$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d722762c-5028-4cce-aec6-c5097498d4f3.roa File: d722762c-5028-4cce-aec6-c5097498d4f3.roa (raw, json) Hash identifier: ZcMRiOXTMUEqD/TV9P1tIViBqPO4cuVTaSau90QvVNQ= Subject key identifier: E5:F4:52:C4:84:FE:C8:C2:DD:60:E5:B8:4C:8C:83:09:A1:D8:A0:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1253575DA2345549E793E82FC47F8F93B9F5B9A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d722762c-5028-4cce-aec6-c5097498d4f3.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 72.44.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:53:57:5d:a2:34:55:49:e7:93:e8:2f:c4:7f:8f:93:b9:f5:b9:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=09c5794e20fde893068143d1f54fe0ff321cb807b53e1786169be9d075837d3f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:26:3d:be:5b:de:1a:fe:e1:1f:d7:b5:c5:40: 69:0e:42:8b:63:91:a4:cf:d3:fa:7d:3c:12:30:70: 91:b2:bb:15:81:70:1b:bd:94:43:8c:eb:e8:80:83: 59:30:80:c0:de:71:0f:f3:71:96:43:51:0c:fe:b1: 0f:74:a0:37:9b:1a:2d:99:ed:72:42:7a:14:01:ff: 0a:b1:ac:25:44:f2:da:15:50:70:ad:f4:14:df:e1: 82:be:aa:27:79:4e:fc:55:b8:b0:a8:97:f4:f3:95: 20:b3:7b:66:94:c6:0a:60:01:43:01:b7:86:49:3c: d9:9a:e4:3f:23:f5:7b:28:2a:7e:4a:c7:a3:c3:62: 7a:34:7e:f1:81:4c:92:2e:1b:7d:bc:9f:21:b0:4a: d2:ec:4b:a9:16:e4:15:13:57:c2:11:99:a9:66:de: 09:4d:a2:f3:98:3c:73:45:ee:79:33:a3:4d:16:83: 17:74:1a:b3:0a:a8:07:c3:b8:15:5c:19:1e:40:b9: 92:91:a4:a7:c3:33:00:e3:06:27:c0:3b:bf:9d:12: e3:a4:cd:d0:fe:29:e9:42:65:07:6b:e3:c1:90:7d: 5c:49:15:8c:ba:ed:43:61:86:ca:9c:5f:75:9b:9e: 34:ce:50:66:1e:41:6d:a0:e8:89:0f:0c:d9:34:a5: f0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:F4:52:C4:84:FE:C8:C2:DD:60:E5:B8:4C:8C:83:09:A1:D8:A0:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d722762c-5028-4cce-aec6-c5097498d4f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.32.0/19 Signature Algorithm: sha256WithRSAEncryption 84:0d:27:ef:f0:02:4a:2c:58:7a:09:25:02:46:79:be:c8:fc: 5a:ce:63:18:a4:ca:fa:3d:27:1d:76:0d:33:d8:1b:10:52:9a: 7b:d2:7d:66:01:4d:90:ae:51:76:4b:8d:91:18:3d:33:1a:d3: 50:07:c0:19:09:3b:9b:3d:eb:6a:87:4f:1b:27:07:c1:dd:b0: 79:96:ca:b7:66:6f:a2:72:85:f5:df:ae:54:67:8a:da:e3:11: b4:36:ff:e2:2a:32:bb:1c:c1:7e:83:c1:ad:16:82:8f:ba:60: 5a:10:be:b2:0e:4e:60:49:9e:2e:43:de:7b:77:77:50:c8:e6: 6e:8e:85:f3:9b:8f:f7:1e:df:b3:37:be:1d:a8:7d:e3:94:8b: 96:2a:be:73:78:03:7a:52:01:a2:3b:c1:80:e9:ee:df:98:80: 0c:2d:95:02:b1:29:30:3f:78:e9:be:d7:d7:7e:a4:e5:76:1d: 53:f1:71:bd:c0:7f:a4:3b:dc:06:ed:b9:ff:f1:2d:9d:f2:20: 68:8b:ce:5e:d2:8c:4c:69:67:8a:0b:81:3e:3f:74:92:36:f0: 77:ec:0f:c9:e0:09:1d:71:2c:cf:f6:5f:1a:c3:f9:83:27:b3: 5a:79:b0:c4:5b:47:cf:36:70:4a:b9:18:ea:53:b2:fd:90:18: e8:73:fd:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUElNXXaI0VUnnk+gvxH+Pk7n1uaYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOWM1Nzk0ZTIwZmRlODkzMDY4MTQzZDFmNTRmZTBmZjMy MWNiODA3YjUzZTE3ODYxNjliZTlkMDc1ODM3ZDNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdJj2+W94a/uEf17XFQGkOQotjkaTP0/p9PBIwcJGyuxWB cBu9lEOM6+iAg1kwgMDecQ/zcZZDUQz+sQ90oDebGi2Z7XJCehQB/wqxrCVE8toV UHCt9BTf4YK+qid5TvxVuLCol/TzlSCze2aUxgpgAUMBt4ZJPNma5D8j9XsoKn5K x6PDYno0fvGBTJIuG328nyGwStLsS6kW5BUTV8IRmalm3glNovOYPHNF7nkzo00W gxd0GrMKqAfDuBVcGR5AuZKRpKfDMwDjBifAO7+dEuOkzdD+KelCZQdr48GQfVxJ FYy67UNhhsqcX3WbnjTOUGYeQW2g6IkPDNk0pfAhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5fRSxIT+yMLdYOW4TIyDCaHYoJAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3MjI3NjJjLTUwMjgtNGNjZS1hZWM2LWM1MDk3NDk4ZDRmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVILCAwDQYJKoZIhvcNAQELBQADggEBAIQNJ+/wAkosWHoJJQJGeb7I/FrO Yxikyvo9Jx12DTPYGxBSmnvSfWYBTZCuUXZLjZEYPTMa01AHwBkJO5s962qHTxsn B8HdsHmWyrdmb6JyhfXfrlRnitrjEbQ2/+IqMrscwX6Dwa0Wgo+6YFoQvrIOTmBJ ni5D3nt3d1DI5m6OhfObj/ce37M3vh2ofeOUi5YqvnN4A3pSAaI7wYDp7t+YgAwt lQKxKTA/eOm+19d+pOV2HVPxcb3Af6Q73Abtuf/xLZ3yIGiLzl7SjExpZ4oLgT4/ dJI28HfsD8ngCR1xLM/2XxrD+YMns1p5sMRbR882cEq5GOpTsv2QGOhz/Y8= -----END CERTIFICATE-----Generated at Wed Apr 17 01:26:27 2024 by rpki-client on console-ams.rpki-client.org