$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d378206-0887-425a-86bb-bba414bfdc45.roa File: 1d378206-0887-425a-86bb-bba414bfdc45.roa (raw, json) Hash identifier: aOOT/gIuwJp2MrKWqgzHcYVWAqP7C+y0WKSHJFwhgfc= Subject key identifier: A3:BF:FE:FB:A1:78:11:8D:85:9C:E2:45:B5:41:9A:8F:23:66:95:51 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 48C0BF98BB8D37C097E811C76281C009E46ECC4B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d378206-0887-425a-86bb-bba414bfdc45.roa Signing time: Fri 12 Apr 2024 00:00:00 +0000 ROA not before: Fri 12 Apr 2024 00:00:00 +0000 ROA not after: Fri 17 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 147.106.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:c0:bf:98:bb:8d:37:c0:97:e8:11:c7:62:81:c0:09:e4:6e:cc:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:00:00 2024 GMT Not After : May 17 23:59:59 2024 GMT Subject: serialNumber=7fa78e58e14675c59921287c6da03cee40d2e4af998559637d894fb53d4b43d1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8d:d1:ec:11:07:09:15:5d:bf:a4:59:df:8a: bb:87:b4:ac:49:6e:72:86:ba:a6:34:f6:e5:49:a0: cd:77:c8:b4:c9:e5:95:cf:7e:41:27:c1:dd:65:6e: e3:84:c1:95:48:e1:24:30:6a:7c:19:b6:03:9b:1d: ab:d5:76:1a:0e:be:bb:39:6b:4e:a8:08:2b:a0:2a: eb:64:00:77:01:82:e3:57:49:2a:42:03:74:fb:71: 9e:69:f0:43:b9:2f:5e:96:9f:9e:6d:78:ef:80:dd: 27:2d:07:4b:d5:5a:d1:1d:e5:96:23:69:08:f1:cc: 4b:d0:af:36:f8:a7:39:0c:d0:4b:d8:40:cf:fb:5d: a6:40:64:0d:a0:77:80:01:3e:48:8a:58:84:68:4e: 8f:41:c1:4b:24:45:1f:7b:51:4c:0b:0e:62:9f:b3: 11:78:fc:22:4d:9f:12:e9:43:af:0b:88:22:9c:06: a6:f6:74:46:10:b7:11:da:c9:85:a0:b0:71:13:91: 90:2f:51:e2:aa:a9:79:05:ca:63:74:47:e0:ec:33: d8:fc:a6:3a:0b:5a:8d:3a:10:f7:53:3a:fc:1a:ff: 60:73:34:bc:17:63:87:bf:7f:6f:f8:1d:62:26:c3: 71:cb:38:14:a4:06:93:9a:0f:0c:c7:e5:0c:60:f2: 56:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:BF:FE:FB:A1:78:11:8D:85:9C:E2:45:B5:41:9A:8F:23:66:95:51 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d378206-0887-425a-86bb-bba414bfdc45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.106.64.0/18 Signature Algorithm: sha256WithRSAEncryption 2e:c1:80:3e:de:b6:02:31:9c:1f:f8:68:e2:10:98:c2:2a:92: 16:f3:d9:48:ad:fc:71:b8:57:d1:82:75:a3:0d:e1:4d:cc:55: 54:3b:d3:d3:b2:d5:c4:25:7b:9f:84:db:b4:02:20:d6:06:5c: ca:84:09:12:e2:d2:6c:c7:64:2d:2e:57:c4:88:e3:8b:8f:ee: 9b:5f:3f:28:a3:ec:7c:f2:48:bc:42:d4:2c:ff:36:63:59:12: 4e:3f:39:0a:13:8d:54:6b:fa:80:9b:89:23:da:34:4a:a4:de: be:d1:1d:ea:ca:ee:0d:43:a8:8f:2a:f7:a9:f9:57:73:8b:e7: 7f:61:64:a6:67:3c:d2:34:de:d9:15:0f:73:ca:04:88:bb:d7: 53:20:94:0d:e7:0d:37:a8:b2:c6:c0:c5:3a:a2:aa:6c:da:31: 6f:d9:9c:f7:1c:fd:44:5a:a7:00:70:d4:8a:bf:bc:9d:e2:6f: 53:19:28:43:b8:d9:ce:68:71:5f:f1:c7:f7:69:b7:2b:cf:89: 15:31:98:c7:4d:98:18:db:2f:91:62:ed:ff:97:4e:60:39:29: ad:78:61:ae:5d:13:26:d6:8a:f2:c8:f0:3e:9d:41:90:6e:45: 9b:ff:20:b7:fd:d0:fd:e9:d1:a7:15:46:ec:46:b8:7c:25:04: a1:fa:6b:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSMC/mLuNN8CX6BHHYoHACeRuzEswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEyMDAwMDAwWhcNMjQwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZmE3OGU1OGUxNDY3NWM1OTkyMTI4N2M2ZGEwM2NlZTQw ZDJlNGFmOTk4NTU5NjM3ZDg5NGZiNTNkNGI0M2QxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9jdHsEQcJFV2/pFnfiruHtKxJbnKGuqY09uVJoM13yLTJ 5ZXPfkEnwd1lbuOEwZVI4SQwanwZtgObHavVdhoOvrs5a06oCCugKutkAHcBguNX SSpCA3T7cZ5p8EO5L16Wn55teO+A3SctB0vVWtEd5ZYjaQjxzEvQrzb4pzkM0EvY QM/7XaZAZA2gd4ABPkiKWIRoTo9BwUskRR97UUwLDmKfsxF4/CJNnxLpQ68LiCKc Bqb2dEYQtxHayYWgsHETkZAvUeKqqXkFymN0R+DsM9j8pjoLWo06EPdTOvwa/2Bz NLwXY4e/f2/4HWImw3HLOBSkBpOaDwzH5Qxg8lZnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUo7/++6F4EY2FnOJFtUGajyNmlVEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFkMzc4MjA2LTA4ODctNDI1YS04NmJiLWJiYTQxNGJmZGM0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaTakAwDQYJKoZIhvcNAQELBQADggEBAC7BgD7etgIxnB/4aOIQmMIqkhbz 2Uit/HG4V9GCdaMN4U3MVVQ709Oy1cQle5+E27QCINYGXMqECRLi0mzHZC0uV8SI 44uP7ptfPyij7HzySLxC1Cz/NmNZEk4/OQoTjVRr+oCbiSPaNEqk3r7RHerK7g1D qI8q96n5V3OL539hZKZnPNI03tkVD3PKBIi711MglA3nDTeossbAxTqiqmzaMW/Z nPcc/URapwBw1Iq/vJ3ib1MZKEO42c5ocV/xx/dptyvPiRUxmMdNmBjbL5Fi7f+X TmA5Ka14Ya5dEybWivLI8D6dQZBuRZv/ILf90P3p0acVRuxGuHwlBKH6azk= -----END CERTIFICATE-----Generated at Thu May 2 08:02:25 2024 by rpki-client on console-ams.rpki-client.org