$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cfaf610-9856-4685-bd68-affb766bc2be.roa File: 0cfaf610-9856-4685-bd68-affb766bc2be.roa (raw, json) Hash identifier: ZoEOtflYrgUQ4jrjNOUOW6u83/OZV5Mm7JDNv8C1UMo= Subject key identifier: 8C:B9:7A:07:A5:20:A3:E9:A0:F1:DC:0E:59:8D:F4:5C:77:DE:F2:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 272458A31B91BB75314F0E9D17CDA322A4A8D411 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cfaf610-9856-4685-bd68-affb766bc2be.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.107.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:24:58:a3:1b:91:bb:75:31:4f:0e:9d:17:cd:a3:22:a4:a8:d4:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=eeb46e184d29058e3dad91bb3da902cd963126eed69d6f9b9866d04def385194, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:54:c4:1e:30:3f:37:35:0c:83:e2:d0:32:06: 5f:2e:fb:45:4f:a0:b7:0b:0b:df:b3:64:00:72:a1: f2:0b:ba:94:33:69:7f:34:21:48:d1:70:9d:01:22: f5:68:96:65:14:3c:5b:83:c4:7b:51:b1:41:90:bc: a3:65:1b:98:fe:50:d8:09:f5:7c:8a:39:1d:4a:14: 5c:e6:39:15:4f:dd:bf:9a:cd:10:57:a4:2a:92:b2: c7:6a:d2:06:2d:dd:bf:00:ab:d6:a8:6c:09:f2:36: 7b:a6:95:b4:7a:b9:5a:fa:60:09:8b:f9:b8:d9:07: 1c:69:3a:39:2b:bb:25:ab:38:fa:02:11:7e:67:ea: 22:22:34:52:70:02:e9:33:27:7b:64:2d:4d:53:db: 48:1d:9a:52:f7:cf:60:4c:96:fc:ba:d8:2c:ef:f5: f0:4f:97:6b:e8:7c:2f:0e:55:38:c0:96:d7:6e:0c: c0:93:8e:63:56:fe:28:91:45:a4:c5:12:02:22:3f: aa:30:cf:d5:ee:2e:bb:ee:e5:a9:41:00:50:6e:f7: 64:28:43:a9:ad:5f:ec:da:e4:83:f0:97:87:19:f0: 04:94:93:40:c9:a3:81:cc:1e:db:9a:e3:55:82:1e: 91:8c:55:a3:ee:96:48:39:96:7a:e4:0f:de:95:4b: f2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B9:7A:07:A5:20:A3:E9:A0:F1:DC:0E:59:8D:F4:5C:77:DE:F2:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cfaf610-9856-4685-bd68-affb766bc2be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.107.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5f:ef:e6:7f:79:f2:b0:74:6b:16:9a:25:9d:59:35:d6:98:e9: 61:55:cd:5b:ca:bd:63:ee:f0:97:01:37:31:96:8e:e8:56:78: 25:bc:9c:be:e3:53:83:b2:0c:15:1a:c9:c2:0d:d7:72:06:87: 0e:13:e7:d8:6c:46:36:61:f9:09:25:2c:b5:dd:18:03:fe:e6: 9a:a5:62:f5:df:76:39:78:f6:a6:90:75:c8:af:19:09:8b:e8: 9f:50:16:e5:3c:4c:0c:79:d1:bb:11:c5:4a:58:23:00:69:be: fa:00:5e:a0:23:e6:23:0a:f0:8c:fe:2c:e3:a9:de:51:e8:03: a2:14:4a:09:e1:4b:99:75:c3:07:6f:86:48:8a:e3:19:e6:37: 35:7f:81:06:db:98:d0:b7:e7:36:30:06:09:10:6b:99:bd:03: 84:11:d6:e7:b3:67:b0:2a:00:04:29:82:cd:b7:24:28:ef:83: 14:6f:6f:56:11:11:b6:de:02:ed:f3:08:c6:61:a3:b6:50:b3: af:18:3e:04:62:7d:e6:15:97:3a:8a:91:ef:ce:44:a4:e2:10: 95:8f:ca:e5:80:5e:9a:aa:cf:49:b7:4a:8f:87:af:45:a8:7b: f4:fd:ad:d3:8b:3d:82:1a:fb:37:b6:ea:14:09:33:1a:1d:bf: dc:b0:14:a0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJyRYoxuRu3UxTw6dF82jIqSo1BEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWI0NmUxODRkMjkwNThlM2RhZDkxYmIzZGE5MDJjZDk2 MzEyNmVlZDY5ZDZmOWI5ODY2ZDA0ZGVmMzg1MTk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVVMQeMD83NQyD4tAyBl8u+0VPoLcLC9+zZAByofILupQz aX80IUjRcJ0BIvVolmUUPFuDxHtRsUGQvKNlG5j+UNgJ9XyKOR1KFFzmORVP3b+a zRBXpCqSssdq0gYt3b8Aq9aobAnyNnumlbR6uVr6YAmL+bjZBxxpOjkruyWrOPoC EX5n6iIiNFJwAukzJ3tkLU1T20gdmlL3z2BMlvy62Czv9fBPl2vofC8OVTjAltdu DMCTjmNW/iiRRaTFEgIiP6owz9XuLrvu5alBAFBu92QoQ6mtX+za5IPwl4cZ8ASU k0DJo4HMHtua41WCHpGMVaPulkg5lnrkD96VS/JrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjLl6B6Ugo+mg8dwOWY30XHfe8rEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjZmFmNjEwLTk4NTYtNDY4NS1iZDY4LWFmZmI3NjZiYzJiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4azANBgkqhkiG9w0BAQsFAAOCAQEAX+/mf3nysHRrFpolnVk11pjpYVXN W8q9Y+7wlwE3MZaO6FZ4JbycvuNTg7IMFRrJwg3XcgaHDhPn2GxGNmH5CSUstd0Y A/7mmqVi9d92OXj2ppB1yK8ZCYvon1AW5TxMDHnRuxHFSlgjAGm++gBeoCPmIwrw jP4s46neUegDohRKCeFLmXXDB2+GSIrjGeY3NX+BBtuY0LfnNjAGCRBrmb0DhBHW 57NnsCoABCmCzbckKO+DFG9vVhERtt4C7fMIxmGjtlCzrxg+BGJ95hWXOoqR785E pOIQlY/K5YBemqrPSbdKj4evRah79P2t04s9ghr7N7bqFAkzGh2/3LAUoA== -----END CERTIFICATE-----Generated at Thu May 9 15:19:18 2024 by rpki-client on console-fra.rpki-client.org