$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/186f147f-35a9-467e-a437-9a8d12bdb732.roa File: 186f147f-35a9-467e-a437-9a8d12bdb732.roa (raw, json) Hash identifier: AE7/Aj0dVNWSMFgAHf5EcB6cnMm01dQAvNQMkH+5nOQ= Subject key identifier: 67:4B:22:0E:DB:19:D6:5B:14:D5:E0:1C:FA:98:B4:8C:61:DB:16:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0895FE7AF9D89D2932DA56376BFDEA676563CFD4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/186f147f-35a9-467e-a437-9a8d12bdb732.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 139.56.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:95:fe:7a:f9:d8:9d:29:32:da:56:37:6b:fd:ea:67:65:63:cf:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=fb82da1929be8a276b6bbd0fa4730b533dfc597a03f0b6e274c2464d3ca87c3d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ef:06:1f:00:d7:b4:48:07:57:55:b5:55:08: b5:49:2f:69:93:8d:38:87:90:c2:f9:13:90:cb:59: 9c:a8:84:5b:ad:55:c6:e6:14:b0:7c:1d:8e:ab:9f: 52:47:72:95:18:57:17:a1:1d:c2:66:e5:5e:20:7d: 1b:4f:3c:92:00:98:7c:d7:46:62:82:1d:88:10:96: ce:48:11:2e:e0:91:df:17:5e:53:f5:51:23:bd:e6: 21:d7:07:de:47:40:15:9f:30:1c:3b:2d:5f:a7:a2: cc:9e:6a:66:f7:93:00:84:fb:64:20:39:a8:b4:fd: 54:87:32:23:a6:fe:3e:3c:ee:33:8e:57:cc:71:10: 06:b5:4f:c8:9f:a4:3f:90:84:ac:64:dd:bf:bc:a0: 8f:a8:c4:92:fd:a5:8c:99:aa:93:17:cf:24:42:2a: a5:fb:49:e6:c7:d5:1f:9c:8a:19:33:1d:8b:f2:21: 65:87:8b:a5:34:d5:87:7d:e7:e0:bf:86:8a:cf:a1: bb:5f:bd:8a:1e:f3:d8:26:d1:80:a2:4c:86:05:d1: 04:82:8b:e6:cb:19:8b:3b:51:ae:1c:99:b3:5b:45: 8e:35:58:77:e2:b7:73:1b:ac:5a:4b:3f:67:fe:41: 80:ba:af:6d:88:e5:a8:3d:13:cf:3b:d6:7f:b0:92: 86:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:4B:22:0E:DB:19:D6:5B:14:D5:E0:1C:FA:98:B4:8C:61:DB:16:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/186f147f-35a9-467e-a437-9a8d12bdb732.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.56.2.0/24 Signature Algorithm: sha256WithRSAEncryption c3:25:da:f4:55:4d:3b:e7:d2:49:a0:29:07:54:99:21:f6:5b: db:6d:c6:2a:3e:9f:6a:7c:5e:e5:33:56:84:d2:d0:63:6c:ba: a7:bd:ea:40:2c:fa:05:7e:ef:bd:d7:42:f8:2e:c8:f6:76:48: 94:60:35:7a:98:05:15:41:78:8f:5b:a0:f6:f8:a3:e1:66:09: d1:fe:98:e6:82:1c:82:1a:24:8a:04:9e:6c:31:5f:f7:37:30: 63:f4:0f:09:9d:63:7e:54:7b:90:f2:3d:b0:8b:12:28:67:65: 36:d1:7e:71:c6:c4:50:81:29:b8:11:57:fa:10:42:c8:07:c3: f3:7f:19:30:b8:e4:e1:05:7b:2d:3f:2c:60:2a:4d:fe:06:63: fd:5a:a2:a2:b5:c2:b5:88:8e:34:38:10:0c:4e:01:6d:83:7c: 46:be:36:79:fc:d5:84:05:fe:d0:9f:21:90:d7:b0:ca:9b:0f: 47:d0:c8:15:60:54:5d:d7:24:25:42:30:24:d2:90:11:cb:35: 99:ec:77:90:71:b3:e1:3b:53:ec:55:89:df:60:aa:49:01:e2: 4c:55:f0:c7:b1:f5:98:4c:17:be:57:8d:09:5d:9c:76:50:90: e5:2c:18:d9:d8:0a:c9:42:b5:de:45:f7:e7:25:ec:01:d2:f9: bf:66:5b:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCJX+evnYnSky2lY3a/3qZ2Vjz9QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEwMDAwMDAwWhcNMjQwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjgyZGExOTI5YmU4YTI3NmI2YmJkMGZhNDczMGI1MzNk ZmM1OTdhMDNmMGI2ZTI3NGMyNDY0ZDNjYTg3YzNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa7wYfANe0SAdXVbVVCLVJL2mTjTiHkML5E5DLWZyohFut VcbmFLB8HY6rn1JHcpUYVxehHcJm5V4gfRtPPJIAmHzXRmKCHYgQls5IES7gkd8X XlP1USO95iHXB95HQBWfMBw7LV+nosyeamb3kwCE+2QgOai0/VSHMiOm/j487jOO V8xxEAa1T8ifpD+QhKxk3b+8oI+oxJL9pYyZqpMXzyRCKqX7SebH1R+cihkzHYvy IWWHi6U01Yd95+C/horPobtfvYoe89gm0YCiTIYF0QSCi+bLGYs7Ua4cmbNbRY41 WHfit3MbrFpLP2f+QYC6r22I5ag9E8871n+wkoafAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZ0siDtsZ1lsU1eAc+pi0jGHbFogwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4NmYxNDdmLTM1YTktNDY3ZS1hNDM3LTlhOGQxMmJkYjczMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACLOAIwDQYJKoZIhvcNAQELBQADggEBAMMl2vRVTTvn0kmgKQdUmSH2W9tt xio+n2p8XuUzVoTS0GNsuqe96kAs+gV+773XQvguyPZ2SJRgNXqYBRVBeI9boPb4 o+FmCdH+mOaCHIIaJIoEnmwxX/c3MGP0DwmdY35Ue5DyPbCLEihnZTbRfnHGxFCB KbgRV/oQQsgHw/N/GTC45OEFey0/LGAqTf4GY/1aoqK1wrWIjjQ4EAxOAW2DfEa+ Nnn81YQF/tCfIZDXsMqbD0fQyBVgVF3XJCVCMCTSkBHLNZnsd5Bxs+E7U+xVid9g qkkB4kxV8Mex9ZhMF75XjQldnHZQkOUsGNnYCslCtd5F9+cl7AHS+b9mWxw= -----END CERTIFICATE-----Generated at Sat Apr 20 03:56:08 2024 by rpki-client on console-fra.rpki-client.org