$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd591dd4-3bac-44a9-bd89-e1ba9ed57670.roa File: fd591dd4-3bac-44a9-bd89-e1ba9ed57670.roa (raw, json) Hash identifier: 21T+JQDsF8+y+JlPEplr3acuHESNg4LNTTcNNJhYCyk= Subject key identifier: 37:0E:8B:E9:B6:CA:36:8D:9B:CA:53:98:C3:45:30:FB:8C:FB:5C:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CDBA75210BFFF444237E6BA865BCFE53E53A6D8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd591dd4-3bac-44a9-bd89-e1ba9ed57670.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.216.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:db:a7:52:10:bf:ff:44:42:37:e6:ba:86:5b:cf:e5:3e:53:a6:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=216756c89d52a204c1b9934b9807668e20f1eb5ad665519eca7cab3248613f6b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:b4:c7:8c:c3:7a:77:3e:15:59:ac:1a:a0:be: dd:ea:a9:ca:e0:28:c8:6d:e5:f0:20:7c:7a:ba:a6: 96:2e:84:87:6b:d7:6c:09:eb:9c:95:de:59:4d:72: 79:9b:ca:23:ec:e3:0b:d7:48:bd:8b:b5:42:4b:e5: 8c:47:8d:bb:c1:dd:8a:79:ed:26:14:bc:b2:95:13: ef:28:9b:6e:2b:51:e1:a1:c3:da:15:9e:6c:f7:c4: 23:46:04:96:bc:68:ef:cf:ab:05:d1:61:b5:37:19: 27:67:e5:ec:a3:48:d7:d1:d2:07:32:66:4a:a0:27: 48:63:16:0a:33:16:9a:ac:ed:20:14:bb:6c:bd:1a: 63:35:4b:f8:2f:43:bd:80:dd:96:00:c9:19:58:7c: 7e:a9:ef:98:c3:b2:f0:a3:a6:10:f6:02:53:00:63: 6e:a5:3b:7c:a7:c6:a0:35:f3:1b:de:27:08:bf:fd: 55:4e:ba:10:65:6c:be:b7:1a:91:b6:63:97:af:16: f4:ab:cc:db:df:f1:a5:f3:bc:e0:78:ab:af:1f:b3: 22:78:db:11:77:e2:85:92:b9:1e:f5:72:97:b6:e3: 5d:82:5b:30:1f:38:e3:19:b8:99:a8:57:d0:3b:38: 5d:74:ec:bc:a4:c0:c0:b3:a8:be:7e:d8:8f:bc:44: 3c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:0E:8B:E9:B6:CA:36:8D:9B:CA:53:98:C3:45:30:FB:8C:FB:5C:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd591dd4-3bac-44a9-bd89-e1ba9ed57670.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.216.0.0/16 Signature Algorithm: sha256WithRSAEncryption b3:1b:8b:5f:2e:99:84:af:b6:b0:8e:61:ee:78:ad:ed:aa:46: 54:2c:16:d4:a0:3e:c8:df:a3:d1:60:f2:e9:6d:6f:d6:db:c1: 7d:0e:e3:ba:68:0d:ae:2e:7a:e8:52:4c:68:65:b5:38:a5:7c: c4:37:cd:f7:c6:85:ca:85:83:b3:4d:73:5e:56:e7:b1:66:0a: b6:7d:d9:41:20:81:58:fa:5a:fa:5f:01:a4:af:0c:ef:a9:4a: a9:97:78:8f:35:02:f3:22:d2:47:e0:e3:89:08:3f:75:79:73: a2:f5:47:4c:dc:04:16:dd:ee:d6:bf:a9:b4:39:bf:97:48:02: 0f:4c:fc:d4:0f:80:73:08:4d:22:90:32:b8:d0:ce:5e:0d:85: 98:bd:fe:1e:2b:a0:a1:cf:20:d2:27:58:0c:3f:2c:57:32:d3: 26:37:4a:6f:25:c0:e9:e4:9c:4e:e5:1d:d4:d3:d3:f5:67:14: cc:d5:5f:b6:e2:6d:eb:6b:d9:ec:0a:d2:30:0f:b9:47:90:bb: 39:2d:c3:a6:f0:83:86:c1:37:4e:44:42:1a:9c:53:22:d1:76: 7b:18:40:a1:d6:f2:36:6e:69:a9:2b:fa:af:53:27:fa:f5:4f: 3d:0e:78:99:fb:97:44:b6:f9:9b:84:2a:b0:9d:e1:20:15:3c: 5c:66:1b:6f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPNunUhC//0RCN+a6hlvP5T5TptgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTY3NTZjODlkNTJhMjA0YzFiOTkzNGI5ODA3NjY4ZTIw ZjFlYjVhZDY2NTUxOWVjYTdjYWIzMjQ4NjEzZjZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD9tMeMw3p3PhVZrBqgvt3qqcrgKMht5fAgfHq6ppYuhIdr 12wJ65yV3llNcnmbyiPs4wvXSL2LtUJL5YxHjbvB3Yp57SYUvLKVE+8om24rUeGh w9oVnmz3xCNGBJa8aO/PqwXRYbU3GSdn5eyjSNfR0gcyZkqgJ0hjFgozFpqs7SAU u2y9GmM1S/gvQ72A3ZYAyRlYfH6p75jDsvCjphD2AlMAY26lO3ynxqA18xveJwi/ /VVOuhBlbL63GpG2Y5evFvSrzNvf8aXzvOB4q68fsyJ42xF34oWSuR71cpe2412C WzAfOOMZuJmoV9A7OF107LykwMCzqL5+2I+8RDyJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNw6L6bbKNo2bylOYw0Uw+4z7XDowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZkNTkxZGQ0LTNiYWMtNDRhOS1iZDg5LWUxYmE5ZWQ1NzY3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo2DANBgkqhkiG9w0BAQsFAAOCAQEAsxuLXy6ZhK+2sI5h7nit7apGVCwW 1KA+yN+j0WDy6W1v1tvBfQ7jumgNri566FJMaGW1OKV8xDfN98aFyoWDs01zXlbn sWYKtn3ZQSCBWPpa+l8BpK8M76lKqZd4jzUC8yLSR+DjiQg/dXlzovVHTNwEFt3u 1r+ptDm/l0gCD0z81A+AcwhNIpAyuNDOXg2FmL3+Hiugoc8g0idYDD8sVzLTJjdK byXA6eScTuUd1NPT9WcUzNVftuJt62vZ7ArSMA+5R5C7OS3DpvCDhsE3TkRCGpxT ItF2exhAodbyNm5pqSv6r1Mn+vVPPQ54mfuXRLb5m4QqsJ3hIBU8XGYbbw== -----END CERTIFICATE-----Generated at Thu Apr 18 00:58:30 2024 by rpki-client on console-ams.rpki-client.org