$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/241bc0fc-15e3-4833-b71c-3aee42a3a927.roa File: 241bc0fc-15e3-4833-b71c-3aee42a3a927.roa (raw, json) Hash identifier: +YdCKmjZyy7I9qYZCNARCrFhf4MLhdwhHHf6Wv82xFc= Subject key identifier: 78:F7:D4:92:17:5B:CA:37:5F:19:F4:C4:76:7E:72:FA:1F:97:C5:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19BE60320EDF1BF6D21B0BDC943A78678BDD2A2C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/241bc0fc-15e3-4833-b71c-3aee42a3a927.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 57.248.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:be:60:32:0e:df:1b:f6:d2:1b:0b:dc:94:3a:78:67:8b:dd:2a:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=21e5f1c76457bc7d88208c5b88bdc533bff00cdae538991fd601a4a564e0090f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c2:57:3f:65:2e:0d:5a:a9:55:25:63:9f:c0: 0f:2b:5b:b6:d1:2d:83:31:4e:12:c3:c7:39:64:c1: 99:ba:08:b1:47:be:12:4e:a0:23:b3:45:f0:a1:4f: d4:e6:b5:87:27:1d:a4:69:f7:de:6f:51:db:3c:9d: 2e:72:19:58:ef:3f:3a:a3:67:f6:cc:2e:92:6d:17: 82:55:bf:c8:b7:a5:a0:b7:77:82:f0:e5:d2:58:11: 79:08:29:0d:b3:4c:04:09:2f:f2:a4:b5:e4:e4:df: fb:bc:b7:6d:31:ac:be:c3:dd:b9:0e:76:b8:ca:06: 44:42:e3:64:14:ae:d0:51:80:fd:80:55:82:04:d3: d4:aa:94:c7:ef:82:07:c5:8a:6f:1e:b8:3f:88:ac: db:d9:3c:0a:57:e9:d3:0e:0b:1f:3d:d1:4c:a7:9e: e8:ef:19:7f:c7:8b:7a:b0:ef:f9:8f:bf:7d:79:d6: 8d:f9:f8:b0:ab:62:93:4d:26:b0:95:c5:36:43:ab: 01:1c:bb:98:b6:26:d3:00:c2:59:86:06:c6:34:4f: 2a:91:ab:07:be:7a:0b:b7:2f:89:90:52:b1:03:eb: 72:c9:ef:38:3b:13:4b:2e:3d:03:68:51:d9:aa:5e: a7:c2:ee:26:b0:31:6f:e6:16:11:59:2f:94:e4:c0: 57:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F7:D4:92:17:5B:CA:37:5F:19:F4:C4:76:7E:72:FA:1F:97:C5:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/241bc0fc-15e3-4833-b71c-3aee42a3a927.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.248.0.0/16 Signature Algorithm: sha256WithRSAEncryption 84:54:2d:dd:79:e9:8a:ad:ee:f2:ee:15:ad:81:fd:8c:dd:1a: 18:8e:e3:f3:7c:a6:0e:15:f5:d6:6c:b0:f4:16:cd:9d:9f:19: 63:d3:0a:bc:04:02:3d:f4:e2:af:16:24:83:89:9a:ed:07:a8: 33:90:e8:9b:2f:73:3b:a6:60:8a:b1:cd:d3:a1:ee:4f:a9:83: 88:79:5a:10:6b:bf:6c:af:0d:b4:62:ea:43:23:00:a8:17:e0: 00:30:3a:6c:e3:bb:e0:ec:f2:01:89:3c:d7:54:42:32:09:9e: 10:5d:a5:ce:fe:a4:99:12:cc:e2:fd:48:b8:2a:a5:b2:3e:9f: a7:f9:07:2d:17:88:c5:fb:6c:f8:dc:8c:ef:a5:44:00:ac:b1: 10:8d:53:3f:e1:3f:76:9a:00:52:f0:14:08:13:1c:80:78:12: 97:07:05:3e:05:d7:bb:ce:b3:94:0c:70:19:ca:7b:68:b5:5f: 33:75:b6:6d:5f:83:07:95:9a:f1:f4:31:5e:ef:67:c0:cc:b7: fc:dd:bd:4e:c7:3b:fb:ab:c8:2f:f1:c7:d0:0e:67:70:2f:79: 87:2b:cd:ae:12:97:e9:f7:e2:78:46:ad:9d:2f:38:88:bd:3d: c7:5a:01:bf:e3:b3:3d:e2:2e:8e:7a:50:a5:ed:d0:31:d7:b0: 8f:9c:1d:9e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGb5gMg7fG/bSGwvclDp4Z4vdKiwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMWU1ZjFjNzY0NTdiYzdkODgyMDhjNWI4OGJkYzUzM2Jm ZjAwY2RhZTUzODk5MWZkNjAxYTRhNTY0ZTAwOTBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAwlc/ZS4NWqlVJWOfwA8rW7bRLYMxThLDxzlkwZm6CLFH vhJOoCOzRfChT9TmtYcnHaRp995vUds8nS5yGVjvPzqjZ/bMLpJtF4JVv8i3paC3 d4Lw5dJYEXkIKQ2zTAQJL/KkteTk3/u8t20xrL7D3bkOdrjKBkRC42QUrtBRgP2A VYIE09SqlMfvggfFim8euD+IrNvZPApX6dMOCx890UynnujvGX/Hi3qw7/mPv315 1o35+LCrYpNNJrCVxTZDqwEcu5i2JtMAwlmGBsY0TyqRqwe+egu3L4mQUrED63LJ 7zg7E0suPQNoUdmqXqfC7iawMW/mFhFZL5TkwFeZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUePfUkhdbyjdfGfTEdn5y+h+XxXcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0MWJjMGZjLTE1ZTMtNDgzMy1iNzFjLTNhZWU0MmEzYTkyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5+DANBgkqhkiG9w0BAQsFAAOCAQEAhFQt3Xnpiq3u8u4VrYH9jN0aGI7j 83ymDhX11myw9BbNnZ8ZY9MKvAQCPfTirxYkg4ma7QeoM5Domy9zO6ZgirHN06Hu T6mDiHlaEGu/bK8NtGLqQyMAqBfgADA6bOO74OzyAYk811RCMgmeEF2lzv6kmRLM 4v1IuCqlsj6fp/kHLReIxfts+NyM76VEAKyxEI1TP+E/dpoAUvAUCBMcgHgSlwcF PgXXu86zlAxwGcp7aLVfM3W2bV+DB5Wa8fQxXu9nwMy3/N29Tsc7+6vIL/HH0A5n cC95hyvNrhKX6ffieEatnS84iL09x1oBv+OzPeIujnpQpe3QMdewj5wdng== -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:15 2024 by rpki-client on console-fra.rpki-client.org