$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4425922-976b-4593-b45d-9da7c30dc49f.roa File: d4425922-976b-4593-b45d-9da7c30dc49f.roa (raw, json) Hash identifier: S4Uhj+Q3MBtRwsQ6D06Mz00R5Y4v2WWL3JbtxUXhQtM= Subject key identifier: B0:EB:75:97:3E:7E:25:BE:BF:43:F0:28:8C:08:D0:3E:C9:84:6F:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 53E2096E549A265FCDC74EBB5E738BFC33CABAEF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4425922-976b-4593-b45d-9da7c30dc49f.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 206.72.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e2:09:6e:54:9a:26:5f:cd:c7:4e:bb:5e:73:8b:fc:33:ca:ba:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=b226196a0c0980c19a3be67fb3a8a5fc124c39b9ac759d55dac39ff6f5f9bc94, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8f:7b:13:80:30:51:25:69:c1:39:53:13:a5: 26:6d:f7:1c:25:eb:72:e5:7a:eb:c2:33:74:0c:d4: 87:0c:9f:b3:39:e6:ee:bd:f6:9d:74:e5:c8:de:6c: 23:bd:f6:56:c3:b3:bb:f5:68:34:89:31:f8:d6:44: 6a:a5:84:c5:26:95:54:8e:5d:5c:53:d2:9a:ec:c6: a7:49:07:3b:7e:58:34:50:ce:fa:58:89:3b:08:50: be:7e:42:1f:99:17:de:b5:58:dc:b2:96:36:7d:a5: 39:e8:6d:47:80:e1:d7:01:2c:6c:df:d1:17:05:d6: 36:e8:7c:20:dd:d0:ef:c2:06:9f:2c:20:d8:0b:78: b0:b5:68:88:c6:1c:f5:39:d8:7b:29:0c:fe:56:4c: 34:da:de:c5:78:7f:24:b5:7e:c2:f1:06:59:e8:b4: 23:5f:b9:37:7e:c6:20:35:6e:54:d4:1b:0e:20:5b: 87:d7:e1:c6:6f:11:0f:ac:91:12:44:5c:f6:29:3b: ca:e3:b8:ea:05:9e:25:6a:e8:75:2d:3a:ec:80:95: 91:77:ff:bf:f0:bf:e3:d3:48:73:c7:e4:5c:c9:07: 92:50:fb:3d:0b:a2:bb:ad:7a:ca:dd:20:e1:04:b3: d0:1e:41:ed:72:bb:86:84:cd:4a:83:52:09:17:f9: 92:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:EB:75:97:3E:7E:25:BE:BF:43:F0:28:8C:08:D0:3E:C9:84:6F:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4425922-976b-4593-b45d-9da7c30dc49f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.72.209.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:67:b7:ba:df:ec:b3:17:f8:fc:8a:bc:d9:df:f3:a9:0f:6a: f6:b5:b3:34:1e:f8:0e:0c:a9:9e:29:43:78:4b:8d:6f:fc:79: cb:4b:2c:83:1d:2d:5b:e3:9d:9f:2a:08:20:89:2f:51:b9:47: 9a:16:fb:c8:b6:68:9c:7b:de:3d:00:67:63:fd:9f:92:cb:b2: 19:60:71:07:98:77:46:53:e8:56:f1:f5:ac:ca:42:d4:1c:40: 82:7a:e9:17:88:b4:15:e2:ac:7a:b8:bb:3f:06:7a:e2:15:86: 3b:42:3a:de:8f:0f:aa:10:17:19:42:73:e6:c4:a7:f7:58:b5: 1a:1c:44:91:a0:eb:55:60:98:2b:c0:09:cf:c2:e1:2f:5d:02: a1:8f:f5:50:b9:87:55:42:04:2f:93:3e:ad:6b:ad:5f:41:9b: f9:93:95:13:7a:c0:02:9d:86:8a:9c:88:e2:91:b2:df:25:6b: a7:0c:68:c6:e1:b4:0f:56:4e:f5:b2:05:b9:82:b6:95:5f:37: 2f:cf:cb:f8:b2:9b:7e:33:56:a8:6a:04:76:2b:7b:c7:89:69: db:91:75:ad:0a:c2:c0:7e:13:0e:cb:5d:45:64:89:17:29:d9: 85:3a:17:ba:de:af:13:d4:d1:c3:5b:8b:4f:4e:7f:7c:42:ac: e5:bd:00:a2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU+IJblSaJl/Nx067XnOL/DPKuu8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjI2MTk2YTBjMDk4MGMxOWEzYmU2N2ZiM2E4YTVmYzEy NGMzOWI5YWM3NTlkNTVkYWMzOWZmNmY1ZjliYzk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRj3sTgDBRJWnBOVMTpSZt9xwl63LleuvCM3QM1IcMn7M5 5u699p105cjebCO99lbDs7v1aDSJMfjWRGqlhMUmlVSOXVxT0prsxqdJBzt+WDRQ zvpYiTsIUL5+Qh+ZF961WNyyljZ9pTnobUeA4dcBLGzf0RcF1jbofCDd0O/CBp8s INgLeLC1aIjGHPU52HspDP5WTDTa3sV4fyS1fsLxBlnotCNfuTd+xiA1blTUGw4g W4fX4cZvEQ+skRJEXPYpO8rjuOoFniVq6HUtOuyAlZF3/7/wv+PTSHPH5FzJB5JQ +z0LorutesrdIOEEs9AeQe1yu4aEzUqDUgkX+ZKZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsOt1lz5+Jb6/Q/AojAjQPsmEb8kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0NDI1OTIyLTk3NmItNDU5My1iNDVkLTlkYTdjMzBkYzQ5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADOSNEwDQYJKoZIhvcNAQELBQADggEBAFtnt7rf7LMX+PyKvNnf86kPava1 szQe+A4MqZ4pQ3hLjW/8ectLLIMdLVvjnZ8qCCCJL1G5R5oW+8i2aJx73j0AZ2P9 n5LLshlgcQeYd0ZT6Fbx9azKQtQcQIJ66ReItBXirHq4uz8GeuIVhjtCOt6PD6oQ FxlCc+bEp/dYtRocRJGg61VgmCvACc/C4S9dAqGP9VC5h1VCBC+TPq1rrV9Bm/mT lRN6wAKdhoqciOKRst8la6cMaMbhtA9WTvWyBbmCtpVfNy/Py/iym34zVqhqBHYr e8eJaduRda0KwsB+Ew7LXUVkiRcp2YU6F7rerxPU0cNbi09Of3xCrOW9AKI= -----END CERTIFICATE-----Generated at Thu May 9 01:26:26 2024 by rpki-client on console-ams.rpki-client.org