$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/285a48af-2ccd-4b1a-8f68-325b86119506.roa File: 285a48af-2ccd-4b1a-8f68-325b86119506.roa (raw, json) Hash identifier: uQmMPTq59HPw5Mlu3PQ/MwjMMDAa/loPT5O1+hfEOZ0= Subject key identifier: 8C:A0:81:96:7E:8F:47:11:4F:FB:57:95:08:FA:01:62:31:3E:30:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 316EFF21B1B69450A13FCCC65A3EECA2354448AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/285a48af-2ccd-4b1a-8f68-325b86119506.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 172.103.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:6e:ff:21:b1:b6:94:50:a1:3f:cc:c6:5a:3e:ec:a2:35:44:48:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=7c1e3580e9103d35e4a8e1ca0c7e36dc90e9e5968d58616184cd424f6b2bdb42, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:42:49:5e:4e:d7:74:3a:0d:a7:f1:73:62:fc: 90:35:d3:da:47:61:37:36:6a:d8:cd:05:10:11:28: 90:19:2a:54:83:82:cf:64:e8:e1:03:f7:5f:fc:bc: cd:cc:f5:f7:aa:4f:83:e8:80:1e:cb:59:78:7b:99: 6f:1c:37:f1:cb:e5:6b:21:9b:bd:c7:0b:71:4f:b5: 00:a0:84:5c:d7:66:65:4b:d3:cf:b2:c6:ee:d5:7e: 01:57:88:94:82:cc:9c:bc:46:48:7f:3f:2b:ee:76: 9b:f7:71:20:30:f7:f1:08:cf:2d:d2:41:0b:36:b9: c9:76:12:08:3e:db:a9:e6:4a:68:50:32:1f:93:22: 6c:8c:71:14:59:a4:ec:b9:bf:66:47:68:1c:75:79: 18:1f:ab:ff:f4:5e:83:be:f4:5d:80:99:d8:ee:2b: 34:36:e4:52:d4:79:8d:fa:8a:ba:45:e9:35:43:15: 90:f5:4c:71:d2:a6:3c:d7:8d:20:49:35:e8:eb:de: 3e:09:c0:b3:84:b1:6c:1c:1f:d9:98:c6:db:06:f7: 75:0d:c2:16:78:aa:60:82:e6:e1:6d:13:6b:d5:f3: b6:3f:ec:1f:64:53:b2:08:63:c6:2b:3f:0d:cc:4d: 08:c5:99:9e:93:bb:67:60:ee:78:fb:dc:99:d2:78: e3:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A0:81:96:7E:8F:47:11:4F:FB:57:95:08:FA:01:62:31:3E:30:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/285a48af-2ccd-4b1a-8f68-325b86119506.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.103.40.0/21 Signature Algorithm: sha256WithRSAEncryption 00:6f:26:a1:1e:2b:dc:89:99:3a:39:23:c4:81:4e:bc:b1:1e: ca:ee:44:5e:5b:85:6b:74:87:a6:ee:5c:5c:b1:a5:5a:06:59: cf:f1:a3:1f:a9:d1:7a:a6:f2:b6:34:68:24:b8:53:fb:a8:d3: 81:b5:2a:56:d6:e1:db:28:b7:4e:6c:d4:3a:1e:9e:22:b7:df: 92:65:7a:cd:d7:dd:c7:f5:d7:57:77:37:e3:97:29:9f:29:04: 1f:4b:29:cd:56:6c:9b:47:e7:93:16:d0:f9:c0:25:4a:ca:20: 9e:7b:8c:64:dd:54:8f:7c:43:96:57:00:eb:99:d4:2b:dc:0d: 04:fc:8f:a3:f6:d0:71:42:6d:2d:c5:25:0d:88:c6:d1:f0:2d: 5f:89:b0:2f:d9:bc:74:60:fb:fc:8f:cf:97:35:b3:3f:59:51: cd:1b:04:d4:d5:a0:19:74:81:27:32:c5:17:73:3f:31:83:a0: 71:1f:26:7a:93:3f:88:3a:0a:c3:35:f3:b1:1f:63:75:1b:6f: a2:5d:6a:0c:52:5a:27:f7:c7:07:08:63:c0:cf:32:b9:20:b9: c1:dc:93:a5:0e:42:c3:56:4c:47:42:29:64:f8:62:47:e7:0e: 95:9c:9e:42:41:8f:ab:74:0e:25:a0:40:65:aa:84:b4:16:9e: 07:d9:30:06 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMW7/IbG2lFChP8zGWj7sojVESKwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzFlMzU4MGU5MTAzZDM1ZTRhOGUxY2EwYzdlMzZkYzkw ZTllNTk2OGQ1ODYxNjE4NGNkNDI0ZjZiMmJkYjQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuQkleTtd0Og2n8XNi/JA109pHYTc2atjNBRARKJAZKlSD gs9k6OED91/8vM3M9feqT4PogB7LWXh7mW8cN/HL5Wshm73HC3FPtQCghFzXZmVL 08+yxu7VfgFXiJSCzJy8Rkh/Pyvudpv3cSAw9/EIzy3SQQs2ucl2Egg+26nmSmhQ Mh+TImyMcRRZpOy5v2ZHaBx1eRgfq//0XoO+9F2AmdjuKzQ25FLUeY36irpF6TVD FZD1THHSpjzXjSBJNejr3j4JwLOEsWwcH9mYxtsG93UNwhZ4qmCC5uFtE2vV87Y/ 7B9kU7IIY8YrPw3MTQjFmZ6Tu2dg7nj73JnSeONFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjKCBln6PRxFP+1eVCPoBYjE+MDIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4NWE0OGFmLTJjY2QtNGIxYS04ZjY4LTMyNWI4NjExOTUwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsZygwDQYJKoZIhvcNAQELBQADggEBAABvJqEeK9yJmTo5I8SBTryxHsru RF5bhWt0h6buXFyxpVoGWc/xox+p0Xqm8rY0aCS4U/uo04G1KlbW4dsot05s1Doe niK335Jles3X3cf111d3N+OXKZ8pBB9LKc1WbJtH55MW0PnAJUrKIJ57jGTdVI98 Q5ZXAOuZ1CvcDQT8j6P20HFCbS3FJQ2IxtHwLV+JsC/ZvHRg+/yPz5c1sz9ZUc0b BNTVoBl0gScyxRdzPzGDoHEfJnqTP4g6CsM187EfY3Ubb6JdagxSWif3xwcIY8DP MrkgucHck6UOQsNWTEdCKWT4YkfnDpWcnkJBj6t0DiWgQGWqhLQWngfZMAY= -----END CERTIFICATE-----Generated at Thu May 9 01:25:23 2024 by rpki-client on console-fra.rpki-client.org