$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee626b04-ab9a-43ab-b5ca-5a0f338f1007.roa File: ee626b04-ab9a-43ab-b5ca-5a0f338f1007.roa (raw, json) Hash identifier: vK8tkHoR1NqCNsBupfnlEJEzc+7tHXvGNXonVhef17g= Subject key identifier: 86:91:1B:25:9C:05:92:DB:44:9C:73:B2:CE:2A:B0:C3:6B:D2:16:CB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0670132378F80BB0AD16486E671951DB12EED587 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee626b04-ab9a-43ab-b5ca-5a0f338f1007.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 54.116.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:70:13:23:78:f8:0b:b0:ad:16:48:6e:67:19:51:db:12:ee:d5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=2dd0fdf2c0a3400b7ac035ce33ea9427797a32ec36f93c2b9529c3e940fe0a5a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d5:95:74:ae:5a:6c:61:a8:2c:b2:c5:2d:c4: f8:d0:c9:c2:95:41:41:0b:e4:b9:c1:f0:2c:dc:3d: 17:d6:94:03:37:69:4e:11:e7:b3:51:00:b6:72:46: 89:1a:29:43:3a:6e:66:dd:f0:99:cf:2b:2c:d8:9c: 79:39:a7:28:ea:ee:19:e0:bc:c1:e2:88:48:b9:e5: 05:6f:d4:ed:de:3f:21:58:47:ea:82:3c:58:d3:3b: a4:33:cf:9e:10:c4:ad:93:70:54:3a:8f:29:f5:60: 3f:23:a8:06:07:3b:e8:43:4d:55:94:4f:82:a8:da: 66:ba:b4:24:8f:5a:e3:87:ca:c7:03:5a:e6:b8:d6: 1b:b9:dc:b2:b3:56:52:0f:1e:b0:24:3d:46:a9:b0: fd:71:bc:e9:04:68:1d:57:3b:82:00:6b:f5:05:97: 32:29:ce:9d:64:d3:82:f0:2b:1b:c4:a8:c1:9d:1f: 3f:94:08:67:1b:ae:96:3d:77:28:61:c7:9d:5b:05: 70:0d:6b:63:68:d9:eb:bf:18:1c:8c:fa:dc:3b:e1: 45:da:f0:6b:bc:b5:f2:bd:b3:b3:51:77:03:1a:66: 1c:b4:7e:fa:6a:e8:ee:51:e1:41:bd:6f:b4:ee:89: a0:4c:dd:da:c6:bc:c5:a1:71:0a:f4:4f:38:3b:6e: e4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:91:1B:25:9C:05:92:DB:44:9C:73:B2:CE:2A:B0:C3:6B:D2:16:CB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee626b04-ab9a-43ab-b5ca-5a0f338f1007.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.116.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0e:13:b1:21:71:dc:ce:27:e4:d8:e4:30:26:62:49:b8:0c:96: 24:68:df:93:48:6b:06:92:6a:00:5d:1b:4e:1b:95:a9:af:26: 39:76:78:ff:81:bb:75:f8:cc:96:2a:8f:d6:19:3d:28:64:3f: aa:a1:88:98:95:00:f0:04:98:7b:5e:37:d5:43:8d:82:a5:08: 6a:22:4c:1b:9a:02:73:d4:8d:96:85:a2:39:e4:5e:d2:5b:db: ab:75:46:e7:bb:61:d0:58:29:c9:e3:bc:7a:ab:1b:39:59:9d: 60:e9:92:5e:37:9d:e3:49:8a:ac:90:a1:05:ce:57:11:2b:c8: 40:72:8b:3d:bb:84:f1:98:ed:31:8c:fd:f9:7a:ce:9f:cf:53: d1:3d:91:f3:62:6a:f2:86:d3:17:83:6b:ce:15:3e:a3:b3:92: ad:32:2a:29:8f:06:ac:05:9a:68:77:fa:5a:89:1c:53:a1:8e: 88:7f:49:3e:24:0e:2a:9e:e9:98:39:01:6c:5d:44:87:a1:ff: 26:21:28:ca:06:f6:fc:7e:b0:94:84:1c:6a:5a:45:83:b3:cc: 57:f9:fd:64:ea:5e:1f:96:b8:8a:56:c1:e3:a2:0a:4d:70:1e: 42:00:48:ce:1c:10:3e:e0:74:8e:d9:a0:07:30:16:b6:73:ef: a0:ed:88:26 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBnATI3j4C7CtFkhuZxlR2xLu1YcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZGQwZmRmMmMwYTM0MDBiN2FjMDM1Y2UzM2VhOTQyNzc5 N2EzMmVjMzZmOTNjMmI5NTI5YzNlOTQwZmUwYTVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCg1ZV0rlpsYagsssUtxPjQycKVQUEL5LnB8CzcPRfWlAM3 aU4R57NRALZyRokaKUM6bmbd8JnPKyzYnHk5pyjq7hngvMHiiEi55QVv1O3ePyFY R+qCPFjTO6Qzz54QxK2TcFQ6jyn1YD8jqAYHO+hDTVWUT4Ko2ma6tCSPWuOHyscD Wua41hu53LKzVlIPHrAkPUapsP1xvOkEaB1XO4IAa/UFlzIpzp1k04LwKxvEqMGd Hz+UCGcbrpY9dyhhx51bBXANa2No2eu/GByM+tw74UXa8Gu8tfK9s7NRdwMaZhy0 fvpq6O5R4UG9b7TuiaBM3drGvMWhcQr0Tzg7buSXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhpEbJZwFkttEnHOyziqww2vSFsswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlNjI2YjA0LWFiOWEtNDNhYi1iNWNhLTVhMGYzMzhmMTAwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2dDANBgkqhkiG9w0BAQsFAAOCAQEADhOxIXHczifk2OQwJmJJuAyWJGjf k0hrBpJqAF0bThuVqa8mOXZ4/4G7dfjMliqP1hk9KGQ/qqGImJUA8ASYe1431UON gqUIaiJMG5oCc9SNloWiOeRe0lvbq3VG57th0FgpyeO8eqsbOVmdYOmSXjed40mK rJChBc5XESvIQHKLPbuE8ZjtMYz9+XrOn89T0T2R82Jq8obTF4NrzhU+o7OSrTIq KY8GrAWaaHf6WokcU6GOiH9JPiQOKp7pmDkBbF1Eh6H/JiEoygb2/H6wlIQcalpF g7PMV/n9ZOpeH5a4ilbB46IKTXAeQgBIzhwQPuB0jtmgBzAWtnPvoO2IJg== -----END CERTIFICATE-----Generated at Thu May 9 01:26:28 2024 by rpki-client on console-ams.rpki-client.org