$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbbc2612-ccf0-42b7-bf26-d0d263efa041.roa File: bbbc2612-ccf0-42b7-bf26-d0d263efa041.roa (raw, json) Hash identifier: tLnTq2l0rnMt6ArBcGDYdmTgJGHC5PUgfoqVIfSfvOI= Subject key identifier: AA:70:8D:BD:56:9B:F0:D4:CB:7D:46:57:33:1F:A0:F2:B6:F1:FE:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B94B41581B8C20975EA4A734F7EC2F9C653AF60 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbbc2612-ccf0-42b7-bf26-d0d263efa041.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 54.136.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:94:b4:15:81:b8:c2:09:75:ea:4a:73:4f:7e:c2:f9:c6:53:af:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=6ebcc2eddb22453475873472143f0781256267f3da5a57b099f06d7276fc7866, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5b:98:50:21:f7:3a:6c:25:db:70:9f:84:94: 52:bd:e9:34:7e:79:6d:a2:a6:15:e1:18:21:5f:03: a8:52:9a:7d:d2:13:55:74:10:7e:70:f7:ea:eb:15: da:75:bc:ba:47:43:21:86:f7:8f:e6:e3:36:f6:18: 46:14:e4:bd:b5:36:4d:dd:5b:a5:ea:6c:d0:3e:48: c6:20:6a:b8:e0:49:c3:39:00:e8:fa:8a:43:2f:cf: 4c:18:04:18:a3:42:9e:33:2f:db:aa:01:a5:c4:8c: d2:f6:4a:d2:82:9c:98:0b:3d:20:61:de:41:6b:ac: 86:74:f1:da:aa:c3:c1:4b:05:fd:93:56:02:9d:47: 41:60:55:2d:27:02:de:83:13:b9:c1:11:8f:12:7b: 71:a2:e6:bc:9b:63:6f:26:e8:a1:24:d7:61:dd:cc: 46:83:8f:ee:76:ee:64:89:f7:57:b4:d9:88:27:07: d5:09:29:47:c5:36:1c:51:59:a1:cb:de:8e:78:d0: 21:58:44:b5:07:7d:cd:5b:92:58:d6:ef:c0:de:37: 92:6f:c4:1d:13:b8:db:d3:6c:5d:45:9d:22:0d:7d: fd:bd:a0:65:73:9b:e1:18:25:3f:33:e3:85:6c:f7: 81:23:f3:78:20:ca:8c:a6:1e:77:b9:90:ab:d8:a9: 29:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:70:8D:BD:56:9B:F0:D4:CB:7D:46:57:33:1F:A0:F2:B6:F1:FE:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbbc2612-ccf0-42b7-bf26-d0d263efa041.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.136.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:83:38:33:3f:c8:7d:71:0f:5e:d8:f9:cc:77:ce:ba:86:eb: 79:bf:cd:bb:5e:b8:d2:ce:e5:ca:6a:e7:85:30:78:80:c0:30: 0a:78:5c:50:e5:ac:b2:aa:b8:1f:6d:a1:d1:1d:58:c6:34:cb: 6c:88:c9:3a:84:cb:13:6d:21:0f:32:ee:66:55:63:fe:ff:e8: bc:3e:8a:8a:b8:c7:3e:ae:30:7b:8b:4e:11:70:17:a3:dc:b9: 95:94:4c:40:cd:76:a8:0a:4c:70:91:fc:03:d3:7d:30:07:09: 0e:ca:2e:f0:45:d1:ac:c5:95:56:5e:20:58:01:9c:6f:fb:f7: 60:83:db:6f:0f:2a:38:24:d6:8a:27:54:fa:93:95:f7:17:45: 01:a6:0c:aa:dd:d4:ec:ec:b6:b1:82:8c:73:9a:ff:c3:fb:eb: fe:5e:a6:78:d4:37:ae:10:a8:59:5a:6e:ce:ac:20:d9:d4:5b: bb:bb:11:f0:4b:d1:a2:7e:73:a2:2f:cd:16:93:1e:67:7a:8f: d7:72:a5:fc:8b:4e:cf:ee:04:7a:e8:8f:a0:fb:25:ff:2c:90: 23:4a:82:eb:18:22:d5:66:69:9c:5c:36:52:61:bc:e4:9d:1e: 93:a0:a9:e2:5f:fb:cd:e8:79:41:44:4f:87:8d:0e:52:d1:16: b3:94:3d:84 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUG5S0FYG4wgl16kpzT37C+cZTr2AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZWJjYzJlZGRiMjI0NTM0NzU4NzM0NzIxNDNmMDc4MTI1 NjI2N2YzZGE1YTU3YjA5OWYwNmQ3Mjc2ZmM3ODY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbW5hQIfc6bCXbcJ+ElFK96TR+eW2iphXhGCFfA6hSmn3S E1V0EH5w9+rrFdp1vLpHQyGG94/m4zb2GEYU5L21Nk3dW6XqbNA+SMYgarjgScM5 AOj6ikMvz0wYBBijQp4zL9uqAaXEjNL2StKCnJgLPSBh3kFrrIZ08dqqw8FLBf2T VgKdR0FgVS0nAt6DE7nBEY8Se3Gi5rybY28m6KEk12HdzEaDj+527mSJ91e02Ygn B9UJKUfFNhxRWaHL3o540CFYRLUHfc1bkljW78DeN5JvxB0TuNvTbF1FnSINff29 oGVzm+EYJT8z44Vs94Ej83ggyoymHne5kKvYqSkhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqnCNvVab8NTLfUZXMx+g8rbx/nkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JiYmMyNjEyLWNjZjAtNDJiNy1iZjI2LWQwZDI2M2VmYTA0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2iDANBgkqhkiG9w0BAQsFAAOCAQEALoM4Mz/IfXEPXtj5zHfOuobreb/N u1640s7lymrnhTB4gMAwCnhcUOWssqq4H22h0R1YxjTLbIjJOoTLE20hDzLuZlVj /v/ovD6KirjHPq4we4tOEXAXo9y5lZRMQM12qApMcJH8A9N9MAcJDsou8EXRrMWV Vl4gWAGcb/v3YIPbbw8qOCTWiidU+pOV9xdFAaYMqt3U7Oy2sYKMc5r/w/vr/l6m eNQ3rhCoWVpuzqwg2dRbu7sR8EvRon5zoi/NFpMeZ3qP13Kl/ItOz+4EeuiPoPsl /yyQI0qC6xgi1WZpnFw2UmG85J0ek6Cp4l/7zeh5QURPh40OUtEWs5Q9hA== -----END CERTIFICATE-----Generated at Thu May 9 01:26:22 2024 by rpki-client on console-ams.rpki-client.org