$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa File: bf517b2e-8f05-4d24-bfe1-6207c312e178.roa (raw, json) Hash identifier: RP2afVEJosOJm9E/ESmBoy37LlCCFZA1OHEgL6C4LNw= Subject key identifier: 47:C8:54:A4:3F:47:4F:2A:4A:B5:06:18:53:B1:33:D2:36:F4:89:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1EDE03A05AC3BC64BC58BC13C43BB4F0248D6793 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 57.246.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:de:03:a0:5a:c3:bc:64:bc:58:bc:13:c4:3b:b4:f0:24:8d:67:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=9177c17deecfe570c8b88112af03fc002c499875deacc097eb6813c8f953fbae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:27:fa:c5:93:65:d9:a0:0e:74:be:ca:e6:88: a4:aa:40:18:24:44:30:83:0d:2d:56:65:54:55:10: 7c:99:88:1e:d8:1b:84:f4:27:4e:e8:b8:b5:fe:4b: ed:67:2e:33:7a:85:13:24:8d:e2:20:2c:30:da:56: 6b:e3:10:82:39:9e:4a:f6:86:f1:48:f0:ce:41:48: f4:62:f6:10:8a:3f:dd:0d:99:83:86:de:df:58:5a: 56:9d:63:e5:17:3a:53:df:e4:24:4e:59:a9:1c:ab: d2:48:26:cd:a6:53:c7:bd:be:b4:72:50:62:cd:57: ca:a1:89:e8:a7:6e:37:6b:2d:6e:1d:1f:be:da:86: a0:5c:5d:d7:fa:a8:63:a0:69:69:0b:7f:86:64:f5: 48:8c:4c:21:bc:bb:9f:c0:5f:14:6c:7b:79:d7:e1: 5e:3d:c8:aa:f9:05:a8:c4:22:e2:b7:f7:a1:e0:4c: 81:ce:8e:78:48:ec:f4:de:85:8f:8d:b1:69:d5:26: 24:43:bf:20:82:9e:3d:2f:97:a6:d4:80:33:35:4f: c9:59:b6:42:0d:90:90:d6:4b:83:4c:e6:cd:5d:7e: 02:47:27:20:f4:b2:52:ba:5e:d3:e2:e1:d5:53:a5: 6d:11:4c:3f:37:a2:cf:d9:8f:69:56:49:0c:8e:dd: ab:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C8:54:A4:3F:47:4F:2A:4A:B5:06:18:53:B1:33:D2:36:F4:89:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.246.0.0/16 Signature Algorithm: sha256WithRSAEncryption b2:65:3f:f7:15:f4:4e:04:d2:b3:3e:74:74:d0:9e:ec:15:04: 1d:db:65:8d:53:95:ce:24:db:a0:58:0b:52:d4:ec:d6:78:b3: fe:3f:ac:bc:57:22:82:15:a5:7d:e0:8d:a6:eb:1a:49:95:e8: 7d:b2:f7:cd:0e:eb:ca:cc:77:02:f0:08:54:19:36:9d:25:7a: ac:16:64:32:cf:3f:76:3e:4e:3a:41:c8:64:90:b4:f5:04:7e: 7a:95:6e:90:d7:0f:ad:22:af:63:5e:28:45:82:18:e6:d2:ff: a8:0a:c1:8e:45:d8:b3:cb:86:d7:da:4e:d6:2b:b3:7f:91:5b: 3f:49:2b:cd:90:bb:5f:ba:ec:17:f7:f6:b9:eb:5b:1c:3b:1f: 70:a8:6e:5f:a4:02:7c:6e:2c:ed:df:70:df:0a:e4:12:04:b4: c9:e2:45:2e:77:e3:dd:33:8b:82:a9:91:ad:52:79:95:1f:4d: 03:43:6e:89:5a:75:34:0f:e7:2c:bd:92:f8:2e:f0:d2:8f:84: 03:c2:99:38:68:fc:ab:18:09:bd:75:69:60:72:20:8e:16:53: 39:d3:da:9b:5f:55:59:01:92:b0:e2:04:db:ba:8c:d0:f1:c3: 4c:b7:98:c5:49:84:8f:0d:40:c4:4e:0c:42:53:ea:af:6a:d1: 40:19:d1:ff -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHt4DoFrDvGS8WLwTxDu08CSNZ5MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTc3YzE3ZGVlY2ZlNTcwYzhiODgxMTJhZjAzZmMwMDJj NDk5ODc1ZGVhY2MwOTdlYjY4MTNjOGY5NTNmYmFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNJ/rFk2XZoA50vsrmiKSqQBgkRDCDDS1WZVRVEHyZiB7Y G4T0J07ouLX+S+1nLjN6hRMkjeIgLDDaVmvjEII5nkr2hvFI8M5BSPRi9hCKP90N mYOG3t9YWladY+UXOlPf5CROWakcq9JIJs2mU8e9vrRyUGLNV8qhieinbjdrLW4d H77ahqBcXdf6qGOgaWkLf4Zk9UiMTCG8u5/AXxRse3nX4V49yKr5BajEIuK396Hg TIHOjnhI7PTehY+NsWnVJiRDvyCCnj0vl6bUgDM1T8lZtkINkJDWS4NM5s1dfgJH JyD0slK6XtPi4dVTpW0RTD83os/Zj2lWSQyO3atxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUR8hUpD9HTypKtQYYU7Ez0jb0iWswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmNTE3YjJlLThmMDUtNGQyNC1iZmUxLTYyMDdjMzEyZTE3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA59jANBgkqhkiG9w0BAQsFAAOCAQEAsmU/9xX0TgTSsz50dNCe7BUEHdtl jVOVziTboFgLUtTs1niz/j+svFcighWlfeCNpusaSZXofbL3zQ7rysx3AvAIVBk2 nSV6rBZkMs8/dj5OOkHIZJC09QR+epVukNcPrSKvY14oRYIY5tL/qArBjkXYs8uG 19pO1iuzf5FbP0krzZC7X7rsF/f2uetbHDsfcKhuX6QCfG4s7d9w3wrkEgS0yeJF Lnfj3TOLgqmRrVJ5lR9NA0NuiVp1NA/nLL2S+C7w0o+EA8KZOGj8qxgJvXVpYHIg jhZTOdPam19VWQGSsOIE27qM0PHDTLeYxUmEjw1AxE4MQlPqr2rRQBnR/w== -----END CERTIFICATE-----Generated at Thu May 2 12:23:11 2024 by rpki-client on console-ams.rpki-client.org