$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b572893b-29c7-4c92-a48a-a28bfd0da852.roa File: b572893b-29c7-4c92-a48a-a28bfd0da852.roa (raw, json) Hash identifier: mgAtWIgcdXe8Lipy4OM/T1OA9GsvCZeh0tNFoaA+3wQ= Subject key identifier: 7C:4C:9D:F7:EF:B6:2E:4C:8C:AF:BA:44:78:20:35:A0:C2:7C:F2:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 620969E7ED93C9F7D151A16ADA34DDBE17D56ABD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b572893b-29c7-4c92-a48a-a28bfd0da852.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 40.195.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:09:69:e7:ed:93:c9:f7:d1:51:a1:6a:da:34:dd:be:17:d5:6a:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=1ea889b6ecaea0fab5ebdc2b5bacc2de3b0a94994c1f916be1637c8614b8544b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:82:e9:97:bb:f3:a8:8e:7d:ea:57:2a:20:54: b6:90:a7:b4:c8:75:ea:53:34:5d:a5:8e:83:56:83: 23:e3:98:08:75:2b:92:3e:cd:5c:c7:45:00:f2:ee: c4:02:10:67:c4:77:c9:0d:8b:b8:43:4c:55:9e:52: 1d:56:8d:65:51:84:14:1d:d4:2b:f4:fd:31:bf:35: a0:37:84:de:f5:a8:ba:dd:57:e1:3c:75:26:1d:69: f1:de:be:56:89:17:4f:a8:5a:ce:ea:0d:14:01:71: 75:d9:b2:79:29:11:17:c3:0f:3d:7d:c9:13:b0:1c: 16:bd:50:d0:68:8b:2e:01:0e:f3:bd:32:f6:71:6c: e5:72:74:42:dd:f0:75:93:78:97:77:68:0b:a5:77: ad:7b:33:c3:eb:10:5d:f2:f5:35:95:11:1b:e5:90: 15:ad:89:7e:a9:46:de:b7:cb:7f:7c:1d:71:47:09: be:a7:6d:08:56:b6:bd:36:fd:c6:77:90:28:b3:cc: 17:97:42:f9:d7:a4:7f:03:8c:51:9e:60:08:8f:bb: b2:ad:be:f1:c8:f5:f6:f3:e0:b4:82:eb:88:89:00: 67:4a:fa:12:cd:4f:22:51:88:c1:b6:ce:6e:01:e7: 56:e6:fc:ff:47:4f:28:3a:27:e4:c5:5d:d9:4a:cc: 3f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:4C:9D:F7:EF:B6:2E:4C:8C:AF:BA:44:78:20:35:A0:C2:7C:F2:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b572893b-29c7-4c92-a48a-a28bfd0da852.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3b:34:f2:f2:2c:cd:a4:c6:e5:cf:08:c8:07:98:f2:e5:75:2d: f1:94:57:85:db:51:1f:34:63:3f:0a:af:4f:ba:ed:db:40:cb: 98:b5:93:c5:02:fc:8b:48:b9:10:05:c2:5f:57:ef:9c:f7:fb: a9:fd:61:66:0f:57:c2:54:be:9a:0f:f1:36:33:0b:88:73:25: 2e:11:a2:b8:8c:96:7f:dd:ef:3b:6a:00:92:42:4b:a2:10:0a: d0:26:27:8c:cb:c3:46:05:e4:9d:80:bc:92:7b:69:66:4b:40: fd:9a:8e:b2:bd:eb:ea:45:30:68:b0:7a:d3:b0:27:27:b5:d1: 5f:5d:4a:5f:3c:04:f8:15:6c:c1:53:15:60:ed:81:02:77:b1: 7d:48:98:6d:53:88:23:6f:ce:9e:26:a0:d9:84:1d:cd:56:44: 7a:aa:ea:93:dd:74:34:04:39:66:be:a1:d7:0f:a8:ed:67:5b: 2e:9d:ad:df:9d:5d:1c:e9:f9:4d:0f:9f:c2:4c:5d:9d:a7:58: 4a:17:6e:26:38:94:e4:e6:43:a3:7d:02:4d:bd:42:0d:30:e2: ea:63:67:66:74:27:c1:17:f1:e8:2e:2f:65:b0:67:cb:64:26: 78:75:8a:d3:26:41:04:d7:46:55:84:46:66:96:c2:b1:80:21: 72:55:80:f8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYglp5+2TyffRUaFq2jTdvhfVar0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWE4ODliNmVjYWVhMGZhYjVlYmRjMmI1YmFjYzJkZTNi MGE5NDk5NGMxZjkxNmJlMTYzN2M4NjE0Yjg1NDRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD5gumXu/Oojn3qVyogVLaQp7TIdepTNF2ljoNWgyPjmAh1 K5I+zVzHRQDy7sQCEGfEd8kNi7hDTFWeUh1WjWVRhBQd1Cv0/TG/NaA3hN71qLrd V+E8dSYdafHevlaJF0+oWs7qDRQBcXXZsnkpERfDDz19yROwHBa9UNBoiy4BDvO9 MvZxbOVydELd8HWTeJd3aAuld617M8PrEF3y9TWVERvlkBWtiX6pRt63y398HXFH Cb6nbQhWtr02/cZ3kCizzBeXQvnXpH8DjFGeYAiPu7KtvvHI9fbz4LSC64iJAGdK +hLNTyJRiMG2zm4B51bm/P9HTyg6J+TFXdlKzD9/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfEyd9++2LkyMr7pEeCA1oMJ88mkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1NzI4OTNiLTI5YzctNGM5Mi1hNDhhLWEyOGJmZDBkYTg1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowzANBgkqhkiG9w0BAQsFAAOCAQEAOzTy8izNpMblzwjIB5jy5XUt8ZRX hdtRHzRjPwqvT7rt20DLmLWTxQL8i0i5EAXCX1fvnPf7qf1hZg9XwlS+mg/xNjML iHMlLhGiuIyWf93vO2oAkkJLohAK0CYnjMvDRgXknYC8kntpZktA/ZqOsr3r6kUw aLB607AnJ7XRX11KXzwE+BVswVMVYO2BAnexfUiYbVOII2/Oniag2YQdzVZEeqrq k910NAQ5Zr6h1w+o7WdbLp2t351dHOn5TQ+fwkxdnadYShduJjiU5OZDo30CTb1C DTDi6mNnZnQnwRfx6C4vZbBny2QmeHWK0yZBBNdGVYRGZpbCsYAhclWA+A== -----END CERTIFICATE-----Generated at Thu May 9 01:26:22 2024 by rpki-client on console-ams.rpki-client.org