$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03f7df33-cc25-4dc6-87e2-34df16ed19b6.roa File: 03f7df33-cc25-4dc6-87e2-34df16ed19b6.roa (raw, json) Hash identifier: bWoFaK0P6sOHka7DpkUqe3E+RhaOlErOYegICxhFd4Q= Subject key identifier: 9A:E9:96:87:BE:63:74:3E:92:99:C8:D6:A1:F3:5E:90:82:19:EB:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3FA08BDD348815B5D43132A5D78AAD60844C3CB2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03f7df33-cc25-4dc6-87e2-34df16ed19b6.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 166.80.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:a0:8b:dd:34:88:15:b5:d4:31:32:a5:d7:8a:ad:60:84:4c:3c:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=65f1e8dfc7af0228076a86daf51ebe12df89072089def18e08360107f65c4dfb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:30:e1:56:ba:b6:3a:18:d7:8d:f2:25:ed:99: a3:04:0c:cf:19:93:48:7c:37:3b:25:75:90:32:93: 54:42:83:56:52:f3:12:09:6b:91:37:31:70:f2:3c: 39:64:d5:52:91:f8:06:9a:2d:d1:ad:72:90:de:75: ac:cd:da:61:26:b5:58:a4:73:e8:76:09:6e:cf:f0: bb:4f:78:8c:68:75:4d:60:ff:38:3e:99:47:4a:bb: b5:82:20:d0:20:42:d0:67:77:ab:fb:a7:a8:ce:76: 92:de:2e:b2:bb:6a:ec:87:77:b3:e5:3e:91:e0:a0: ca:c7:38:39:b2:5f:6c:3c:c5:57:78:d3:d5:1a:78: b1:67:2d:50:94:13:17:e6:eb:92:86:8b:01:77:09: 61:1b:ae:0c:42:36:18:b9:ec:48:f8:49:ff:8f:31: 6a:e5:d7:60:57:16:d7:53:e4:e6:b0:65:e8:b8:69: 04:ec:de:0f:70:ff:a8:35:e1:f0:64:40:82:06:09: b1:6d:cb:48:c2:65:82:22:a8:34:6f:8c:22:e6:c7: c7:a4:79:a4:1f:01:f9:98:16:ea:67:b3:7e:b9:11: e5:03:02:bd:f3:da:42:e6:ad:93:40:ee:83:9a:98: 56:a7:6d:1e:73:c7:8f:51:f6:f2:eb:c1:a4:4c:f2: 71:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E9:96:87:BE:63:74:3E:92:99:C8:D6:A1:F3:5E:90:82:19:EB:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03f7df33-cc25-4dc6-87e2-34df16ed19b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 166.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 50:4c:1f:3a:4b:2d:6f:be:69:db:95:52:ee:31:72:38:3f:c4: ff:d4:91:e1:ca:fe:55:09:c4:d5:23:d3:95:4c:d9:01:2f:e5: a9:cf:32:36:9a:47:74:a4:09:cf:ea:cb:14:36:6c:81:a9:6d: 5c:1f:23:82:63:22:b8:fe:67:32:7c:b1:a0:ff:ef:1e:6f:a9: 0c:59:d0:29:a4:8d:cd:f0:10:64:d9:f9:4c:76:08:e0:f5:c4: 8c:12:9a:1e:88:ee:da:b1:ff:04:69:d0:d7:e7:fa:e7:fd:9c: 65:3e:9c:c3:22:3c:44:29:8a:1b:60:15:76:cd:5b:6f:0e:6a: 25:cf:ad:09:8e:17:a5:bb:e6:41:13:4b:8d:1a:91:7c:12:b4: af:39:72:7c:c9:62:d6:c4:cc:4c:a8:81:84:79:78:68:06:99: 56:39:2d:81:96:20:04:82:e7:9a:0e:c5:fd:27:23:18:88:de: 8a:00:c9:c3:a4:d2:8c:26:d1:e9:58:5b:e1:1e:c1:3b:fa:4b: b8:90:ea:67:4c:22:78:e8:b9:7b:87:a4:a5:52:53:37:b2:3f: cf:05:6a:ca:98:3a:26:ee:7f:fa:4e:59:a6:78:40:66:27:f0: 5c:a8:0a:29:00:4a:44:de:fa:98:00:3c:73:a8:f1:51:ad:09: cc:e7:44:7b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUP6CL3TSIFbXUMTKl14qtYIRMPLIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWYxZThkZmM3YWYwMjI4MDc2YTg2ZGFmNTFlYmUxMmRm ODkwNzIwODlkZWYxOGUwODM2MDEwN2Y2NWM0ZGZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtMOFWurY6GNeN8iXtmaMEDM8Zk0h8NzsldZAyk1RCg1ZS 8xIJa5E3MXDyPDlk1VKR+AaaLdGtcpDedazN2mEmtVikc+h2CW7P8LtPeIxodU1g /zg+mUdKu7WCINAgQtBnd6v7p6jOdpLeLrK7auyHd7PlPpHgoMrHODmyX2w8xVd4 09UaeLFnLVCUExfm65KGiwF3CWEbrgxCNhi57Ej4Sf+PMWrl12BXFtdT5OawZei4 aQTs3g9w/6g14fBkQIIGCbFty0jCZYIiqDRvjCLmx8ekeaQfAfmYFupns365EeUD Ar3z2kLmrZNA7oOamFanbR5zx49R9vLrwaRM8nFJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmumWh75jdD6SmcjWofNekIIZ6x8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzZjdkZjMzLWNjMjUtNGRjNi04N2UyLTM0ZGYxNmVkMTliNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCmUDANBgkqhkiG9w0BAQsFAAOCAQEAUEwfOkstb75p25VS7jFyOD/E/9SR 4cr+VQnE1SPTlUzZAS/lqc8yNppHdKQJz+rLFDZsgaltXB8jgmMiuP5nMnyxoP/v Hm+pDFnQKaSNzfAQZNn5THYI4PXEjBKaHoju2rH/BGnQ1+f65/2cZT6cwyI8RCmK G2AVds1bbw5qJc+tCY4XpbvmQRNLjRqRfBK0rzlyfMli1sTMTKiBhHl4aAaZVjkt gZYgBILnmg7F/ScjGIjeigDJw6TSjCbR6Vhb4R7BO/pLuJDqZ0wieOi5e4ekpVJT N7I/zwVqypg6Ju5/+k5ZpnhAZifwXKgKKQBKRN76mAA8c6jxUa0JzOdEew== -----END CERTIFICATE-----Generated at Thu May 9 15:19:17 2024 by rpki-client on console-fra.rpki-client.org