$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf5c92d-af95-4acd-b109-d562e87b288f.roa File: 0cf5c92d-af95-4acd-b109-d562e87b288f.roa (raw, json) Hash identifier: AgT4J/eAw74IyX3OojKh3/4/8gLsb7dwJWrHW0khwxU= Subject key identifier: 1B:70:3B:57:B0:F7:F3:AD:20:BE:44:23:AF:B7:38:22:E4:AF:2A:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 24B81A538D080384B0B39632ABFF0A9AED39BA55 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf5c92d-af95-4acd-b109-d562e87b288f.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 56.57.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:b8:1a:53:8d:08:03:84:b0:b3:96:32:ab:ff:0a:9a:ed:39:ba:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=5277fbca43db52660a9e3604e8aa65bbbf8a4cd143a6394f9aa34fc5990eed3c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:da:e5:05:a7:d5:e6:ac:af:e0:6f:d3:c5:75: 0b:ff:06:62:ad:bc:dc:cd:6a:6c:15:05:40:8a:d2: 82:bc:7b:d1:3d:60:85:71:dd:82:bb:7b:3a:96:fa: 24:0a:f9:d7:d3:07:f1:1a:75:02:d2:ca:3e:c8:7c: ff:2b:d9:86:ec:da:dd:31:7a:2a:5c:04:2c:46:92: 4a:8a:90:e4:ed:e9:45:e0:44:bc:17:f8:e8:6a:71: 37:de:80:a9:33:01:d1:2a:f8:72:fb:6a:9f:cc:d9: b4:36:b7:92:05:8f:69:76:b6:eb:55:0c:61:e4:29: aa:5d:46:4c:1b:88:5a:69:a2:80:7d:50:5c:8c:ae: 10:f5:6d:d5:0c:61:5f:d8:e1:98:8a:96:a2:d7:f6: b2:0a:a3:9e:a1:6d:47:0e:39:35:4a:e6:a4:6e:d2: b6:db:51:b9:0e:33:1d:52:9b:ed:8c:96:25:02:35: 5d:5f:09:5e:ab:60:eb:1e:f4:c1:68:db:dc:5a:1a: bc:bc:cd:48:43:79:c6:39:4a:f6:59:13:d1:45:6b: 4d:88:3f:f1:12:2b:e0:e5:e4:1b:55:ed:bd:59:e9: cb:31:af:d3:65:47:0e:d3:87:30:53:fb:32:6c:b8: 83:3c:e6:33:e2:3c:99:fe:ee:ff:24:6b:b3:05:af: db:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:70:3B:57:B0:F7:F3:AD:20:BE:44:23:AF:B7:38:22:E4:AF:2A:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf5c92d-af95-4acd-b109-d562e87b288f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.57.0.0/16 Signature Algorithm: sha256WithRSAEncryption 57:b1:41:0c:8f:5f:a9:70:db:0e:39:66:98:21:df:ca:98:63: 9b:be:77:5d:42:9f:04:06:09:9d:ef:20:cf:ef:56:5b:37:42: f2:86:cd:d8:8a:33:17:2c:52:ab:ce:d8:95:76:e9:9b:f0:a3: 10:4a:ef:38:3e:70:56:bd:72:ba:24:dc:24:6a:1c:84:1c:a3: 27:b1:28:54:a1:cc:e0:86:96:59:e4:4a:3a:4f:ce:54:76:21: 16:06:58:cd:f7:74:b6:dd:98:b7:5b:bd:54:79:ea:0f:58:7f: 4c:b0:7b:ed:7a:81:01:26:33:a5:92:d6:da:17:3c:49:2c:35: 04:69:8b:74:32:8c:96:b5:73:1b:51:ae:77:0e:d8:35:48:a1: b9:70:db:e2:79:ff:d8:e0:39:9e:65:59:ad:eb:e6:35:65:68: 52:b0:5f:ca:81:69:18:60:a6:8e:8c:a7:db:9d:55:a3:ad:ee: f3:f4:97:7c:9e:f8:ba:db:2c:c1:79:98:84:fb:6d:f2:f5:66: dd:a8:a1:30:c9:55:2a:4c:79:f1:af:cf:48:55:73:54:e4:21: b4:57:40:c4:7a:86:05:8c:b9:f9:3e:d7:d0:00:38:f3:6a:b6: ef:41:88:25:86:a7:f9:bd:5d:b3:32:93:57:f8:73:ea:06:af: fc:6f:75:8b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJLgaU40IA4Sws5Yyq/8Kmu05ulUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Mjc3ZmJjYTQzZGI1MjY2MGE5ZTM2MDRlOGFhNjViYmJm OGE0Y2QxNDNhNjM5NGY5YWEzNGZjNTk5MGVlZDNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ2uUFp9XmrK/gb9PFdQv/BmKtvNzNamwVBUCK0oK8e9E9 YIVx3YK7ezqW+iQK+dfTB/EadQLSyj7IfP8r2Ybs2t0xeipcBCxGkkqKkOTt6UXg RLwX+OhqcTfegKkzAdEq+HL7ap/M2bQ2t5IFj2l2tutVDGHkKapdRkwbiFppooB9 UFyMrhD1bdUMYV/Y4ZiKlqLX9rIKo56hbUcOOTVK5qRu0rbbUbkOMx1Sm+2MliUC NV1fCV6rYOse9MFo29xaGry8zUhDecY5SvZZE9FFa02IP/ESK+Dl5BtV7b1Z6csx r9NlRw7ThzBT+zJsuIM85jPiPJn+7v8ka7MFr9tVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUG3A7V7D3860gvkQjr7c4IuSvKrQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjZjVjOTJkLWFmOTUtNGFjZC1iMTA5LWQ1NjJlODdiMjg4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4OTANBgkqhkiG9w0BAQsFAAOCAQEAV7FBDI9fqXDbDjlmmCHfyphjm753 XUKfBAYJne8gz+9WWzdC8obN2IozFyxSq87YlXbpm/CjEErvOD5wVr1yuiTcJGoc hByjJ7EoVKHM4IaWWeRKOk/OVHYhFgZYzfd0tt2Yt1u9VHnqD1h/TLB77XqBASYz pZLW2hc8SSw1BGmLdDKMlrVzG1Gudw7YNUihuXDb4nn/2OA5nmVZrevmNWVoUrBf yoFpGGCmjoyn251Vo63u8/SXfJ74utsswXmYhPtt8vVm3aihMMlVKkx58a/PSFVz VOQhtFdAxHqGBYy5+T7X0AA482q270GIJYan+b1dszKTV/hz6gav/G91iw== -----END CERTIFICATE-----Generated at Thu May 2 06:12:27 2024 by rpki-client on console-fra.rpki-client.org