$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e51245d-1821-47cf-b48e-9cb21543a832.roa File: 1e51245d-1821-47cf-b48e-9cb21543a832.roa (raw, json) Hash identifier: cCrLOMdp4OYPzgXmTbZ9oHLq9wnuAPZhpA7bN4Z1vz0= Subject key identifier: 04:6B:ED:3E:25:A3:97:1E:3B:77:6A:2C:47:4D:9D:A4:F7:82:BF:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52D2257E9FD0176A0CB403E2366F039AD4C657D3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e51245d-1821-47cf-b48e-9cb21543a832.roa Signing time: Fri 03 May 2024 00:00:00 +0000 ROA not before: Fri 03 May 2024 00:00:00 +0000 ROA not after: Fri 07 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 194.21.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:d2:25:7e:9f:d0:17:6a:0c:b4:03:e2:36:6f:03:9a:d4:c6:57:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:00:00 2024 GMT Not After : Jun 7 23:59:59 2024 GMT Subject: serialNumber=5ffa71d6bb92f86becd9d3ad37672ef8c64c5d4a2f08799a94cdbfb34130ff6e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:df:20:ac:4f:74:5f:f8:4f:31:14:8b:20:bf: 2e:ef:2c:2f:ca:f4:39:a5:29:af:78:76:82:80:a2: 7f:0a:73:a7:b9:59:5d:83:fa:35:ff:78:5d:1e:d5: e9:d9:85:c1:56:5c:ce:99:86:e3:1c:b1:70:0a:54: 90:30:29:a3:12:7d:93:16:21:d8:ce:ed:53:0b:6f: 06:9d:52:d7:66:33:9b:45:fd:e0:90:22:de:bb:d7: f5:c7:f1:6b:48:e7:54:1b:00:3e:a4:86:3b:b3:d3: 16:69:4a:eb:d1:a1:89:15:30:e9:7e:42:81:ce:59: 94:3b:01:7a:9a:2b:1c:28:73:af:61:b7:b9:11:fb: 50:b6:e3:9e:c7:b8:b3:a8:e0:75:22:84:00:a8:cc: bd:e2:69:ba:aa:a0:a2:ff:55:0a:60:9c:60:5b:c6: be:7a:cd:d1:85:fb:9b:31:34:9d:e1:b2:0c:e2:f6: f0:17:44:35:18:cb:2b:3f:38:94:fb:5a:16:1a:45: 91:f7:a8:8f:da:da:29:51:bf:13:66:8b:fb:51:7d: cc:9e:cc:98:8a:8f:08:2f:dd:86:f2:cd:1f:66:2b: 74:69:80:bf:c5:2e:c6:cc:34:0e:ea:72:43:6e:08: 04:33:04:af:3e:ca:69:ba:c0:6d:b1:66:5c:80:cf: 20:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:6B:ED:3E:25:A3:97:1E:3B:77:6A:2C:47:4D:9D:A4:F7:82:BF:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e51245d-1821-47cf-b48e-9cb21543a832.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.21.128.0/18 Signature Algorithm: sha256WithRSAEncryption 59:4f:9e:e0:34:ca:94:0a:8f:fd:c7:cb:2b:01:18:78:2e:27: 93:0c:a0:a2:8f:3b:1a:62:a2:a9:92:5d:d1:e8:18:11:72:9b: 19:aa:db:73:0d:76:27:f6:ad:55:ce:26:bd:62:da:bc:33:44: d7:4b:51:b1:46:49:90:cb:6e:f9:4d:d6:3b:b2:67:e6:b5:70: b4:b0:fb:93:1a:7d:39:94:06:78:14:21:b0:79:24:26:69:b0: 7f:f1:af:4e:85:75:09:eb:be:57:42:0e:02:59:04:83:66:0e: 0e:0b:0b:ba:bc:54:d7:2c:d9:e7:56:8b:55:eb:53:ca:3d:20: 30:67:14:d7:71:c0:85:ea:c4:af:f5:ae:36:bf:b9:72:9e:78: db:9c:4a:8a:ec:a6:9f:8c:44:3d:b4:69:67:f5:99:52:c0:1d: 9f:53:0a:be:d8:c6:54:c6:20:df:5f:7e:8f:ff:ff:c4:2f:73: 45:fe:55:c4:6a:c7:db:66:1c:fa:52:52:db:76:4a:bf:5e:5c: 72:44:9c:68:a0:7d:0b:38:f7:83:3a:ea:ef:c1:1e:20:55:d3: b3:2e:16:a6:ce:5a:e8:fd:34:17:aa:27:6c:c9:6a:ec:1e:13: db:63:ee:b4:41:56:41:bb:9d:4c:a3:7d:06:47:dd:25:c8:20: dd:b7:27:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUtIlfp/QF2oMtAPiNm8DmtTGV9MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTAzMDAwMDAwWhcNMjQwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZmZhNzFkNmJiOTJmODZiZWNkOWQzYWQzNzY3MmVmOGM2 NGM1ZDRhMmYwODc5OWE5NGNkYmZiMzQxMzBmZjZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCG3yCsT3Rf+E8xFIsgvy7vLC/K9DmlKa94doKAon8Kc6e5 WV2D+jX/eF0e1enZhcFWXM6ZhuMcsXAKVJAwKaMSfZMWIdjO7VMLbwadUtdmM5tF /eCQIt671/XH8WtI51QbAD6khjuz0xZpSuvRoYkVMOl+QoHOWZQ7AXqaKxwoc69h t7kR+1C2457HuLOo4HUihACozL3iabqqoKL/VQpgnGBbxr56zdGF+5sxNJ3hsgzi 9vAXRDUYyys/OJT7WhYaRZH3qI/a2ilRvxNmi/tRfcyezJiKjwgv3YbyzR9mK3Rp gL/FLsbMNA7qckNuCAQzBK8+ymm6wG2xZlyAzyA5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBGvtPiWjlx47d2osR02dpPeCv3wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlNTEyNDVkLTE4MjEtNDdjZi1iNDhlLTljYjIxNTQzYTgzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbCFYAwDQYJKoZIhvcNAQELBQADggEBAFlPnuA0ypQKj/3HyysBGHguJ5MM oKKPOxpioqmSXdHoGBFymxmq23MNdif2rVXOJr1i2rwzRNdLUbFGSZDLbvlN1juy Z+a1cLSw+5MafTmUBngUIbB5JCZpsH/xr06FdQnrvldCDgJZBINmDg4LC7q8VNcs 2edWi1XrU8o9IDBnFNdxwIXqxK/1rja/uXKeeNucSorspp+MRD20aWf1mVLAHZ9T Cr7YxlTGIN9ffo///8Qvc0X+VcRqx9tmHPpSUtt2Sr9eXHJEnGigfQs494M66u/B HiBV07MuFqbOWuj9NBeqJ2zJauweE9tj7rRBVkG7nUyjfQZH3SXIIN23J2k= -----END CERTIFICATE-----Generated at Thu May 9 01:25:22 2024 by rpki-client on console-fra.rpki-client.org