$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f1da995-c8c4-438d-a159-8973f4d48e00.roa File: 2f1da995-c8c4-438d-a159-8973f4d48e00.roa (raw, json) Hash identifier: idR6HzIqyj5qNfDFwmY28iDjmlLOLYCgxPTTMpYWNyY= Subject key identifier: E0:E8:E8:FD:AE:55:ED:F2:7D:8C:60:AA:7E:81:06:E7:44:53:A9:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6868678B4EEA892B724BF8C108E9AAAEC26AA682 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f1da995-c8c4-438d-a159-8973f4d48e00.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 56.38.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:68:67:8b:4e:ea:89:2b:72:4b:f8:c1:08:e9:aa:ae:c2:6a:a6:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=eee25d1d7021f7b976059beadcdcca22a6427a67380a7cfe635ee889e8a0820d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ad:c9:a7:2c:c7:17:f7:88:cd:4f:41:47:67: 2f:0a:88:5a:b8:e1:49:fb:ef:69:6a:d4:07:83:8c: ff:e2:f7:4d:9d:21:52:7b:06:d7:cd:54:94:56:95: fd:f6:2f:2d:3b:19:52:cd:23:be:6c:e2:2b:84:e0: 88:06:cb:76:64:58:c0:2e:a3:3f:70:5b:9b:2b:75: eb:b9:b4:db:4b:2b:e7:c2:71:4c:c6:79:e8:32:0e: 65:7f:44:af:50:e8:94:ff:3b:51:0e:86:fa:fe:e6: a1:99:ef:9d:98:bf:df:c1:92:b0:a5:d9:eb:09:b0: ac:70:ae:63:63:65:75:8b:a7:be:5e:c5:18:d8:06: b8:89:0f:ca:42:5f:c7:f3:d7:a6:ae:4b:e9:6d:c8: 01:7f:90:19:2c:c0:22:02:a6:3b:28:e6:3c:7c:2d: 19:1b:b0:8a:e0:47:0d:61:d7:cf:cc:14:d8:87:de: 98:b9:60:cf:fb:53:c8:4a:c1:50:48:3c:b9:32:33: a2:2b:4e:a4:2f:82:eb:ac:a0:e2:c7:78:d4:1d:df: 43:f9:d5:20:b5:6f:e0:0c:56:03:27:5f:17:44:f5: 62:d7:8c:0b:56:81:ed:6c:d3:9d:eb:06:30:08:7d: c6:25:2e:26:8f:b0:9e:6d:04:c8:78:b3:9f:a8:82: db:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E8:E8:FD:AE:55:ED:F2:7D:8C:60:AA:7E:81:06:E7:44:53:A9:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f1da995-c8c4-438d-a159-8973f4d48e00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.38.0.0/16 Signature Algorithm: sha256WithRSAEncryption bc:35:ba:fb:18:28:70:61:aa:ea:fd:f8:4f:8f:71:e5:2c:c1: f5:d8:5a:ea:7f:dd:ed:ad:b6:cd:3e:dc:a2:df:fd:1a:9d:e2: 95:77:06:35:92:31:f3:ee:cd:2f:57:c1:95:77:03:88:5c:39: ea:29:a1:52:ff:7f:3a:14:35:c5:bf:7c:38:24:37:a2:11:b4: 33:71:4a:32:5d:d2:d6:a8:95:dc:2a:7c:30:cb:bd:97:69:dd: 45:eb:4d:3a:45:25:78:9a:57:27:dc:7f:0e:83:92:5d:82:d3: 38:bd:e8:54:c9:e3:fa:97:ec:51:13:e1:d8:51:47:14:3b:93: bf:aa:c1:f6:9c:fc:3f:bb:94:f6:17:f6:75:c5:11:34:f4:51: f0:d0:5a:dd:61:79:ba:60:e3:39:6e:6b:ff:b8:1c:a0:db:45: e4:b4:d4:bc:03:61:37:78:34:36:c1:f0:b6:c5:a6:51:49:e7: fc:74:65:fc:81:9c:b7:c1:f0:2e:ba:ae:f8:e2:4a:7a:d5:7a: 15:62:73:de:8d:5a:b5:20:e2:84:99:08:50:a8:e8:33:de:2b: b6:b7:76:05:b3:22:06:e2:6e:5e:65:b2:72:79:2f:af:c8:40: 5f:65:3e:3d:01:06:73:68:dd:e0:5f:d4:2f:89:62:0f:6a:15: a6:81:70:f4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaGhni07qiStyS/jBCOmqrsJqpoIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWUyNWQxZDcwMjFmN2I5NzYwNTliZWFkY2RjY2EyMmE2 NDI3YTY3MzgwYTdjZmU2MzVlZTg4OWU4YTA4MjBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChrcmnLMcX94jNT0FHZy8KiFq44Un772lq1AeDjP/i902d IVJ7BtfNVJRWlf32Ly07GVLNI75s4iuE4IgGy3ZkWMAuoz9wW5srdeu5tNtLK+fC cUzGeegyDmV/RK9Q6JT/O1EOhvr+5qGZ752Yv9/BkrCl2esJsKxwrmNjZXWLp75e xRjYBriJD8pCX8fz16auS+ltyAF/kBkswCICpjso5jx8LRkbsIrgRw1h18/MFNiH 3pi5YM/7U8hKwVBIPLkyM6IrTqQvguusoOLHeNQd30P51SC1b+AMVgMnXxdE9WLX jAtWge1s053rBjAIfcYlLiaPsJ5tBMh4s5+ogtvZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4Ojo/a5V7fJ9jGCqfoEG50RTqdowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmMWRhOTk1LWM4YzQtNDM4ZC1hMTU5LTg5NzNmNGQ0OGUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4JjANBgkqhkiG9w0BAQsFAAOCAQEAvDW6+xgocGGq6v34T49x5SzB9dha 6n/d7a22zT7cot/9Gp3ilXcGNZIx8+7NL1fBlXcDiFw56imhUv9/OhQ1xb98OCQ3 ohG0M3FKMl3S1qiV3Cp8MMu9l2ndRetNOkUleJpXJ9x/DoOSXYLTOL3oVMnj+pfs URPh2FFHFDuTv6rB9pz8P7uU9hf2dcURNPRR8NBa3WF5umDjOW5r/7gcoNtF5LTU vANhN3g0NsHwtsWmUUnn/HRl/IGct8HwLrqu+OJKetV6FWJz3o1atSDihJkIUKjo M94rtrd2BbMiBuJuXmWycnkvr8hAX2U+PQEGc2jd4F/UL4liD2oVpoFw9A== -----END CERTIFICATE-----Generated at Thu May 2 06:12:32 2024 by rpki-client on console-fra.rpki-client.org