$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1577c06e-ca3b-4888-b6f3-ff7a5aaed3d4.roa File: 1577c06e-ca3b-4888-b6f3-ff7a5aaed3d4.roa (raw, json) Hash identifier: RX5xoirtbjhn5W1r6ZYTVwI9Bx031fZ/0oBNdWhkNuw= Subject key identifier: 9C:37:1E:E2:E8:B9:A1:7B:5B:EF:5C:6D:97:DC:0B:6E:08:0C:EA:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0230609A3F7DDA503B5A45282A0A3B25E37F091B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1577c06e-ca3b-4888-b6f3-ff7a5aaed3d4.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 207.9.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:30:60:9a:3f:7d:da:50:3b:5a:45:28:2a:0a:3b:25:e3:7f:09:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=c68ebcb056aec60fc4f494ada578b636e69d20df9b3ff26657e3095ce86972cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:6d:b1:f6:63:b6:b1:23:a1:19:e8:ac:bf:e7: 3e:e3:6c:b5:e3:81:ca:4c:87:45:b8:09:30:24:c5: ec:be:a4:07:70:11:78:c8:b8:8a:be:b1:af:ab:f6: 5d:e8:fa:93:16:63:40:2a:b3:d5:ee:14:56:b6:f3: b8:1b:ec:be:8a:f6:ef:32:bf:bf:e7:c0:ed:9a:4b: f0:e8:bc:77:8e:7c:92:a9:f0:30:a8:e1:b7:de:74: d6:a7:cd:3b:d8:6e:c5:f1:d9:d0:94:44:ce:97:18: b6:1d:8e:f6:dc:81:52:86:ce:7f:e8:3a:62:f8:f8: ff:01:56:a9:f4:6e:56:d5:f5:7b:44:c4:07:77:c1: a1:1f:f6:b6:24:b8:7e:8e:b2:a6:3a:48:2d:49:b8: a6:ab:54:e1:bc:06:b4:82:13:6c:7d:0d:19:f6:79: 62:17:8c:4c:25:02:9a:12:39:7f:bd:d5:63:11:5b: 81:97:59:7f:50:a8:27:10:98:c0:26:b2:68:3d:8d: bd:c4:78:93:c6:45:ec:6b:77:b4:1b:ef:b4:43:6e: 8a:73:1e:22:44:ee:d8:89:da:17:4f:13:94:8a:0c: bf:65:5e:31:b8:de:70:69:06:8c:bf:42:49:f6:7c: 96:7d:e6:2f:4b:86:8c:3d:2d:58:c5:49:31:50:e3: 7d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:37:1E:E2:E8:B9:A1:7B:5B:EF:5C:6D:97:DC:0B:6E:08:0C:EA:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1577c06e-ca3b-4888-b6f3-ff7a5aaed3d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.9.0.0/16 Signature Algorithm: sha256WithRSAEncryption b0:56:01:92:ee:ab:05:17:6c:d8:aa:57:8a:e5:c3:92:64:45: 77:57:e3:ab:f3:d3:b8:9f:99:1c:c6:bb:3f:a4:40:08:c9:04: 72:10:24:33:e1:b1:63:a9:56:73:b5:de:34:f1:c9:19:99:ab: 9e:20:87:ff:7b:f6:89:4c:dd:9d:a7:75:95:f9:91:80:69:0e: c9:8b:3d:95:13:2d:c8:1d:bd:01:2f:54:8b:6d:73:b6:03:79: 97:93:f4:d7:a7:2e:be:f0:1c:4f:9c:35:e5:99:e1:fa:a5:a7: d1:74:8b:16:a1:c4:87:ba:2f:91:0a:85:69:40:63:43:58:d1: ad:ec:2d:cc:87:ec:b1:c9:3b:1c:00:77:64:43:7a:64:01:e3: cb:42:7c:12:a3:08:44:75:41:87:59:a1:c4:15:97:ec:b0:cd: de:5a:7b:35:ab:67:6b:b3:49:c6:ee:9d:2a:f5:24:c8:73:48: 70:4e:38:9b:6b:78:b9:cf:6d:ea:40:20:f5:41:d1:c1:ea:cf: 03:52:3b:24:2b:da:19:56:29:c2:b2:68:d5:2d:32:7c:56:61: d4:bd:e8:f5:0c:7a:e1:a8:0b:53:19:50:f4:50:b9:aa:80:ef: 8a:7d:2e:25:1d:0a:35:2e:ed:f8:58:a1:09:ef:41:67:61:c4: 9e:43:6b:89 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAjBgmj992lA7WkUoKgo7JeN/CRswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjhlYmNiMDU2YWVjNjBmYzRmNDk0YWRhNTc4YjYzNmU2 OWQyMGRmOWIzZmYyNjY1N2UzMDk1Y2U4Njk3MmNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsbbH2Y7axI6EZ6Ky/5z7jbLXjgcpMh0W4CTAkxey+pAdw EXjIuIq+sa+r9l3o+pMWY0Aqs9XuFFa287gb7L6K9u8yv7/nwO2aS/DovHeOfJKp 8DCo4bfedNanzTvYbsXx2dCURM6XGLYdjvbcgVKGzn/oOmL4+P8BVqn0blbV9XtE xAd3waEf9rYkuH6OsqY6SC1JuKarVOG8BrSCE2x9DRn2eWIXjEwlApoSOX+91WMR W4GXWX9QqCcQmMAmsmg9jb3EeJPGRexrd7Qb77RDbopzHiJE7tiJ2hdPE5SKDL9l XjG43nBpBoy/Qkn2fJZ95i9Lhow9LVjFSTFQ431fAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnDce4ui5oXtb71xtl9wLbggM6hwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1NzdjMDZlLWNhM2ItNDg4OC1iNmYzLWZmN2E1YWFlZDNkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDPCTANBgkqhkiG9w0BAQsFAAOCAQEAsFYBku6rBRds2KpXiuXDkmRFd1fj q/PTuJ+ZHMa7P6RACMkEchAkM+GxY6lWc7XeNPHJGZmrniCH/3v2iUzdnad1lfmR gGkOyYs9lRMtyB29AS9Ui21ztgN5l5P016cuvvAcT5w15Znh+qWn0XSLFqHEh7ov kQqFaUBjQ1jRrewtzIfssck7HAB3ZEN6ZAHjy0J8EqMIRHVBh1mhxBWX7LDN3lp7 Natna7NJxu6dKvUkyHNIcE44m2t4uc9t6kAg9UHRwerPA1I7JCvaGVYpwrJo1S0y fFZh1L3o9Qx64agLUxlQ9FC5qoDvin0uJR0KNS7t+FihCe9BZ2HEnkNriQ== -----END CERTIFICATE-----Generated at Thu May 2 11:33:10 2024 by rpki-client on console-fra.rpki-client.org