$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee2fdf06-81e8-4e0a-8595-822d19ded480.roa File: ee2fdf06-81e8-4e0a-8595-822d19ded480.roa (raw, json) Hash identifier: 0+5MoyeLdQMCMRCUzf7iX+GLP0pRKpSBzlWEgaaCb6I= Subject key identifier: 87:5C:1A:9D:52:AC:67:DA:D3:68:1B:8E:F5:DD:2D:1B:F8:41:6F:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5311DCB39EC3D50F91577BA3ED255FCEECA42155 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee2fdf06-81e8-4e0a-8595-822d19ded480.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 74.127.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:11:dc:b3:9e:c3:d5:0f:91:57:7b:a3:ed:25:5f:ce:ec:a4:21:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=84b86de402544e8f43fb433ea48d97a42c175f2bb1daf5e50a13ca3087c6da4b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:db:ea:f6:d3:43:ce:1a:1a:6c:e8:0b:9a:a6: a8:18:46:2a:33:95:af:ef:ca:12:64:fb:af:af:23: a4:81:50:00:f7:d0:56:78:87:9b:28:fc:07:4c:2a: 03:25:aa:f7:cb:4b:23:0a:c4:ac:c7:4b:dc:b7:bb: 2a:43:21:e9:b6:f0:15:3e:03:ce:5e:68:5c:20:25: 2a:6a:c6:a2:05:e2:2b:34:c4:8f:24:b4:29:42:c0: 0f:01:90:77:ad:98:5f:49:07:67:3d:dd:3f:b8:c0: 99:b4:b9:a8:ba:81:1f:e6:c7:d8:7d:3c:62:61:d0: 6b:8d:55:9f:79:03:d5:df:fc:44:13:55:46:2c:90: 06:65:4b:c5:35:08:9e:45:16:55:f1:9d:ec:9e:ef: 34:27:8d:68:42:73:11:e3:27:4f:c6:b9:11:41:33: ed:ff:1d:bb:29:9c:93:db:64:f1:2c:ed:ed:a7:0f: e1:7a:02:8d:b3:5b:b4:9f:6c:58:53:09:52:2a:07: 8e:46:1c:fe:47:36:fd:ea:c6:83:7a:7b:e7:43:13: e1:1a:c8:f1:a6:8b:22:99:7e:e7:4d:77:1d:58:92: d8:cb:50:e4:ad:6f:a3:38:1c:0d:da:1a:a8:35:51: 47:f8:ed:f3:28:83:5f:80:8b:29:22:84:28:fb:6a: e6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5C:1A:9D:52:AC:67:DA:D3:68:1B:8E:F5:DD:2D:1B:F8:41:6F:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee2fdf06-81e8-4e0a-8595-822d19ded480.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.127.0.0/18 Signature Algorithm: sha256WithRSAEncryption 40:76:dc:88:d3:ee:94:40:91:86:59:42:33:71:ae:c7:c7:71: f6:1f:34:59:10:8d:3c:4b:f4:6c:fc:26:52:5e:6d:32:78:12: 65:71:ba:5f:0a:ff:17:aa:ac:3b:fe:26:26:0a:29:86:ef:87: 62:02:29:5f:b3:49:37:e2:c8:5a:14:66:c1:39:ed:1a:21:7e: f2:a8:5e:b8:4c:dd:b2:57:3c:bf:b6:12:d0:e6:20:06:ae:2c: 31:1a:98:2d:87:9b:56:36:b6:ca:8c:2f:e2:46:fd:ba:55:57: 0a:f8:22:53:3c:31:18:56:9b:6e:b0:08:16:af:e0:b4:46:88: b0:fd:9d:72:f7:4a:66:4a:cb:2e:4c:ff:89:92:90:d9:0e:2a: 9e:a6:26:07:84:73:70:d7:28:64:65:9a:59:21:e1:c3:2f:ca: 4f:47:cd:0d:52:be:ab:c0:af:4c:df:e7:f9:54:95:7c:9b:86: 4b:04:53:54:28:f8:e6:5a:d3:73:59:ab:56:c5:dd:82:41:41: 60:04:70:85:c7:cf:eb:da:72:10:f8:fb:f2:2d:c3:f9:83:6a: 49:38:42:03:12:54:df:c6:11:1b:83:12:a5:6b:e9:f7:c1:e1: 18:24:44:56:4b:b8:b6:e8:d2:59:05:c8:53:fa:2a:dc:31:d9: 1f:b7:cc:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUxHcs57D1Q+RV3uj7SVfzuykIVUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGI4NmRlNDAyNTQ0ZThmNDNmYjQzM2VhNDhkOTdhNDJj MTc1ZjJiYjFkYWY1ZTUwYTEzY2EzMDg3YzZkYTRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDt2+r200POGhps6AuapqgYRiozla/vyhJk+6+vI6SBUAD3 0FZ4h5so/AdMKgMlqvfLSyMKxKzHS9y3uypDIem28BU+A85eaFwgJSpqxqIF4is0 xI8ktClCwA8BkHetmF9JB2c93T+4wJm0uai6gR/mx9h9PGJh0GuNVZ95A9Xf/EQT VUYskAZlS8U1CJ5FFlXxneye7zQnjWhCcxHjJ0/GuRFBM+3/HbspnJPbZPEs7e2n D+F6Ao2zW7SfbFhTCVIqB45GHP5HNv3qxoN6e+dDE+EayPGmiyKZfudNdx1YktjL UOStb6M4HA3aGqg1UUf47fMog1+AiykihCj7auaRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUh1wanVKsZ9rTaBuO9d0tG/hBb3wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlMmZkZjA2LTgxZTgtNGUwYS04NTk1LTgyMmQxOWRlZDQ4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZKfwAwDQYJKoZIhvcNAQELBQADggEBAEB23IjT7pRAkYZZQjNxrsfHcfYf NFkQjTxL9Gz8JlJebTJ4EmVxul8K/xeqrDv+JiYKKYbvh2ICKV+zSTfiyFoUZsE5 7RohfvKoXrhM3bJXPL+2EtDmIAauLDEamC2Hm1Y2tsqML+JG/bpVVwr4IlM8MRhW m26wCBav4LRGiLD9nXL3SmZKyy5M/4mSkNkOKp6mJgeEc3DXKGRlmlkh4cMvyk9H zQ1SvqvAr0zf5/lUlXybhksEU1Qo+OZa03NZq1bF3YJBQWAEcIXHz+vachD4+/It w/mDakk4QgMSVN/GERuDEqVr6ffB4RgkRFZLuLbo0lkFyFP6Ktwx2R+3zDE= -----END CERTIFICATE-----Generated at Thu May 9 01:26:28 2024 by rpki-client on console-ams.rpki-client.org