$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1f69134-90af-4545-bd2d-af7213a7260a.roa File: f1f69134-90af-4545-bd2d-af7213a7260a.roa (raw, json) Hash identifier: vRL7m6ffkjL1rXTS4wGfkhbBTNIm5DPaJqlijBnHzI4= Subject key identifier: E4:0C:83:2A:6B:D2:06:E5:7B:8B:47:9D:46:D3:EE:14:84:8A:25:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 61219509EE10B6263ADE36BD4DCCC32AD51715 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1f69134-90af-4545-bd2d-af7213a7260a.roa Signing time: Mon 06 May 2024 00:00:00 +0000 ROA not before: Mon 06 May 2024 00:00:00 +0000 ROA not after: Mon 10 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 164.195.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:21:95:09:ee:10:b6:26:3a:de:36:bd:4d:cc:c3:2a:d5:17:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:00:00 2024 GMT Not After : Jun 10 23:59:59 2024 GMT Subject: serialNumber=42e8d53808c89137ad722eee0994784a70b22b0a00ee75626cd7a23e1b9fe7fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5e:e6:a6:23:e4:84:19:ad:10:27:c2:c9:3c: 9e:c5:fe:b6:f1:8d:3a:76:70:4a:8b:0e:61:1f:a3: fa:01:d8:31:0d:81:72:e4:bc:4c:4d:94:0e:85:13: 2c:72:93:b9:0b:08:c4:fc:62:8a:15:7d:ca:e0:b9: d4:49:51:20:94:8c:2a:0f:36:44:11:58:3b:1f:03: 71:1e:7e:1c:0e:f7:48:fe:7b:67:6e:79:74:f0:5f: a9:6e:79:14:06:9b:31:5f:39:b7:37:89:8b:6a:39: fc:d8:2d:9e:ea:ae:75:d2:98:8d:f3:21:6a:91:76: 26:c5:4f:49:3f:a9:49:a2:01:04:4c:4b:fc:37:b4: 1e:c8:86:a4:08:0d:62:f9:c1:8d:ea:0f:b3:a7:9c: 44:60:43:f8:bd:b8:b5:5f:30:7e:07:db:9e:2f:0f: 5f:da:21:d9:14:55:25:a5:96:a5:dc:b1:43:fa:f2: 68:31:af:a8:dd:f2:fa:c6:8e:ee:50:9f:30:b3:14: f5:20:92:9d:80:58:c7:3e:23:32:a1:68:cd:6c:75: f1:a0:ac:60:72:4b:b1:41:96:29:d0:23:d3:f1:1c: 06:1f:84:3f:b0:f6:e8:ef:62:75:c1:56:ea:66:b2: 6d:6b:06:c7:91:cb:67:41:ff:70:bb:e6:ae:60:06: a0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:0C:83:2A:6B:D2:06:E5:7B:8B:47:9D:46:D3:EE:14:84:8A:25:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1f69134-90af-4545-bd2d-af7213a7260a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption 48:1a:18:b2:d1:d0:ff:2a:79:a4:45:43:cd:10:41:52:37:dc: 6f:8e:ba:ea:60:5d:f0:76:0f:76:c8:be:44:bf:00:93:18:87: a6:4d:8e:3a:3d:26:6b:8e:30:83:ef:9e:7e:61:d6:e9:ea:fa: 15:4c:4f:b4:e1:aa:42:52:e9:4f:58:ab:5c:fe:dc:53:7b:fd: 23:9e:01:7b:7f:0c:5e:5e:d3:d0:0d:02:ae:f6:04:e5:61:d8: c9:99:e1:96:94:e8:bc:03:58:2b:88:6b:4c:3c:ab:8c:b6:26: 86:a3:25:4e:0e:0e:6c:58:88:84:90:3a:14:6a:d4:f7:7d:7b: 62:a4:25:e7:74:02:68:f4:09:06:71:ba:d3:10:fb:34:cf:ee: 2b:c1:ba:fe:c3:96:81:04:9d:ae:cd:23:6c:22:6d:ab:40:e3: 94:7a:c9:40:a2:cd:f3:96:81:2d:a3:5f:0c:3c:a9:76:1e:83: 1e:48:21:24:78:fd:8e:28:d6:66:0b:54:e4:54:06:eb:61:59: 5c:92:56:ed:4a:23:7d:74:6e:ed:c0:04:88:78:70:18:5b:43: b4:96:5a:f3:d9:cb:41:db:1c:ca:c9:ed:68:ca:8e:0e:96:b3: ee:14:ac:ec:18:08:3c:58:62:f9:6e:6f:3e:43:9c:68:8f:42: b7:04:7c:ec -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITYSGVCe4QtiY63ja9TczDKtUXFTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNDA1MDYwMDAwMDBaFw0yNDA2MTAyMzU5NTla MHoxSTBHBgNVBAUTQDQyZThkNTM4MDhjODkxMzdhZDcyMmVlZTA5OTQ3ODRhNzBi MjJiMGEwMGVlNzU2MjZjZDdhMjNlMWI5ZmU3ZmQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAK5e5qYj5IQZrRAnwsk8nsX+tvGNOnZwSosOYR+j+gHYMQ2B cuS8TE2UDoUTLHKTuQsIxPxiihV9yuC51ElRIJSMKg82RBFYOx8DcR5+HA73SP57 Z255dPBfqW55FAabMV85tzeJi2o5/NgtnuquddKYjfMhapF2JsVPST+pSaIBBExL /De0HsiGpAgNYvnBjeoPs6ecRGBD+L24tV8wfgfbni8PX9oh2RRVJaWWpdyxQ/ry aDGvqN3y+saO7lCfMLMU9SCSnYBYxz4jMqFozWx18aCsYHJLsUGWKdAj0/EcBh+E P7D26O9idcFW6maybWsGx5HLZ0H/cLvmrmAGoFcCAwEAAaOCArAwggKsMB0GA1Ud DgQWBBTkDIMqa9IG5XuLR51G0+4UhIolpzAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvZjFmNjkxMzQtOTBhZi00NTQ1LWJkMmQtYWY3MjEzYTcyNjBhLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAKTDMA0GCSqGSIb3DQEBCwUAA4IBAQBIGhiy0dD/KnmkRUPNEEFSN9xvjrrq YF3wdg92yL5EvwCTGIemTY46PSZrjjCD755+Ydbp6voVTE+04apCUulPWKtc/txT e/0jngF7fwxeXtPQDQKu9gTlYdjJmeGWlOi8A1griGtMPKuMtiaGoyVODg5sWIiE kDoUatT3fXtipCXndAJo9AkGcbrTEPs0z+4rwbr+w5aBBJ2uzSNsIm2rQOOUeslA os3zloEto18MPKl2HoMeSCEkeP2OKNZmC1TkVAbrYVlcklbtSiN9dG7twASIeHAY W0O0llrz2ctB2xzKye1oyo4OlrPuFKzsGAg8WGL5bm8+Q5xoj0K3BHzs -----END CERTIFICATE-----Generated at Thu May 9 01:26:28 2024 by rpki-client on console-ams.rpki-client.org