$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf06feb-5302-4d0b-b594-4d338c334d3f.roa File: 0cf06feb-5302-4d0b-b594-4d338c334d3f.roa (raw, json) Hash identifier: D3Jq9KFLRyd1+VOescNYgbrNpq0/vUZLWa/9wJDf33A= Subject key identifier: A3:CD:63:16:B7:A2:36:DD:AC:00:CD:AA:63:38:CF:10:2B:70:0C:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21654108474A8B95AC263A6184AC89FB17DD902A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf06feb-5302-4d0b-b594-4d338c334d3f.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 13.60.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:65:41:08:47:4a:8b:95:ac:26:3a:61:84:ac:89:fb:17:dd:90:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=cea9fe63ac8f877e234e8adf6c3b1a02e6c5636ccd8a0955e19a298c6f19040f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fb:90:b9:92:07:90:18:cf:5e:a0:b2:74:d8: 8b:bd:d8:3f:71:61:72:75:3c:4b:14:19:1c:12:0f: 85:fa:a0:62:6e:4c:6c:af:a5:cd:24:04:20:5b:5d: 30:72:15:05:30:db:68:d3:1f:5b:81:19:b3:57:9b: 07:2d:ae:82:11:ae:63:9d:ef:17:fe:77:3c:96:67: e7:66:5a:d8:f7:a4:83:b6:f6:6b:8b:df:e5:80:0d: 26:63:a0:8f:87:d4:a5:0d:ec:7f:55:4e:9e:ea:28: e9:16:eb:3f:96:0a:00:00:c8:25:35:5a:8d:6f:6b: 87:4b:f6:8e:88:0b:29:a0:60:33:6d:b8:37:ce:c3: 82:bf:b1:b8:fb:cd:20:f7:98:48:24:7c:b7:a6:ba: c6:f4:23:bb:1d:c3:ac:2a:95:1d:38:a9:35:87:7d: 16:0e:bc:1e:1d:49:cb:c2:3f:70:0b:fd:27:cd:40: 9c:7b:3e:af:ac:10:0d:d7:89:bc:81:7a:ef:38:5d: 02:0e:89:c6:f4:8f:86:f5:2c:d9:ab:7f:5b:8b:92: 91:e7:3d:65:73:16:c9:a9:a4:5f:d9:a5:02:56:da: 0f:f6:8d:0f:06:a5:49:45:0b:92:7a:b7:c6:9f:63: 1d:c8:69:af:04:6a:6f:d4:b8:4d:51:d2:28:4a:8f: b8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:CD:63:16:B7:A2:36:DD:AC:00:CD:AA:63:38:CF:10:2B:70:0C:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf06feb-5302-4d0b-b594-4d338c334d3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.60.0.0/14 Signature Algorithm: sha256WithRSAEncryption 2f:c8:62:60:86:74:e1:6e:84:91:69:20:af:23:8d:e6:d2:c7: 63:2b:eb:14:69:36:96:e1:96:97:78:8b:68:16:e6:a3:c8:5c: b7:dc:72:0d:1a:dd:4e:90:11:dd:20:cf:e1:46:ea:98:41:b0: 41:d2:33:31:0e:8b:e3:87:3c:96:4b:3c:81:aa:00:42:bb:81: 1c:30:eb:46:4f:40:38:7c:6e:99:cf:d7:e5:8e:45:78:b0:52: d7:08:a6:88:06:a9:94:3f:a4:1f:7d:3c:20:22:f2:9d:de:83: 48:13:5e:c2:9f:fd:94:1f:4d:34:2a:78:e7:61:9e:3c:af:42: 6f:1a:a6:60:f8:a7:78:d8:d8:b9:90:30:70:da:02:7c:2e:ba: 3a:6d:c5:ca:70:ad:66:dd:0c:35:8c:26:f4:af:d0:11:83:34: d3:e9:be:4f:49:3c:8a:a9:e9:31:c8:bb:d3:48:b3:e3:6f:f4: f5:70:b5:eb:6b:d3:89:e2:67:aa:30:3b:d9:59:bb:f1:97:22: f2:6e:16:1d:90:91:ee:f3:f7:d4:55:8d:df:20:be:7c:90:24: d9:3e:06:eb:0e:5a:4b:56:c2:74:45:80:9c:fb:30:fe:71:73: b6:69:af:67:fb:b2:1a:a8:06:05:8e:25:52:59:9a:1b:54:47: 83:ac:a2:ca -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIWVBCEdKi5WsJjphhKyJ+xfdkCowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWE5ZmU2M2FjOGY4NzdlMjM0ZThhZGY2YzNiMWEwMmU2 YzU2MzZjY2Q4YTA5NTVlMTlhMjk4YzZmMTkwNDBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz+5C5kgeQGM9eoLJ02Iu92D9xYXJ1PEsUGRwSD4X6oGJu TGyvpc0kBCBbXTByFQUw22jTH1uBGbNXmwctroIRrmOd7xf+dzyWZ+dmWtj3pIO2 9muL3+WADSZjoI+H1KUN7H9VTp7qKOkW6z+WCgAAyCU1Wo1va4dL9o6ICymgYDNt uDfOw4K/sbj7zSD3mEgkfLemusb0I7sdw6wqlR04qTWHfRYOvB4dScvCP3AL/SfN QJx7Pq+sEA3XibyBeu84XQIOicb0j4b1LNmrf1uLkpHnPWVzFsmppF/ZpQJW2g/2 jQ8GpUlFC5J6t8afYx3Iaa8Eam/UuE1R0ihKj7gDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUo81jFreiNt2sAM2qYzjPECtwDIAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjZjA2ZmViLTUzMDItNGQwYi1iNTk0LTRkMzM4YzMzNGQzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwINPDANBgkqhkiG9w0BAQsFAAOCAQEAL8hiYIZ04W6EkWkgryON5tLHYyvr FGk2luGWl3iLaBbmo8hct9xyDRrdTpAR3SDP4UbqmEGwQdIzMQ6L44c8lks8gaoA QruBHDDrRk9AOHxumc/X5Y5FeLBS1wimiAaplD+kH308ICLynd6DSBNewp/9lB9N NCp452GePK9CbxqmYPineNjYuZAwcNoCfC66Om3FynCtZt0MNYwm9K/QEYM00+m+ T0k8iqnpMci700iz42/09XC162vTieJnqjA72Vm78Zci8m4WHZCR7vP31FWN3yC+ fJAk2T4G6w5aS1bCdEWAnPsw/nFztmmvZ/uyGqgGBY4lUlmaG1RHg6yiyg== -----END CERTIFICATE-----Generated at Thu May 9 01:25:19 2024 by rpki-client on console-fra.rpki-client.org