$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34cfade7-a686-4f5b-b83c-db13755073f0.roa File: 34cfade7-a686-4f5b-b83c-db13755073f0.roa (raw, json) Hash identifier: TSz6iVbZpmd/ASrbVlB7G+7ecSj6OIxnehRQ6vD78gM= Subject key identifier: D1:E8:E5:A8:DB:FA:D9:0F:AE:BE:D6:68:20:FF:D7:EC:7E:F0:F9:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 10A865A9D1C5E243154824839B0B2D8A2031E8CD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34cfade7-a686-4f5b-b83c-db13755073f0.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 155.40.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a8:65:a9:d1:c5:e2:43:15:48:24:83:9b:0b:2d:8a:20:31:e8:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=be257d608a3a74fe9db6bf2ed6a54c20eb780b9a4cb55c3137377172defae6e3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e9:e5:e0:c0:aa:c6:fb:5e:7d:fd:11:8c:4b: 71:08:32:07:bd:d3:2c:4a:55:e6:bd:f7:f9:72:6d: 1d:b9:d5:bc:26:aa:d5:b0:6c:6a:25:43:20:a7:09: a4:07:f5:4a:50:ed:0f:56:09:3b:23:66:c7:d9:7d: cb:59:9d:7f:72:23:a7:93:94:d5:dd:ef:c6:36:33: 74:3c:b4:bd:3b:54:99:9e:02:ed:57:99:55:0b:b8: c7:bf:13:17:33:ce:25:c6:6a:79:64:85:25:f5:98: 27:37:2e:f8:ce:08:7a:61:b4:8e:6f:c3:6d:48:3b: bf:f7:5a:05:ac:5c:e2:91:90:52:32:6a:ab:ee:77: cd:25:f5:f4:ef:a8:d1:e5:e2:71:8e:13:8a:c4:58: d5:01:f4:69:4f:5d:f1:58:b1:e2:9d:90:81:f7:ca: 95:ee:66:ad:ad:a4:4d:a9:e9:aa:c7:43:67:63:f5: e8:09:6c:a9:4e:42:66:45:c5:1f:be:51:98:47:b0: 64:ca:a8:9f:35:29:78:7d:54:c6:c2:39:23:db:e2: 2d:c5:d8:aa:70:d0:95:02:ff:1a:c7:48:81:f4:a7: 7f:66:79:72:34:9d:7a:28:66:7d:e0:de:60:08:73: 97:dd:bd:bb:1c:2f:a2:ac:0f:89:80:03:06:16:44: 31:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E8:E5:A8:DB:FA:D9:0F:AE:BE:D6:68:20:FF:D7:EC:7E:F0:F9:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34cfade7-a686-4f5b-b83c-db13755073f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:e3:1d:98:ed:8a:54:2b:ac:ef:a0:dc:e0:17:cd:b2:e4:1d: 2d:29:28:c3:fa:fa:f3:6f:ed:fb:fc:da:0e:29:56:8f:42:54: 5a:f3:00:13:a6:b1:61:d3:ac:d8:d7:d8:b8:d4:6f:8d:c7:01: 07:4d:31:40:85:ab:07:10:62:de:9e:e5:fc:cd:b0:13:fd:e6: 0b:78:66:5d:44:ae:ae:db:4b:d3:07:0e:0c:e1:2e:c7:c1:1f: 04:64:e4:14:e9:db:c0:7e:c4:a7:6f:7d:7c:b1:b0:3b:06:7c: 35:f0:31:b3:83:12:4a:db:78:32:91:fa:0e:ed:f3:23:d0:52: 94:77:eb:14:98:91:02:7b:ba:32:a9:8c:f2:63:24:e5:28:5c: 7a:1c:26:6a:f4:ec:9d:c0:90:c8:a1:bd:59:ac:25:e1:b3:e4: 4b:06:ee:8f:07:92:3b:ee:f2:a8:aa:fe:cc:ea:99:a5:a4:56: a3:38:ce:8b:02:c0:d2:35:72:51:bd:e6:1e:73:c0:db:be:8b: 92:a9:07:b9:1d:93:96:a4:87:20:a5:04:4e:6d:d9:0b:6c:3c: ba:5c:ea:78:82:b7:2a:b8:91:60:c6:20:93:81:43:41:a4:8a: 24:8e:0c:c3:67:de:75:58:86:5f:ba:02:db:34:c5:7c:6c:d3: 0b:c0:8b:44 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEKhlqdHF4kMVSCSDmwstiiAx6M0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTI1N2Q2MDhhM2E3NGZlOWRiNmJmMmVkNmE1NGMyMGVi NzgwYjlhNGNiNTVjMzEzNzM3NzE3MmRlZmFlNmUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDT6eXgwKrG+159/RGMS3EIMge90yxKVea99/lybR251bwm qtWwbGolQyCnCaQH9UpQ7Q9WCTsjZsfZfctZnX9yI6eTlNXd78Y2M3Q8tL07VJme Au1XmVULuMe/ExczziXGanlkhSX1mCc3LvjOCHphtI5vw21IO7/3WgWsXOKRkFIy aqvud80l9fTvqNHl4nGOE4rEWNUB9GlPXfFYseKdkIH3ypXuZq2tpE2p6arHQ2dj 9egJbKlOQmZFxR++UZhHsGTKqJ81KXh9VMbCOSPb4i3F2Kpw0JUC/xrHSIH0p39m eXI0nXooZn3g3mAIc5fdvbscL6KsD4mAAwYWRDGLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0ejlqNv62Q+uvtZoIP/X7H7w+bAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM0Y2ZhZGU3LWE2ODYtNGY1Yi1iODNjLWRiMTM3NTUwNzNmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCbKDANBgkqhkiG9w0BAQsFAAOCAQEAeeMdmO2KVCus76Dc4BfNsuQdLSko w/r682/t+/zaDilWj0JUWvMAE6axYdOs2NfYuNRvjccBB00xQIWrBxBi3p7l/M2w E/3mC3hmXUSurttL0wcODOEux8EfBGTkFOnbwH7Ep299fLGwOwZ8NfAxs4MSStt4 MpH6Du3zI9BSlHfrFJiRAnu6MqmM8mMk5ShcehwmavTsncCQyKG9Wawl4bPkSwbu jweSO+7yqKr+zOqZpaRWozjOiwLA0jVyUb3mHnPA276LkqkHuR2TlqSHIKUETm3Z C2w8ulzqeIK3KriRYMYgk4FDQaSKJI4Mw2fedViGX7oC2zTFfGzTC8CLRA== -----END CERTIFICATE-----Generated at Thu May 2 05:26:19 2024 by rpki-client on console-fra.rpki-client.org