$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f96aa755-7706-4949-81f7-82bd0b453fe6.roa File: f96aa755-7706-4949-81f7-82bd0b453fe6.roa (raw, json) Hash identifier: tB8+LLZpDX5a9BT81rtrRrpS77kceRgK5ZnzztttcQk= Subject key identifier: 32:1A:38:52:16:3E:19:69:5B:21:E4:9C:8C:5F:F6:00:B7:26:5F:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E6FDACB153AD19493A604353D815EB23AAB8253 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f96aa755-7706-4949-81f7-82bd0b453fe6.roa Signing time: Sat 18 May 2024 00:00:00 +0000 ROA not before: Sat 18 May 2024 00:00:00 +0000 ROA not after: Sat 22 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 40.186.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 03 Jun 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:6f:da:cb:15:3a:d1:94:93:a6:04:35:3d:81:5e:b2:3a:ab:82:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 18 00:00:00 2024 GMT Not After : Jun 22 23:59:59 2024 GMT Subject: serialNumber=4bb0ab1d07103c3175dccd95fc726ac719a150dfc7d1e33d596642a46c9bf08f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fa:38:bb:90:c3:28:32:d3:fb:b6:8c:05:cf: 37:0b:98:0e:15:74:85:87:f4:f0:c0:58:be:ee:9f: 98:76:c6:f5:9c:f5:01:96:f9:a2:61:54:ef:36:32: f6:86:ca:32:f2:5c:93:98:e3:a7:0e:2f:33:15:9f: be:c7:2f:82:bc:65:04:00:bf:a1:20:ea:7d:78:18: 8d:b3:d2:c2:0a:43:d9:bd:fb:68:5b:b9:82:0d:46: 32:ad:3c:35:b8:f3:a0:15:bd:bd:e1:ba:6f:c0:cc: f4:7d:29:81:8c:a9:44:80:61:ed:a6:77:33:76:89: 5a:94:3d:03:57:6e:a1:37:9c:15:ce:6f:5c:a8:01: 1e:3c:fb:d6:85:8f:32:cf:c7:22:2a:5d:28:4f:1e: 40:40:87:64:e9:d1:33:fd:94:c3:43:2a:be:79:69: f2:d0:47:5f:39:76:7e:5a:56:67:66:3a:ef:c6:b1: 8f:d8:8e:3e:c3:bb:b7:bd:7f:ff:06:e6:b8:25:5a: 33:8f:60:c9:1e:20:f4:4b:e8:3e:38:46:b3:c9:2f: 3e:4f:5b:0f:43:15:34:18:2a:db:7c:ad:2e:9b:59: 6c:3b:d6:2a:f9:98:1f:9f:fc:a0:7c:38:b9:8c:e8: 29:6c:f9:f1:5f:cf:99:06:ab:26:24:67:51:8b:54: 1f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1A:38:52:16:3E:19:69:5B:21:E4:9C:8C:5F:F6:00:B7:26:5F:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f96aa755-7706-4949-81f7-82bd0b453fe6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.186.0.0/16 Signature Algorithm: sha256WithRSAEncryption 86:68:ba:b4:32:28:d2:85:89:8f:d1:0a:c0:ac:97:2c:ca:9c: 41:de:e5:0c:ad:d8:a0:be:eb:d5:10:57:d4:76:e3:1d:88:04: 82:a3:56:89:e2:4e:a0:ea:60:0d:4a:8d:79:46:f1:d6:a5:04: 08:80:48:21:30:69:c4:99:be:0d:be:e8:82:3d:0e:45:80:69: a1:7d:6a:fe:dc:7a:41:15:4f:5b:3f:f5:4d:52:0c:c3:b7:4a: 22:69:48:8b:6f:c8:df:d2:de:69:20:01:74:e4:41:6c:30:5c: df:ef:fe:84:42:06:43:a6:07:76:cd:b8:e7:97:8a:61:2c:11: 94:67:07:50:66:ed:bd:1f:e9:01:20:ec:ee:43:54:73:1a:96: 67:a3:a9:44:e3:d0:0b:d9:60:6f:92:6c:f0:e2:e8:df:af:ac: d0:37:7a:8c:a5:aa:54:c4:1e:02:b3:b4:46:8a:22:a1:b1:9b: 6c:e7:2e:26:86:28:67:55:1c:79:01:c4:9f:3a:da:80:4d:fa: 0c:ec:9f:4e:23:d8:26:fe:70:3a:74:bb:6f:3a:9b:c4:c4:57: ef:06:8c:6f:8c:de:40:c8:ac:7d:f7:bf:0f:11:4e:05:1d:f1: df:97:54:48:5c:65:86:7f:7b:25:aa:5e:31:42:a1:99:d6:18: a7:ae:f4:fe -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHm/ayxU60ZSTpgQ1PYFesjqrglMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTE4MDAwMDAwWhcNMjQwNjIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YmIwYWIxZDA3MTAzYzMxNzVkY2NkOTVmYzcyNmFjNzE5 YTE1MGRmYzdkMWUzM2Q1OTY2NDJhNDZjOWJmMDhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI+ji7kMMoMtP7towFzzcLmA4VdIWH9PDAWL7un5h2xvWc 9QGW+aJhVO82MvaGyjLyXJOY46cOLzMVn77HL4K8ZQQAv6Eg6n14GI2z0sIKQ9m9 +2hbuYINRjKtPDW486AVvb3hum/AzPR9KYGMqUSAYe2mdzN2iVqUPQNXbqE3nBXO b1yoAR48+9aFjzLPxyIqXShPHkBAh2Tp0TP9lMNDKr55afLQR185dn5aVmdmOu/G sY/Yjj7Du7e9f/8G5rglWjOPYMkeIPRL6D44RrPJLz5PWw9DFTQYKtt8rS6bWWw7 1ir5mB+f/KB8OLmM6Cls+fFfz5kGqyYkZ1GLVB/JAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUMho4UhY+GWlbIeScjF/2ALcmXx4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5NmFhNzU1LTc3MDYtNDk0OS04MWY3LTgyYmQwYjQ1M2ZlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoujANBgkqhkiG9w0BAQsFAAOCAQEAhmi6tDIo0oWJj9EKwKyXLMqcQd7l DK3YoL7r1RBX1HbjHYgEgqNWieJOoOpgDUqNeUbx1qUECIBIITBpxJm+Db7ogj0O RYBpoX1q/tx6QRVPWz/1TVIMw7dKImlIi2/I39LeaSABdORBbDBc3+/+hEIGQ6YH ds2455eKYSwRlGcHUGbtvR/pASDs7kNUcxqWZ6OpROPQC9lgb5Js8OLo36+s0Dd6 jKWqVMQeArO0RooiobGbbOcuJoYoZ1UceQHEnzragE36DOyfTiPYJv5wOnS7bzqb xMRX7waMb4zeQMisffe/DxFOBR3x35dUSFxlhn97JapeMUKhmdYYp670/g== -----END CERTIFICATE-----Generated at Sun Jun 2 02:07:07 2024 by rpki-client on console-fra.rpki-client.org