$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/01f2e121-4360-4fc8-8d59-dd3b94117ff4.roa File: 01f2e121-4360-4fc8-8d59-dd3b94117ff4.roa (raw, json) Hash identifier: ANWmVyg4F2Wv+YGyuB9XKfkNatBexfSVPfhcqjGjzjs= Subject key identifier: 07:3A:97:57:C4:2B:2F:A8:C6:5C:5C:44:05:D1:77:22:25:DF:A9:8C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D0EE413EE000DBE056C2E2551F3EB92E23698A7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/01f2e121-4360-4fc8-8d59-dd3b94117ff4.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.180.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:0e:e4:13:ee:00:0d:be:05:6c:2e:25:51:f3:eb:92:e2:36:98:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=842f31f273ddd49ea5b78cf49da10479cb4c3c989487da14ae087f77005f1c45, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c4:8e:bc:d4:e8:3f:19:53:08:07:47:cf:91: 17:61:8d:52:3c:10:1b:9a:9b:a1:a1:d6:e1:50:40: 1f:12:32:41:34:67:ba:3c:74:94:7f:8b:20:ff:5c: ef:5f:11:2e:87:46:cd:f8:10:c7:10:df:94:02:6a: d1:35:8c:54:c8:16:77:b7:0a:c9:bc:b4:f1:a2:a9: ac:bf:43:67:05:06:18:45:9f:00:c1:08:ee:7c:45: 1a:96:c6:6c:eb:d7:df:77:73:0a:7c:4a:dd:76:e6: 0e:b7:ba:37:07:6b:ac:9d:18:07:4c:4c:81:0f:13: 98:be:9f:8e:01:f1:90:9b:06:ce:63:0c:65:40:2e: 65:83:b2:de:ba:63:7e:19:32:f7:6a:cc:cc:51:c3: 51:fe:5f:ba:8a:7f:ad:e5:0d:13:2e:df:78:8d:4a: e9:b4:a8:d2:1e:8d:6c:56:c8:a3:e3:cf:37:99:91: 12:ba:87:af:3a:05:8e:80:f0:d2:ee:2c:a8:1a:16: 50:c3:52:cc:1a:46:e5:be:5f:64:2e:27:49:4d:82: 68:21:ce:cd:e3:02:a8:e0:db:af:d8:22:87:83:ff: f3:5e:7e:4f:ee:47:b2:7c:22:6b:e1:81:82:38:28: 32:78:7d:d1:16:62:d7:b7:a1:46:d0:a3:f9:ba:d3: d5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:3A:97:57:C4:2B:2F:A8:C6:5C:5C:44:05:D1:77:22:25:DF:A9:8C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/01f2e121-4360-4fc8-8d59-dd3b94117ff4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.180.0.0/15 Signature Algorithm: sha256WithRSAEncryption 9a:6c:9c:90:f4:fd:32:4e:54:89:ea:31:45:ba:c7:00:f3:5d: 15:13:74:e6:a5:4f:3d:fa:81:f1:c9:7b:57:e6:b0:16:06:18: a5:80:7b:02:df:4b:19:ee:10:60:6f:39:cc:26:79:53:f2:2b: f4:51:87:8e:87:0b:d0:ed:0a:df:17:ff:17:50:1f:b1:23:fc: a6:2d:bc:90:04:92:40:b4:42:2f:e3:de:be:6a:9a:fd:a7:c7: 96:73:ca:6c:95:12:46:b6:a9:db:99:7a:86:aa:17:69:94:7e: 55:7d:7f:48:95:04:3b:7c:22:23:71:55:ef:31:c2:d8:18:b9: ef:09:41:a1:99:28:51:54:6a:80:08:bc:cb:24:9c:a6:14:14: e0:64:15:7b:92:2a:c3:3f:4b:3c:a4:20:7f:9a:ff:4f:2b:b2: f4:00:c0:55:a5:af:e5:26:b8:75:55:21:7e:23:b5:43:2c:87: e0:d5:8a:9e:2c:c5:ea:2c:e0:33:58:4b:f9:0a:00:22:c9:9c: ff:17:0c:e6:d6:aa:13:69:9d:cc:a7:82:d5:7d:c1:b9:9e:97: c6:ba:7a:b0:21:25:ef:ef:83:7e:1b:f7:74:15:16:9b:32:01: 70:c1:dc:38:52:59:97:3e:8e:f3:1d:6b:47:d3:55:51:37:d4: 58:03:40:3b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbQ7kE+4ADb4FbC4lUfPrkuI2mKcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDJmMzFmMjczZGRkNDllYTViNzhjZjQ5ZGExMDQ3OWNi NGMzYzk4OTQ4N2RhMTRhZTA4N2Y3NzAwNWYxYzQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXxI681Og/GVMIB0fPkRdhjVI8EBuam6Gh1uFQQB8SMkE0 Z7o8dJR/iyD/XO9fES6HRs34EMcQ35QCatE1jFTIFne3Csm8tPGiqay/Q2cFBhhF nwDBCO58RRqWxmzr1993cwp8St125g63ujcHa6ydGAdMTIEPE5i+n44B8ZCbBs5j DGVALmWDst66Y34ZMvdqzMxRw1H+X7qKf63lDRMu33iNSum0qNIejWxWyKPjzzeZ kRK6h686BY6A8NLuLKgaFlDDUswaRuW+X2QuJ0lNgmghzs3jAqjg26/YIoeD//Ne fk/uR7J8ImvhgYI4KDJ4fdEWYte3oUbQo/m609VDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBzqXV8QrL6jGXFxEBdF3IiXfqYwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAxZjJlMTIxLTQzNjAtNGZjOC04ZDU5LWRkM2I5NDExN2ZmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEotDANBgkqhkiG9w0BAQsFAAOCAQEAmmyckPT9Mk5UieoxRbrHAPNdFRN0 5qVPPfqB8cl7V+awFgYYpYB7At9LGe4QYG85zCZ5U/Ir9FGHjocL0O0K3xf/F1Af sSP8pi28kASSQLRCL+Pevmqa/afHlnPKbJUSRrap25l6hqoXaZR+VX1/SJUEO3wi I3FV7zHC2Bi57wlBoZkoUVRqgAi8yyScphQU4GQVe5Iqwz9LPKQgf5r/Tyuy9ADA VaWv5Sa4dVUhfiO1QyyH4NWKnizF6izgM1hL+QoAIsmc/xcM5taqE2mdzKeC1X3B uZ6Xxrp6sCEl7++Dfhv3dBUWmzIBcMHcOFJZlz6O8x1rR9NVUTfUWANAOw== -----END CERTIFICATE-----Generated at Thu May 2 01:05:23 2024 by rpki-client on console-fra.rpki-client.org