$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/001593bd-5759-498f-b9c2-6ed628b5888a.roa File: 001593bd-5759-498f-b9c2-6ed628b5888a.roa (raw, json) Hash identifier: eboeNfwsRIU6JyPqfREF4C0g3t6Nl2/bGnNRaQ7GvvI= Subject key identifier: 58:23:34:43:25:72:20:26:A3:4A:C3:1A:3E:51:94:87:65:71:0B:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4ED6F70994D56064E855D72D3E6D16B7DA4DC032 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/001593bd-5759-498f-b9c2-6ed628b5888a.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.53.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d6:f7:09:94:d5:60:64:e8:55:d7:2d:3e:6d:16:b7:da:4d:c0:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=ce739a0308e0dcdb30ad8345d646b1d925263991fd51db427e535f8d5175d6cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:6e:8f:cd:e4:30:12:4d:8d:3d:0f:9b:1b:92: 18:8b:9b:26:97:67:9c:c6:81:cc:32:f9:d7:6a:1c: 2a:87:c3:da:2e:49:a1:ed:e4:e7:88:f2:95:b2:1b: 7b:55:d6:57:f9:d3:94:40:b6:7f:12:f3:20:73:d2: 1b:8c:55:79:d2:59:99:e8:26:e7:29:08:c7:42:de: 21:f7:55:d2:90:84:50:2c:d1:74:6d:99:f4:37:6c: 39:b4:bb:06:e1:6d:25:be:f1:8e:03:13:56:04:38: b8:4c:2e:09:70:98:07:5d:5a:9a:77:5d:21:d7:31: 1d:b1:72:b9:54:d9:77:53:57:d8:a9:0f:36:0f:43: 7a:4b:c4:c6:13:67:4f:59:b0:ec:02:06:60:5e:86: 9a:35:f6:ec:ee:c1:32:1b:45:e7:1c:6c:92:1e:9f: 20:01:15:19:37:e2:74:8a:d4:87:4a:ad:00:be:e9: 93:dd:a9:60:82:b1:51:60:0e:aa:a2:52:07:f7:27: f3:3f:14:d6:c3:3e:94:0b:a2:5d:7a:57:63:7a:ef: f8:f2:50:da:b2:7e:6b:fe:1e:c1:04:72:fc:29:18: 34:d8:91:c4:0a:95:d2:76:98:ad:69:aa:1f:be:16: b6:e1:91:21:b4:e6:1b:cb:4a:76:81:15:73:98:f1: a3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:23:34:43:25:72:20:26:A3:4A:C3:1A:3E:51:94:87:65:71:0B:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/001593bd-5759-498f-b9c2-6ed628b5888a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.53.0.0/16 Signature Algorithm: sha256WithRSAEncryption cd:58:17:dd:36:ed:49:71:86:be:09:45:19:ad:cf:44:45:ee: a3:80:d7:85:87:74:90:ef:b3:37:6c:32:bc:c6:1f:ea:13:ab: 47:bb:a0:f5:9b:0f:dc:46:19:49:28:ad:9f:04:9d:ad:dd:c6: a1:a1:64:9f:8c:a5:2d:16:f6:82:fc:43:29:fe:4c:3d:c8:04: 06:37:30:a3:ee:a5:22:a8:24:b5:40:d4:e1:ff:1a:4e:f5:40: c0:2c:51:cc:ff:c7:2f:63:13:12:1e:60:91:06:4f:2a:00:09: 12:d4:50:22:ab:73:0b:e8:b7:6e:0d:92:81:d8:82:b8:4e:a5: 0d:b6:1f:36:ae:cd:85:ab:a4:38:b2:f0:58:8b:51:11:b4:db: d8:ea:a2:e3:5d:e1:2e:62:10:cb:fa:ea:46:c7:7e:f0:d6:11: f4:06:20:bb:1c:69:e5:7b:0a:ce:92:d3:41:0d:f5:5a:ba:db: 14:2c:38:6e:b0:1c:79:a6:51:c0:c7:76:54:40:b0:16:4d:d6: cc:80:f8:dd:a2:f2:0e:a4:21:4b:7a:2a:1f:6e:3a:f9:36:4f: 7e:5a:2d:f5:f9:3e:91:29:83:a2:97:c0:b4:57:47:51:15:1a: 9b:92:26:bf:e8:7c:a4:1a:5d:d6:72:66:e7:bd:f0:1f:e5:17: 13:c4:86:ae -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTtb3CZTVYGToVdctPm0Wt9pNwDIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTczOWEwMzA4ZTBkY2RiMzBhZDgzNDVkNjQ2YjFkOTI1 MjYzOTkxZmQ1MWRiNDI3ZTUzNWY4ZDUxNzVkNmNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpbo/N5DASTY09D5sbkhiLmyaXZ5zGgcwy+ddqHCqHw9ou SaHt5OeI8pWyG3tV1lf505RAtn8S8yBz0huMVXnSWZnoJucpCMdC3iH3VdKQhFAs 0XRtmfQ3bDm0uwbhbSW+8Y4DE1YEOLhMLglwmAddWpp3XSHXMR2xcrlU2XdTV9ip DzYPQ3pLxMYTZ09ZsOwCBmBehpo19uzuwTIbReccbJIenyABFRk34nSK1IdKrQC+ 6ZPdqWCCsVFgDqqiUgf3J/M/FNbDPpQLol16V2N67/jyUNqyfmv+HsEEcvwpGDTY kcQKldJ2mK1pqh++FrbhkSG05hvLSnaBFXOY8aMnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWCM0QyVyICajSsMaPlGUh2VxCzYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAwMTU5M2JkLTU3NTktNDk4Zi1iOWMyLTZlZDYyOGI1ODg4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4NTANBgkqhkiG9w0BAQsFAAOCAQEAzVgX3TbtSXGGvglFGa3PREXuo4DX hYd0kO+zN2wyvMYf6hOrR7ug9ZsP3EYZSSitnwSdrd3GoaFkn4ylLRb2gvxDKf5M PcgEBjcwo+6lIqgktUDU4f8aTvVAwCxRzP/HL2MTEh5gkQZPKgAJEtRQIqtzC+i3 bg2SgdiCuE6lDbYfNq7NhaukOLLwWItREbTb2Oqi413hLmIQy/rqRsd+8NYR9AYg uxxp5XsKzpLTQQ31WrrbFCw4brAceaZRwMd2VECwFk3WzID43aLyDqQhS3oqH246 +TZPflot9fk+kSmDopfAtFdHURUam5Imv+h8pBpd1nJm573wH+UXE8SGrg== -----END CERTIFICATE-----Generated at Thu May 9 15:19:16 2024 by rpki-client on console-fra.rpki-client.org