$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32c9bdce-2cab-44a4-aae4-90c7e18b0978.roa File: 32c9bdce-2cab-44a4-aae4-90c7e18b0978.roa (raw, json) Hash identifier: 8B44BVnloDnh6vP7J475bgAUEFFDzhspfNxmrWB7DQw= Subject key identifier: EA:DA:E0:02:4B:3A:3D:AD:C9:BF:A3:72:39:F6:CD:7B:93:FC:76:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4AB6B5A6AA4F5B02CF0D4198791D77A58F28FD84 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32c9bdce-2cab-44a4-aae4-90c7e18b0978.roa Signing time: Sat 20 Apr 2024 00:00:00 +0000 ROA not before: Sat 20 Apr 2024 00:00:00 +0000 ROA not after: Sat 25 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:b6:b5:a6:aa:4f:5b:02:cf:0d:41:98:79:1d:77:a5:8f:28:fd:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 20 00:00:00 2024 GMT Not After : May 25 23:59:59 2024 GMT Subject: serialNumber=4f9ee9656980614f5e8f286f0f825f9d2aa8082ece09c4a78f3a58016f309ecf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5b:db:11:18:a9:00:57:92:99:8a:05:29:4d: 03:d5:e8:7f:cd:a1:81:0a:e6:d7:16:26:6a:9a:f6: 32:e1:3c:b0:42:05:af:94:c5:ac:a0:38:ac:9a:7d: 98:2b:6a:99:f2:f6:e5:de:6d:24:03:fb:a0:d6:7c: 14:c3:82:a5:e8:9f:e4:43:9f:f9:41:05:ef:df:92: ee:f2:5d:da:0b:a9:f2:c7:50:50:af:f4:b2:c2:23: e4:cd:7a:7c:38:63:ec:ec:43:e6:d0:cd:47:e6:ee: 10:59:23:36:81:2c:20:0e:d7:24:42:f7:37:66:ef: b1:8e:f6:fd:36:93:a2:71:0e:64:e5:0d:50:ba:90: 6a:67:d8:0f:3c:86:3b:08:0a:4b:2a:80:f4:15:57: 1f:4b:bf:42:24:40:6b:ab:b4:0b:4c:f6:6d:67:67: 77:65:ae:89:38:00:11:4d:11:65:ab:f2:9f:3d:3a: 8e:e5:b4:69:f6:33:60:b1:ff:bc:09:06:02:8b:44: 65:0b:9a:83:44:b4:e2:f8:7e:01:71:a8:38:07:1c: 4a:7e:be:02:47:bf:1d:4a:75:8e:8a:a0:1b:06:95: fa:7f:9d:e6:16:a6:9d:fd:e2:c7:b0:74:ad:88:e9: 01:23:f0:f4:b2:f6:36:86:c6:e5:9c:55:ea:21:21: 14:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:DA:E0:02:4B:3A:3D:AD:C9:BF:A3:72:39:F6:CD:7B:93:FC:76:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32c9bdce-2cab-44a4-aae4-90c7e18b0978.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.0.0/15 Signature Algorithm: sha256WithRSAEncryption 0e:92:3e:08:ed:bf:2e:5d:2d:c9:98:6e:56:2c:d5:31:40:6f: 6e:24:cc:7a:cb:db:1f:e3:76:c7:65:7d:6c:34:1c:74:a8:71: c8:fd:98:42:ac:3a:56:84:2f:38:72:9e:eb:59:b8:6b:f1:16: 21:f3:f8:c2:aa:cb:28:39:a4:40:08:ff:39:9e:eb:eb:b7:ba: 48:70:1c:d3:f9:a6:b8:39:e3:29:73:84:d8:30:37:9c:30:39: d5:8c:03:34:76:93:e8:77:e4:6d:02:9a:d2:d7:5a:df:1a:90: f8:bd:a6:04:05:bf:32:f0:92:15:81:00:0c:09:ca:a8:f8:be: dc:33:cb:e3:c9:01:e3:c4:19:04:11:0c:48:31:3b:b8:fb:c0: 46:74:98:50:c8:9f:3f:57:b6:a1:e8:af:75:72:82:93:d3:1d: 4a:b1:b2:d0:0b:c4:35:6a:30:53:bb:ce:ed:ad:79:23:23:99: 7d:fd:44:d5:88:1d:47:53:3b:b2:5d:19:d0:b5:aa:0a:c0:31: 73:d1:95:f9:4f:cc:80:ec:f1:56:22:f9:4c:f3:39:fb:0d:d9: d6:21:05:58:1a:95:65:e2:22:ef:31:58:c6:f6:06:f2:69:46: 15:f3:28:c9:4b:41:58:eb:4c:78:5e:fa:32:22:5d:d9:83:95: 74:e7:42:13 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSra1pqpPWwLPDUGYeR13pY8o/YQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDIwMDAwMDAwWhcNMjQwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjllZTk2NTY5ODA2MTRmNWU4ZjI4NmYwZjgyNWY5ZDJh YTgwODJlY2UwOWM0YTc4ZjNhNTgwMTZmMzA5ZWNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaW9sRGKkAV5KZigUpTQPV6H/NoYEK5tcWJmqa9jLhPLBC Ba+UxaygOKyafZgrapny9uXebSQD+6DWfBTDgqXon+RDn/lBBe/fku7yXdoLqfLH UFCv9LLCI+TNenw4Y+zsQ+bQzUfm7hBZIzaBLCAO1yRC9zdm77GO9v02k6JxDmTl DVC6kGpn2A88hjsICksqgPQVVx9Lv0IkQGurtAtM9m1nZ3dlrok4ABFNEWWr8p89 Oo7ltGn2M2Cx/7wJBgKLRGULmoNEtOL4fgFxqDgHHEp+vgJHvx1KdY6KoBsGlfp/ neYWpp394sewdK2I6QEj8PSy9jaGxuWcVeohIRSbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6trgAks6Pa3Jv6NyOfbNe5P8dm0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMyYzliZGNlLTJjYWItNDRhNC1hYWU0LTkwYzdlMThiMDk3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFODDANBgkqhkiG9w0BAQsFAAOCAQEADpI+CO2/Ll0tyZhuVizVMUBvbiTM esvbH+N2x2V9bDQcdKhxyP2YQqw6VoQvOHKe61m4a/EWIfP4wqrLKDmkQAj/OZ7r 67e6SHAc0/mmuDnjKXOE2DA3nDA51YwDNHaT6HfkbQKa0tda3xqQ+L2mBAW/MvCS FYEADAnKqPi+3DPL48kB48QZBBEMSDE7uPvARnSYUMifP1e2oeivdXKCk9MdSrGy 0AvENWowU7vO7a15IyOZff1E1YgdR1M7sl0Z0LWqCsAxc9GV+U/MgOzxViL5TPM5 +w3Z1iEFWBqVZeIi7zFYxvYG8mlGFfMoyUtBWOtMeF76MiJd2YOVdOdCEw== -----END CERTIFICATE-----Generated at Thu May 2 12:23:03 2024 by rpki-client on console-ams.rpki-client.org