$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa File: 2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa (raw, json) Hash identifier: 98H+7PyMPAn1k0Bk5ehN8301jfgfBGcMhp14c3fSb+0= Subject key identifier: 60:97:D7:C4:11:10:DB:24:BF:E7:F7:3D:B4:9F:65:94:90:DB:1C:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B6DB3968D8025329FEB1FCEC50817625C63256A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.63.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:6d:b3:96:8d:80:25:32:9f:eb:1f:ce:c5:08:17:62:5c:63:25:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=987c8f9c187c68834550e135928be2b4e5a2fb01627de44fdc08f5ef5041c5e5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a1:6d:1d:18:72:06:31:21:a3:e9:f5:d7:4c: 72:2e:89:a6:c9:1f:a5:d3:08:56:79:14:c2:c0:d2: cf:33:ca:9a:76:d4:a8:8d:1b:a9:58:2e:ca:8a:ef: 8b:02:84:4f:c8:6e:c0:1d:f0:c9:d2:d0:67:f0:67: 2f:1f:93:46:bf:0e:5d:18:09:87:60:f2:ba:b0:4b: 11:f2:3e:ec:4e:25:b8:6a:c8:8f:21:18:62:49:21: 80:f3:1f:0d:06:c8:eb:32:2e:24:76:53:80:0c:40: e9:b0:d5:ed:f6:fa:6d:8d:18:d4:ca:81:01:95:df: 8b:85:2a:c2:8e:9a:92:b4:6b:84:32:ef:21:ca:4e: 01:3f:4b:d0:97:31:45:5c:db:fd:c7:49:84:d8:a0: 3f:5f:0c:c5:cc:21:cc:a4:f9:04:e1:20:6e:0e:e5: 82:bd:0f:f9:ff:9a:a5:27:2c:9f:76:bf:2a:3c:03: 4a:68:50:f8:63:f2:1b:0d:e2:78:20:2b:d4:db:13: 8a:d7:4f:56:e2:0f:9a:06:50:19:41:45:75:dc:31: c2:57:39:14:ed:50:91:e3:62:5f:c0:86:ab:51:f3: c3:94:3b:58:4c:4f:37:d3:c9:4c:18:8f:a9:d2:27: df:b6:53:8b:72:de:45:92:0e:fe:c6:3d:bb:6b:6d: b4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:97:D7:C4:11:10:DB:24:BF:E7:F7:3D:B4:9F:65:94:90:DB:1C:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.63.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:68:ae:2a:b8:c3:dc:62:bb:a1:d5:71:29:39:3e:2a:e6:39: 16:53:fe:97:9e:42:c6:3e:01:1c:ef:d5:b6:56:8f:27:25:3b: eb:26:d6:11:f6:a7:b3:26:96:63:1b:82:e4:0d:89:eb:b4:75: 7b:2b:90:0d:8f:2b:19:49:6b:2a:cd:ef:a6:cd:a0:0f:ba:a8: e7:a1:6e:27:11:f5:67:18:48:dd:27:c3:d7:e5:a9:4c:c3:f1: 7c:47:bc:85:32:9a:c8:e1:ef:a3:68:d2:43:01:a3:2d:34:be: 66:ee:c9:a4:97:79:22:93:94:da:4c:ae:35:a0:0d:76:8a:a2: 26:9a:3b:f3:dc:f5:75:58:e8:f5:f8:69:36:b7:bb:11:92:93: c4:69:b4:d6:81:9d:5a:34:07:b1:33:e9:0d:9a:e7:ed:21:38: b3:ec:15:25:0d:af:1c:ae:d6:1e:d4:cf:e9:f2:7d:f1:21:a4: 0f:91:cd:ed:32:df:8f:26:26:20:4e:8d:85:eb:87:81:ef:04: f9:f9:10:25:e0:11:92:40:4d:c2:ac:fe:96:dd:36:f1:92:b6: 28:df:90:b7:b6:80:9e:5e:6d:66:aa:50:89:ab:a2:2f:49:e4: e1:6b:e3:b8:06:59:58:55:00:a4:bf:d3:0e:e4:fd:14:47:da: 2a:25:e2:59 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUS22zlo2AJTKf6x/OxQgXYlxjJWowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODdjOGY5YzE4N2M2ODgzNDU1MGUxMzU5MjhiZTJiNGU1 YTJmYjAxNjI3ZGU0NGZkYzA4ZjVlZjUwNDFjNWU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1oW0dGHIGMSGj6fXXTHIuiabJH6XTCFZ5FMLA0s8zypp2 1KiNG6lYLsqK74sChE/IbsAd8MnS0GfwZy8fk0a/Dl0YCYdg8rqwSxHyPuxOJbhq yI8hGGJJIYDzHw0GyOsyLiR2U4AMQOmw1e32+m2NGNTKgQGV34uFKsKOmpK0a4Qy 7yHKTgE/S9CXMUVc2/3HSYTYoD9fDMXMIcyk+QThIG4O5YK9D/n/mqUnLJ92vyo8 A0poUPhj8hsN4nggK9TbE4rXT1biD5oGUBlBRXXcMcJXORTtUJHjYl/AhqtR88OU O1hMTzfTyUwYj6nSJ9+2U4ty3kWSDv7GPbtrbbSNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYJfXxBEQ2yS/5/c9tJ9llJDbHKcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhMjViY2IzLWNlNTctNDhkNy05YTlmLWU2OGE1YjI5NDNhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4PzANBgkqhkiG9w0BAQsFAAOCAQEAc2iuKrjD3GK7odVxKTk+KuY5FlP+ l55Cxj4BHO/VtlaPJyU76ybWEfansyaWYxuC5A2J67R1eyuQDY8rGUlrKs3vps2g D7qo56FuJxH1ZxhI3SfD1+WpTMPxfEe8hTKayOHvo2jSQwGjLTS+Zu7JpJd5IpOU 2kyuNaANdoqiJpo789z1dVjo9fhpNre7EZKTxGm01oGdWjQHsTPpDZrn7SE4s+wV JQ2vHK7WHtTP6fJ98SGkD5HN7TLfjyYmIE6NheuHge8E+fkQJeARkkBNwqz+lt02 8ZK2KN+Qt7aAnl5tZqpQiauiL0nk4WvjuAZZWFUApL/TDuT9FEfaKiXiWQ== -----END CERTIFICATE-----Generated at Thu May 2 11:33:12 2024 by rpki-client on console-fra.rpki-client.org