$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c892754a-62b6-4554-aef5-f62fabca2d48.roa File: c892754a-62b6-4554-aef5-f62fabca2d48.roa (raw, json) Hash identifier: eVTRspRtbg+rd7d/RAuTp5X2q14JUE3Fh5lE+keSo9g= Subject key identifier: 36:72:30:BC:9E:1D:D7:76:E3:BB:93:97:99:E3:A5:90:96:F3:2D:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15133C2224E12A6E06D2D1CF3ED9237954BEF88C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c892754a-62b6-4554-aef5-f62fabca2d48.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 192.251.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:13:3c:22:24:e1:2a:6e:06:d2:d1:cf:3e:d9:23:79:54:be:f8:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=e20b14873eb589829ca69641ec6a15af70e4c891ca18dd3d4167aa431e9cf856, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f5:4d:3a:f4:8e:73:67:36:5c:a3:50:85:fd: 5b:98:2c:b6:a7:18:99:e7:e2:49:05:60:b8:31:47: ee:28:df:79:f6:2d:46:1b:99:fe:74:28:8f:4e:6f: 1f:7d:c2:b8:5e:ec:e5:ff:47:42:dc:d5:80:7a:23: 8d:10:42:45:91:a3:4d:08:14:41:04:67:0e:c0:aa: 91:75:f6:88:20:1b:b7:01:c8:ed:77:2f:5e:47:27: 06:fb:74:8e:6e:f3:2a:2b:01:0f:39:0c:9d:cf:5f: ef:90:76:8a:a3:d7:f5:e5:b6:b8:8f:17:55:d2:82: 8a:65:67:20:9f:d5:17:d5:35:88:84:d6:fb:3c:78: 27:2f:fb:3d:64:2a:c5:40:ce:73:75:f4:c4:75:17: f6:18:aa:53:4f:18:72:8c:74:fe:b1:ea:23:42:86: df:ef:6e:55:10:19:6e:7c:6a:73:5e:86:20:45:0a: 5e:53:d7:11:7a:58:d1:05:21:e5:f2:4e:73:6d:78: 0c:1b:de:4e:2e:5e:9d:be:9a:71:c5:a5:45:ae:23: 19:a7:69:d6:9c:c0:fc:6d:2e:27:b0:af:4a:e0:fa: 6a:10:67:3c:7c:3d:79:52:e4:57:04:ed:26:9c:c9: 5a:9c:e3:62:3f:32:a2:b9:c9:66:a7:24:65:ad:e1: 76:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:72:30:BC:9E:1D:D7:76:E3:BB:93:97:99:E3:A5:90:96:F3:2D:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c892754a-62b6-4554-aef5-f62fabca2d48.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.251.142.0/24 Signature Algorithm: sha256WithRSAEncryption 62:15:de:ef:5f:c3:dd:f7:29:a1:9a:fd:9c:6e:0d:64:84:3f: 32:eb:22:c3:e4:48:4b:b5:68:24:5f:c1:d9:96:f9:d4:33:29: cb:1f:65:6f:12:c3:2a:48:53:e0:ae:69:07:8e:cc:5d:35:c1: 88:16:17:52:aa:55:3d:d1:29:ea:af:25:ac:c7:e6:ab:e7:a2: 22:27:44:67:68:13:dc:c2:44:a9:8d:82:99:cc:dd:ed:35:46: 7c:f1:dd:10:d7:0e:18:d0:1a:e8:74:21:fa:29:2e:6f:f3:c5: 8d:ca:85:c7:4f:90:43:63:1e:be:1b:49:f7:c1:38:d2:56:34: 63:83:a0:48:27:05:17:39:cb:78:e3:1c:75:c3:e5:0f:d1:8f: c0:ac:3b:84:cc:1b:d9:16:b2:34:cc:8e:05:97:fb:dd:2f:29: 89:41:72:e9:52:1f:02:e9:85:84:1c:1a:48:90:fb:43:28:4d: 43:da:dd:0e:a1:5d:06:bc:9e:cc:6d:9e:e5:6f:e4:cf:d5:4f: 62:0f:e0:8f:20:d6:df:50:34:20:cc:2d:a1:47:56:6e:f7:88: 6d:3e:84:eb:b3:59:af:9a:6a:5f:50:f9:ef:46:23:f0:a6:fd: 98:0f:5d:23:5c:e5:a1:67:9d:3b:94:07:0f:ee:90:46:31:76: 79:85:3b:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFRM8IiThKm4G0tHPPtkjeVS++IwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjBiMTQ4NzNlYjU4OTgyOWNhNjk2NDFlYzZhMTVhZjcw ZTRjODkxY2ExOGRkM2Q0MTY3YWE0MzFlOWNmODU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV9U069I5zZzZco1CF/VuYLLanGJnn4kkFYLgxR+4o33n2 LUYbmf50KI9Obx99wrhe7OX/R0Lc1YB6I40QQkWRo00IFEEEZw7AqpF19oggG7cB yO13L15HJwb7dI5u8yorAQ85DJ3PX++Qdoqj1/XltriPF1XSgoplZyCf1RfVNYiE 1vs8eCcv+z1kKsVAznN19MR1F/YYqlNPGHKMdP6x6iNCht/vblUQGW58anNehiBF Cl5T1xF6WNEFIeXyTnNteAwb3k4uXp2+mnHFpUWuIxmnadacwPxtLiewr0rg+moQ Zzx8PXlS5FcE7SacyVqc42I/MqK5yWanJGWt4XYdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNnIwvJ4d13bju5OXmeOlkJbzLQUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4OTI3NTRhLTYyYjYtNDU1NC1hZWY1LWY2MmZhYmNhMmQ0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADA+44wDQYJKoZIhvcNAQELBQADggEBAGIV3u9fw933KaGa/ZxuDWSEPzLr IsPkSEu1aCRfwdmW+dQzKcsfZW8SwypIU+CuaQeOzF01wYgWF1KqVT3RKeqvJazH 5qvnoiInRGdoE9zCRKmNgpnM3e01Rnzx3RDXDhjQGuh0IfopLm/zxY3KhcdPkENj Hr4bSffBONJWNGODoEgnBRc5y3jjHHXD5Q/Rj8CsO4TMG9kWsjTMjgWX+90vKYlB culSHwLphYQcGkiQ+0MoTUPa3Q6hXQa8nsxtnuVv5M/VT2IP4I8g1t9QNCDMLaFH Vm73iG0+hOuzWa+aal9Q+e9GI/Cm/ZgPXSNc5aFnnTuUBw/ukEYxdnmFO5w= -----END CERTIFICATE-----Generated at Wed Apr 24 15:49:09 2024 by rpki-client on console-ams.rpki-client.org