$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd01c2db-e036-4f0b-aaba-01e6262c8428.roa File: cd01c2db-e036-4f0b-aaba-01e6262c8428.roa (raw, json) Hash identifier: tO6WBFnVNZghjw1ZSUO7au9xE8GCZhZbP3BuLt1q0Hs= Subject key identifier: C3:D3:21:BB:32:23:61:23:02:C5:80:FC:A1:CE:BF:F1:9C:E8:D2:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09327413102A01BB96837EA60BD64719C815A4AD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd01c2db-e036-4f0b-aaba-01e6262c8428.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 160.223.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:32:74:13:10:2a:01:bb:96:83:7e:a6:0b:d6:47:19:c8:15:a4:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=df149824ff8650d1d022984bd682c56677948bcacc7f2e0b904e6766082d9c63, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8f:e8:95:9f:06:3c:56:71:d2:b3:1c:fd:25: 0a:c2:f6:43:e4:15:ca:a1:91:b6:3a:d4:b3:53:ed: 0e:89:ca:47:dd:41:83:c1:04:13:6f:be:f3:c6:ad: e4:bd:4a:ed:e9:64:9c:34:28:33:7c:08:c6:a9:b1: de:cc:71:d9:ca:55:5c:25:4b:b2:e8:fe:57:cf:e9: 5c:f3:3d:0c:38:08:a4:ff:e0:5d:14:49:7f:f1:64: 70:2f:e4:a3:a4:65:32:6e:db:70:cf:be:4a:fe:b6: 8a:f0:93:bc:6c:36:ed:4c:a8:cc:c8:47:c3:14:c7: 47:4a:33:dd:df:59:dc:16:95:7c:e8:d5:7b:b3:be: 06:e0:56:75:09:c4:bc:55:76:5b:89:b3:0e:50:91: dc:9b:70:2e:fd:32:15:4c:93:95:54:83:07:d3:16: ac:f2:9e:ba:fd:6c:50:73:c5:7c:59:82:57:11:16: 3c:29:d9:af:19:8e:1a:13:ae:fb:2e:18:13:94:62: 50:f4:16:9f:fa:ff:7c:b6:f9:5a:7f:4d:c7:cf:3e: a1:57:fd:4c:21:ed:35:03:7f:f8:76:03:b6:49:dd: e6:5d:67:d1:fd:88:17:ca:c0:1f:aa:39:23:15:58: c1:fa:82:6b:9c:ce:c5:0f:e1:a0:a8:b1:13:4b:28: e3:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:D3:21:BB:32:23:61:23:02:C5:80:FC:A1:CE:BF:F1:9C:E8:D2:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd01c2db-e036-4f0b-aaba-01e6262c8428.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.223.0.0/17 Signature Algorithm: sha256WithRSAEncryption 66:3a:aa:8a:ee:b2:9c:b2:47:c7:56:9c:d7:85:89:8e:24:a7: 6b:ec:0c:67:62:9b:ab:dc:70:0c:5d:14:25:cf:7e:62:e8:13: 12:ab:51:36:f2:23:03:7c:cb:2c:c5:04:e4:ca:5e:a7:2e:73: 8d:00:f2:91:a8:23:48:14:43:04:b6:53:f4:6a:5d:ff:60:40: b5:bf:21:85:e1:38:78:dd:b4:09:ab:15:e9:7d:4d:28:44:8a: 99:6b:10:3e:25:77:6c:cc:fe:f9:0f:73:af:27:bd:0e:c1:ee: b7:89:f7:da:44:df:7b:fe:7a:01:fa:b0:55:7b:ba:e3:3f:d6: e7:ec:2f:ec:16:cc:19:d8:da:92:52:59:26:9a:d6:06:2d:79: 43:ca:11:94:c2:3d:45:79:33:6c:a5:6d:4f:c1:de:c4:db:6b: f4:4b:e9:e8:43:0e:2a:6b:6a:a1:84:0e:24:17:9f:fe:e8:d9: a9:3a:bb:1c:44:71:bb:52:03:89:b6:49:69:9b:ca:74:fe:04: 20:b5:a7:31:95:b5:f3:08:d2:e4:8a:6c:9b:33:62:65:b7:bb: 23:5e:57:6c:22:e2:5f:9e:ed:e7:06:ec:d1:e4:70:b3:cd:3c: ef:ef:30:9e:37:14:5e:f6:a0:36:e4:be:5e:1d:b9:5f:75:55: d7:11:67:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCTJ0ExAqAbuWg36mC9ZHGcgVpK0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjE0OTgyNGZmODY1MGQxZDAyMjk4NGJkNjgyYzU2Njc3 OTQ4YmNhY2M3ZjJlMGI5MDRlNjc2NjA4MmQ5YzYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0j+iVnwY8VnHSsxz9JQrC9kPkFcqhkbY61LNT7Q6Jykfd QYPBBBNvvvPGreS9Su3pZJw0KDN8CMapsd7McdnKVVwlS7Lo/lfP6VzzPQw4CKT/ 4F0USX/xZHAv5KOkZTJu23DPvkr+torwk7xsNu1MqMzIR8MUx0dKM93fWdwWlXzo 1XuzvgbgVnUJxLxVdluJsw5QkdybcC79MhVMk5VUgwfTFqzynrr9bFBzxXxZglcR Fjwp2a8ZjhoTrvsuGBOUYlD0Fp/6/3y2+Vp/TcfPPqFX/Uwh7TUDf/h2A7ZJ3eZd Z9H9iBfKwB+qOSMVWMH6gmuczsUP4aCosRNLKONvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUw9MhuzIjYSMCxYD8oc6/8Zzo0ogwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkMDFjMmRiLWUwMzYtNGYwYi1hYWJhLTAxZTYyNjJjODQyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeg3wAwDQYJKoZIhvcNAQELBQADggEBAGY6qoruspyyR8dWnNeFiY4kp2vs DGdim6vccAxdFCXPfmLoExKrUTbyIwN8yyzFBOTKXqcuc40A8pGoI0gUQwS2U/Rq Xf9gQLW/IYXhOHjdtAmrFel9TShEiplrED4ld2zM/vkPc68nvQ7B7reJ99pE33v+ egH6sFV7uuM/1ufsL+wWzBnY2pJSWSaa1gYteUPKEZTCPUV5M2ylbU/B3sTba/RL 6ehDDipraqGEDiQXn/7o2ak6uxxEcbtSA4m2SWmbynT+BCC1pzGVtfMI0uSKbJsz YmW3uyNeV2wi4l+e7ecG7NHkcLPNPO/vMJ43FF72oDbkvl4duV91VdcRZwE= -----END CERTIFICATE-----Generated at Thu May 9 01:26:25 2024 by rpki-client on console-ams.rpki-client.org