$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa File: 0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa (raw, json) Hash identifier: g5dd/R1nhW8DklcKFbZLzATM9Fhncn2WBEUUlInrhcY= Subject key identifier: 7B:67:06:BE:A1:4D:67:E6:0C:26:D1:0D:D6:94:86:3D:3A:2C:63:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FDF197474F3300E1D785EA7CC6F72FD9F103146 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:df:19:74:74:f3:30:0e:1d:78:5e:a7:cc:6f:72:fd:9f:10:31:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=b6f2b7c8d985057076a5eaba91587ac5e5f83ac7ce39b701c50291a752aba568, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c8:50:45:60:77:8b:05:e9:ce:8b:74:91:79: 15:15:97:6d:9d:77:58:b0:9e:b8:03:77:30:76:ae: cc:3b:75:f3:9d:57:bc:b3:9c:80:8a:82:fb:8a:a0: d3:86:ee:75:f7:11:73:dd:15:cd:11:25:a8:f2:c2: f6:88:a8:8c:b8:3d:05:2f:4a:53:29:33:a8:c6:6f: 4a:ac:39:85:40:a3:14:d0:51:62:0c:dc:0e:5a:9a: 34:ea:a9:7d:b2:9a:79:d5:45:31:44:d7:68:85:06: 1f:d0:4b:82:d8:1f:d0:fb:59:8c:92:eb:09:c7:de: 50:5a:c8:53:25:f5:47:59:e1:d1:78:6e:cd:af:95: 0d:83:c4:ef:68:24:1b:65:1d:f6:92:79:65:7f:a5: 56:26:7b:bf:d4:74:0e:84:06:66:2b:6e:ce:31:f1: 24:9d:83:1e:a3:d6:ed:46:cd:ef:a0:16:4e:dc:65: c5:bc:01:b4:af:5d:17:ef:e4:fe:8e:cf:a1:16:96: c0:c8:bf:b1:7a:e8:d3:4d:f5:90:00:5c:53:86:28: c0:d2:a3:86:93:64:6b:d4:0a:ef:55:af:2e:59:c4: 1c:bf:62:a4:29:d4:12:da:f9:82:9b:86:60:f8:c4: c7:c0:4e:a8:f1:ed:ec:c1:22:64:08:7f:2b:05:22: f3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:67:06:BE:A1:4D:67:E6:0C:26:D1:0D:D6:94:86:3D:3A:2C:63:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.73.0/24 Signature Algorithm: sha256WithRSAEncryption 18:ff:3e:73:15:2b:f7:f1:7b:71:57:2e:25:d6:3b:74:16:f1: 3d:77:95:8f:05:13:c5:dd:60:a1:39:ae:28:49:ae:59:a1:d7: fd:4a:7f:42:f2:25:f5:4f:26:b5:6e:8c:4a:81:e4:aa:86:2b: 89:d4:43:af:c9:08:ea:2e:07:4d:41:82:84:f6:45:fb:2b:b3: 7c:78:30:72:ef:a4:f5:83:99:37:75:4c:80:2d:e4:87:66:82: 83:c7:71:ad:d3:07:99:c3:a2:2e:3b:9e:95:21:11:b4:ef:0e: dd:bb:27:1f:81:cc:4b:d6:7c:dc:7e:d4:02:e4:c5:e8:a3:b3: 5d:d1:b0:d1:92:c4:59:38:95:d7:fe:78:59:6f:5e:50:90:f7: e9:d2:e4:c1:aa:17:b7:79:e1:ae:cf:fe:4a:41:93:d0:8e:19: e9:6d:df:09:53:9d:81:97:b7:81:0d:14:e0:71:66:82:1a:d2: 65:0f:d9:c8:c9:19:2f:9d:a2:74:d2:ef:08:09:e9:50:c9:b6: d7:42:60:db:b6:c3:c0:cc:b8:f7:0c:f4:16:0b:71:52:10:ce: 28:4f:86:6d:0c:53:9f:32:d4:9e:d2:84:22:f2:69:6f:b6:6a: 45:68:34:64:62:49:f1:b9:2d:5b:32:b9:3b:45:24:bf:c9:49: e2:9e:9a:5e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT98ZdHTzMA4deF6nzG9y/Z8QMUYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNmYyYjdjOGQ5ODUwNTcwNzZhNWVhYmE5MTU4N2FjNWU1 ZjgzYWM3Y2UzOWI3MDFjNTAyOTFhNzUyYWJhNTY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOyFBFYHeLBenOi3SReRUVl22dd1iwnrgDdzB2rsw7dfOd V7yznICKgvuKoNOG7nX3EXPdFc0RJajywvaIqIy4PQUvSlMpM6jGb0qsOYVAoxTQ UWIM3A5amjTqqX2ymnnVRTFE12iFBh/QS4LYH9D7WYyS6wnH3lBayFMl9UdZ4dF4 bs2vlQ2DxO9oJBtlHfaSeWV/pVYme7/UdA6EBmYrbs4x8SSdgx6j1u1Gze+gFk7c ZcW8AbSvXRfv5P6Oz6EWlsDIv7F66NNN9ZAAXFOGKMDSo4aTZGvUCu9Vry5ZxBy/ YqQp1BLa+YKbhmD4xMfATqjx7ezBImQIfysFIvNjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUe2cGvqFNZ+YMJtEN1pSGPTosY0QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjMjkxYjRmLTg2YzgtNGE2Yy05MDcyLTllZjQ2MDY5ZDNhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EkwDQYJKoZIhvcNAQELBQADggEBABj/PnMVK/fxe3FXLiXWO3QW8T13 lY8FE8XdYKE5rihJrlmh1/1Kf0LyJfVPJrVujEqB5KqGK4nUQ6/JCOouB01BgoT2 Rfsrs3x4MHLvpPWDmTd1TIAt5IdmgoPHca3TB5nDoi47npUhEbTvDt27Jx+BzEvW fNx+1ALkxeijs13RsNGSxFk4ldf+eFlvXlCQ9+nS5MGqF7d54a7P/kpBk9COGelt 3wlTnYGXt4ENFOBxZoIa0mUP2cjJGS+donTS7wgJ6VDJttdCYNu2w8DMuPcM9BYL cVIQzihPhm0MU58y1J7ShCLyaW+2akVoNGRiSfG5LVsyuTtFJL/JSeKeml4= -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:13 2024 by rpki-client on console-fra.rpki-client.org