$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ab1c5af-58b0-4bf9-b909-df991accfd79.roa File: 1ab1c5af-58b0-4bf9-b909-df991accfd79.roa (raw, json) Hash identifier: 56XBj31T+RObqDSFdTINzZ8T11YN49feAcizgrWFJE8= Subject key identifier: 14:A5:1D:BC:6F:D3:D7:D8:85:94:21:5D:D2:32:B9:01:EA:88:23:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1484E70CC1D646DA9ABB52FA6C94A975F691E806 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ab1c5af-58b0-4bf9-b909-df991accfd79.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 135.159.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:84:e7:0c:c1:d6:46:da:9a:bb:52:fa:6c:94:a9:75:f6:91:e8:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=0682f54e37c8efc1ece16cfdf372583937efece141b23d8a6ee3415a61ef8d1a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:e6:5d:21:e0:ab:7f:64:27:6b:d7:2d:02:8f: 83:34:84:cf:46:50:39:b5:44:78:99:ce:d1:e0:1a: b6:6e:c0:7b:3a:5b:2a:a2:82:3c:b5:dd:52:35:d1: b3:86:a9:96:3a:fc:f0:d5:63:d7:2d:74:f7:7c:db: 2f:74:5b:a2:d8:44:f3:1a:18:da:d6:e3:df:d2:c3: e9:5a:bc:ac:0d:09:31:8d:e9:ca:92:25:d9:a9:1a: e2:aa:ec:7f:12:53:7a:5c:37:44:ff:bb:0b:26:e9: 51:b6:63:8c:92:e8:a1:c2:3f:4d:f5:c0:3f:6b:47: 43:bc:d8:6e:20:54:a7:94:88:7b:c8:59:14:b4:f6: 98:7d:33:68:a7:2a:aa:cb:00:2b:b3:36:54:b5:e0: 72:4c:bc:46:66:1a:53:52:e2:a3:40:02:96:0a:cf: d8:d3:59:1d:9e:1c:4c:60:9f:e7:fb:fb:54:4a:a9: 22:d8:f1:1d:9d:2c:e7:40:9d:b0:de:63:07:61:c4: e8:2a:57:4d:a7:69:b6:3d:ea:7e:98:39:5d:48:0d: 38:05:18:d3:35:60:c8:49:f7:16:12:21:7f:8b:ed: 52:4d:de:40:c3:e1:72:6b:28:45:51:3a:da:c0:c4: 65:f9:1a:cf:d2:23:01:a5:88:aa:69:e1:db:88:82: 9f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A5:1D:BC:6F:D3:D7:D8:85:94:21:5D:D2:32:B9:01:EA:88:23:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ab1c5af-58b0-4bf9-b909-df991accfd79.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 135.159.0.0/16 Signature Algorithm: sha256WithRSAEncryption c2:b0:84:ec:09:1f:61:3e:a4:4d:b8:4a:c3:c1:ff:e5:60:22: 67:f6:2a:63:fa:48:3c:94:8a:c8:06:4a:1f:35:d1:07:d5:52: 46:7e:ea:f6:fa:8a:d8:6a:e6:77:52:6c:1e:2b:0f:b3:16:9b: 8f:1c:d6:bd:41:12:03:dd:30:22:32:c7:4a:c4:67:6b:01:75: 35:ac:ec:9f:11:b4:a3:91:01:81:17:7a:44:a6:cf:e9:6f:59: d5:b4:1d:da:64:71:8c:8a:bf:0b:47:19:6e:c6:9d:d4:8a:75: be:b6:f2:93:51:9c:d4:fa:76:d9:87:a2:52:2f:51:3b:bd:d4: a2:54:48:d1:67:9e:6a:aa:66:80:35:13:14:2e:4b:f8:0f:a6: 93:4d:01:d4:49:f9:59:28:fe:02:8e:16:ce:b2:9a:67:72:00: 0f:76:48:d2:19:5c:94:26:cb:50:73:ce:3c:24:42:79:56:1e: 98:86:39:70:d7:cb:81:bb:06:85:0e:5c:e6:10:bf:ea:4e:a7: 04:f9:64:1f:b9:60:00:61:b9:f2:47:a2:15:e1:7a:fc:b1:ac: 05:be:5e:ad:c8:ba:48:1d:7d:47:ad:22:8c:d5:82:9c:9d:00: f8:a5:86:46:e5:6e:ab:f8:da:f2:64:d4:55:c4:0c:bf:ba:9c: a2:d3:f7:60 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFITnDMHWRtqau1L6bJSpdfaR6AYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjgyZjU0ZTM3YzhlZmMxZWNlMTZjZmRmMzcyNTgzOTM3 ZWZlY2UxNDFiMjNkOGE2ZWUzNDE1YTYxZWY4ZDFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCU5l0h4Kt/ZCdr1y0Cj4M0hM9GUDm1RHiZztHgGrZuwHs6 Wyqigjy13VI10bOGqZY6/PDVY9ctdPd82y90W6LYRPMaGNrW49/Sw+lavKwNCTGN 6cqSJdmpGuKq7H8SU3pcN0T/uwsm6VG2Y4yS6KHCP031wD9rR0O82G4gVKeUiHvI WRS09ph9M2inKqrLACuzNlS14HJMvEZmGlNS4qNAApYKz9jTWR2eHExgn+f7+1RK qSLY8R2dLOdAnbDeYwdhxOgqV02nabY96n6YOV1IDTgFGNM1YMhJ9xYSIX+L7VJN 3kDD4XJrKEVROtrAxGX5Gs/SIwGliKpp4duIgp/zAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFKUdvG/T19iFlCFd0jK5AeqII0UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhYjFjNWFmLTU4YjAtNGJmOS1iOTA5LWRmOTkxYWNjZmQ3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCHnzANBgkqhkiG9w0BAQsFAAOCAQEAwrCE7AkfYT6kTbhKw8H/5WAiZ/Yq Y/pIPJSKyAZKHzXRB9VSRn7q9vqK2Grmd1JsHisPsxabjxzWvUESA90wIjLHSsRn awF1NazsnxG0o5EBgRd6RKbP6W9Z1bQd2mRxjIq/C0cZbsad1Ip1vrbyk1Gc1Pp2 2YeiUi9RO73UolRI0WeeaqpmgDUTFC5L+A+mk00B1En5WSj+Ao4WzrKaZ3IAD3ZI 0hlclCbLUHPOPCRCeVYemIY5cNfLgbsGhQ5c5hC/6k6nBPlkH7lgAGG58keiFeF6 /LGsBb5erci6SB19R60ijNWCnJ0A+KWGRuVuq/ja8mTUVcQMv7qcotP3YA== -----END CERTIFICATE-----Generated at Wed May 1 22:06:28 2024 by rpki-client on console-fra.rpki-client.org