$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b971328c-a37b-45b1-9c93-c0934a356378.roa File: b971328c-a37b-45b1-9c93-c0934a356378.roa (raw, json) Hash identifier: uwYt0aVMolg6/RUd1fBi2mdZ8DEycFRZeuUcJ5XjlhM= Subject key identifier: 96:41:A3:68:F7:A8:59:9C:D7:76:44:5B:14:AD:A3:73:A3:0E:4F:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 100B3127F31A1270A094E0618EAA0936AC7BD68B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b971328c-a37b-45b1-9c93-c0934a356378.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 57.84.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:0b:31:27:f3:1a:12:70:a0:94:e0:61:8e:aa:09:36:ac:7b:d6:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=3a466c383b19f6013acd58422631222383bdc7c8771680b4be3e83f3e4170334, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:af:1d:eb:cb:39:de:7c:bb:9e:cd:3f:e4:fa: 75:16:52:9c:cd:51:6f:55:bf:c0:06:79:03:58:2e: 71:e2:be:34:3b:58:b8:7f:82:bb:ea:33:10:eb:dc: 48:6d:d9:74:80:19:b9:2b:de:ed:57:1d:53:be:97: e9:1d:e3:c8:bf:ae:a6:5f:bb:e5:fd:6b:75:47:df: e8:13:4f:8d:14:6d:ef:d1:10:02:c9:29:28:d2:87: 6b:78:8c:38:c8:df:51:a2:25:49:ec:1b:cd:b8:f5: 3a:53:62:e3:3b:fc:9a:8a:6e:fd:44:98:f9:ba:db: bf:85:33:5b:0d:4d:1b:f2:03:8a:41:00:17:db:63: f4:50:c2:0a:97:fc:bd:d8:85:91:e5:2c:e5:94:30: 04:53:a2:ad:95:0a:c8:af:11:98:83:83:ff:2a:af: b2:7a:9d:49:57:a4:25:78:9c:23:d1:23:86:2a:2a: d8:10:fc:76:97:4b:99:44:c0:0d:de:44:57:12:5f: 40:e9:92:91:78:30:7f:e7:b4:b8:65:a7:cc:e6:38: 7f:66:f1:a4:93:ce:89:88:dc:93:a2:53:b8:f7:8a: 14:ef:7c:df:78:e5:84:58:a8:2c:64:82:a4:78:d2: 75:5e:7c:c8:89:11:e5:55:82:7b:93:7a:5a:61:f8: 6d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:41:A3:68:F7:A8:59:9C:D7:76:44:5B:14:AD:A3:73:A3:0E:4F:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b971328c-a37b-45b1-9c93-c0934a356378.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.84.0.0/16 Signature Algorithm: sha256WithRSAEncryption 33:fc:9c:9f:d6:05:5a:33:39:6f:ef:64:8c:9b:13:e9:a5:03: d2:08:7e:e7:cb:64:e7:de:f5:0d:4b:fa:13:7c:29:08:6c:e6: c2:33:e1:c0:0e:d0:6f:95:6a:f7:3f:7a:0f:50:ac:b9:9b:19: 3a:5c:04:97:7a:0c:bf:2e:16:a8:a3:0f:6f:64:5b:41:12:91: a0:ce:1d:f5:31:66:84:90:8a:db:f8:f0:b6:23:14:40:8a:27: 1d:f0:2b:3d:6f:93:84:19:8c:9f:b3:51:51:70:f5:ea:a8:0d: ef:58:05:3d:bc:2c:6c:37:32:1e:be:14:99:3d:03:7d:9e:d6: 27:ea:db:e5:5d:cd:3b:6e:26:bf:c1:26:70:8f:97:12:aa:92: 20:b6:93:a5:07:c5:8c:b0:2c:b1:53:31:79:69:53:9e:45:f0: 08:84:ae:6b:6b:e4:05:e8:20:b2:ec:0f:f7:82:95:14:43:d2: 32:d4:52:8d:5b:af:69:43:4b:39:46:36:90:e4:ed:56:c2:04: a5:5e:f3:b4:39:37:90:98:28:33:a7:2e:32:94:74:7d:1d:44: c6:cb:25:aa:04:29:74:97:5b:77:ca:38:bc:5d:41:0c:af:fc: b7:db:ab:c9:36:ad:f5:89:e7:5b:0a:ee:c3:05:a1:63:53:7b: 4b:2d:df:cf -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEAsxJ/MaEnCglOBhjqoJNqx71oswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTQ2NmMzODNiMTlmNjAxM2FjZDU4NDIyNjMxMjIyMzgz YmRjN2M4NzcxNjgwYjRiZTNlODNmM2U0MTcwMzM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwrx3ryznefLuezT/k+nUWUpzNUW9Vv8AGeQNYLnHivjQ7 WLh/grvqMxDr3Eht2XSAGbkr3u1XHVO+l+kd48i/rqZfu+X9a3VH3+gTT40Ube/R EALJKSjSh2t4jDjI31GiJUnsG8249TpTYuM7/JqKbv1EmPm627+FM1sNTRvyA4pB ABfbY/RQwgqX/L3YhZHlLOWUMARToq2VCsivEZiDg/8qr7J6nUlXpCV4nCPRI4Yq KtgQ/HaXS5lEwA3eRFcSX0DpkpF4MH/ntLhlp8zmOH9m8aSTzomI3JOiU7j3ihTv fN945YRYqCxkgqR40nVefMiJEeVVgnuTelph+G0bAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlkGjaPeoWZzXdkRbFK2jc6MOT4kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5NzEzMjhjLWEzN2ItNDViMS05YzkzLWMwOTM0YTM1NjM3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5VDANBgkqhkiG9w0BAQsFAAOCAQEAM/ycn9YFWjM5b+9kjJsT6aUD0gh+ 58tk5971DUv6E3wpCGzmwjPhwA7Qb5Vq9z96D1CsuZsZOlwEl3oMvy4WqKMPb2Rb QRKRoM4d9TFmhJCK2/jwtiMUQIonHfArPW+ThBmMn7NRUXD16qgN71gFPbwsbDcy Hr4UmT0DfZ7WJ+rb5V3NO24mv8EmcI+XEqqSILaTpQfFjLAssVMxeWlTnkXwCISu a2vkBeggsuwP94KVFEPSMtRSjVuvaUNLOUY2kOTtVsIEpV7ztDk3kJgoM6cuMpR0 fR1ExsslqgQpdJdbd8o4vF1BDK/8t9uryTat9YnnWwruwwWhY1N7Sy3fzw== -----END CERTIFICATE-----Generated at Thu May 2 17:17:16 2024 by rpki-client on console-ams.rpki-client.org