$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c97cba-7083-48f3-8280-ad90bc3bee59.roa File: b3c97cba-7083-48f3-8280-ad90bc3bee59.roa (raw, json) Hash identifier: N5QkRX5JPbFvDYHQPgWZRCew4ybwy73dBxw6iWFRai0= Subject key identifier: 99:70:48:D9:65:22:8A:3A:1F:F1:4B:07:B3:96:71:F8:2C:BC:E2:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 260BC548E8B7BCFA6E3E6A4E70C6FD52D27C0874 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c97cba-7083-48f3-8280-ad90bc3bee59.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 192.10.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:0b:c5:48:e8:b7:bc:fa:6e:3e:6a:4e:70:c6:fd:52:d2:7c:08:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=a4ffd91f8c48018a908d855942ba7d668a6fcff8364bceb4aef7bfd84e9f7edd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:34:cf:de:0d:64:57:a3:f2:f4:5f:4c:b5:c1: 44:e1:bc:21:f5:ab:c9:aa:ad:49:7d:f1:3d:59:65: 26:46:e4:3c:62:cd:a3:18:05:a5:2e:9e:2e:3e:e0: e4:53:c3:6f:24:63:32:6d:7c:0f:39:66:37:57:c4: 07:ac:49:00:72:c8:e1:be:35:04:d1:aa:e2:1d:dc: 19:ac:4e:63:e0:71:c5:b3:a6:70:c0:d6:ed:80:2f: 4f:09:26:05:90:96:ed:e7:68:e8:da:ae:10:d3:6e: 36:a5:8c:48:f9:40:4f:2c:eb:89:ad:39:c5:0d:4c: ee:3a:bd:dc:af:36:3e:fd:59:94:40:6a:ec:e8:8d: c7:b3:ad:8a:9b:75:71:77:cb:71:2f:17:68:07:0f: 92:00:dc:4c:89:06:4e:ef:82:e5:f3:2a:f3:98:9c: 54:13:35:7c:11:8b:49:be:71:67:82:67:9c:28:4a: fd:de:a6:e8:38:9d:db:c7:a0:92:fb:3b:c3:16:ef: e1:3b:39:45:c4:86:d3:43:fe:db:bb:01:81:3c:2e: f8:0c:cc:6a:b2:dd:ef:be:fd:38:9a:6c:a6:2c:79: ff:dc:99:9b:d4:88:2a:0e:fd:ca:a3:05:dd:3f:80: df:f9:6f:71:c0:1c:32:f1:22:b6:4f:b0:a5:13:16: 9f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:70:48:D9:65:22:8A:3A:1F:F1:4B:07:B3:96:71:F8:2C:BC:E2:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c97cba-7083-48f3-8280-ad90bc3bee59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.10.0.0/16 Signature Algorithm: sha256WithRSAEncryption 82:a2:0e:b3:06:a5:74:02:c5:57:15:aa:64:01:03:de:28:ae: ed:b8:c7:13:1e:25:07:62:bf:7b:e9:93:c2:f3:e7:d3:5b:40: 4f:10:33:9e:32:2a:a6:97:a8:a0:12:45:2c:03:28:c0:54:f5: b9:73:e0:3a:86:b8:1d:6d:a0:d9:7e:15:8e:4f:14:19:fa:bb: 92:fe:35:9b:ed:46:e7:ff:56:af:4f:30:6e:17:9a:7e:36:21: e8:46:67:87:64:94:b0:05:d1:23:9d:0b:00:95:e7:06:94:f3: c2:9f:53:b2:77:d6:7d:5d:cb:02:f4:fa:eb:7f:d6:7f:df:24: 7b:52:53:f5:98:bd:29:7f:95:9f:8c:53:27:40:7d:04:32:8a: 7c:4f:d8:c0:84:6d:72:9f:8f:87:f1:00:c8:b2:e9:94:8a:3b: a4:a3:b4:44:d4:93:e5:8f:11:9f:03:fb:f2:31:70:10:7d:db: a1:3e:c9:45:05:ae:74:ee:ec:b5:14:02:07:c4:a6:94:59:47: 41:18:6a:db:52:88:d5:44:78:69:51:3f:90:cd:b8:a1:54:ce: 26:ce:95:c7:c3:80:79:70:c3:a5:b8:46:5f:18:97:bf:b9:d2: b7:65:e4:bc:d2:dd:4f:f3:9e:25:36:8e:24:85:9e:f8:0c:1e: ff:ab:5d:d2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJgvFSOi3vPpuPmpOcMb9UtJ8CHQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGZmZDkxZjhjNDgwMThhOTA4ZDg1NTk0MmJhN2Q2Njhh NmZjZmY4MzY0YmNlYjRhZWY3YmZkODRlOWY3ZWRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVNM/eDWRXo/L0X0y1wUThvCH1q8mqrUl98T1ZZSZG5Dxi zaMYBaUuni4+4ORTw28kYzJtfA85ZjdXxAesSQByyOG+NQTRquId3BmsTmPgccWz pnDA1u2AL08JJgWQlu3naOjarhDTbjaljEj5QE8s64mtOcUNTO46vdyvNj79WZRA auzojcezrYqbdXF3y3EvF2gHD5IA3EyJBk7vguXzKvOYnFQTNXwRi0m+cWeCZ5wo Sv3epug4ndvHoJL7O8MW7+E7OUXEhtND/tu7AYE8LvgMzGqy3e++/TiabKYsef/c mZvUiCoO/cqjBd0/gN/5b3HAHDLxIrZPsKUTFp9BAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmXBI2WUiijof8UsHs5Zx+Cy84gUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzYzk3Y2JhLTcwODMtNDhmMy04MjgwLWFkOTBiYzNiZWU1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDACjANBgkqhkiG9w0BAQsFAAOCAQEAgqIOswaldALFVxWqZAED3iiu7bjH Ex4lB2K/e+mTwvPn01tATxAznjIqppeooBJFLAMowFT1uXPgOoa4HW2g2X4Vjk8U Gfq7kv41m+1G5/9Wr08wbheafjYh6EZnh2SUsAXRI50LAJXnBpTzwp9TsnfWfV3L AvT663/Wf98ke1JT9Zi9KX+Vn4xTJ0B9BDKKfE/YwIRtcp+Ph/EAyLLplIo7pKO0 RNST5Y8RnwP78jFwEH3boT7JRQWudO7stRQCB8SmlFlHQRhq21KI1UR4aVE/kM24 oVTOJs6Vx8OAeXDDpbhGXxiXv7nSt2XkvNLdT/OeJTaOJIWe+Awe/6td0g== -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:22 2024 by rpki-client on console-ams.rpki-client.org