$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa File: e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa (raw, json) Hash identifier: 4csTInDsBJtze6E+xEZDw9IRfa9wgfECOpaS4xPcPZo= Subject key identifier: 07:12:CB:14:1B:F1:A2:35:2A:F5:69:3F:42:AD:71:3D:69:BA:3E:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A5381CEB8D272EE006147986BB4244462779F83 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 68.217.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 09 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:53:81:ce:b8:d2:72:ee:00:61:47:98:6b:b4:24:44:62:77:9f:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=c10f1364506c735cd1e0bf30bd3e08807535f35d3317a99cfc433162da88f204, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:33:ac:b8:25:49:02:22:9a:65:f2:11:f1:e6: 92:20:c4:ee:82:2b:a1:8c:19:32:b2:82:b5:c8:9c: 3e:e3:f1:65:c3:f6:ae:ff:8c:be:be:24:11:98:f3: dc:86:67:9e:cb:d5:f0:a3:62:1d:28:8d:91:60:e4: 89:c7:da:45:43:96:a9:8a:ae:ef:dc:ab:e2:ee:b2: 8b:d3:33:e5:a0:98:8b:77:95:4b:05:94:a5:36:bc: 91:79:64:e7:33:d3:3b:d2:a1:b0:a9:fd:23:e5:57: ef:02:37:6c:d5:9b:cd:bd:9a:87:56:db:61:53:96: 3c:e9:dd:09:62:33:da:71:97:04:24:64:a6:a0:9a: 74:75:80:44:2e:28:13:2c:7c:7d:b0:ec:71:a8:b9: 89:eb:9c:d9:66:ef:c0:b4:cc:b9:4e:37:2b:62:c1: 52:70:5a:e8:07:4c:9b:0c:e8:e9:71:07:65:ac:ff: b9:95:91:a8:d0:83:9e:49:07:ee:ae:9f:bc:94:1b: b7:d9:b8:a8:19:2f:f5:89:f0:d7:db:7a:5e:61:c9: 53:bb:11:82:30:1d:c0:9e:75:87:2e:3e:50:a5:b9: c9:8e:ed:9b:46:a8:c4:72:6b:a1:c2:61:33:7b:26: d7:60:5b:fc:fc:64:ca:c3:85:bc:78:a3:cd:02:34: 90:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:12:CB:14:1B:F1:A2:35:2A:F5:69:3F:42:AD:71:3D:69:BA:3E:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.217.0.0/16 Signature Algorithm: sha256WithRSAEncryption cb:35:41:c4:4e:63:e0:45:73:40:06:ff:4f:40:f9:c7:dd:d0: d4:4b:3d:33:d0:20:13:85:40:52:ce:a3:d8:c2:5f:ae:4a:ae: 36:e1:f6:8f:9f:dc:6a:b8:0c:57:b4:e7:5f:fa:df:97:41:2f: 24:19:f8:96:54:ef:66:63:83:f3:e9:ae:69:12:88:bb:56:56: 18:d4:b0:64:34:ae:c8:81:b3:4f:b0:ff:6b:9a:c3:55:41:4d: cd:8d:aa:78:36:f5:82:7d:b6:0c:63:4b:9d:6d:9e:80:82:35: 51:b9:2e:56:d0:44:37:4d:44:0c:9a:95:0f:66:67:bd:a5:4a: e0:37:c9:31:b1:84:1c:3d:9d:52:33:4a:e3:a3:66:22:ed:c9: df:76:2d:ba:07:da:88:7f:b8:50:a4:90:5b:06:d2:97:23:cf: c7:e8:42:ed:65:41:94:d9:cd:af:2b:c1:67:e8:00:71:26:cf: d1:91:5c:be:af:e4:fe:b5:f7:04:31:73:14:e5:d9:3d:96:1a: b6:88:a3:32:a9:42:92:3f:e3:07:be:7a:7d:da:c7:2e:6d:e8: 14:86:ad:85:da:33:36:33:34:bc:73:3a:8c:ff:7d:37:60:45: 01:38:b6:39:6c:61:a1:e8:9e:bb:57:69:39:4c:c7:36:52:17: 6f:16:0b:1e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUClOBzrjScu4AYUeYa7QkRGJ3n4MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTBmMTM2NDUwNmM3MzVjZDFlMGJmMzBiZDNlMDg4MDc1 MzVmMzVkMzMxN2E5OWNmYzQzMzE2MmRhODhmMjA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkM6y4JUkCIppl8hHx5pIgxO6CK6GMGTKygrXInD7j8WXD 9q7/jL6+JBGY89yGZ57L1fCjYh0ojZFg5InH2kVDlqmKru/cq+LusovTM+WgmIt3 lUsFlKU2vJF5ZOcz0zvSobCp/SPlV+8CN2zVm829modW22FTljzp3QliM9pxlwQk ZKagmnR1gEQuKBMsfH2w7HGouYnrnNlm78C0zLlONytiwVJwWugHTJsM6OlxB2Ws /7mVkajQg55JB+6un7yUG7fZuKgZL/WJ8Nfbel5hyVO7EYIwHcCedYcuPlClucmO 7ZtGqMRya6HCYTN7JtdgW/z8ZMrDhbx4o80CNJDFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBxLLFBvxojUq9Wk/Qq1xPWm6PhswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4NWUyNTczLTczY2MtNGQ3MC1iZTZiLTRiNjFkZDBmMzRiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBE2TANBgkqhkiG9w0BAQsFAAOCAQEAyzVBxE5j4EVzQAb/T0D5x93Q1Es9 M9AgE4VAUs6j2MJfrkquNuH2j5/cargMV7TnX/rfl0EvJBn4llTvZmOD8+muaRKI u1ZWGNSwZDSuyIGzT7D/a5rDVUFNzY2qeDb1gn22DGNLnW2egII1UbkuVtBEN01E DJqVD2ZnvaVK4DfJMbGEHD2dUjNK46NmIu3J33YtugfaiH+4UKSQWwbSlyPPx+hC 7WVBlNnNryvBZ+gAcSbP0ZFcvq/k/rX3BDFzFOXZPZYatoijMqlCkj/jB756fdrH Lm3oFIathdozNjM0vHM6jP99N2BFATi2OWxhoeieu1dpOUzHNlIXbxYLHg== -----END CERTIFICATE-----Generated at Wed May 8 02:08:25 2024 by rpki-client on console-ams.rpki-client.org