$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa File: cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa (raw, json) Hash identifier: QN3K63uyIK/YYvvF0XlYk+vSMctDoQkbx884fyVHqnU= Subject key identifier: 79:57:D4:32:9A:83:AA:FE:DF:2E:35:21:B2:89:39:5B:F5:DC:17:D0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3278DFC733162B4DF89509220B015EA24D9D1B69 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.246.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:78:df:c7:33:16:2b:4d:f8:95:09:22:0b:01:5e:a2:4d:9d:1b:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=1536b5e2361194093357d1049f1f97ad4f35f7eae83db208f6577a605de60861, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:49:87:19:c3:d2:02:b4:15:a3:55:9c:1b:77: 7e:ce:fb:39:38:5e:6b:22:2b:01:9b:34:d2:9a:1f: f9:43:ec:17:8b:74:c3:1f:27:94:a5:3f:86:0b:a8: 90:ed:ad:9f:bb:7b:b1:a0:40:8e:d0:48:e5:0d:a2: 04:d6:f4:a2:14:9e:06:83:26:23:a8:bb:be:4a:ad: 7a:52:dc:57:c2:12:e7:73:28:46:bd:20:fc:db:4f: 27:b7:15:5f:cf:fa:f5:13:29:18:30:0a:32:d7:cb: af:ef:6b:e2:95:4e:95:d7:8d:30:6e:e6:67:86:cf: 68:95:d3:b1:5e:a1:e7:4a:51:92:ca:d6:db:71:e1: c0:22:ae:5b:45:51:0b:93:07:f5:35:4c:d4:e1:5a: 84:0e:b7:93:67:a8:48:84:f6:ed:bb:e4:c6:76:44: c0:d3:cc:df:d6:b2:6d:4f:94:46:8f:b5:1b:25:a2: 96:26:5c:dc:4e:62:da:69:6b:ff:4e:7d:87:6f:88: 64:af:5c:17:1d:c0:fe:81:bb:ad:d7:71:11:b8:fe: 93:6b:fe:f9:05:51:93:2f:30:25:14:8e:b8:59:84: 65:6f:3f:7e:b1:01:8e:3b:ce:12:59:12:8f:3f:a5: c1:9c:81:5c:83:15:bc:f2:d8:8a:e2:4f:00:40:10: 8b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:57:D4:32:9A:83:AA:FE:DF:2E:35:21:B2:89:39:5B:F5:DC:17:D0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.246.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7f:ea:d1:1c:1e:40:96:c0:b9:b2:a3:84:dc:5d:29:f5:12:86: 06:94:a7:41:7f:a5:40:0d:cf:61:32:07:a5:a5:b6:c8:94:27: 98:e6:21:25:1b:4a:d8:75:ff:9c:17:95:20:0d:23:ac:8b:89: 0e:d2:12:29:36:de:1a:5b:f6:eb:fa:0e:fc:62:02:c0:37:d3: 07:f7:a3:d5:cf:e0:e8:90:42:51:7b:29:d5:17:b6:10:1e:68: 62:34:0c:25:17:fe:20:b2:22:14:60:8e:1c:c1:58:2a:35:b6: 37:59:50:34:05:c4:3c:80:d0:f2:0f:e6:5d:ed:26:aa:52:7d: 82:88:ae:78:e0:56:c0:27:c3:fd:a0:4e:f6:77:8d:6d:b0:cb: c2:13:87:90:cc:e3:90:23:45:b4:f5:c5:db:1b:40:86:60:93: c2:92:ad:88:7c:f0:e8:71:21:a0:96:d0:04:55:69:39:a5:c8: 0d:18:83:61:90:84:95:5e:1e:f4:92:68:8d:a3:81:f5:5b:00: 54:e6:5c:cd:34:c1:54:91:76:d4:cb:e2:15:92:01:9f:ec:ca: 73:cd:49:05:73:7c:68:ee:69:46:57:c1:05:6d:46:86:45:0d: c6:d7:ac:45:95:09:0c:cd:19:c1:90:25:fe:21:1d:3f:49:ed: 05:49:f6:99 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMnjfxzMWK034lQkiCwFeok2dG2kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTM2YjVlMjM2MTE5NDA5MzM1N2QxMDQ5ZjFmOTdhZDRm MzVmN2VhZTgzZGIyMDhmNjU3N2E2MDVkZTYwODYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVSYcZw9ICtBWjVZwbd37O+zk4XmsiKwGbNNKaH/lD7BeL dMMfJ5SlP4YLqJDtrZ+7e7GgQI7QSOUNogTW9KIUngaDJiOou75KrXpS3FfCEudz KEa9IPzbTye3FV/P+vUTKRgwCjLXy6/va+KVTpXXjTBu5meGz2iV07FeoedKUZLK 1ttx4cAirltFUQuTB/U1TNThWoQOt5NnqEiE9u275MZ2RMDTzN/Wsm1PlEaPtRsl opYmXNxOYtppa/9OfYdviGSvXBcdwP6Bu63XcRG4/pNr/vkFUZMvMCUUjrhZhGVv P36xAY47zhJZEo8/pcGcgVyDFbzy2IriTwBAEItxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeVfUMpqDqv7fLjUhsok5W/XcF9AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkYmNhOGM5LWM1MjctNDg3NS1iNThlLWZjNTBkMDEwNGVjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA49jANBgkqhkiG9w0BAQsFAAOCAQEAf+rRHB5AlsC5sqOE3F0p9RKGBpSn QX+lQA3PYTIHpaW2yJQnmOYhJRtK2HX/nBeVIA0jrIuJDtISKTbeGlv26/oO/GIC wDfTB/ej1c/g6JBCUXsp1Re2EB5oYjQMJRf+ILIiFGCOHMFYKjW2N1lQNAXEPIDQ 8g/mXe0mqlJ9goiueOBWwCfD/aBO9neNbbDLwhOHkMzjkCNFtPXF2xtAhmCTwpKt iHzw6HEhoJbQBFVpOaXIDRiDYZCElV4e9JJojaOB9VsAVOZczTTBVJF21MviFZIB n+zKc81JBXN8aO5pRlfBBW1GhkUNxtesRZUJDM0ZwZAl/iEdP0ntBUn2mQ== -----END CERTIFICATE-----Generated at Thu May 2 12:23:13 2024 by rpki-client on console-ams.rpki-client.org