$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a7ce71e-35db-4c5d-aef4-c8c75373f2d2.roa File: 2a7ce71e-35db-4c5d-aef4-c8c75373f2d2.roa (raw, json) Hash identifier: FrmGgiGJNLSHMirc7tgdkCoAZlNPuADtX5vLr+DQCoM= Subject key identifier: 33:47:1C:9D:9A:08:90:02:25:F7:50:7B:AD:35:5F:D8:C4:91:20:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25DFC08A5EA3CDE400F92BB6B73AD6BE2DA3A076 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a7ce71e-35db-4c5d-aef4-c8c75373f2d2.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 138.240.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:df:c0:8a:5e:a3:cd:e4:00:f9:2b:b6:b7:3a:d6:be:2d:a3:a0:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=bd998d32e1ce57d45a453986008c78fdff778cc5496fcd33c3e5007a3d3c937c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:86:ae:ab:b9:f4:e0:5f:e2:f7:0e:bf:35:a7: f6:03:dc:cf:41:7f:59:c2:72:49:59:ae:cd:f0:be: 67:df:f6:4f:10:20:64:c1:fa:a6:e9:7b:b0:b9:61: c0:4e:94:e5:fc:64:ed:1c:ff:09:a4:36:ef:f9:25: 3c:da:62:17:0b:41:b6:c5:d1:07:08:e4:7e:c7:84: a4:7b:b3:ff:82:b6:51:34:8b:88:a8:50:22:c7:6a: 30:cc:67:a2:56:1c:8f:17:00:79:5c:43:64:10:3f: e3:18:5e:3a:9c:69:1a:2a:c1:5a:a7:68:d5:0b:db: 23:fd:a3:bc:19:73:f3:95:04:b9:eb:50:77:a3:47: e2:2a:19:dd:e9:1f:e6:ff:b0:08:fb:9b:91:0c:fd: 81:e4:78:47:5b:65:a5:76:09:f4:30:d5:b0:af:bb: d1:28:21:b1:3d:74:49:db:71:d0:d5:dc:25:89:6b: 67:54:8e:13:2a:c9:fb:a3:34:ab:9c:1b:02:54:a6: d2:4f:6d:04:aa:d2:e4:6d:c5:b4:4f:40:3b:92:68: da:14:94:84:75:fb:9b:09:43:f0:ad:63:23:51:34: 64:91:f1:63:dd:94:3c:6f:81:9b:2a:82:18:ce:0f: 1f:d8:51:fd:c6:18:48:7d:8c:72:5a:51:14:b1:54: 73:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:47:1C:9D:9A:08:90:02:25:F7:50:7B:AD:35:5F:D8:C4:91:20:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a7ce71e-35db-4c5d-aef4-c8c75373f2d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.240.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:56:3a:1d:66:bb:16:fa:2d:cd:8f:6f:ee:79:f5:4e:46:ef: 3f:12:01:35:41:d9:c4:9e:8a:70:a3:70:24:21:24:cc:22:8d: a3:a0:fe:4e:16:b9:d4:76:a6:3f:dc:03:cd:17:35:d2:a1:c7: 54:7b:9b:c9:e5:4a:0b:40:8f:0c:71:b7:5f:60:6d:93:f7:62: af:80:a6:5a:d3:2d:7a:4a:53:af:d7:7b:fd:3c:c2:b1:d1:78: 67:dc:24:03:69:5f:b2:fc:b9:44:c0:ff:20:b8:2a:34:6e:42: 54:9e:53:70:e3:16:74:2e:01:0b:4c:03:11:ca:eb:56:32:aa: ed:ba:82:ca:fe:35:8c:0f:6d:1a:e4:83:4b:20:d7:30:d6:cf: 05:17:65:00:b8:c3:80:92:81:4c:05:69:85:bf:a8:4f:06:46: 7d:d3:b2:c8:75:ed:78:af:2f:ba:d1:73:ff:f0:a6:4c:1f:94: d3:c7:48:73:a2:63:67:a3:5e:94:dd:f1:0f:ef:3b:3c:44:7b: 79:ac:7e:20:53:ce:0d:d4:19:8f:2f:49:3b:8b:4c:06:e6:3f: a0:b8:68:24:b4:f4:3f:9d:30:4d:c0:d3:27:9b:1e:77:e5:7f: 1d:e5:dc:f9:e2:78:44:85:15:fb:73:38:de:cc:51:e1:5a:39: 88:2b:48:f6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJd/Ail6jzeQA+Su2tzrWvi2joHYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDk5OGQzMmUxY2U1N2Q0NWE0NTM5ODYwMDhjNzhmZGZm Nzc4Y2M1NDk2ZmNkMzNjM2U1MDA3YTNkM2M5MzdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCahq6rufTgX+L3Dr81p/YD3M9Bf1nCcklZrs3wvmff9k8Q IGTB+qbpe7C5YcBOlOX8ZO0c/wmkNu/5JTzaYhcLQbbF0QcI5H7HhKR7s/+CtlE0 i4ioUCLHajDMZ6JWHI8XAHlcQ2QQP+MYXjqcaRoqwVqnaNUL2yP9o7wZc/OVBLnr UHejR+IqGd3pH+b/sAj7m5EM/YHkeEdbZaV2CfQw1bCvu9EoIbE9dEnbcdDV3CWJ a2dUjhMqyfujNKucGwJUptJPbQSq0uRtxbRPQDuSaNoUlIR1+5sJQ/CtYyNRNGSR 8WPdlDxvgZsqghjODx/YUf3GGEh9jHJaURSxVHO5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUM0ccnZoIkAIl91B7rTVf2MSRIFIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhN2NlNzFlLTM1ZGItNGM1ZC1hZWY0LWM4Yzc1MzczZjJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCK8DANBgkqhkiG9w0BAQsFAAOCAQEAjVY6HWa7FvotzY9v7nn1TkbvPxIB NUHZxJ6KcKNwJCEkzCKNo6D+Tha51HamP9wDzRc10qHHVHubyeVKC0CPDHG3X2Bt k/dir4CmWtMtekpTr9d7/TzCsdF4Z9wkA2lfsvy5RMD/ILgqNG5CVJ5TcOMWdC4B C0wDEcrrVjKq7bqCyv41jA9tGuSDSyDXMNbPBRdlALjDgJKBTAVphb+oTwZGfdOy yHXteK8vutFz//CmTB+U08dIc6JjZ6NelN3xD+87PER7eax+IFPODdQZjy9JO4tM BuY/oLhoJLT0P50wTcDTJ5sed+V/HeXc+eJ4RIUV+3M43sxR4Vo5iCtI9g== -----END CERTIFICATE-----Generated at Thu May 9 15:19:24 2024 by rpki-client on console-fra.rpki-client.org