$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fe3c39b-0a87-4a0b-ae5d-23815273a71e.roa File: 2fe3c39b-0a87-4a0b-ae5d-23815273a71e.roa (raw, json) Hash identifier: QcuHySVRK50GdR8PCpSeyiRpifq9Xqs7B2IcvbuQo9M= Subject key identifier: 47:43:7E:5B:1F:C0:DA:0C:4C:40:56:69:0B:EA:83:01:50:95:F8:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3967374E12B742D11058BCA3D37202F0DEC8A50A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fe3c39b-0a87-4a0b-ae5d-23815273a71e.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 65.8.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:67:37:4e:12:b7:42:d1:10:58:bc:a3:d3:72:02:f0:de:c8:a5:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=355ade230256d77f413289b971de392c2a9eb735f8cdb653b060c23fbfa50b4a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cd:81:a9:c2:05:4a:1f:8f:d3:f4:7d:40:8d: 9e:59:30:fe:6c:bc:da:b5:e8:b1:23:79:58:af:b2: df:1a:8f:46:87:f6:53:39:4b:9f:5a:93:cd:9d:6a: 59:ed:62:b2:fb:71:b3:08:1a:d9:41:94:42:60:2d: 40:db:9a:3b:d5:fa:2d:5e:35:b2:de:3b:e0:8b:47: a2:76:08:8c:8c:44:1f:a4:e8:bc:d5:9b:37:a7:81: af:20:86:72:06:8c:10:60:33:e9:5d:1a:8a:4a:01: 83:40:03:eb:94:52:68:e8:32:14:a7:8d:9e:4c:b1: c1:23:28:11:93:09:37:6a:9c:59:56:de:57:b4:62: 50:fd:c1:b9:80:49:7c:34:b7:fb:79:21:59:34:64: c4:dd:98:25:75:17:13:1e:af:5f:11:f7:b3:fc:49: 0f:d6:c9:ee:ad:a5:bb:2b:bd:6a:30:11:e3:c4:34: 67:81:aa:5a:d7:5d:18:b8:b7:48:39:9e:8e:be:ab: b0:38:a9:64:0d:d9:d2:f7:1d:43:c1:d8:2e:cf:a9: 78:51:22:9a:31:f0:62:23:27:24:f9:67:ea:c3:f8: 49:e0:2b:77:6f:5a:3c:61:f4:83:59:1a:02:24:a1: 41:04:a9:d8:7e:04:ff:59:d4:e2:e2:e2:11:c6:f2: 44:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:43:7E:5B:1F:C0:DA:0C:4C:40:56:69:0B:EA:83:01:50:95:F8:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fe3c39b-0a87-4a0b-ae5d-23815273a71e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.8.0.0/14 Signature Algorithm: sha256WithRSAEncryption 1f:fc:ca:d3:6e:c5:2b:9d:50:79:5a:81:79:47:70:72:a6:cd: 31:9c:c9:d4:88:ac:a6:0e:4b:be:90:c2:54:97:78:ad:4b:b4: 55:e1:1f:71:e7:ab:cd:f2:d9:93:9d:3d:5a:65:56:df:96:d1: 86:c4:b3:e1:1f:04:01:bc:25:6b:91:73:1e:c5:14:77:d8:14: 37:92:ee:7d:ab:ec:80:ea:fb:09:3e:96:6c:79:11:68:4a:5e: a6:f5:b8:3f:6d:a2:0d:18:04:e4:de:c0:c8:69:d7:be:34:54: 37:76:4e:e0:46:e9:e3:81:81:9c:5d:03:d4:06:b6:6d:73:3e: b3:37:0b:be:04:59:31:c9:9f:c2:2e:0a:45:b3:e6:82:af:45: 81:ab:3c:70:b2:d1:79:4e:6d:83:42:93:41:d5:c1:b1:fb:9b: 5f:41:4e:9c:83:f8:0d:85:94:4d:eb:f4:7b:fe:4b:ea:6c:dc: 94:76:9a:46:5a:c5:07:3b:a6:cf:df:f6:97:c6:c5:62:8e:10: 50:b3:f6:8e:fd:c2:94:54:4b:e4:27:df:f9:be:83:56:e1:bc: 21:be:b1:7a:c5:58:65:b0:e2:37:5b:14:d1:9c:88:80:44:67: 08:58:6e:db:17:19:7d:bf:a1:0f:71:4c:fd:33:9c:b9:55:51: 9a:c9:dc:ba -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOWc3ThK3QtEQWLyj03IC8N7IpQowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTVhZGUyMzAyNTZkNzdmNDEzMjg5Yjk3MWRlMzkyYzJh OWViNzM1ZjhjZGI2NTNiMDYwYzIzZmJmYTUwYjRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAzYGpwgVKH4/T9H1AjZ5ZMP5svNq16LEjeVivst8aj0aH 9lM5S59ak82dalntYrL7cbMIGtlBlEJgLUDbmjvV+i1eNbLeO+CLR6J2CIyMRB+k 6LzVmzenga8ghnIGjBBgM+ldGopKAYNAA+uUUmjoMhSnjZ5MscEjKBGTCTdqnFlW 3le0YlD9wbmASXw0t/t5IVk0ZMTdmCV1FxMer18R97P8SQ/Wye6tpbsrvWowEePE NGeBqlrXXRi4t0g5no6+q7A4qWQN2dL3HUPB2C7PqXhRIpox8GIjJyT5Z+rD+Eng K3dvWjxh9INZGgIkoUEEqdh+BP9Z1OLi4hHG8kSzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUR0N+Wx/A2gxMQFZpC+qDAVCV+DMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmZTNjMzliLTBhODctNGEwYi1hZTVkLTIzODE1MjczYTcxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJBCDANBgkqhkiG9w0BAQsFAAOCAQEAH/zK027FK51QeVqBeUdwcqbNMZzJ 1Iispg5LvpDCVJd4rUu0VeEfceerzfLZk509WmVW35bRhsSz4R8EAbwla5FzHsUU d9gUN5LufavsgOr7CT6WbHkRaEpepvW4P22iDRgE5N7AyGnXvjRUN3ZO4Ebp44GB nF0D1Aa2bXM+szcLvgRZMcmfwi4KRbPmgq9Fgas8cLLReU5tg0KTQdXBsfubX0FO nIP4DYWUTev0e/5L6mzclHaaRlrFBzumz9/2l8bFYo4QULP2jv3ClFRL5Cff+b6D VuG8Ib6xesVYZbDiN1sU0ZyIgERnCFhu2xcZfb+hD3FM/TOcuVVRmsncug== -----END CERTIFICATE-----Generated at Thu May 9 01:25:24 2024 by rpki-client on console-fra.rpki-client.org