$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28213861-cdcf-4cbc-93f0-1d2cf5e254a4.roa File: 28213861-cdcf-4cbc-93f0-1d2cf5e254a4.roa (raw, json) Hash identifier: ZlCkIzM8Qc5j4DgrWXegG1x7Mt3mnNf7ORVTlGRWbPk= Subject key identifier: 47:E5:52:64:AC:E8:5D:CC:0B:C9:2A:63:1A:B3:FE:84:9A:11:4F:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59F4416D11D914E7AD081FBA645CFC1BE89014D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28213861-cdcf-4cbc-93f0-1d2cf5e254a4.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 136.18.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:f4:41:6d:11:d9:14:e7:ad:08:1f:ba:64:5c:fc:1b:e8:90:14:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=a97b1d0cb962520ffc953b402760e21598721ba0fc18f792b04a2edc26218ee3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:64:a2:ce:16:84:a0:62:99:52:8f:b2:51:ee: da:2f:9b:6b:c0:b0:17:0b:d8:30:6a:2e:27:89:07: c3:d6:7e:ee:3c:84:31:15:a7:9b:06:7b:99:4e:ca: 69:dd:1d:a2:3a:2d:08:13:76:2f:be:d0:67:53:3f: 98:fa:fd:69:d7:07:1b:cc:51:10:5e:00:14:3b:4e: 7f:55:a3:66:bf:b2:1a:7c:ce:e9:8c:64:e5:39:8e: 67:39:00:f1:84:5d:78:45:0b:60:b3:7e:48:3b:c1: 37:f9:da:d1:96:8f:61:19:f4:9a:eb:00:8f:35:86: 2c:d5:a0:df:d2:ec:66:b5:f6:9d:be:67:a6:0c:f5: ad:1a:e9:36:82:9d:0d:8e:87:ea:4a:ac:cd:9b:3a: 20:83:50:81:d0:3e:01:af:a8:73:f9:1d:51:85:6d: 02:aa:ca:43:62:ad:29:a1:56:3a:b7:fb:17:01:90: f9:13:da:73:eb:8f:01:53:1d:f6:19:24:42:b9:19: 0b:ff:b0:2e:ec:01:c5:bd:8d:f9:3c:62:4d:7e:90: 0b:78:43:e3:04:16:49:39:9c:8f:a8:36:d0:a4:05: 83:7f:8c:87:6d:43:2c:d6:08:37:c4:d7:8e:8c:8c: 68:ed:2c:9b:89:6e:6b:e7:95:2f:02:76:25:5b:30: fe:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E5:52:64:AC:E8:5D:CC:0B:C9:2A:63:1A:B3:FE:84:9A:11:4F:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28213861-cdcf-4cbc-93f0-1d2cf5e254a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.56.0/21 Signature Algorithm: sha256WithRSAEncryption 82:38:b9:a7:06:19:40:2b:0c:39:00:07:e3:79:da:19:93:c5: 11:0f:b6:3c:05:29:09:a1:21:f5:74:23:f4:93:36:ad:b1:fc: 73:f9:95:5f:2c:51:ff:71:49:df:cf:c9:91:79:31:48:9b:c4: 13:c4:a5:d9:24:3e:06:77:7f:b0:dd:18:4b:d7:de:73:96:99: 78:e5:47:f1:01:a5:df:1f:79:d6:4a:8b:0e:be:03:47:67:fa: 11:fb:6f:84:0e:ee:6d:0a:59:bd:2b:1c:42:d5:57:30:16:6c: e0:73:ff:df:ca:fc:ce:43:58:95:75:a7:5c:67:2d:4c:0d:be: b7:66:df:ff:98:45:ff:8f:40:b8:b9:31:f3:40:de:ea:73:ef: 29:ea:07:99:b6:16:c7:12:e8:7a:59:6d:a5:c9:43:c5:b9:9b: 8d:45:87:e2:2e:47:b9:e1:70:d1:9f:3f:c7:fc:51:cd:ee:4b: 95:ce:f7:49:27:f5:3f:29:02:df:b5:eb:6e:d7:5e:34:55:80: 69:b0:e7:2b:89:63:b7:c4:e7:05:97:3e:7c:61:65:ce:52:dc: d2:30:10:d0:c8:a7:32:4d:06:5d:43:ff:ce:93:0d:14:60:f1: aa:26:18:19:c3:28:83:15:47:82:de:c0:be:5f:f2:af:65:a6: 10:2c:40:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWfRBbRHZFOetCB+6ZFz8G+iQFNYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOTdiMWQwY2I5NjI1MjBmZmM5NTNiNDAyNzYwZTIxNTk4 NzIxYmEwZmMxOGY3OTJiMDRhMmVkYzI2MjE4ZWUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiZKLOFoSgYplSj7JR7tovm2vAsBcL2DBqLieJB8PWfu48 hDEVp5sGe5lOymndHaI6LQgTdi++0GdTP5j6/WnXBxvMURBeABQ7Tn9Vo2a/shp8 zumMZOU5jmc5APGEXXhFC2Czfkg7wTf52tGWj2EZ9JrrAI81hizVoN/S7Ga19p2+ Z6YM9a0a6TaCnQ2Oh+pKrM2bOiCDUIHQPgGvqHP5HVGFbQKqykNirSmhVjq3+xcB kPkT2nPrjwFTHfYZJEK5GQv/sC7sAcW9jfk8Yk1+kAt4Q+MEFkk5nI+oNtCkBYN/ jIdtQyzWCDfE146MjGjtLJuJbmvnlS8CdiVbMP5PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR+VSZKzoXcwLySpjGrP+hJoRT2UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4MjEzODYxLWNkY2YtNGNiYy05M2YwLTFkMmNmNWUyNTRhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOIEjgwDQYJKoZIhvcNAQELBQADggEBAII4uacGGUArDDkAB+N52hmTxREP tjwFKQmhIfV0I/STNq2x/HP5lV8sUf9xSd/PyZF5MUibxBPEpdkkPgZ3f7DdGEvX 3nOWmXjlR/EBpd8fedZKiw6+A0dn+hH7b4QO7m0KWb0rHELVVzAWbOBz/9/K/M5D WJV1p1xnLUwNvrdm3/+YRf+PQLi5MfNA3upz7ynqB5m2FscS6HpZbaXJQ8W5m41F h+IuR7nhcNGfP8f8Uc3uS5XO90kn9T8pAt+1627XXjRVgGmw5yuJY7fE5wWXPnxh Zc5S3NIwENDIpzJNBl1D/86TDRRg8aomGBnDKIMVR4LewL5f8q9lphAsQAA= -----END CERTIFICATE-----Generated at Thu May 9 01:25:23 2024 by rpki-client on console-fra.rpki-client.org