$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b237239e-c1ea-462c-94ce-5a18f99f3fbe.roa File: b237239e-c1ea-462c-94ce-5a18f99f3fbe.roa (raw, json) Hash identifier: ND04e82bR1y+uFWZsjl7Z7ROT8Y3PRaW8x+gFqi1E+E= Subject key identifier: 35:99:7A:1D:A1:F0:3E:76:44:72:1C:20:B9:6C:66:98:F9:52:F0:20 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B311F020C77B22F8B20BE2EB9DE6061BFBE0071 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b237239e-c1ea-462c-94ce-5a18f99f3fbe.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:31:1f:02:0c:77:b2:2f:8b:20:be:2e:b9:de:60:61:bf:be:00:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=3dc6457880b927b6b77e1ee08c177dd88442d53f30bd1b25b900c7bf5f92f02a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7a:18:4c:bf:ca:f0:59:ac:fe:f1:c4:e4:b9: 2a:6f:12:55:06:f2:e2:e4:31:17:fb:ac:32:95:2e: a1:d0:d9:a1:d5:b4:b4:be:e9:d0:54:5c:eb:74:b8: ef:ae:c0:63:d8:87:89:37:16:46:7f:93:a4:e9:e7: 30:14:5e:42:a6:2d:4d:21:4a:c0:49:cf:6a:07:ae: 4d:70:91:e4:62:0c:e5:9c:66:5b:2c:19:2a:bc:c6: eb:35:26:31:e6:60:35:ea:6a:21:b9:38:53:59:20: fb:ae:17:39:9c:5a:0f:9f:15:f3:82:7a:86:6f:17: c3:ea:8b:89:11:e0:24:5d:63:04:18:31:bf:c6:ac: b8:27:62:ed:af:1d:51:02:9a:5a:6b:50:f0:59:b9: ba:9f:fa:35:16:b5:9d:8d:b3:26:a2:92:84:c2:b2: 9d:24:c0:29:4a:93:9c:c0:8a:30:36:ac:62:be:45: 65:ed:36:84:50:43:b4:37:fb:90:6e:b2:f5:24:b3: 25:9b:27:a7:39:89:df:21:f3:ae:d5:3d:fe:f7:78: 62:75:75:62:9f:ba:16:49:f3:69:a6:91:f3:67:a2: ad:f4:2f:62:23:8d:6f:93:50:09:f8:c8:66:75:c7: be:9f:88:4b:80:c0:52:38:32:74:2d:0f:0f:aa:70: 6f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:99:7A:1D:A1:F0:3E:76:44:72:1C:20:B9:6C:66:98:F9:52:F0:20 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b237239e-c1ea-462c-94ce-5a18f99f3fbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.36.0/22 Signature Algorithm: sha256WithRSAEncryption 26:38:c9:2d:34:e4:1a:a6:f8:0f:71:37:36:26:79:59:a0:e0: 2d:67:c7:d0:a8:64:9c:8f:6b:ab:d2:f7:83:c5:9a:f1:7e:63: c1:27:7b:16:cb:f4:10:b8:34:b2:d4:12:65:b1:ed:da:6d:36: 4d:b9:8c:e8:97:e1:0b:c5:39:96:22:5a:a6:c8:c0:2b:98:d9: cc:0e:76:fc:d3:b1:9b:49:90:a9:74:47:cc:da:87:14:1c:cb: 26:f6:60:9a:fb:c0:25:1d:18:dc:5a:00:61:ac:29:12:3a:4f: 88:ed:60:fc:13:7f:d3:30:18:c2:b3:1b:24:d4:2e:b2:14:54: 5e:89:2a:ab:f6:4f:d8:78:1c:c1:47:c9:ba:99:15:47:4b:44: 68:bd:01:bf:60:ee:98:00:02:69:b8:13:1e:51:24:d3:bd:4a: 06:cf:c5:d8:c8:88:6d:91:33:9f:39:50:9c:c7:74:5e:a0:22: 85:54:54:08:87:5e:7d:78:88:9d:90:41:13:2b:5c:4f:bb:44: 09:a9:e1:7f:3e:52:ee:df:ca:d1:71:af:76:10:53:fc:19:a3: ac:fb:82:40:be:1a:2a:1a:61:2f:cf:d2:6d:d3:00:93:87:fe: fd:27:26:46:5a:0e:d7:15:8e:aa:12:50:cf:79:6f:5c:70:fa: d8:f8:5c:da -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCzEfAgx3si+LIL4uud5gYb++AHEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZGM2NDU3ODgwYjkyN2I2Yjc3ZTFlZTA4YzE3N2RkODg0 NDJkNTNmMzBiZDFiMjViOTAwYzdiZjVmOTJmMDJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPehhMv8rwWaz+8cTkuSpvElUG8uLkMRf7rDKVLqHQ2aHV tLS+6dBUXOt0uO+uwGPYh4k3FkZ/k6Tp5zAUXkKmLU0hSsBJz2oHrk1wkeRiDOWc ZlssGSq8xus1JjHmYDXqaiG5OFNZIPuuFzmcWg+fFfOCeoZvF8Pqi4kR4CRdYwQY Mb/GrLgnYu2vHVECmlprUPBZubqf+jUWtZ2NsyaikoTCsp0kwClKk5zAijA2rGK+ RWXtNoRQQ7Q3+5BusvUksyWbJ6c5id8h867VPf73eGJ1dWKfuhZJ82mmkfNnoq30 L2IjjW+TUAn4yGZ1x76fiEuAwFI4MnQtDw+qcG/LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNZl6HaHwPnZEchwguWxmmPlS8CAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyMzcyMzllLWMxZWEtNDYyYy05NGNlLTVhMThmOTlmM2ZiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgACQwDQYJKoZIhvcNAQELBQADggEBACY4yS005Bqm+A9xNzYmeVmg4C1n x9CoZJyPa6vS94PFmvF+Y8EnexbL9BC4NLLUEmWx7dptNk25jOiX4QvFOZYiWqbI wCuY2cwOdvzTsZtJkKl0R8zahxQcyyb2YJr7wCUdGNxaAGGsKRI6T4jtYPwTf9Mw GMKzGyTULrIUVF6JKqv2T9h4HMFHybqZFUdLRGi9Ab9g7pgAAmm4Ex5RJNO9SgbP xdjIiG2RM585UJzHdF6gIoVUVAiHXn14iJ2QQRMrXE+7RAmp4X8+Uu7fytFxr3YQ U/wZo6z7gkC+GioaYS/P0m3TAJOH/v0nJkZaDtcVjqoSUM95b1xw+tj4XNo= -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:22 2024 by rpki-client on console-ams.rpki-client.org