$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2ad3121-7e1e-4e90-b0a2-3352c5db99e1.roa File: f2ad3121-7e1e-4e90-b0a2-3352c5db99e1.roa (raw, json) Hash identifier: o87gqhn2EFFI5XbHhjHBd9B7YoG3kX2WB28fsybFbtU= Subject key identifier: 4C:67:E4:9F:CC:A8:22:A6:4D:C1:2E:39:36:79:97:3D:F7:66:9C:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 78CCB22B5A8917590918228751C923278F4796A2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2ad3121-7e1e-4e90-b0a2-3352c5db99e1.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 209.54.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:cc:b2:2b:5a:89:17:59:09:18:22:87:51:c9:23:27:8f:47:96:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=1b2079c16ad44b1ff26bea51ac954f464e4687903e27510ad2d6c54e4787e0e7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b9:4d:f5:e0:05:20:67:90:c7:94:f9:6a:93: f6:c9:2b:cb:29:94:c6:f3:25:d9:dc:3e:c5:f5:9d: 5a:0c:78:71:7d:f6:17:26:b9:8b:cf:b9:c8:c6:b6: 0f:64:0a:0e:e6:b2:81:58:4c:b9:d1:58:5c:5e:6c: 78:e7:d7:b5:c9:ea:39:61:c5:37:fd:d6:91:70:7f: aa:58:a8:ec:40:e6:be:d8:c9:f2:be:c1:75:6c:6b: 10:b4:21:8a:04:e7:84:18:3e:04:e0:19:e2:ae:01: 4e:36:e6:2e:ad:9b:59:96:29:0d:c1:f7:14:69:8f: 42:1d:31:df:f0:ea:59:c8:9e:7e:5f:83:a1:33:57: 60:51:b8:9f:37:93:77:ef:74:cf:b6:75:59:fd:18: 9f:4b:86:55:60:44:57:14:8c:41:73:8f:a0:0e:2f: 7d:3b:25:58:ca:7b:29:0a:d0:c9:50:85:74:64:56: 38:56:df:ac:64:8e:c6:79:64:35:72:a0:4f:b1:1c: 31:97:e1:f6:c9:d8:d9:56:c9:0b:53:1f:83:66:a3: 8a:5e:f9:c8:73:56:4f:81:6c:ac:6d:ae:21:33:30: 5a:9d:fc:1d:f0:75:c6:c1:5a:29:5b:a7:b8:ea:3c: d9:5f:70:da:72:5a:48:21:16:52:cc:f3:1a:8a:30: 7c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:67:E4:9F:CC:A8:22:A6:4D:C1:2E:39:36:79:97:3D:F7:66:9C:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2ad3121-7e1e-4e90-b0a2-3352c5db99e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.54.176.0/21 Signature Algorithm: sha256WithRSAEncryption 65:8e:6a:18:6a:63:a4:a9:d0:0d:bf:14:09:cc:2a:97:21:9e: 28:41:ff:3a:dc:38:a9:da:12:9e:43:a3:7f:e8:64:59:fc:15: 59:69:ff:a9:1b:03:fe:fa:2c:6f:57:70:e4:5d:0a:5c:d5:2a: 4d:91:34:bf:89:6e:c8:4d:02:04:90:d7:80:85:87:4c:e3:93: e6:5e:06:85:ba:41:a4:e7:c1:a5:0b:b1:99:c2:2a:b1:c7:0d: 9f:a3:d2:89:11:a2:0b:e2:2e:6e:b7:6b:7d:4c:e4:af:d0:4d: 9e:c0:b7:42:02:a7:0a:cc:17:ef:04:5e:84:04:66:b6:25:41: e5:7e:62:ba:ef:04:9e:01:01:bd:42:5b:9a:fd:08:b9:8d:ad: 63:cc:a7:75:4c:38:c3:05:a3:ee:99:ed:a2:19:c7:a4:76:5d: 2b:60:0d:ac:85:fa:cd:60:00:77:29:e9:7a:f5:d9:af:25:6e: ea:e3:55:35:98:05:da:37:66:59:3d:af:ae:c1:ce:d0:68:b7: 53:80:9a:0a:1c:ef:3f:10:13:c6:85:4a:85:40:5f:f0:c4:df: da:4e:e7:90:38:93:bd:aa:fc:80:a3:9f:1f:f0:46:d2:d7:9c: 1e:f9:dd:7f:69:5d:e6:9c:b7:66:c7:90:ee:f9:43:e7:e5:8b: db:76:33:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeMyyK1qJF1kJGCKHUckjJ49HlqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjIwNzljMTZhZDQ0YjFmZjI2YmVhNTFhYzk1NGY0NjRl NDY4NzkwM2UyNzUxMGFkMmQ2YzU0ZTQ3ODdlMGU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/uU314AUgZ5DHlPlqk/bJK8splMbzJdncPsX1nVoMeHF9 9hcmuYvPucjGtg9kCg7msoFYTLnRWFxebHjn17XJ6jlhxTf91pFwf6pYqOxA5r7Y yfK+wXVsaxC0IYoE54QYPgTgGeKuAU425i6tm1mWKQ3B9xRpj0IdMd/w6lnInn5f g6EzV2BRuJ83k3fvdM+2dVn9GJ9LhlVgRFcUjEFzj6AOL307JVjKeykK0MlQhXRk VjhW36xkjsZ5ZDVyoE+xHDGX4fbJ2NlWyQtTH4Nmo4pe+chzVk+BbKxtriEzMFqd /B3wdcbBWilbp7jqPNlfcNpyWkghFlLM8xqKMHwDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTGfkn8yoIqZNwS45NnmXPfdmnNcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyYWQzMTIxLTdlMWUtNGU5MC1iMGEyLTMzNTJjNWRiOTllMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPRNrAwDQYJKoZIhvcNAQELBQADggEBAGWOahhqY6Sp0A2/FAnMKpchnihB /zrcOKnaEp5Do3/oZFn8FVlp/6kbA/76LG9XcORdClzVKk2RNL+JbshNAgSQ14CF h0zjk+ZeBoW6QaTnwaULsZnCKrHHDZ+j0okRogviLm63a31M5K/QTZ7At0ICpwrM F+8EXoQEZrYlQeV+YrrvBJ4BAb1CW5r9CLmNrWPMp3VMOMMFo+6Z7aIZx6R2XStg DayF+s1gAHcp6Xr12a8lburjVTWYBdo3Zlk9r67BztBot1OAmgoc7z8QE8aFSoVA X/DE39pO55A4k72q/ICjnx/wRtLXnB753X9pXeact2bHkO75Q+fli9t2M7A= -----END CERTIFICATE-----Generated at Sat Apr 20 05:35:34 2024 by rpki-client on console-ams.rpki-client.org