$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de5a6219-4101-4f3b-8f07-5055c2e281e9.roa File: de5a6219-4101-4f3b-8f07-5055c2e281e9.roa (raw, json) Hash identifier: AN7WxKtT2gLQZXFNLtsAk2KNBp3IRXoepoRNN+YrGvY= Subject key identifier: FC:A5:AC:25:DD:E4:22:1E:27:D8:91:C8:46:17:F4:7E:FD:51:F0:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C8D8F9CF35D6C10B820EFEBD4D18AEAB37014DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de5a6219-4101-4f3b-8f07-5055c2e281e9.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 130.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:8d:8f:9c:f3:5d:6c:10:b8:20:ef:eb:d4:d1:8a:ea:b3:70:14:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=ccd22c8400a3def7330c6c04d9f298dfad728e21120583d9a505ebce817dc1ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:86:eb:ff:20:ea:ec:29:ef:f2:79:e2:b9:bc: b6:f8:52:29:aa:03:94:21:c4:d8:67:a6:82:e4:a9: 2c:7a:60:da:47:a7:4b:b5:a0:9c:2b:fa:23:77:91: b0:2a:20:46:40:c1:99:8a:6c:a2:85:e2:ab:d4:bd: 47:da:86:42:ff:1f:a4:fb:e9:43:78:a7:a1:c2:07: e7:a6:7b:2a:3a:d2:57:ed:5e:5a:c9:54:a8:7a:77: 93:26:a6:0e:ab:e9:b5:1a:29:62:f8:bf:4e:6b:f9: 8e:54:41:fe:95:1d:cf:f8:87:f7:94:c4:cc:e6:d8: 3c:17:8e:c3:d4:22:6f:ad:82:cd:74:84:82:24:e0: c9:1e:57:ec:fa:9d:4e:8e:fe:3d:22:cb:ab:0d:0d: 1c:6b:2c:33:6a:09:fa:a8:f0:36:56:8e:08:f9:6b: 16:af:08:0e:62:9f:4a:38:1a:c0:8b:d1:e2:d0:32: a5:f1:f3:49:94:f7:ac:98:db:1f:ee:35:42:a2:63: f4:9a:51:cc:23:57:79:19:ed:b2:35:75:45:11:77: cc:8a:cf:dc:db:0f:4e:d8:3b:d0:b8:f3:13:a2:8c: 90:08:48:42:6a:96:34:ae:2c:f0:3c:ba:57:bc:9e: 01:39:d5:bc:84:5f:2c:ec:c5:19:72:7c:2d:06:91: 86:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A5:AC:25:DD:E4:22:1E:27:D8:91:C8:46:17:F4:7E:FD:51:F0:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de5a6219-4101-4f3b-8f07-5055c2e281e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption 82:b6:f6:16:5f:bc:e2:66:88:33:8d:b3:a1:8e:88:87:1e:2f: b6:64:3b:2a:69:c7:c9:f2:9d:aa:75:d4:b9:b1:3f:23:d9:c6: 1e:65:b2:b4:a3:44:41:e9:a5:d6:02:04:e6:26:84:b6:76:32: 4a:74:0b:5f:bd:b4:9b:3c:86:d7:fb:ea:48:74:c7:4f:4c:74: c2:25:11:5f:33:8d:52:7f:ba:d5:fd:11:0e:e8:2e:c8:77:ae: 18:2d:c0:3b:f0:f6:d2:be:8b:b9:47:75:2f:c5:ff:ee:6d:5b: 57:fb:1f:46:82:4e:ab:11:32:8a:dd:3c:de:62:24:bd:c3:64: 04:ef:ca:01:07:17:f2:33:05:f7:4c:59:d7:de:38:21:91:6d: 3c:06:b7:b5:6e:c0:82:60:66:98:79:7e:80:81:26:b1:dc:bc: fa:c1:86:42:5e:c7:48:f5:6c:41:8c:ec:1f:c6:cd:55:ad:3f: 7a:ab:11:ea:08:22:43:11:f1:8b:9c:5a:92:62:11:2d:7c:38: 87:16:be:18:ce:ec:f1:46:b1:c6:f0:9e:fc:a9:0d:46:29:b6: 56:a6:21:c8:c3:37:66:25:5d:d9:ea:30:05:ea:45:49:09:74: 3d:44:5a:bb:2f:37:e0:a4:4a:66:ee:b6:ee:e1:91:dd:9d:db: e6:0a:99:cd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDI2PnPNdbBC4IO/r1NGK6rNwFN8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2QyMmM4NDAwYTNkZWY3MzMwYzZjMDRkOWYyOThkZmFk NzI4ZTIxMTIwNTgzZDlhNTA1ZWJjZTgxN2RjMWVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWhuv/IOrsKe/yeeK5vLb4UimqA5QhxNhnpoLkqSx6YNpH p0u1oJwr+iN3kbAqIEZAwZmKbKKF4qvUvUfahkL/H6T76UN4p6HCB+emeyo60lft XlrJVKh6d5Mmpg6r6bUaKWL4v05r+Y5UQf6VHc/4h/eUxMzm2DwXjsPUIm+tgs10 hIIk4MkeV+z6nU6O/j0iy6sNDRxrLDNqCfqo8DZWjgj5axavCA5in0o4GsCL0eLQ MqXx80mU96yY2x/uNUKiY/SaUcwjV3kZ7bI1dUURd8yKz9zbD07YO9C48xOijJAI SEJqljSuLPA8ule8ngE51byEXyzsxRlyfC0GkYYzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/KWsJd3kIh4n2JHIRhf0fv1R8DMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RlNWE2MjE5LTQxMDEtNGYzYi04ZjA3LTUwNTVjMmUyODFlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCCFTANBgkqhkiG9w0BAQsFAAOCAQEAgrb2Fl+84maIM42zoY6Ihx4vtmQ7 KmnHyfKdqnXUubE/I9nGHmWytKNEQeml1gIE5iaEtnYySnQLX720mzyG1/vqSHTH T0x0wiURXzONUn+61f0RDuguyHeuGC3AO/D20r6LuUd1L8X/7m1bV/sfRoJOqxEy it083mIkvcNkBO/KAQcX8jMF90xZ1944IZFtPAa3tW7AgmBmmHl+gIEmsdy8+sGG Ql7HSPVsQYzsH8bNVa0/eqsR6ggiQxHxi5xakmIRLXw4hxa+GM7s8UaxxvCe/KkN Rim2VqYhyMM3ZiVd2eowBepFSQl0PURauy834KRKZu627uGR3Z3b5gqZzQ== -----END CERTIFICATE-----Generated at Thu May 9 01:26:27 2024 by rpki-client on console-ams.rpki-client.org