$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e898c329-1de0-4a4c-903f-17dcd28452f4.roa File: e898c329-1de0-4a4c-903f-17dcd28452f4.roa (raw, json) Hash identifier: WKzD+d4+1atdIkBxRfbbQKzQJMEUs7ztLrKeI9Xjjqo= Subject key identifier: 0A:A0:1A:64:4B:03:CB:60:36:A0:86:62:32:D8:B7:35:69:B9:E6:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02F30B6DE267F494784A527761F6D84E28D2F9EF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e898c329-1de0-4a4c-903f-17dcd28452f4.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 50.19.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:f3:0b:6d:e2:67:f4:94:78:4a:52:77:61:f6:d8:4e:28:d2:f9:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=d6b5990688a8ae30a8f9a28d73cb10bcb986925b15ba31b410f365ea52172b7e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ab:fa:c4:a3:22:df:01:8b:1a:7d:59:6e:11: 0c:e8:44:22:d3:67:45:ac:76:21:98:a0:c7:d2:dc: 1d:6c:cc:50:db:e6:d2:38:8d:2c:83:1d:74:80:5b: 1c:66:c8:f0:7d:c0:5a:3e:9d:fd:e2:f5:23:5d:f2: 10:b4:ff:ab:66:0f:27:78:d0:b2:ad:25:f8:f9:76: 81:4c:3f:62:8f:04:41:aa:ac:fa:4a:a1:0f:fc:15: d8:74:ae:7a:8d:eb:a3:8b:3d:6c:90:d3:a6:e9:0b: 87:83:1e:62:47:3b:d7:52:03:e7:e5:09:ea:cb:85: d5:52:b3:70:e3:cb:f3:aa:aa:89:a2:72:73:7c:e4: f1:bc:df:c9:ba:c3:cf:8e:ea:44:45:b6:e9:f5:0c: aa:7a:49:25:b0:c9:4f:01:9d:dc:86:5d:40:07:30: 17:bf:f1:d8:0a:05:de:59:e4:05:22:fa:b1:a6:f3: 7b:9f:62:e3:a4:14:8d:5f:8b:2d:51:72:6b:11:60: 13:f5:ab:12:f8:24:43:40:d3:08:70:f0:51:7e:0e: 2d:18:42:4c:d1:51:58:77:c1:ad:3d:29:a6:7d:51: 5c:7c:5f:bd:a1:5a:61:8b:43:92:5d:b6:d7:e9:b2: b2:a8:b8:39:af:a9:55:e5:31:d0:ef:ea:32:02:ec: ba:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A0:1A:64:4B:03:CB:60:36:A0:86:62:32:D8:B7:35:69:B9:E6:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e898c329-1de0-4a4c-903f-17dcd28452f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.19.0.0/16 Signature Algorithm: sha256WithRSAEncryption ae:50:7e:b6:6e:3c:09:cb:6f:2d:35:6d:cd:e1:6c:92:bf:c8: ac:50:f3:37:ad:7a:4b:e2:67:94:cf:e0:02:05:f5:f1:9b:71: c0:7b:c7:50:b3:ed:35:13:2d:19:5c:f9:7e:f3:09:47:68:b3: b5:70:bc:d8:0e:68:eb:91:de:9d:04:ee:b9:8e:d7:d2:a3:ec: b6:50:fe:79:8d:1a:79:06:b8:96:75:89:a8:ce:6d:42:c9:3d: 75:e8:06:4e:9b:ad:07:23:c0:d9:ad:81:97:d0:b4:17:9a:0c: a8:ed:c4:42:d5:0d:ce:54:41:26:42:82:e9:b8:04:3f:a9:43: 27:5a:01:e3:60:24:16:94:f6:6a:07:f2:b0:30:b9:04:4b:d3: c7:f6:ab:e1:83:7b:b5:d5:81:b5:6d:f8:41:4c:f3:53:15:ea: 17:80:e1:2b:88:c9:b7:30:ac:33:78:9f:63:cc:0e:03:f5:1f: f3:bb:39:7e:7f:b4:d8:38:62:7a:43:6b:08:69:a4:c4:7b:72: 0a:d1:c4:35:d7:a9:6f:61:80:17:b9:d8:b9:b3:9f:9a:f0:f1: 16:33:0e:df:58:77:25:de:00:a0:9a:aa:21:dd:c8:95:78:88: 09:a8:b4:3f:d3:40:01:a9:43:f3:ac:94:c6:ee:f8:d8:93:a7: f2:31:9b:b4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAvMLbeJn9JR4SlJ3YfbYTijS+e8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEwMDAwMDAwWhcNMjQwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNmI1OTkwNjg4YThhZTMwYThmOWEyOGQ3M2NiMTBiY2I5 ODY5MjViMTViYTMxYjQxMGYzNjVlYTUyMTcyYjdlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvq/rEoyLfAYsafVluEQzoRCLTZ0WsdiGYoMfS3B1szFDb 5tI4jSyDHXSAWxxmyPB9wFo+nf3i9SNd8hC0/6tmDyd40LKtJfj5doFMP2KPBEGq rPpKoQ/8Fdh0rnqN66OLPWyQ06bpC4eDHmJHO9dSA+flCerLhdVSs3Djy/Oqqomi cnN85PG838m6w8+O6kRFtun1DKp6SSWwyU8BndyGXUAHMBe/8dgKBd5Z5AUi+rGm 83ufYuOkFI1fiy1RcmsRYBP1qxL4JENA0whw8FF+Di0YQkzRUVh3wa09KaZ9UVx8 X72hWmGLQ5JdttfpsrKouDmvqVXlMdDv6jIC7LqJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCqAaZEsDy2A2oIZiMti3NWm55jcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4OThjMzI5LTFkZTAtNGE0Yy05MDNmLTE3ZGNkMjg0NTJmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAyEzANBgkqhkiG9w0BAQsFAAOCAQEArlB+tm48CctvLTVtzeFskr/IrFDz N616S+JnlM/gAgX18ZtxwHvHULPtNRMtGVz5fvMJR2iztXC82A5o65HenQTuuY7X 0qPstlD+eY0aeQa4lnWJqM5tQsk9degGTputByPA2a2Bl9C0F5oMqO3EQtUNzlRB JkKC6bgEP6lDJ1oB42AkFpT2agfysDC5BEvTx/ar4YN7tdWBtW34QUzzUxXqF4Dh K4jJtzCsM3ifY8wOA/Uf87s5fn+02DhiekNrCGmkxHtyCtHENdepb2GAF7nYubOf mvDxFjMO31h3Jd4AoJqqId3IlXiICai0P9NAAalD86yUxu742JOn8jGbtA== -----END CERTIFICATE-----Generated at Thu May 2 04:02:44 2024 by rpki-client on console-fra.rpki-client.org