$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92999fc-83b7-48b5-9736-ddde1110743e.roa File: d92999fc-83b7-48b5-9736-ddde1110743e.roa (raw, json) Hash identifier: kTS2QhUIWVCdBgj8tuSFKrlEwA6TThwJkXPznWy0od0= Subject key identifier: A0:2D:A0:13:06:E4:07:EC:A6:1B:1E:28:D8:75:0C:82:21:32:06:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D2A816328FF1A7F62B8058BBD518F4216B33534 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92999fc-83b7-48b5-9736-ddde1110743e.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 20.129.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:2a:81:63:28:ff:1a:7f:62:b8:05:8b:bd:51:8f:42:16:b3:35:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=dbf50805445cd8b360a60a8b0cc7d3b372a2c0f3becc9570368d3c5414e52730, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ac:8c:c9:ab:a1:9e:98:e6:47:2b:fd:32:99: 24:79:23:d8:5e:eb:b2:8f:00:69:74:5b:a4:b8:28: c2:1e:a8:74:fe:7a:c1:7b:21:08:ae:5a:0d:f9:b6: e9:91:6f:dc:6b:df:2f:45:20:85:2b:bf:51:6d:1b: cb:7a:96:83:ab:34:6d:4e:30:7c:05:5f:98:ec:f2: 57:c4:05:37:61:8a:4a:da:2e:07:61:73:f8:67:6c: bb:d8:7e:1a:c2:c9:6a:c5:b1:39:cb:14:48:79:d8: 46:a4:83:a9:80:6f:7e:cc:66:36:1c:1f:fb:99:95: fd:14:6d:a8:a9:7c:fe:f9:70:f2:98:6e:cd:02:3f: 53:15:bb:29:56:89:50:56:39:60:95:4e:64:42:48: 07:ee:c1:bb:d7:f8:77:f0:cc:83:37:53:77:6b:f8: bd:ca:b8:7f:33:f1:60:c6:32:32:22:7c:df:81:42: 0e:c2:6f:2b:09:84:ea:02:95:f1:1a:dd:b9:9d:7d: 15:39:71:9f:1d:75:82:d7:76:a6:fa:58:56:00:99: 8a:62:4a:24:0a:e9:4e:78:49:dc:de:03:db:c0:7a: c8:7f:ed:6a:b0:46:3b:7e:6a:d9:eb:89:ed:76:59: 1c:ac:3b:52:52:1f:9e:19:85:d2:09:4f:22:cb:cc: 60:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:2D:A0:13:06:E4:07:EC:A6:1B:1E:28:D8:75:0C:82:21:32:06:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92999fc-83b7-48b5-9736-ddde1110743e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 20.129.0.0/16 Signature Algorithm: sha256WithRSAEncryption a1:be:d5:b9:53:74:4c:31:d3:09:ed:ad:e0:39:c7:3e:3c:64: ed:c1:a8:dc:c5:65:b0:0d:33:56:9b:d2:af:2d:de:df:49:da: 94:8e:a7:8c:e7:ac:41:83:f6:df:09:d9:be:b8:d1:37:03:04: a2:6a:7d:3b:e6:66:f2:84:91:18:49:59:50:39:51:d9:7f:c3: fe:c4:03:9d:0f:05:59:d5:2f:21:5c:dc:fc:fb:14:31:f0:79: e9:d5:97:c4:d1:fc:8d:2e:3b:5f:bd:df:36:4e:f5:74:3f:e3: dc:58:c0:0c:45:3f:51:d5:2e:b1:ad:ab:1a:a8:72:f7:62:96: 05:16:4a:db:97:ca:01:af:49:a5:24:32:0f:9a:5c:75:43:5b: 12:8f:45:23:fd:8a:4c:3b:a3:b0:d8:a0:e1:2c:05:d0:7e:8d: 6a:8d:03:6e:22:c6:2a:86:a7:45:2d:54:fa:d7:5a:eb:58:56: 58:7d:45:dd:23:76:01:af:2e:6f:10:93:b4:1a:75:3b:cd:4e: c0:5f:b4:91:7a:15:3e:9b:a8:42:ac:89:07:03:3a:40:f0:99: 3a:39:5c:71:68:9d:ca:4a:0f:25:c8:f2:93:ff:0d:2f:1d:ea: 4e:86:d9:dc:07:cc:79:ba:f0:85:de:ac:18:24:0e:0e:a6:eb: f7:16:fa:f2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfSqBYyj/Gn9iuAWLvVGPQhazNTQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYmY1MDgwNTQ0NWNkOGIzNjBhNjBhOGIwY2M3ZDNiMzcy YTJjMGYzYmVjYzk1NzAzNjhkM2M1NDE0ZTUyNzMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLrIzJq6GemOZHK/0ymSR5I9he67KPAGl0W6S4KMIeqHT+ esF7IQiuWg35tumRb9xr3y9FIIUrv1FtG8t6loOrNG1OMHwFX5js8lfEBTdhikra Lgdhc/hnbLvYfhrCyWrFsTnLFEh52Eakg6mAb37MZjYcH/uZlf0UbaipfP75cPKY bs0CP1MVuylWiVBWOWCVTmRCSAfuwbvX+HfwzIM3U3dr+L3KuH8z8WDGMjIifN+B Qg7CbysJhOoClfEa3bmdfRU5cZ8ddYLXdqb6WFYAmYpiSiQK6U54SdzeA9vAesh/ 7WqwRjt+atnrie12WRysO1JSH54ZhdIJTyLLzGDFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUoC2gEwbkB+ymGx4o2HUMgiEyBgUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5Mjk5OWZjLTgzYjctNDhiNS05NzM2LWRkZGUxMTEwNzQzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAUgTANBgkqhkiG9w0BAQsFAAOCAQEAob7VuVN0TDHTCe2t4DnHPjxk7cGo 3MVlsA0zVpvSry3e30nalI6njOesQYP23wnZvrjRNwMEomp9O+Zm8oSRGElZUDlR 2X/D/sQDnQ8FWdUvIVzc/PsUMfB56dWXxNH8jS47X73fNk71dD/j3FjADEU/UdUu sa2rGqhy92KWBRZK25fKAa9JpSQyD5pcdUNbEo9FI/2KTDujsNig4SwF0H6Nao0D biLGKoanRS1U+tda61hWWH1F3SN2Aa8ubxCTtBp1O81OwF+0kXoVPpuoQqyJBwM6 QPCZOjlccWidykoPJcjyk/8NLx3qTobZ3AfMebrwhd6sGCQODqbr9xb68g== -----END CERTIFICATE-----Generated at Thu May 9 01:26:26 2024 by rpki-client on console-ams.rpki-client.org