$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2b618a0-430d-4d27-abca-4e06f4648926.roa File: c2b618a0-430d-4d27-abca-4e06f4648926.roa (raw, json) Hash identifier: 1x+w6OkbHx6JgFkNdQx8qfDbzPHeo3BgxCZOmn27G4Y= Subject key identifier: C1:07:5F:BD:34:77:C5:92:60:1F:56:14:77:6E:7F:57:7C:A7:31:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56CD3675DC19F83C58914D9B59C816431970263C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2b618a0-430d-4d27-abca-4e06f4648926.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:cd:36:75:dc:19:f8:3c:58:91:4d:9b:59:c8:16:43:19:70:26:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=d301540ef788b33e7f898bf5f175adf39a2ee73a142f7cee9fb56245f31bb95f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b6:da:69:ac:91:d9:c4:8a:59:8d:27:76:3c: d4:39:4f:99:b3:a5:54:c9:dd:26:a7:8c:cd:65:4c: 98:6a:0c:75:d8:d9:3c:97:25:6d:71:73:fa:43:2f: 42:48:10:af:80:ce:23:67:68:3f:d0:7f:40:8a:06: 07:29:92:f1:d5:c5:3f:af:d9:1a:34:b5:f6:f1:26: 14:46:99:f2:95:d5:fb:80:57:23:57:6e:15:84:ed: b8:01:72:09:de:12:c3:47:57:5a:98:ba:99:45:1f: db:9c:0c:68:a1:89:95:58:9b:6e:67:c0:0e:a4:6d: 53:2b:eb:c8:12:2d:d5:f5:66:aa:48:27:f7:6b:35: be:96:00:4d:b9:2d:62:63:78:7e:70:82:db:36:87: 45:2a:a5:e8:b0:aa:c6:45:ea:ed:23:58:93:90:52: 01:21:41:3e:31:9d:c5:5e:de:60:41:c1:76:0a:db: 34:a6:b5:66:e0:c4:d5:90:c1:f0:5e:b7:20:24:33: bc:41:31:b3:10:36:26:b6:98:5d:6d:3f:c9:64:ea: 5e:e2:51:d7:25:44:1c:f2:eb:c1:07:df:e8:cb:71: cd:80:10:51:2c:7b:9c:b1:dc:04:e7:57:ff:13:72: 75:f3:73:9e:06:0b:f7:a9:bf:cc:2a:fa:98:76:7d: 43:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:07:5F:BD:34:77:C5:92:60:1F:56:14:77:6E:7F:57:7C:A7:31:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2b618a0-430d-4d27-abca-4e06f4648926.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.119.0/24 Signature Algorithm: sha256WithRSAEncryption 37:40:57:e9:ce:d8:3f:62:49:b7:a6:5a:ac:e5:4f:8b:ce:a2: 9d:df:16:72:d9:78:bd:e1:ab:90:45:ae:3f:58:4e:9f:49:23: 40:c3:7e:e4:9c:b3:ba:ae:08:e9:15:63:53:46:2f:49:5a:15: d6:cf:57:1d:e8:91:74:ff:5d:5f:50:66:5f:ba:ef:0e:a5:09: 81:30:b0:0b:92:6c:23:57:7e:e6:0c:92:d4:35:1a:d9:37:69: 44:05:fd:21:f3:9b:8c:7c:41:01:e5:63:d4:48:35:5c:02:4a: 2e:41:c6:c5:aa:f7:d7:4b:86:91:09:a3:d3:fe:5e:8e:af:e7: fa:0f:b5:a4:c9:52:3b:a9:b0:73:f7:1f:4f:99:5a:99:73:80: c6:a6:00:5c:93:43:b1:da:21:0e:35:f8:4f:47:a4:53:5f:47: 3c:45:e3:17:05:54:cf:e0:ad:03:f4:1f:b9:51:9a:ed:73:e1: cc:65:44:6c:07:be:0a:c6:4f:e1:f4:0e:f4:df:ef:14:02:1a: ab:cc:0a:e5:6a:fc:ca:b1:25:bd:d6:92:95:58:fa:7a:d5:43: b5:b0:82:92:36:18:49:80:75:91:b2:dc:ce:c4:71:0d:7e:af: a6:fa:e1:87:20:e2:76:8a:5e:62:5d:1f:30:b4:df:e1:49:ce: 78:20:05:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVs02ddwZ+DxYkU2bWcgWQxlwJjwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzAxNTQwZWY3ODhiMzNlN2Y4OThiZjVmMTc1YWRmMzlh MmVlNzNhMTQyZjdjZWU5ZmI1NjI0NWYzMWJiOTVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKttpprJHZxIpZjSd2PNQ5T5mzpVTJ3SanjM1lTJhqDHXY 2TyXJW1xc/pDL0JIEK+AziNnaD/Qf0CKBgcpkvHVxT+v2Ro0tfbxJhRGmfKV1fuA VyNXbhWE7bgBcgneEsNHV1qYuplFH9ucDGihiZVYm25nwA6kbVMr68gSLdX1ZqpI J/drNb6WAE25LWJjeH5wgts2h0UqpeiwqsZF6u0jWJOQUgEhQT4xncVe3mBBwXYK 2zSmtWbgxNWQwfBetyAkM7xBMbMQNia2mF1tP8lk6l7iUdclRBzy68EH3+jLcc2A EFEse5yx3ATnV/8TcnXzc54GC/epv8wq+ph2fUMbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwQdfvTR3xZJgH1YUd25/V3ynMZcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyYjYxOGEwLTQzMGQtNGQyNy1hYmNhLTRlMDZmNDY0ODkyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HcwDQYJKoZIhvcNAQELBQADggEBADdAV+nO2D9iSbemWqzlT4vOop3f FnLZeL3hq5BFrj9YTp9JI0DDfuScs7quCOkVY1NGL0laFdbPVx3okXT/XV9QZl+6 7w6lCYEwsAuSbCNXfuYMktQ1Gtk3aUQF/SHzm4x8QQHlY9RINVwCSi5BxsWq99dL hpEJo9P+Xo6v5/oPtaTJUjupsHP3H0+ZWplzgMamAFyTQ7HaIQ41+E9HpFNfRzxF 4xcFVM/grQP0H7lRmu1z4cxlRGwHvgrGT+H0DvTf7xQCGqvMCuVq/MqxJb3WkpVY +nrVQ7WwgpI2GEmAdZGy3M7EcQ1+r6b64Ycg4naKXmJdHzC03+FJznggBdk= -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:22 2024 by rpki-client on console-ams.rpki-client.org