$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c150e7f4-181f-445e-802b-e1f3b4d4acd5.roa File: c150e7f4-181f-445e-802b-e1f3b4d4acd5.roa (raw, json) Hash identifier: 5F05oF9E5+Fw6vmETeS3XCUlGuelJzl8UmzgxkVIJVA= Subject key identifier: 20:0C:8B:7D:06:72:A8:3C:05:32:7E:05:89:DE:C5:B9:B3:BF:C9:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F733380AB3B451DEA4D82946808288243C63946 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c150e7f4-181f-445e-802b-e1f3b4d4acd5.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 128.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:73:33:80:ab:3b:45:1d:ea:4d:82:94:68:08:28:82:43:c6:39:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=5845fc71f8256f66de16b4762468eb0a1a0e18b590d9d4430c79129594700752, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8f:06:e1:64:c0:d5:64:75:71:b6:0f:ec:ce: ab:08:18:89:81:71:bb:75:a1:0e:f8:7c:aa:a7:e1: e6:34:51:26:c9:13:ff:dc:b5:51:02:4c:22:d5:a9: 6f:60:ad:6c:59:cd:ee:a0:10:22:3c:6c:72:2f:5d: 7d:80:cd:57:ee:3e:91:5f:cd:30:5f:15:4a:af:d6: 06:cf:0a:de:d5:55:1f:db:21:96:f5:a0:6f:82:c1: 79:d0:35:51:e0:83:1f:2b:98:d9:9d:ee:7f:38:42: a9:8c:f9:1a:66:37:58:13:c2:6e:15:a9:0d:e8:c1: 64:59:a8:15:ea:81:7c:71:7f:15:1d:d2:ee:c4:2d: 8b:89:cb:49:15:bc:87:bd:f8:4d:8e:d6:fb:d0:19: 80:44:a2:84:f3:cb:26:ab:84:42:92:ab:86:36:b7: 96:b3:48:fb:bb:76:c3:02:3c:b3:c9:bc:14:57:85: 73:02:66:80:29:70:ed:55:90:69:c9:ea:ae:d4:ce: 71:0a:49:f4:a9:7a:30:98:69:47:a9:d8:6e:5b:ea: 49:c8:f1:ef:db:95:8a:18:19:7a:56:b2:f8:40:49: 29:e9:fc:79:25:03:77:eb:2f:09:d8:a6:6c:29:11: b8:f6:98:32:52:d4:fc:f8:8b:3b:af:44:30:19:bf: 01:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:0C:8B:7D:06:72:A8:3C:05:32:7E:05:89:DE:C5:B9:B3:BF:C9:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c150e7f4-181f-445e-802b-e1f3b4d4acd5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5e:90:cf:db:3b:19:e2:9f:b1:0f:3b:41:6a:06:59:8b:bf:ed: ae:e9:8b:b1:a1:a9:bb:4d:f1:27:3f:b5:3b:bc:db:64:26:b6: 9d:d3:97:71:d2:cf:dd:73:0c:3d:55:75:47:6d:b1:a7:b5:da: 28:5e:43:28:72:3c:a4:ee:5e:bd:2e:99:9d:e9:31:e7:d8:6f: 35:9c:8c:fa:fd:58:2c:bd:6f:12:20:51:0d:8d:00:2f:5c:83: 8c:11:02:78:58:72:f9:a4:e6:3f:e7:87:c0:8b:d7:13:1b:93: b6:a4:44:85:f1:1f:67:f4:07:bd:68:84:f2:56:1a:25:92:50: 95:ba:a6:a5:08:b8:c7:df:9a:79:64:ab:08:26:6b:10:24:15: 63:58:0d:08:f8:08:e5:99:5c:8a:6c:d6:32:bd:1f:d3:37:5e: ef:f3:19:60:ca:7c:54:f8:ab:ce:0a:41:0f:22:1c:ae:40:5e: 09:ad:12:42:bd:10:63:0b:81:f5:f4:d4:eb:f6:73:bb:5f:18: a3:3c:38:b2:42:61:7d:a0:1a:aa:55:46:f9:1d:b8:5b:cf:43: a1:e2:ab:c2:bd:af:5d:64:c8:a0:a0:ee:86:01:55:77:d6:38: 3b:fe:e2:35:18:5d:d1:ad:ed:22:51:e7:4a:ab:a1:a2:e4:d4: 7b:3d:4b:d9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUX3MzgKs7RR3qTYKUaAgogkPGOUYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODQ1ZmM3MWY4MjU2ZjY2ZGUxNmI0NzYyNDY4ZWIwYTFh MGUxOGI1OTBkOWQ0NDMwYzc5MTI5NTk0NzAwNzUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCijwbhZMDVZHVxtg/szqsIGImBcbt1oQ74fKqn4eY0USbJ E//ctVECTCLVqW9grWxZze6gECI8bHIvXX2AzVfuPpFfzTBfFUqv1gbPCt7VVR/b IZb1oG+CwXnQNVHggx8rmNmd7n84QqmM+RpmN1gTwm4VqQ3owWRZqBXqgXxxfxUd 0u7ELYuJy0kVvIe9+E2O1vvQGYBEooTzyyarhEKSq4Y2t5azSPu7dsMCPLPJvBRX hXMCZoApcO1VkGnJ6q7UznEKSfSpejCYaUep2G5b6knI8e/blYoYGXpWsvhASSnp /HklA3frLwnYpmwpEbj2mDJS1Pz4izuvRDAZvwEDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIAyLfQZyqDwFMn4Fid7FubO/yYQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxNTBlN2Y0LTE4MWYtNDQ1ZS04MDJiLWUxZjNiNGQ0YWNkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCAFTANBgkqhkiG9w0BAQsFAAOCAQEAXpDP2zsZ4p+xDztBagZZi7/trumL saGpu03xJz+1O7zbZCa2ndOXcdLP3XMMPVV1R22xp7XaKF5DKHI8pO5evS6Znekx 59hvNZyM+v1YLL1vEiBRDY0AL1yDjBECeFhy+aTmP+eHwIvXExuTtqREhfEfZ/QH vWiE8lYaJZJQlbqmpQi4x9+aeWSrCCZrECQVY1gNCPgI5ZlcimzWMr0f0zde7/MZ YMp8VPirzgpBDyIcrkBeCa0SQr0QYwuB9fTU6/Zzu18Yozw4skJhfaAaqlVG+R24 W89DoeKrwr2vXWTIoKDuhgFVd9Y4O/7iNRhd0a3tIlHnSquhouTUez1L2Q== -----END CERTIFICATE-----Generated at Thu May 9 01:26:23 2024 by rpki-client on console-ams.rpki-client.org