$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca0e9264-bbd8-406b-9380-6af47bf1dd8d.roa File: ca0e9264-bbd8-406b-9380-6af47bf1dd8d.roa (raw, json) Hash identifier: oI2xvHUSom7QlAY59LgQueN0PcCEDlt+77eV5Ex0BGo= Subject key identifier: 42:18:5F:27:41:5B:C3:19:D8:B5:EF:19:D1:1F:A0:C6:70:8C:98:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38B9228A4E889220E0501AD489C6F9EFD64DB3EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca0e9264-bbd8-406b-9380-6af47bf1dd8d.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 161.14.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:b9:22:8a:4e:88:92:20:e0:50:1a:d4:89:c6:f9:ef:d6:4d:b3:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=00f44c95375a72be9087bafbe7a453de237d04318164cf8d10dac89c1d827d7c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:22:25:15:ae:10:0c:fc:3b:47:b0:76:4e:2f: 5e:5c:09:b0:cc:57:d5:f1:86:f1:09:94:88:c4:59: ee:be:b7:97:0f:51:95:a4:af:7f:a8:9e:1a:6e:5c: 93:ce:50:24:b6:26:81:c1:a2:b0:d2:83:c9:79:cc: 02:df:17:31:3d:fc:53:3b:f0:c5:ef:67:fd:aa:24: cb:19:f4:1e:a3:d8:16:ea:5c:67:43:3d:ad:3d:34: 48:00:bb:5d:8d:1d:89:23:a8:80:f4:29:b0:69:85: c6:d5:6c:bf:f4:69:39:b5:79:16:53:9e:c6:2d:b0: 7d:82:6e:44:94:4a:13:52:06:c6:17:1e:13:fa:d3: af:e8:cf:2d:6c:74:c3:c3:cc:36:6a:e9:a4:ac:f9: 31:13:2f:30:19:3e:a0:4f:40:27:16:6b:ca:a3:7d: ee:49:84:1d:ee:18:d0:64:c4:d2:41:18:81:c2:3c: c7:43:25:9c:c7:91:8b:2a:82:c4:09:43:63:89:45: fc:f5:b8:52:de:21:fe:50:d3:ec:57:14:93:f4:87: 75:77:9d:b2:62:64:0f:b2:9e:53:a1:35:e3:f7:5a: a3:f4:30:78:df:2e:d5:d0:f6:be:79:93:12:13:79: 04:ff:9e:74:e6:00:47:95:b3:02:08:f3:a2:76:75: 4e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:18:5F:27:41:5B:C3:19:D8:B5:EF:19:D1:1F:A0:C6:70:8C:98:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca0e9264-bbd8-406b-9380-6af47bf1dd8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.14.0.0/16 Signature Algorithm: sha256WithRSAEncryption c6:f6:da:0f:4c:a5:6e:97:01:7d:59:dd:46:b3:55:57:2b:5c: 00:1d:3b:9c:83:f8:64:3c:a4:dd:b1:7c:6e:56:94:bc:86:05: ed:68:12:58:40:60:46:35:ab:2e:79:27:48:bd:01:84:25:43: 48:f3:98:dc:b4:aa:63:27:b8:12:95:59:1d:8b:59:70:ad:ad: a1:17:90:b2:5f:f9:83:c8:7d:c2:db:df:bc:b3:4e:77:4a:1d: 2c:08:15:a1:45:3a:c5:3e:b2:8c:10:b2:e0:7d:0f:89:4d:bb: 6c:45:73:2a:04:ad:be:99:28:e1:b0:1f:ce:9d:ca:93:66:8c: 48:e9:99:75:ea:02:b9:4c:6d:e9:7f:58:bd:ee:0c:7c:a7:b4: aa:22:df:6b:c6:39:a5:58:4f:0d:6e:25:c2:0c:0f:39:0c:c5: 6a:cb:4d:83:df:cd:ca:8e:a3:5f:1a:99:c9:09:86:96:79:1c: bb:8d:16:00:d5:75:bb:6d:5f:96:68:33:c2:78:aa:e3:d3:e2: 1c:0c:cc:6d:c6:05:f1:bb:2f:e5:f5:ed:8e:80:01:cd:69:b4: fe:91:61:9e:fd:eb:8f:c2:1f:78:e5:5b:8d:7d:4f:f2:93:30: ca:6e:40:84:d2:88:f9:9f:45:80:b9:c0:e0:68:75:de:dd:5b: fe:1e:e0:3a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOLkiik6IkiDgUBrUicb579ZNs+swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGY0NGM5NTM3NWE3MmJlOTA4N2JhZmJlN2E0NTNkZTIz N2QwNDMxODE2NGNmOGQxMGRhYzg5YzFkODI3ZDdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmIiUVrhAM/DtHsHZOL15cCbDMV9XxhvEJlIjEWe6+t5cP UZWkr3+onhpuXJPOUCS2JoHBorDSg8l5zALfFzE9/FM78MXvZ/2qJMsZ9B6j2Bbq XGdDPa09NEgAu12NHYkjqID0KbBphcbVbL/0aTm1eRZTnsYtsH2CbkSUShNSBsYX HhP606/ozy1sdMPDzDZq6aSs+TETLzAZPqBPQCcWa8qjfe5JhB3uGNBkxNJBGIHC PMdDJZzHkYsqgsQJQ2OJRfz1uFLeIf5Q0+xXFJP0h3V3nbJiZA+ynlOhNeP3WqP0 MHjfLtXQ9r55kxITeQT/nnTmAEeVswII86J2dU4dAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQhhfJ0FbwxnYte8Z0R+gxnCMmB0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NhMGU5MjY0LWJiZDgtNDA2Yi05MzgwLTZhZjQ3YmYxZGQ4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwChDjANBgkqhkiG9w0BAQsFAAOCAQEAxvbaD0ylbpcBfVndRrNVVytcAB07 nIP4ZDyk3bF8blaUvIYF7WgSWEBgRjWrLnknSL0BhCVDSPOY3LSqYye4EpVZHYtZ cK2toReQsl/5g8h9wtvfvLNOd0odLAgVoUU6xT6yjBCy4H0PiU27bEVzKgStvpko 4bAfzp3Kk2aMSOmZdeoCuUxt6X9Yve4MfKe0qiLfa8Y5pVhPDW4lwgwPOQzFastN g9/Nyo6jXxqZyQmGlnkcu40WANV1u21flmgzwniq49PiHAzMbcYF8bsv5fXtjoAB zWm0/pFhnv3rj8IfeOVbjX1P8pMwym5AhNKI+Z9FgLnA4Gh13t1b/h7gOg== -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:23 2024 by rpki-client on console-ams.rpki-client.org