$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/990929e7-cb31-4dd9-92e4-740e828fae8f.roa File: 990929e7-cb31-4dd9-92e4-740e828fae8f.roa (raw, json) Hash identifier: vJKrsGwrUF9VgdZXg2Btv0WVFwI254mU9jh7cTZGgEg= Subject key identifier: AE:14:E8:74:D0:4C:1E:5C:60:3B:B1:E0:F4:BA:FB:FD:AD:DA:0B:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FF3487A51D3DC3C3A2ED96E935D99AF439151A7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/990929e7-cb31-4dd9-92e4-740e828fae8f.roa Signing time: Sat 25 May 2024 00:00:00 +0000 ROA not before: Sat 25 May 2024 00:00:00 +0000 ROA not after: Sat 29 Jun 2024 23:59:59 +0000 asID: 14618 IP address blocks: 147.106.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f3:48:7a:51:d3:dc:3c:3a:2e:d9:6e:93:5d:99:af:43:91:51:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 25 00:00:00 2024 GMT Not After : Jun 29 23:59:59 2024 GMT Subject: serialNumber=1c7b2e9b2d3fc5cd0f8a574bf4a9dbb866d769d3d74ae4e0cbb8100fd7382379, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:96:61:56:e0:99:a1:55:f3:d8:f9:a3:b3:97: 95:ab:ee:4c:c3:20:34:10:1e:56:c9:80:b5:4e:62: fb:cb:1a:03:3e:12:80:75:c0:0f:ab:ee:cd:ef:46: e3:26:51:0e:98:89:13:c3:a6:ac:78:16:2c:a9:34: a6:09:32:ac:f7:70:bc:6a:bd:af:a1:04:04:d6:33: 91:6b:6d:28:d6:4e:35:7b:72:ff:ec:d4:8a:e8:87: a3:35:cd:45:a7:75:63:96:f4:33:81:2d:7a:bd:48: 71:86:70:03:3e:a6:2e:fb:a4:20:f3:45:27:f0:1d: 22:c5:ae:ff:99:32:43:a4:07:8f:04:f3:c4:66:02: 38:72:63:39:dc:9a:48:3e:ed:2b:6e:e4:f8:8f:a8: be:1a:19:43:cc:33:95:9f:bb:42:3b:4c:95:4d:bd: 6d:1e:6b:c0:aa:19:e5:69:93:21:df:a6:84:5a:07: 6e:a3:61:5c:2d:a7:a0:2b:22:70:e2:e2:52:31:09: e2:e9:c3:4a:6f:79:00:00:96:ea:39:5c:f6:f7:74: bc:a4:b0:e7:f8:bd:8e:90:7f:ab:f3:67:f1:74:e0: 7f:c5:25:e5:a9:4d:19:8c:82:87:68:5f:b6:9f:e7: d0:97:bb:b3:01:dc:7f:57:b1:59:38:b0:71:3d:77: 64:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:14:E8:74:D0:4C:1E:5C:60:3B:B1:E0:F4:BA:FB:FD:AD:DA:0B:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/990929e7-cb31-4dd9-92e4-740e828fae8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.106.192.0/18 Signature Algorithm: sha256WithRSAEncryption 72:b7:0f:9e:74:e9:24:a9:42:47:a8:89:f3:1d:b3:0a:d9:86: 66:05:e5:9d:d1:c1:d6:18:ed:63:11:8d:36:ef:20:96:46:5f: 29:97:74:ae:5d:fb:a4:89:95:d6:32:3d:8f:6e:56:cb:10:2c: b3:81:f3:77:10:bd:8b:85:e1:97:d4:09:f0:6d:43:fe:38:5e: 46:00:3d:59:4f:be:4c:de:36:f1:a0:a4:52:05:62:22:3b:da: b4:93:ca:af:24:a6:af:49:db:37:6c:ad:51:20:50:1c:f2:17: ab:28:3c:85:59:7f:6c:56:34:4e:52:fc:c8:a5:07:f3:a6:1a: 79:fe:73:b6:25:f6:2a:5a:54:ca:87:55:a4:78:5e:b2:7d:97: 30:67:be:4b:1c:9f:fd:db:4e:59:09:1a:03:fe:2c:1f:6e:7c: aa:7c:dc:73:6b:26:bb:52:ae:31:a5:b9:9b:fb:e6:09:16:55: 66:a4:6c:f4:c1:eb:4f:c3:d7:0c:51:a9:71:59:38:31:19:43: 4b:c6:e7:66:31:a9:ae:9f:3a:4d:ab:c8:2b:84:3c:be:ec:ba: e0:8a:5d:1b:2c:75:e1:b0:6e:1a:b2:db:e2:40:d4:eb:48:06: 49:61:a6:b1:91:2e:7f:fe:67:76:b7:cc:3a:55:ba:75:87:b0: c7:8a:13:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL/NIelHT3Dw6Ltluk12Zr0ORUacwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTI1MDAwMDAwWhcNMjQwNjI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzdiMmU5YjJkM2ZjNWNkMGY4YTU3NGJmNGE5ZGJiODY2 ZDc2OWQzZDc0YWU0ZTBjYmI4MTAwZmQ3MzgyMzc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTlmFW4JmhVfPY+aOzl5Wr7kzDIDQQHlbJgLVOYvvLGgM+ EoB1wA+r7s3vRuMmUQ6YiRPDpqx4FiypNKYJMqz3cLxqva+hBATWM5FrbSjWTjV7 cv/s1Iroh6M1zUWndWOW9DOBLXq9SHGGcAM+pi77pCDzRSfwHSLFrv+ZMkOkB48E 88RmAjhyYzncmkg+7Stu5PiPqL4aGUPMM5Wfu0I7TJVNvW0ea8CqGeVpkyHfpoRa B26jYVwtp6ArInDi4lIxCeLpw0pveQAAluo5XPb3dLyksOf4vY6Qf6vzZ/F04H/F JeWpTRmMgodoX7af59CXu7MB3H9XsVk4sHE9d2R7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrhTodNBMHlxgO7Hg9Lr7/a3aC90wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5MDkyOWU3LWNiMzEtNGRkOS05MmU0LTc0MGU4MjhmYWU4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaTasAwDQYJKoZIhvcNAQELBQADggEBAHK3D5506SSpQkeoifMdswrZhmYF 5Z3RwdYY7WMRjTbvIJZGXymXdK5d+6SJldYyPY9uVssQLLOB83cQvYuF4ZfUCfBt Q/44XkYAPVlPvkzeNvGgpFIFYiI72rSTyq8kpq9J2zdsrVEgUBzyF6soPIVZf2xW NE5S/MilB/OmGnn+c7Yl9ipaVMqHVaR4XrJ9lzBnvkscn/3bTlkJGgP+LB9ufKp8 3HNrJrtSrjGluZv75gkWVWakbPTB60/D1wxRqXFZODEZQ0vG52Yxqa6fOk2ryCuE PL7suuCKXRssdeGwbhqy2+JA1OtIBklhprGRLn/+Z3a3zDpVunWHsMeKEwA= -----END CERTIFICATE-----Generated at Sun Jun 2 02:06:59 2024 by rpki-client on console-fra.rpki-client.org