$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d4bf98b-6e08-4b78-84a1-1a577f90f420.roa File: 5d4bf98b-6e08-4b78-84a1-1a577f90f420.roa (raw, json) Hash identifier: xOrq+Pfl4X7ecZlDF8mxYH1XO3QZuNcnnUfuxAXo+wg= Subject key identifier: A6:FC:7D:8A:88:06:FA:37:47:C5:B0:DD:A6:15:56:67:47:8B:0D:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 357A81B12670D5AF0DAC0FB76FF20A107BDA59B2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d4bf98b-6e08-4b78-84a1-1a577f90f420.roa Signing time: Mon 13 May 2024 00:00:00 +0000 ROA not before: Mon 13 May 2024 00:00:00 +0000 ROA not after: Mon 17 Jun 2024 23:59:59 +0000 asID: 16509 IP address blocks: 208.86.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:7a:81:b1:26:70:d5:af:0d:ac:0f:b7:6f:f2:0a:10:7b:da:59:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 13 00:00:00 2024 GMT Not After : Jun 17 23:59:59 2024 GMT Subject: serialNumber=4cb16c12baee6677e39e493f1b9c648de7f2299364c572a4b1ff7af76a6f621b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a5:6e:84:c0:e4:28:5e:d1:ba:df:90:23:55: cf:9d:e8:4b:c4:77:3c:7c:27:39:db:bc:8b:b2:20: c9:0b:36:67:9a:ad:25:83:27:e3:76:66:a3:e2:e7: 69:1b:e4:4f:0b:6c:91:36:19:a6:35:ee:51:36:5d: 7d:54:4e:b8:31:52:f2:9a:21:cb:72:c5:64:ef:1f: 65:d4:37:83:56:03:3c:a9:f4:f6:a2:73:25:48:7a: 3f:75:8e:e3:ac:38:c3:37:a0:60:16:14:43:16:9d: 5d:6a:02:5d:60:73:66:07:28:52:34:92:d1:9e:81: b9:71:1a:25:c3:52:7e:2f:8f:75:f2:24:76:66:5f: cc:8f:75:ef:91:ae:43:f2:9b:11:76:3c:2b:4e:8b: 64:c5:09:6a:55:25:d9:13:ee:aa:9a:8b:01:fc:5e: fb:c6:07:1f:36:04:60:39:79:af:72:87:8c:0b:76: e6:00:db:87:09:fc:c1:d4:7a:16:73:34:8f:a9:8f: f5:a6:95:33:73:b8:f6:22:87:e2:2c:7b:32:31:1d: d8:c6:d8:5c:13:24:10:13:56:7b:28:8a:ef:b2:06: c6:c0:94:d7:9a:2c:32:8d:90:8d:5c:a9:00:33:fc: a6:6c:3b:52:93:41:09:4d:5c:67:e7:42:3f:fc:80: 8e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:FC:7D:8A:88:06:FA:37:47:C5:B0:DD:A6:15:56:67:47:8B:0D:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d4bf98b-6e08-4b78-84a1-1a577f90f420.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.86.90.0/23 Signature Algorithm: sha256WithRSAEncryption 85:03:70:62:3a:06:02:a3:9c:90:a3:82:63:5d:48:01:6c:ea: 3c:8d:95:1b:05:c1:e5:ab:82:c1:32:02:2b:f1:69:13:5d:08: 99:a7:b7:9e:b1:86:3e:69:bf:ba:e9:7a:7a:8a:9c:30:dd:13: 60:55:2a:3c:f2:20:19:0c:cb:fc:06:60:6b:8b:bc:09:14:ed: 76:8e:24:80:77:fd:ac:64:c1:f2:68:43:e5:86:97:b4:81:63: 63:95:47:70:53:e3:b4:22:53:90:07:58:7f:99:3f:cc:69:ab: 61:eb:92:6c:a1:97:92:2c:e2:e2:05:05:d2:49:64:d5:a8:03: 30:73:1d:80:d6:ac:d2:c6:f5:4e:d1:f7:0f:57:5d:61:b7:fe: b4:1a:ca:4c:2d:c2:d6:10:3a:1d:ac:f6:1a:bc:c0:af:ef:cc: 75:ec:7c:69:33:3a:17:bf:3d:9e:0a:07:73:c5:6b:94:eb:27: 78:70:fc:09:1f:13:96:5f:5a:19:48:c0:dd:3c:fa:d3:be:f1: 1b:84:e5:09:c3:67:3c:ff:f5:dd:d5:b0:52:09:5c:23:25:34: 9c:b8:2a:e8:19:e0:88:87:39:26:14:54:33:22:3e:cb:f3:87: 00:1a:f0:7b:db:ab:04:d0:3d:29:ae:e3:ab:60:41:46:97:39: 5a:d2:14:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNXqBsSZw1a8NrA+3b/IKEHvaWbIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTEzMDAwMDAwWhcNMjQwNjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2IxNmMxMmJhZWU2Njc3ZTM5ZTQ5M2YxYjljNjQ4ZGU3 ZjIyOTkzNjRjNTcyYTRiMWZmN2FmNzZhNmY2MjFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCspW6EwOQoXtG635AjVc+d6EvEdzx8JznbvIuyIMkLNmea rSWDJ+N2ZqPi52kb5E8LbJE2GaY17lE2XX1UTrgxUvKaIctyxWTvH2XUN4NWAzyp 9PaicyVIej91juOsOMM3oGAWFEMWnV1qAl1gc2YHKFI0ktGegblxGiXDUn4vj3Xy JHZmX8yPde+RrkPymxF2PCtOi2TFCWpVJdkT7qqaiwH8XvvGBx82BGA5ea9yh4wL duYA24cJ/MHUehZzNI+pj/WmlTNzuPYih+IsezIxHdjG2FwTJBATVnsoiu+yBsbA lNeaLDKNkI1cqQAz/KZsO1KTQQlNXGfnQj/8gI53AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpvx9iogG+jdHxbDdphVWZ0eLDTYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkNGJmOThiLTZlMDgtNGI3OC04NGExLTFhNTc3ZjkwZjQyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHQVlowDQYJKoZIhvcNAQELBQADggEBAIUDcGI6BgKjnJCjgmNdSAFs6jyN lRsFweWrgsEyAivxaRNdCJmnt56xhj5pv7rpenqKnDDdE2BVKjzyIBkMy/wGYGuL vAkU7XaOJIB3/axkwfJoQ+WGl7SBY2OVR3BT47QiU5AHWH+ZP8xpq2Hrkmyhl5Is 4uIFBdJJZNWoAzBzHYDWrNLG9U7R9w9XXWG3/rQaykwtwtYQOh2s9hq8wK/vzHXs fGkzOhe/PZ4KB3PFa5TrJ3hw/AkfE5ZfWhlIwN08+tO+8RuE5QnDZzz/9d3VsFIJ XCMlNJy4KugZ4IiHOSYUVDMiPsvzhwAa8HvbqwTQPSmu46tgQUaXOVrSFEo= -----END CERTIFICATE-----Generated at Sun Jun 2 02:06:54 2024 by rpki-client on console-fra.rpki-client.org