$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa File: d92cf84d-536c-4213-86c8-c97fdb4209dc.roa (raw, json) Hash identifier: xCIXTxSAYSphRF8qDKdv/CO/au8kyfX3N8rOf2GOzBQ= Subject key identifier: FF:02:4B:EC:35:BE:21:94:E1:D6:0D:C1:5E:F9:AF:D6:20:73:00:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0986AD37C8132DD2766EECA32AF0DB779681D679 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa Signing time: Tue 28 May 2024 00:00:00 +0000 ROA not before: Tue 28 May 2024 00:00:00 +0000 ROA not after: Tue 02 Jul 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.194.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:86:ad:37:c8:13:2d:d2:76:6e:ec:a3:2a:f0:db:77:96:81:d6:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:00:00 2024 GMT Not After : Jul 2 23:59:59 2024 GMT Subject: serialNumber=d8e0fb80fe6572bf05a9cff1e4b3247ead69b018bb38ace2d2ea598ff8e1eccd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ae:c6:ba:9c:0b:5b:5b:0f:0f:4e:11:12:94: 82:9a:52:28:b2:3d:b3:f2:ff:b8:8c:60:5c:76:6f: f2:c2:d5:b5:fb:45:3c:30:01:66:f5:e1:e3:86:76: 67:6b:1f:31:09:45:6a:36:60:79:eb:c9:53:17:1a: 43:a7:ba:bf:76:dc:a3:1d:6b:0f:3d:e8:7c:4f:dd: 3b:df:0f:b8:4f:3e:aa:7d:5e:c9:9a:ef:5f:a1:c8: 50:2e:02:78:d2:ed:58:e5:c5:ea:16:44:2a:92:3d: 59:f8:5c:6c:74:40:7e:29:ea:b9:22:88:9f:70:40: d3:ce:d0:a0:cb:51:3e:31:1e:10:f8:d1:db:61:10: 3d:0b:68:74:33:68:9d:b7:e9:a7:cb:c5:1c:44:31: 7a:26:82:07:0a:f3:49:db:99:b3:ae:34:a7:bf:8b: df:b5:72:4f:96:4a:0c:74:90:ed:ae:d3:1a:e4:fe: 0e:00:a8:bc:ef:1c:88:9c:47:f1:a5:17:49:c9:53: f0:ce:6c:0b:42:62:83:39:a6:cf:ca:53:93:b9:61: 95:40:49:9b:eb:1c:89:6b:01:41:4a:9d:11:b3:78: ff:ec:89:68:9a:9d:8a:3d:bc:50:c1:38:93:72:c3: 6b:4a:31:f9:fc:07:c0:65:3d:9b:a2:b8:a2:6a:78: 1b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:02:4B:EC:35:BE:21:94:E1:D6:0D:C1:5E:F9:AF:D6:20:73:00:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.194.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:63:01:2a:b8:ef:74:8b:23:87:45:0b:20:ef:04:a1:ea:bc: 37:59:75:53:65:f2:dd:9b:89:0c:e1:8d:29:4a:3b:b5:a4:cc: 85:60:ac:39:e6:44:87:75:3e:4a:f4:22:a6:ba:c3:c6:e7:cc: 22:c5:19:97:03:15:62:b2:13:dd:9d:0f:9c:75:f1:94:aa:14: 09:14:e4:2d:7b:89:02:02:cf:2d:bb:c4:1e:6e:12:70:9a:f7: ec:f6:75:c7:70:01:d8:73:9d:6b:54:48:ca:ed:c8:a8:d4:c5: 59:b6:eb:20:92:17:79:b9:f6:3c:78:6f:1d:b4:cf:db:2d:ea: 7a:7f:d8:99:c5:49:1c:0d:e8:bf:7f:17:6b:f7:9e:4c:18:a4: 71:61:ec:da:0d:52:e0:93:e6:f7:00:1c:69:1d:d4:e0:42:3b: 76:9a:46:26:9a:7b:d8:88:25:06:66:ee:1c:bb:12:67:fa:d2: 5f:74:9d:67:5a:f4:ba:f7:aa:ec:1e:50:cb:c5:f8:3b:c0:20: e5:12:a1:2e:22:2a:bd:67:0d:ba:ee:bb:2b:43:19:0f:24:49: bc:17:ea:93:3a:ac:86:fd:bc:64:a4:7b:99:4d:8b:b3:81:cc: a0:fb:7a:a4:d6:6b:a6:5d:fd:2c:2b:7b:ed:a4:75:9a:0f:25: bc:66:55:2f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCYatN8gTLdJ2buyjKvDbd5aB1nkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTI4MDAwMDAwWhcNMjQwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOGUwZmI4MGZlNjU3MmJmMDVhOWNmZjFlNGIzMjQ3ZWFk NjliMDE4YmIzOGFjZTJkMmVhNTk4ZmY4ZTFlY2NkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnrsa6nAtbWw8PThESlIKaUiiyPbPy/7iMYFx2b/LC1bX7 RTwwAWb14eOGdmdrHzEJRWo2YHnryVMXGkOnur923KMdaw896HxP3TvfD7hPPqp9 Xsma71+hyFAuAnjS7VjlxeoWRCqSPVn4XGx0QH4p6rkiiJ9wQNPO0KDLUT4xHhD4 0dthED0LaHQzaJ236afLxRxEMXomggcK80nbmbOuNKe/i9+1ck+WSgx0kO2u0xrk /g4AqLzvHIicR/GlF0nJU/DObAtCYoM5ps/KU5O5YZVASZvrHIlrAUFKnRGzeP/s iWianYo9vFDBOJNyw2tKMfn8B8BlPZuiuKJqeBuNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/wJL7DW+IZTh1g3BXvmv1iBzAIowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5MmNmODRkLTUzNmMtNDIxMy04NmM4LWM5N2ZkYjQyMDlkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowjANBgkqhkiG9w0BAQsFAAOCAQEAFWMBKrjvdIsjh0ULIO8Eoeq8N1l1 U2Xy3ZuJDOGNKUo7taTMhWCsOeZEh3U+SvQiprrDxufMIsUZlwMVYrIT3Z0PnHXx lKoUCRTkLXuJAgLPLbvEHm4ScJr37PZ1x3AB2HOda1RIyu3IqNTFWbbrIJIXebn2 PHhvHbTP2y3qen/YmcVJHA3ov38Xa/eeTBikcWHs2g1S4JPm9wAcaR3U4EI7dppG Jpp72IglBmbuHLsSZ/rSX3SdZ1r0uveq7B5Qy8X4O8Ag5RKhLiIqvWcNuu67K0MZ DyRJvBfqkzqshv28ZKR7mU2Ls4HMoPt6pNZrpl39LCt77aR1mg8lvGZVLw== -----END CERTIFICATE-----Generated at Sun Jun 2 02:07:04 2024 by rpki-client on console-fra.rpki-client.org