$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d87c2975-c322-4a99-8af6-32b0d3aa8fe8.roa File: d87c2975-c322-4a99-8af6-32b0d3aa8fe8.roa (raw, json) Hash identifier: q4a1enhCUsP95jo62rPDyiFXyZ4CiGYVbmcFkqiM1zU= Subject key identifier: 04:47:4B:03:CD:BE:65:68:A5:09:D3:F2:BF:72:CC:AB:BF:0E:05:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 231476F9CC49C7D072241AD250857B3380DC8A95 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d87c2975-c322-4a99-8af6-32b0d3aa8fe8.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 192.43.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:14:76:f9:cc:49:c7:d0:72:24:1a:d2:50:85:7b:33:80:dc:8a:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=31ee55b366c360345dd1e640854afce645e828072db2190bec26177a714b1f35, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:30:7b:97:f6:9d:12:be:87:c4:d2:52:d0:44: 07:e3:59:b6:98:d2:11:8b:c5:5b:a2:e6:e6:1b:70: 81:94:06:d7:fc:85:4e:c2:57:ea:9b:40:26:58:13: 7b:b0:e9:7e:82:df:77:c5:e1:64:bb:9e:e7:2c:8d: e0:22:be:05:17:95:73:03:b5:f7:e3:91:c9:d0:5f: 8d:6d:51:f7:46:09:42:10:c2:68:a2:a4:fb:cb:f3: ec:00:5b:0e:f1:c7:2e:62:ad:85:b7:bd:14:5a:30: f1:e6:bf:dd:66:6b:ea:fe:45:22:f2:02:26:1e:ec: bc:ba:0c:8b:e5:89:ad:53:5f:88:76:30:50:54:d6: 6b:48:82:08:9b:dc:64:1f:ea:99:c2:8f:dd:4c:3b: 6f:87:7b:47:45:37:dc:26:63:fc:60:c1:20:f2:d3: f1:10:ea:7b:b6:0f:0e:de:37:fb:b9:94:c2:0f:ca: 66:50:58:02:92:aa:fa:b3:70:35:78:ec:32:38:51: d8:df:57:6d:49:08:d7:3e:ba:58:fa:7c:c9:5f:23: 76:a2:ac:24:92:e5:08:35:1e:b8:6a:82:00:44:7c: bd:3a:26:b1:5d:46:b1:4b:0d:30:53:14:32:53:7b: 0f:82:c0:c7:63:c2:b2:54:cd:0f:b0:93:92:71:c1: 6b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:47:4B:03:CD:BE:65:68:A5:09:D3:F2:BF:72:CC:AB:BF:0E:05:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d87c2975-c322-4a99-8af6-32b0d3aa8fe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.43.176.0/21 Signature Algorithm: sha256WithRSAEncryption c2:e8:35:17:88:6d:c0:1d:00:f5:e1:54:94:70:35:02:cd:cf: 29:df:d6:cd:88:42:27:28:ed:18:e0:ae:de:5a:ac:bc:45:b9: dc:01:2e:62:d6:88:6f:35:54:ad:0d:b6:9d:f3:9d:f7:d9:97: 4f:2b:0a:18:4c:0b:b4:8b:b9:1c:b6:bd:27:fe:9a:28:f8:10: b9:64:3f:ce:a4:7c:2c:30:58:4a:07:91:a6:16:24:07:62:e6: d2:e5:54:6f:a9:ad:44:b4:96:d6:b2:fc:36:e4:af:c8:31:3a: 33:66:e3:c0:a6:28:da:24:94:f7:98:79:ea:32:3c:55:bc:65: ae:65:df:03:73:60:df:90:ef:5a:8a:bb:73:4c:77:97:e2:6a: f8:bb:82:3b:58:66:21:0b:8f:2b:cb:d2:a8:44:0b:d9:7f:d6: ad:37:82:6d:c2:84:8d:fb:e6:5e:17:5f:bf:cb:5f:33:e2:e9: a4:b9:02:ca:ae:06:55:88:db:a5:4d:cf:6c:64:90:7b:28:0f: aa:e1:cb:f7:82:7d:9d:1f:84:76:22:28:b3:b9:0c:28:6c:0c: 07:23:38:d6:36:ed:92:7d:da:77:98:57:8f:89:d5:08:1d:40: 74:c4:da:36:76:3c:e7:2c:e5:77:f0:4c:f8:1f:e4:ae:2c:6b: da:50:4d:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIxR2+cxJx9ByJBrSUIV7M4DcipUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMWVlNTViMzY2YzM2MDM0NWRkMWU2NDA4NTRhZmNlNjQ1 ZTgyODA3MmRiMjE5MGJlYzI2MTc3YTcxNGIxZjM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfMHuX9p0SvofE0lLQRAfjWbaY0hGLxVui5uYbcIGUBtf8 hU7CV+qbQCZYE3uw6X6C33fF4WS7nucsjeAivgUXlXMDtffjkcnQX41tUfdGCUIQ wmiipPvL8+wAWw7xxy5irYW3vRRaMPHmv91ma+r+RSLyAiYe7Ly6DIvlia1TX4h2 MFBU1mtIggib3GQf6pnCj91MO2+He0dFN9wmY/xgwSDy0/EQ6nu2Dw7eN/u5lMIP ymZQWAKSqvqzcDV47DI4UdjfV21JCNc+ulj6fMlfI3airCSS5Qg1HrhqggBEfL06 JrFdRrFLDTBTFDJTew+CwMdjwrJUzQ+wk5JxwWthAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBEdLA82+ZWilCdPyv3LMq78OBdwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4N2MyOTc1LWMzMjItNGE5OS04YWY2LTMyYjBkM2FhOGZlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPAK7AwDQYJKoZIhvcNAQELBQADggEBAMLoNReIbcAdAPXhVJRwNQLNzynf 1s2IQico7Rjgrt5arLxFudwBLmLWiG81VK0Ntp3znffZl08rChhMC7SLuRy2vSf+ mij4ELlkP86kfCwwWEoHkaYWJAdi5tLlVG+prUS0ltay/Dbkr8gxOjNm48CmKNok lPeYeeoyPFW8Za5l3wNzYN+Q71qKu3NMd5fiavi7gjtYZiELjyvL0qhEC9l/1q03 gm3ChI375l4XX7/LXzPi6aS5AsquBlWI26VNz2xkkHsoD6rhy/eCfZ0fhHYiKLO5 DChsDAcjONY27ZJ92neYV4+J1QgdQHTE2jZ2POcs5XfwTPgf5K4sa9pQTUY= -----END CERTIFICATE-----Generated at Fri Apr 26 11:00:24 2024 by rpki-client on console-ams.rpki-client.org