$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/041581cb-3989-42ad-9b1d-367e0721b74a.roa File: 041581cb-3989-42ad-9b1d-367e0721b74a.roa (raw, json) Hash identifier: otD2YR6UxziaFwfaZJ9QwTKTB0i4rhQTO2GOUqis5lE= Subject key identifier: F2:67:A5:63:98:D2:2E:F9:55:6B:48:A5:0C:CE:91:64:85:CC:0F:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E53AF8B38CDD51958CB3F359A1596D8ABDCD129 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/041581cb-3989-42ad-9b1d-367e0721b74a.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.239.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:53:af:8b:38:cd:d5:19:58:cb:3f:35:9a:15:96:d8:ab:dc:d1:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=9f7a5ce5693ee60cd500463820be2ee9c86f22dbe493e51f777aad756905d2e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:89:3e:01:4b:33:64:41:ad:c2:8a:c9:7b:56: 91:60:57:2e:76:6b:d2:5c:c1:b9:c3:92:8b:4a:fe: af:99:c6:db:71:a4:8d:3d:22:ec:35:a6:52:cd:dc: e4:5b:a7:5c:54:fb:ac:0a:49:90:9d:48:a0:83:91: 59:fb:a3:cb:bb:0e:0d:32:9f:97:85:b2:73:82:da: c4:8d:6b:ef:cb:46:7f:0d:96:e4:37:c3:ce:6d:77: 88:e1:10:ff:a0:51:23:36:2d:0c:f7:9e:dc:39:c3: 2d:65:4f:0b:3e:23:fa:2e:d9:d0:e3:05:c6:d7:e8: b7:19:fe:58:2f:8f:2c:df:c8:cc:0e:ae:6b:11:e5: d2:8f:bf:31:cc:7a:05:80:68:2a:fc:97:c2:71:7f: f3:79:3c:1f:bc:a6:d2:1e:46:ce:49:a8:b6:e4:c6: 04:39:65:bd:a0:0e:f3:a1:7b:ba:ee:1b:ef:6b:5b: b7:7e:b4:ea:ad:63:6b:f0:53:ee:f6:92:c4:fd:45: 72:da:ae:43:9d:ed:fe:e8:15:e5:17:68:a3:9a:40: ee:18:be:77:d7:8b:ad:41:79:be:60:70:ec:0d:ce: 75:06:51:15:f4:19:64:5c:a8:3c:b9:1d:43:92:55: 28:65:8b:4f:a6:e7:ef:3a:0e:34:bd:ea:ae:6c:6b: 5f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:67:A5:63:98:D2:2E:F9:55:6B:48:A5:0C:CE:91:64:85:CC:0F:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/041581cb-3989-42ad-9b1d-367e0721b74a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.239.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0a:49:f5:bf:c8:41:2f:75:cb:46:96:9d:e7:ea:97:e1:d2:c6: 71:00:71:10:a3:26:8e:d2:1f:97:8d:5f:74:ee:80:7b:33:35: 5a:93:e8:f2:92:8f:02:81:81:8c:01:16:f6:0e:bb:ec:9c:f7: 0d:9b:e4:ac:b7:6a:f9:af:5e:94:c6:2c:27:7b:10:a7:d3:2a: 44:d9:4a:b6:7c:60:e0:14:23:fa:87:9b:c6:b6:70:31:76:64: 6e:01:85:0e:a0:d1:12:b7:05:b9:04:5f:ba:d7:e3:12:d7:e6: ae:fd:ce:6a:33:cb:2e:ac:9a:87:a0:4e:d1:ae:f3:be:93:7f: 84:02:e7:ee:59:4e:e6:2c:f9:17:e2:d0:9f:9d:5c:cd:46:54: 20:8d:eb:40:61:d9:93:8e:8e:ac:2f:23:a2:ed:5b:fa:5d:ec: 39:ad:ef:81:ec:6f:e4:03:60:d7:47:51:14:74:72:90:ac:22: e5:58:2b:63:7e:8a:94:98:7b:80:dd:3e:29:2f:5d:df:92:67: e7:c3:ae:24:53:10:d1:7c:d6:ba:a9:4b:8c:e7:b8:ba:e9:97: af:62:5a:4b:bc:02:6d:73:28:b9:b0:86:ae:6a:81:9e:5c:20: 38:85:a8:db:67:ca:07:25:fe:b1:f5:32:42:d7:3a:c5:b1:e0: 4a:6f:4c:9b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUblOvizjN1RlYyz81mhWW2Kvc0SkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjdhNWNlNTY5M2VlNjBjZDUwMDQ2MzgyMGJlMmVlOWM4 NmYyMmRiZTQ5M2U1MWY3NzdhYWQ3NTY5MDVkMmUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFiT4BSzNkQa3Cisl7VpFgVy52a9JcwbnDkotK/q+Zxttx pI09Iuw1plLN3ORbp1xU+6wKSZCdSKCDkVn7o8u7Dg0yn5eFsnOC2sSNa+/LRn8N luQ3w85td4jhEP+gUSM2LQz3ntw5wy1lTws+I/ou2dDjBcbX6LcZ/lgvjyzfyMwO rmsR5dKPvzHMegWAaCr8l8Jxf/N5PB+8ptIeRs5JqLbkxgQ5Zb2gDvOhe7ruG+9r W7d+tOqtY2vwU+72ksT9RXLarkOd7f7oFeUXaKOaQO4YvnfXi61Beb5gcOwNznUG URX0GWRcqDy5HUOSVShli0+m5+86DjS96q5sa19lAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8melY5jSLvlVa0ilDM6RZIXMD0kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA0MTU4MWNiLTM5ODktNDJhZC05YjFkLTM2N2UwNzIxYjc0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo7zANBgkqhkiG9w0BAQsFAAOCAQEACkn1v8hBL3XLRpad5+qX4dLGcQBx EKMmjtIfl41fdO6AezM1WpPo8pKPAoGBjAEW9g677Jz3DZvkrLdq+a9elMYsJ3sQ p9MqRNlKtnxg4BQj+oebxrZwMXZkbgGFDqDRErcFuQRfutfjEtfmrv3OajPLLqya h6BO0a7zvpN/hALn7llO5iz5F+LQn51czUZUII3rQGHZk46OrC8jou1b+l3sOa3v gexv5ANg10dRFHRykKwi5VgrY36KlJh7gN0+KS9d35Jn58OuJFMQ0XzWuqlLjOe4 uumXr2JaS7wCbXMoubCGrmqBnlwgOIWo22fKByX+sfUyQtc6xbHgSm9Mmw== -----END CERTIFICATE-----Generated at Thu May 2 08:50:50 2024 by rpki-client on console-fra.rpki-client.org