$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4d0f55-3bb6-430a-8ccc-2c0cbf50d74a.roa File: 2a4d0f55-3bb6-430a-8ccc-2c0cbf50d74a.roa (raw, json) Hash identifier: Z70Ecfvo/4iqitKYE8bID9Ru7Gu4EJUkz8HPjuP+CtY= Subject key identifier: A2:F0:9C:42:DC:3C:9B:DC:37:DC:F3:C2:A7:5A:B9:73:16:0A:28:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26C7CB4DE5C6494EB88E7EDEED36E557315BD7F9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4d0f55-3bb6-430a-8ccc-2c0cbf50d74a.roa Signing time: Sat 20 Apr 2024 00:00:00 +0000 ROA not before: Sat 20 Apr 2024 00:00:00 +0000 ROA not after: Sat 25 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 146.206.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:c7:cb:4d:e5:c6:49:4e:b8:8e:7e:de:ed:36:e5:57:31:5b:d7:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 20 00:00:00 2024 GMT Not After : May 25 23:59:59 2024 GMT Subject: serialNumber=d88e88418a64849bd721acf816bf7c9fbd82edb7d791c117acf1b8e8902bdc66, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ae:bd:00:23:43:21:b5:85:de:a6:6d:0e:77: 38:a8:5a:60:21:0d:23:d5:52:21:93:40:4e:7e:43: 0f:16:20:cc:9a:d8:44:f8:56:cc:1c:33:40:7e:d0: 0a:5d:88:1f:a1:91:9b:d3:e2:82:77:8c:1d:9a:74: a0:e3:b1:cf:9d:81:37:ab:35:7b:33:22:91:2a:a1: 0e:a1:e8:24:d1:0d:5f:db:36:98:1f:0e:25:9e:66: 15:2c:81:8d:38:c8:d5:4b:18:91:26:f7:3d:4f:65: 50:4e:9c:62:85:70:47:70:91:cf:50:d0:e9:80:4e: e4:6c:82:9a:ce:f8:9d:55:56:08:53:a9:c8:92:f2: 40:46:95:4e:6a:c0:60:21:b7:4b:aa:e9:bb:df:38: f1:0d:e4:e6:a4:c3:c8:a0:ea:61:71:a6:f9:31:2e: dc:81:7d:00:e0:f2:15:ce:aa:e3:50:8d:cc:df:d0: 5e:fe:36:89:b2:7b:e5:b3:18:c2:03:3f:95:e0:dd: d8:f3:03:86:00:46:92:e1:cd:4c:3d:4e:fe:71:30: f9:0c:ae:53:08:b5:e7:0d:d2:64:e5:56:3d:cd:13: c1:23:6c:3b:e5:1c:ff:7c:c2:2f:6f:95:e9:4c:9b: 15:71:ed:e4:84:68:d8:37:58:bd:c6:ca:f3:9f:0e: 33:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F0:9C:42:DC:3C:9B:DC:37:DC:F3:C2:A7:5A:B9:73:16:0A:28:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4d0f55-3bb6-430a-8ccc-2c0cbf50d74a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.206.0.0/16 Signature Algorithm: sha256WithRSAEncryption 44:ee:ed:63:c3:bd:dc:6c:e5:c6:eb:d8:6e:69:0f:e1:46:c1: 25:fa:de:2d:01:c6:d6:84:bf:e4:9c:8a:63:3e:79:28:8a:49: 50:14:f7:79:f6:81:f4:b0:de:b7:fb:9f:2a:a9:25:36:a4:61: 73:d3:f5:88:94:5c:8a:14:d8:69:6b:41:42:01:a0:e4:20:a8: 90:01:78:e5:b9:ab:a4:eb:ee:b2:79:b3:43:33:f9:20:16:62: 31:94:c1:fa:3c:14:97:43:61:55:2f:2c:1e:12:f3:b8:ff:65: b3:e4:9e:ab:9e:8b:f0:8d:c0:71:09:0a:56:97:7f:79:1e:f8: ad:ae:e5:5b:10:06:15:44:72:6d:0f:f0:05:b2:48:fe:5e:f2: f2:29:5d:61:8f:5b:c6:e9:7f:48:e8:55:37:84:49:0c:1d:be: 17:61:c0:fe:51:f4:94:36:e6:6f:f5:e3:8c:93:2d:d6:bd:f7: f7:f9:cc:93:03:af:2e:53:55:34:93:ae:1e:36:52:29:57:09: 50:c4:85:c3:aa:3d:37:00:bb:91:cc:89:6e:dc:28:ab:6f:d1: 25:2d:b9:61:b7:24:5b:87:8f:b2:8c:1d:94:8d:3d:bd:52:dc: 0b:84:d7:ba:17:f7:37:04:1c:26:37:8f:5c:90:cc:d4:d0:8a: ae:ab:2c:93 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJsfLTeXGSU64jn7e7TblVzFb1/kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDIwMDAwMDAwWhcNMjQwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODhlODg0MThhNjQ4NDliZDcyMWFjZjgxNmJmN2M5ZmJk ODJlZGI3ZDc5MWMxMTdhY2YxYjhlODkwMmJkYzY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVrr0AI0MhtYXepm0OdzioWmAhDSPVUiGTQE5+Qw8WIMya 2ET4VswcM0B+0ApdiB+hkZvT4oJ3jB2adKDjsc+dgTerNXszIpEqoQ6h6CTRDV/b NpgfDiWeZhUsgY04yNVLGJEm9z1PZVBOnGKFcEdwkc9Q0OmATuRsgprO+J1VVghT qciS8kBGlU5qwGAht0uq6bvfOPEN5Oakw8ig6mFxpvkxLtyBfQDg8hXOquNQjczf 0F7+Nomye+WzGMIDP5Xg3djzA4YARpLhzUw9Tv5xMPkMrlMItecN0mTlVj3NE8Ej bDvlHP98wi9vlelMmxVx7eSEaNg3WL3GyvOfDjMJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUovCcQtw8m9w33PPCp1q5cxYKKAcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhNGQwZjU1LTNiYjYtNDMwYS04Y2NjLTJjMGNiZjUwZDc0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCSzjANBgkqhkiG9w0BAQsFAAOCAQEARO7tY8O93GzlxuvYbmkP4UbBJfre LQHG1oS/5JyKYz55KIpJUBT3efaB9LDet/ufKqklNqRhc9P1iJRcihTYaWtBQgGg 5CCokAF45bmrpOvusnmzQzP5IBZiMZTB+jwUl0NhVS8sHhLzuP9ls+Seq56L8I3A cQkKVpd/eR74ra7lWxAGFURybQ/wBbJI/l7y8ildYY9bxul/SOhVN4RJDB2+F2HA /lH0lDbmb/XjjJMt1r339/nMkwOvLlNVNJOuHjZSKVcJUMSFw6o9NwC7kcyJbtwo q2/RJS25YbckW4ePsowdlI09vVLcC4TXuhf3NwQcJjePXJDM1NCKrqsskw== -----END CERTIFICATE-----Generated at Thu May 2 11:33:12 2024 by rpki-client on console-fra.rpki-client.org