$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/765a6816-c1d2-4393-a19a-9b71e954d1fe.roa File: 765a6816-c1d2-4393-a19a-9b71e954d1fe.roa (raw, json) Hash identifier: EvGMQyVgf3GxZyWcpnphy2OOwIOH0mjO5HSIvB4yMCc= Subject key identifier: 9D:7B:30:18:F5:FB:76:3C:A6:6E:B4:76:AD:C6:D3:E7:5B:74:FE:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E4B13E074770D48766E11B461872E0F82DA07D1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/765a6816-c1d2-4393-a19a-9b71e954d1fe.roa Signing time: Fri 03 May 2024 00:00:00 +0000 ROA not before: Fri 03 May 2024 00:00:00 +0000 ROA not after: Fri 07 Jun 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.194.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 07 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:4b:13:e0:74:77:0d:48:76:6e:11:b4:61:87:2e:0f:82:da:07:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:00:00 2024 GMT Not After : Jun 7 23:59:59 2024 GMT Subject: serialNumber=23f7736c9be74db8331017315eeeea56b6d7f63655e80f842fac5513b84dcb04, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7e:38:58:51:26:32:8e:45:d0:38:0f:9a:63: b5:15:ef:e8:51:d2:6b:d1:3c:88:e1:bd:45:0e:b9: 4f:db:ef:bb:cb:50:c8:13:7b:b4:61:dd:e6:55:4d: e3:ef:4b:c4:35:b5:da:56:0a:c0:54:da:ad:56:d4: 29:bb:42:9d:16:6b:78:a3:9d:a3:ff:1c:59:72:2f: 5a:63:dc:52:99:83:ef:15:45:e0:5e:a1:9a:bb:b6: 67:d7:c7:17:ab:d5:5a:b5:d1:63:0f:df:8a:ef:51: 30:00:31:20:90:9f:a1:b2:1f:b3:11:7a:60:54:a2: 82:93:24:7b:6e:02:55:c1:e4:fb:61:27:e6:25:34: 26:25:7c:9e:b4:c0:2c:42:1f:87:c6:77:d0:17:cc: 5e:00:3c:20:dc:b6:3c:e1:51:fd:af:fc:b6:da:4c: 5a:14:10:4a:00:90:1a:9b:64:bb:f8:8c:31:b6:c7: 47:f4:16:63:c1:fc:f3:be:b5:e6:9f:41:b9:da:8b: 54:9c:f7:2b:d8:08:37:25:f5:e8:f3:52:08:80:f8: 7e:8b:95:4b:ee:33:ae:a5:77:a4:4f:3c:d9:e0:82: 82:ec:9c:6b:00:de:bd:05:e3:61:b1:34:84:58:b7: ea:0a:dd:37:b8:1a:ca:41:f6:b4:f0:66:33:81:8a: 07:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:7B:30:18:F5:FB:76:3C:A6:6E:B4:76:AD:C6:D3:E7:5B:74:FE:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/765a6816-c1d2-4393-a19a-9b71e954d1fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.194.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:83:5c:d9:c8:4d:d5:9f:a4:21:fe:15:65:ea:f2:44:3b:65: 76:53:44:8a:11:ba:b7:13:f9:df:d7:45:d6:62:68:38:40:7a: ac:a9:c2:1a:e7:da:72:81:cc:20:fc:c0:03:14:66:85:c7:4e: 64:90:f6:a2:05:b4:4d:43:97:0a:2e:ed:75:19:fa:4d:9e:91: 43:f9:c5:1b:8a:22:c2:83:00:97:be:25:c4:76:18:f9:f3:49: 21:a6:a7:c5:b5:c3:21:ab:ff:b9:e1:4d:78:fa:c6:e2:a2:d1: 37:11:fc:17:ea:c0:04:fd:af:05:90:07:55:6b:18:23:81:14: 2d:b1:5d:ca:36:e0:b2:74:e6:2c:17:58:3c:aa:ec:4c:46:94: a2:1d:d8:d0:e2:80:20:ff:be:e5:7f:e5:64:e5:40:eb:1e:15: c5:1c:7f:96:df:d3:00:ef:bc:d6:97:09:00:c1:28:2d:2d:bd: f2:db:e5:14:dd:d1:84:f8:42:f8:2b:de:3f:09:76:5d:2b:41: d5:a7:11:74:0c:9c:a3:5a:14:2d:d4:9a:ba:46:4f:b6:af:8f: 12:54:4f:f1:16:0f:de:87:d1:39:09:a7:86:90:25:60:7f:a8: fd:02:43:e2:dd:c8:bc:7d:dc:b9:32:20:db:43:32:88:8b:91: 69:b1:ba:67 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDksT4HR3DUh2bhG0YYcuD4LaB9EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTAzMDAwMDAwWhcNMjQwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2Y3NzM2YzliZTc0ZGI4MzMxMDE3MzE1ZWVlZWE1NmI2 ZDdmNjM2NTVlODBmODQyZmFjNTUxM2I4NGRjYjA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzfjhYUSYyjkXQOA+aY7UV7+hR0mvRPIjhvUUOuU/b77vL UMgTe7Rh3eZVTePvS8Q1tdpWCsBU2q1W1Cm7Qp0Wa3ijnaP/HFlyL1pj3FKZg+8V ReBeoZq7tmfXxxer1Vq10WMP34rvUTAAMSCQn6GyH7MRemBUooKTJHtuAlXB5Pth J+YlNCYlfJ60wCxCH4fGd9AXzF4APCDctjzhUf2v/LbaTFoUEEoAkBqbZLv4jDG2 x0f0FmPB/PO+teafQbnai1Sc9yvYCDcl9ejzUgiA+H6LlUvuM66ld6RPPNnggoLs nGsA3r0F42GxNIRYt+oK3Te4GspB9rTwZjOBige7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnXswGPX7djymbrR2rcbT51t0/n0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc2NWE2ODE2LWMxZDItNDM5My1hMTlhLTliNzFlOTU0ZDFmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowjANBgkqhkiG9w0BAQsFAAOCAQEAk4Nc2chN1Z+kIf4VZeryRDtldlNE ihG6txP539dF1mJoOEB6rKnCGufacoHMIPzAAxRmhcdOZJD2ogW0TUOXCi7tdRn6 TZ6RQ/nFG4oiwoMAl74lxHYY+fNJIaanxbXDIav/ueFNePrG4qLRNxH8F+rABP2v BZAHVWsYI4EULbFdyjbgsnTmLBdYPKrsTEaUoh3Y0OKAIP++5X/lZOVA6x4VxRx/ lt/TAO+81pcJAMEoLS298tvlFN3RhPhC+CvePwl2XStB1acRdAyco1oULdSaukZP tq+PElRP8RYP3ofROQmnhpAlYH+o/QJD4t3IvH3cuTIg20MyiIuRabG6Zw== -----END CERTIFICATE-----Generated at Mon May 6 00:48:48 2024 by rpki-client on console-fra.rpki-client.org