$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d6bc11d-b2d7-4fbb-8409-5107d85b669c.roa File: 2d6bc11d-b2d7-4fbb-8409-5107d85b669c.roa (raw, json) Hash identifier: aBFgjpuYSYUk1RGnEDbB2+wEw6nP8dJYWs1a8bvMKY4= Subject key identifier: 02:E0:C5:67:DB:60:0E:78:4C:7F:58:AD:D1:01:7B:AA:05:23:19:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D09BB12287A46C37CA0762ACCA0C5703383E221 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d6bc11d-b2d7-4fbb-8409-5107d85b669c.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 76.252.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:09:bb:12:28:7a:46:c3:7c:a0:76:2a:cc:a0:c5:70:33:83:e2:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=2bd33c4de2db5a8e6f5000698377232babfd75dd5a4d260287c356e823208997, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d9:52:a5:ec:cc:65:70:20:c8:ff:21:08:67: 09:7f:d7:ee:a8:e1:d6:71:19:d7:37:4d:71:5e:bc: b3:e7:53:09:10:69:36:93:11:57:99:44:fe:dc:37: 40:3a:17:7e:b1:f1:48:fc:2f:cc:a2:5b:54:de:eb: 5c:9f:b7:8e:53:6d:d7:b7:ae:e8:32:d2:37:b7:46: db:ee:bb:e4:ed:cc:da:2e:35:d2:92:dc:9b:fb:e4: 0c:34:2a:4b:01:67:0b:76:0d:4b:0a:30:08:58:e5: 1e:25:db:c6:02:f1:03:b5:59:d8:8f:bd:64:9a:49: 9a:0d:da:cf:1d:60:ba:a7:11:03:3f:58:bc:67:55: dd:33:24:ed:0d:2d:f9:e5:c7:a3:92:4b:96:5b:55: 3b:aa:c1:21:27:03:c4:28:21:87:c6:e5:1b:43:9e: 48:fa:6a:1f:28:54:ec:2f:11:7d:af:1e:94:8f:d9: 67:d1:e6:fd:a3:c9:ad:c2:41:d4:2f:b6:c3:b3:c8: e8:58:ca:32:9c:66:fa:d2:97:5d:b3:12:b2:c0:6c: f2:21:02:87:88:12:6f:09:ca:78:2b:80:0b:ef:a0: 00:e0:ee:8e:9f:9c:d5:ad:04:05:07:0b:b9:d8:6c: 3b:ac:ef:6a:a6:d4:fc:1e:58:ba:56:61:98:e8:d6: 97:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E0:C5:67:DB:60:0E:78:4C:7F:58:AD:D1:01:7B:AA:05:23:19:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d6bc11d-b2d7-4fbb-8409-5107d85b669c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.252.0.0/18 Signature Algorithm: sha256WithRSAEncryption 38:83:2b:ea:28:b8:c6:25:e9:b5:aa:3d:bd:7c:71:14:b9:e3: e5:c2:8d:ff:fa:98:8c:ea:7d:35:f6:5e:46:7a:14:b8:ae:1f: 42:a2:57:68:08:5e:36:12:e4:9f:aa:2c:37:eb:90:52:5e:d6: 8c:55:95:c9:aa:fc:c6:b8:22:0b:75:be:bc:7c:ad:7b:3c:cc: e9:a3:dd:86:b6:19:60:b0:40:f3:c3:54:24:a4:f2:19:52:e7: e5:0a:cd:2b:b6:29:50:bb:3d:34:b4:d1:e7:d8:fb:16:b0:22: 76:05:45:8d:57:71:2b:a6:1d:36:0c:84:ff:78:8a:d1:c4:64: 38:80:a6:ee:f8:6a:fa:32:3d:e5:3f:d0:7f:1c:13:fe:7d:4d: f1:5b:b6:a3:ee:14:2a:3a:7c:03:19:4b:f8:fb:b3:e6:8c:be: 52:6d:5e:2d:8b:01:1c:93:0c:ef:1b:80:a3:08:d8:3a:3d:aa: f8:96:ae:2e:d2:0e:91:d2:58:03:8a:9b:89:7b:04:86:68:8e: 29:ee:04:39:7f:53:96:74:ce:fb:81:b6:74:41:d8:4e:ed:65: c0:45:58:f5:fa:bd:95:f0:bf:39:65:66:1d:5b:46:2b:38:30: cb:1f:05:9e:eb:e9:a3:e4:c5:5d:60:85:1b:f7:6a:b4:62:de: 9e:ef:37:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDQm7Eih6RsN8oHYqzKDFcDOD4iEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmQzM2M0ZGUyZGI1YThlNmY1MDAwNjk4Mzc3MjMyYmFi ZmQ3NWRkNWE0ZDI2MDI4N2MzNTZlODIzMjA4OTk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH2VKl7MxlcCDI/yEIZwl/1+6o4dZxGdc3TXFevLPnUwkQ aTaTEVeZRP7cN0A6F36x8Uj8L8yiW1Te61yft45Tbde3rugy0je3Rtvuu+TtzNou NdKS3Jv75Aw0KksBZwt2DUsKMAhY5R4l28YC8QO1WdiPvWSaSZoN2s8dYLqnEQM/ WLxnVd0zJO0NLfnlx6OSS5ZbVTuqwSEnA8QoIYfG5RtDnkj6ah8oVOwvEX2vHpSP 2WfR5v2jya3CQdQvtsOzyOhYyjKcZvrSl12zErLAbPIhAoeIEm8JyngrgAvvoADg 7o6fnNWtBAUHC7nYbDus72qm1PweWLpWYZjo1pdjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAuDFZ9tgDnhMf1it0QF7qgUjGZYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkNmJjMTFkLWIyZDctNGZiYi04NDA5LTUxMDdkODViNjY5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZM/AAwDQYJKoZIhvcNAQELBQADggEBADiDK+oouMYl6bWqPb18cRS54+XC jf/6mIzqfTX2XkZ6FLiuH0KiV2gIXjYS5J+qLDfrkFJe1oxVlcmq/Ma4Igt1vrx8 rXs8zOmj3Ya2GWCwQPPDVCSk8hlS5+UKzSu2KVC7PTS00efY+xawInYFRY1XcSum HTYMhP94itHEZDiApu74avoyPeU/0H8cE/59TfFbtqPuFCo6fAMZS/j7s+aMvlJt Xi2LARyTDO8bgKMI2Do9qviWri7SDpHSWAOKm4l7BIZojinuBDl/U5Z0zvuBtnRB 2E7tZcBFWPX6vZXwvzllZh1bRis4MMsfBZ7r6aPkxV1ghRv3arRi3p7vNx8= -----END CERTIFICATE-----Generated at Thu May 2 08:50:56 2024 by rpki-client on console-fra.rpki-client.org