$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd94139c-c5ad-4873-9b75-b8c02e2835e2.roa File: dd94139c-c5ad-4873-9b75-b8c02e2835e2.roa (raw, json) Hash identifier: /bsdLkMu+ZFQmSK+I1wi1+E8DiMTEdX5rld0TpgyyCA= Subject key identifier: 44:77:9E:3E:2F:5D:03:B9:4D:D2:17:32:A3:70:58:C6:2C:C4:C4:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C770375B87827F33B1D32D9EEC889605BEA6A73 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd94139c-c5ad-4873-9b75-b8c02e2835e2.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 69.210.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:77:03:75:b8:78:27:f3:3b:1d:32:d9:ee:c8:89:60:5b:ea:6a:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=009c03b84468bb88ae433e47c12c67500c4a4626032cb88362b3a7fb48745fe7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:04:d2:ec:b5:20:c8:08:0b:57:e5:64:be:56: c6:44:d6:53:2b:b6:37:34:b3:99:0c:8a:c0:f7:ab: 43:ba:84:3b:09:d2:34:2f:51:f3:a6:e7:71:d0:c2: 5b:46:48:2d:bb:ee:3a:13:a7:c1:85:76:27:50:90: 0e:f0:11:33:93:88:b1:f9:27:a1:28:33:d0:30:c5: b2:7e:58:1a:6d:c8:a3:1b:52:f3:2a:c6:36:33:a3: 57:74:44:b4:17:53:f3:d4:a2:3e:66:85:20:d9:9e: 81:eb:9b:dd:97:8c:94:a9:42:6a:28:50:2e:fd:b7: 5e:ca:c8:4e:20:5e:8a:a9:89:26:1a:35:6e:9d:c5: f7:10:b0:b3:e4:d5:92:0a:a6:6d:5c:81:ad:7a:e4: fd:ef:80:3f:21:24:58:a1:f8:f4:a6:55:07:9b:a3: b9:56:0d:8f:10:cf:48:9d:7c:26:4c:5d:84:5e:7c: 30:7f:50:df:00:86:27:92:4c:8e:42:eb:7a:dd:5c: c6:b3:be:ef:bb:b7:d2:90:a7:4e:2e:12:8d:4a:80: 83:d8:db:6a:ce:b4:e7:4e:07:9d:df:65:36:03:5b: e9:45:e5:93:bc:15:0d:cd:f6:03:2a:93:b0:fa:b1: aa:a4:a1:39:ac:d5:0f:65:ff:91:37:bc:f6:2d:72: a4:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:77:9E:3E:2F:5D:03:B9:4D:D2:17:32:A3:70:58:C6:2C:C4:C4:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd94139c-c5ad-4873-9b75-b8c02e2835e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.210.64.0/18 Signature Algorithm: sha256WithRSAEncryption ce:85:4e:9c:e5:aa:cb:8c:b9:c4:3c:2b:be:06:7d:a0:e1:21: 87:ef:d3:dc:61:47:7d:64:28:64:07:60:90:6b:54:ef:91:c0: 84:2d:4a:41:ec:02:2d:38:d0:e9:76:d5:ca:0f:f6:68:26:62: 60:94:67:19:ba:ec:e8:87:c5:5e:dd:fc:f0:1b:bd:d4:c9:4b: 7a:3a:af:6a:2b:b8:e9:04:32:03:c6:32:90:a6:aa:8b:c1:1b: 6c:54:61:6e:46:7f:ca:78:e4:4c:9f:b7:16:30:1b:35:3a:34: 4c:ab:58:f7:a1:b2:79:14:bb:82:9b:e9:2e:6c:d8:e5:c3:4c: 2e:50:59:d9:0f:84:16:0e:6a:bc:ad:4d:f6:f2:b3:a4:9f:39: 59:71:3f:c2:1b:b8:ab:a2:46:8f:4b:ca:bd:82:0a:0e:ca:ba: cc:71:5e:61:6c:00:c5:c0:7c:cf:67:6e:75:2d:44:da:68:2a: a4:a0:6e:b3:47:2f:6e:7e:94:b3:e3:36:4e:72:30:5e:e4:d0: c6:b1:53:57:db:4c:d2:50:9e:fa:c7:06:d3:5a:36:f7:2f:a3: 4f:40:5a:0a:ea:d9:83:8b:52:6d:4e:89:9e:4b:da:b7:90:c6: 14:4e:d6:53:75:70:52:c5:c9:4d:34:0a:e9:72:03:43:b3:e3: d5:73:01:c6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTHcDdbh4J/M7HTLZ7siJYFvqanMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDljMDNiODQ0NjhiYjg4YWU0MzNlNDdjMTJjNjc1MDBj NGE0NjI2MDMyY2I4ODM2MmIzYTdmYjQ4NzQ1ZmU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyBNLstSDICAtX5WS+VsZE1lMrtjc0s5kMisD3q0O6hDsJ 0jQvUfOm53HQwltGSC277joTp8GFdidQkA7wETOTiLH5J6EoM9AwxbJ+WBptyKMb UvMqxjYzo1d0RLQXU/PUoj5mhSDZnoHrm92XjJSpQmooUC79t17KyE4gXoqpiSYa NW6dxfcQsLPk1ZIKpm1cga165P3vgD8hJFih+PSmVQebo7lWDY8Qz0idfCZMXYRe fDB/UN8AhieSTI5C63rdXMazvu+7t9KQp04uEo1KgIPY22rOtOdOB53fZTYDW+lF 5ZO8FQ3N9gMqk7D6saqkoTms1Q9l/5E3vPYtcqRVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURHeePi9dA7lN0hcyo3BYxizExHEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RkOTQxMzljLWM1YWQtNDg3My05Yjc1LWI4YzAyZTI4MzVlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZF0kAwDQYJKoZIhvcNAQELBQADggEBAM6FTpzlqsuMucQ8K74GfaDhIYfv 09xhR31kKGQHYJBrVO+RwIQtSkHsAi040Ol21coP9mgmYmCUZxm67OiHxV7d/PAb vdTJS3o6r2oruOkEMgPGMpCmqovBG2xUYW5Gf8p45EyftxYwGzU6NEyrWPehsnkU u4Kb6S5s2OXDTC5QWdkPhBYOarytTfbys6SfOVlxP8IbuKuiRo9Lyr2CCg7Kusxx XmFsAMXAfM9nbnUtRNpoKqSgbrNHL25+lLPjNk5yMF7k0MaxU1fbTNJQnvrHBtNa Nvcvo09AWgrq2YOLUm1OiZ5L2reQxhRO1lN1cFLFyU00CulyA0Oz49VzAcY= -----END CERTIFICATE-----Generated at Thu May 9 01:26:27 2024 by rpki-client on console-ams.rpki-client.org