$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9906b42-5c34-487d-817e-6eea6796d971.roa File: d9906b42-5c34-487d-817e-6eea6796d971.roa (raw, json) Hash identifier: TAoTGsBEd8CYzaV+jCxtVfUXRrl0zBDwafSCAZATYWw= Subject key identifier: B3:F1:1D:A8:80:3D:92:88:FF:54:0B:F7:03:40:B1:2E:3E:FE:70:91 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6EB75D1BDC26C8513380CDE3A1FCE2F1A4934C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9906b42-5c34-487d-817e-6eea6796d971.roa Signing time: Thu 18 Apr 2024 00:00:00 +0000 ROA not before: Thu 18 Apr 2024 00:00:00 +0000 ROA not after: Thu 23 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 216.73.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:b7:5d:1b:dc:26:c8:51:33:80:cd:e3:a1:fc:e2:f1:a4:93:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:00:00 2024 GMT Not After : May 23 23:59:59 2024 GMT Subject: serialNumber=629f4b2e9a65f161db7ac785ee49b1facf19558ae9c10ee6bc143ba791b13e70, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3d:d5:93:ad:47:ec:4a:15:74:43:36:c7:c5: 11:e6:b3:ea:ff:15:c5:c1:68:ab:e3:c7:21:13:c9: ef:18:07:d1:e0:43:70:13:2b:27:c3:7a:30:c0:60: c9:46:42:03:1f:37:fa:8b:9b:db:27:34:93:38:d4: b4:5a:5a:89:0b:93:4e:67:68:e2:80:24:b5:3c:69: 55:e4:cc:8e:f1:4c:5c:b9:e7:76:cd:84:98:b6:bb: 18:80:aa:38:38:fc:f6:e2:71:5b:8d:7c:9d:5c:ae: 56:1a:9e:a2:8e:66:e6:1d:f7:cd:40:10:40:1f:9d: 46:57:ff:93:73:57:77:a5:d6:4f:17:44:38:c7:d0: a8:b9:ef:98:95:c0:cc:6a:ff:a1:94:84:4c:1c:e0: 46:74:e7:dd:40:b2:bb:19:72:8d:31:be:47:8f:66: 00:98:86:0f:bc:f5:0a:d1:56:c0:d4:ab:c2:f1:d8: 2c:db:e2:e0:be:4b:fa:68:9b:0d:6f:17:a4:bf:3e: df:67:0d:bf:e8:8e:0d:f5:c6:dd:74:5d:a9:cb:c2: db:e0:5f:24:e1:4e:12:da:e7:a6:3f:84:03:a9:e2: 5c:8f:a0:2f:99:30:d8:b6:0a:87:ae:9b:c5:90:e3: a4:66:a5:0e:c9:05:8f:0a:c5:72:38:3b:fc:37:71: b4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F1:1D:A8:80:3D:92:88:FF:54:0B:F7:03:40:B1:2E:3E:FE:70:91 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9906b42-5c34-487d-817e-6eea6796d971.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.73.208.0/21 Signature Algorithm: sha256WithRSAEncryption 2b:30:f7:af:04:e6:b7:04:c9:87:fe:56:5e:d2:ad:d8:f2:3e: 63:dc:9e:c1:0b:c8:19:56:2e:5b:ba:43:66:2a:65:6e:88:ed: de:b6:2f:48:42:76:d0:d5:11:2c:53:11:16:1a:71:51:38:19: 6b:f6:09:35:bc:41:d4:81:4c:c6:f3:3f:23:53:43:bd:43:9c: ec:d6:97:b9:f8:4d:59:7f:14:67:4c:8b:9e:ae:f4:83:d2:0a: a7:9e:e5:b1:c8:7c:35:7f:6a:82:52:24:bc:80:a8:96:a9:d5: f2:ae:07:6e:30:c7:62:33:4c:b6:f4:18:2e:85:9f:07:38:ab: 38:7c:49:09:5e:bf:6b:e7:6d:85:62:95:96:43:22:7a:a1:71: 1e:6d:50:89:d5:37:a8:96:45:5c:c1:41:e5:ec:73:01:ce:02: 34:e1:e2:73:a6:9b:80:20:5f:80:4b:58:86:f4:2f:df:12:56: c8:c5:7d:09:24:8f:73:c7:e2:58:4d:10:46:53:43:eb:c1:fd: c0:d4:74:9d:7f:fd:b1:c5:47:6e:13:cc:d6:3f:70:0e:cb:30: 2d:aa:5d:70:fc:fb:1d:0d:e6:b0:ec:82:68:b2:11:e1:8b:dc: e9:4b:ef:6b:a8:f4:96:49:6d:7e:ac:09:e4:14:85:b6:3d:38: b2:89:3d:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITbrddG9wmyFEzgM3jofzi8aSTTDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDA0MTgwMDAwMDBaFw0yNDA1MjMyMzU5NTla MHoxSTBHBgNVBAUTQDYyOWY0YjJlOWE2NWYxNjFkYjdhYzc4NWVlNDliMWZhY2Yx OTU1OGFlOWMxMGVlNmJjMTQzYmE3OTFiMTNlNzAxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAOM91ZOtR+xKFXRDNsfFEeaz6v8VxcFoq+PHIRPJ7xgH0eBD cBMrJ8N6MMBgyUZCAx83+oub2yc0kzjUtFpaiQuTTmdo4oAktTxpVeTMjvFMXLnn ds2EmLa7GICqODj89uJxW418nVyuVhqeoo5m5h33zUAQQB+dRlf/k3NXd6XWTxdE OMfQqLnvmJXAzGr/oZSETBzgRnTn3UCyuxlyjTG+R49mAJiGD7z1CtFWwNSrwvHY LNvi4L5L+mibDW8XpL8+32cNv+iODfXG3XRdqcvC2+BfJOFOEtrnpj+EA6niXI+g L5kw2LYKh66bxZDjpGalDskFjwrFcjg7/DdxtGkCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBSz8R2ogD2SiP9UC/cDQLEuPv5wkTAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvZDk5MDZiNDItNWMzNC00ODdkLTgxN2UtNmVlYTY3OTZkOTcxLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA9hJ0DANBgkqhkiG9w0BAQsFAAOCAQEAKzD3rwTmtwTJh/5WXtKt2PI+Y9ye wQvIGVYuW7pDZiplbojt3rYvSEJ20NURLFMRFhpxUTgZa/YJNbxB1IFMxvM/I1ND vUOc7NaXufhNWX8UZ0yLnq70g9IKp57lsch8NX9qglIkvIColqnV8q4HbjDHYjNM tvQYLoWfBzirOHxJCV6/a+dthWKVlkMieqFxHm1QidU3qJZFXMFB5exzAc4CNOHi c6abgCBfgEtYhvQv3xJWyMV9CSSPc8fiWE0QRlND68H9wNR0nX/9scVHbhPM1j9w DsswLapdcPz7HQ3msOyCaLIR4Yvc6Uvva6j0lkltfqwJ5BSFtj04sok9Kg== -----END CERTIFICATE-----Generated at Thu May 2 12:23:13 2024 by rpki-client on console-ams.rpki-client.org