWAXO2rHCziqU3VeQnRUYrhr/s6tR+Z+V 5+BgZsPhygopCGrbHAWY/MPUmLVaEEla7aE1Wa6uFXrb1si1jzO/0iW3WoZK4Zpe usQyboyI6r3ZEGcrNwROaP5UJbZG8n6CON/Z3iAG2khViB6KPHuTxALGWVQEbkWl GgKDjmcjA1PigTuIMEqzGeezSwn/hQajiX7S2Kr6D5bP2YbhkJyfQOpDIKloYjRU iCM4srV5B5Mct4xnnv002OCTZQKmsGE+Vp8OjpWsV28nLe7ETYuR3xnDvw== -----END CERTIFICATE-----Generated at Thu May 9 01:26:21 2024 by rpki-client on console-ams.rpki-client.org