$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/282c8156-9284-4c57-8c12-e56f065648ae.roa File: 282c8156-9284-4c57-8c12-e56f065648ae.roa (raw, json) Hash identifier: qENMM/QbFgfDFKkS9BllXB+sF10P47DvmgXKo9d3d1s= Subject key identifier: B8:C1:B1:52:A2:15:10:F2:7E:06:9B:EF:64:E9:73:99:EE:CF:DA:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66DBAA64B06A0312261EC6CF8842BA2E294FAD75 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/282c8156-9284-4c57-8c12-e56f065648ae.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 129.239.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:db:aa:64:b0:6a:03:12:26:1e:c6:cf:88:42:ba:2e:29:4f:ad:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=d9b665d15272e184ed4a9f42a1d7c7e34674fd3087d515ef1d8f9d8e4b89a2ac, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:40:e9:33:83:cb:57:fb:85:6e:a0:e1:4e:a7: 73:d7:c4:cc:cb:85:c9:a1:7c:ef:8c:7a:54:09:8c: 5e:74:9f:a6:a8:46:30:b0:2f:e8:b3:c2:8c:30:08: 1f:f1:44:b4:62:02:d8:16:22:58:be:8d:95:94:d3: cb:d5:1f:34:68:c4:ca:d8:4b:6d:1e:11:e6:9f:38: 51:e7:22:e5:0f:79:a9:fb:d1:20:17:5c:a8:68:08: 75:ea:14:17:ab:65:a7:d2:b9:67:e0:21:c5:5e:79: 8a:c5:71:97:a4:e7:a6:3f:fb:4e:f6:90:b8:de:49: 87:6b:bd:67:49:21:7e:3c:88:19:34:7d:e1:e4:8b: e9:cc:39:f3:b0:e6:9f:53:a0:40:86:5b:16:cd:fc: 88:4e:26:a1:0d:70:2a:2e:0b:5e:06:7b:7b:32:01: c3:53:75:46:19:16:43:06:3a:40:f6:a5:85:8c:f8: 4e:a3:d1:ad:6a:6c:59:f6:87:18:f8:25:2b:26:9e: 47:7a:10:fd:cc:46:d3:0f:d0:28:b1:9c:59:99:88: ed:cc:ad:53:d5:94:c3:62:ec:31:00:be:e9:55:7b: 70:bc:fd:a4:d0:95:d3:c1:b9:0c:1f:a2:96:b9:88: 6d:93:8d:9f:55:38:df:f3:d0:59:9e:9d:b7:d9:59: 0e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C1:B1:52:A2:15:10:F2:7E:06:9B:EF:64:E9:73:99:EE:CF:DA:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/282c8156-9284-4c57-8c12-e56f065648ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.239.0.0/16 Signature Algorithm: sha256WithRSAEncryption 65:28:68:92:1d:95:e9:5f:5f:80:f6:05:48:15:b8:0f:55:1b: 6e:b6:be:45:31:b6:06:21:4a:d2:d7:68:f7:04:86:c4:6e:73: c2:01:b5:e4:63:39:73:b7:d1:a6:99:d0:9d:ac:90:90:83:ad: 0e:72:b7:ee:5d:21:11:12:99:c7:e5:fb:96:50:79:48:92:2e: d0:ac:55:f3:32:98:ab:fa:f6:47:00:b5:38:43:21:5e:0f:21: 67:63:95:f0:57:b0:95:72:2a:04:8d:8f:7b:a9:b0:27:68:c4: e0:e2:90:65:44:c9:09:40:5b:90:b4:1b:4e:19:d4:20:7a:bd: 7f:ec:8a:1b:5c:f1:94:6c:35:a5:e8:a5:96:a9:84:7b:a6:16: fb:04:86:dd:8f:1c:54:ef:a3:0e:1d:66:cc:8b:d4:f9:85:fe: 62:af:4e:fb:a6:ad:c6:99:d5:1c:55:fd:72:09:a8:2b:2c:76: a4:06:30:ef:dc:be:6b:8a:f5:47:b4:02:47:2f:53:0b:2c:bd: 2c:41:7c:7a:2b:84:2a:0e:da:10:6c:f7:4c:c4:ac:7f:64:d4: f6:de:a1:5a:5d:0d:38:01:10:b1:7d:7d:ac:23:af:6a:c6:3f: 32:e0:bf:b5:7b:a0:96:79:24:87:ac:87:57:45:06:54:43:b4: 64:6e:b8:82 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZtuqZLBqAxImHsbPiEK6LilPrXUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWI2NjVkMTUyNzJlMTg0ZWQ0YTlmNDJhMWQ3YzdlMzQ2 NzRmZDMwODdkNTE1ZWYxZDhmOWQ4ZTRiODlhMmFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuQOkzg8tX+4VuoOFOp3PXxMzLhcmhfO+MelQJjF50n6ao RjCwL+izwowwCB/xRLRiAtgWIli+jZWU08vVHzRoxMrYS20eEeafOFHnIuUPean7 0SAXXKhoCHXqFBerZafSuWfgIcVeeYrFcZek56Y/+072kLjeSYdrvWdJIX48iBk0 feHki+nMOfOw5p9ToECGWxbN/IhOJqENcCouC14Ge3syAcNTdUYZFkMGOkD2pYWM +E6j0a1qbFn2hxj4JSsmnkd6EP3MRtMP0CixnFmZiO3MrVPVlMNi7DEAvulVe3C8 /aTQldPBuQwfopa5iG2TjZ9VON/z0FmenbfZWQ5FAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuMGxUqIVEPJ+BpvvZOlzme7P2qUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4MmM4MTU2LTkyODQtNGM1Ny04YzEyLWU1NmYwNjU2NDhhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCB7zANBgkqhkiG9w0BAQsFAAOCAQEAZShokh2V6V9fgPYFSBW4D1Ubbra+ RTG2BiFK0tdo9wSGxG5zwgG15GM5c7fRppnQnayQkIOtDnK37l0hERKZx+X7llB5 SJIu0KxV8zKYq/r2RwC1OEMhXg8hZ2OV8FewlXIqBI2Pe6mwJ2jE4OKQZUTJCUBb kLQbThnUIHq9f+yKG1zxlGw1peillqmEe6YW+wSG3Y8cVO+jDh1mzIvU+YX+Yq9O +6atxpnVHFX9cgmoKyx2pAYw79y+a4r1R7QCRy9TCyy9LEF8eiuEKg7aEGz3TMSs f2TU9t6hWl0NOAEQsX19rCOvasY/MuC/tXuglnkkh6yHV0UGVEO0ZG64gg== -----END CERTIFICATE-----Generated at Thu May 2 08:50:55 2024 by rpki-client on console-fra.rpki-client.org