$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/386f74be-c953-4ed6-808b-5f23e8a0a6de.roa File: 386f74be-c953-4ed6-808b-5f23e8a0a6de.roa (raw, json) Hash identifier: FlPnbdUVWAE8rylB1HcrJyOzz3v7zOD7PcU+X08nlNA= Subject key identifier: 9E:0F:6E:29:B8:B6:94:0B:DD:ED:0D:59:15:FC:40:83:02:E6:B6:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4ED42129FEFB40D7CE2F35B344931F7AB1B7B1E3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/386f74be-c953-4ed6-808b-5f23e8a0a6de.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 172.103.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d4:21:29:fe:fb:40:d7:ce:2f:35:b3:44:93:1f:7a:b1:b7:b1:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=e7981a1794a0e8fecefb60ef519665ebd03b50f67511ebda6fa4df8674c276f2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a3:5c:64:b0:c0:a6:49:f3:28:08:29:b9:c1: 44:b8:d5:52:6c:f6:da:39:99:d5:be:df:73:9d:b1: 39:2b:f0:86:20:89:95:1c:39:eb:7f:51:0a:79:59: af:c4:8f:e8:04:53:0e:43:63:35:60:88:10:ef:f6: 24:ad:59:19:d2:59:ca:ab:88:f0:69:82:ca:dc:02: 6d:6c:04:6d:c3:31:8a:92:dc:94:e6:64:a2:1d:0a: d7:7e:ad:55:10:ca:c4:d0:5e:f6:7d:b4:22:d2:46: 49:f1:0d:ad:aa:cf:bd:c2:51:cb:85:4e:f8:7e:f1: 14:64:92:3b:40:a7:89:34:6e:e9:f1:f4:a2:f7:9b: 8e:10:35:fc:29:75:4b:de:6c:77:e3:c0:00:72:80: 8e:e4:5e:af:88:c6:07:4f:7d:70:d7:02:ae:04:6e: 10:62:67:85:60:3f:28:a5:5f:96:e8:f7:f1:f4:64: 6e:6f:ab:64:bd:da:40:c2:bd:d8:48:0a:a5:98:b4: e6:9f:23:8d:e8:07:a2:1c:e5:66:fa:37:8e:e8:f7: e4:ae:fa:46:4f:30:e8:bd:83:ef:6d:5b:e5:ec:a9: 31:d7:95:0f:d2:c5:01:ab:15:db:65:50:89:9a:c7: f5:f5:79:2c:f0:88:1a:5f:30:58:2a:0f:c5:02:3a: 2a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0F:6E:29:B8:B6:94:0B:DD:ED:0D:59:15:FC:40:83:02:E6:B6:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/386f74be-c953-4ed6-808b-5f23e8a0a6de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.103.40.0/21 Signature Algorithm: sha256WithRSAEncryption b9:80:5a:c5:82:33:c6:3d:74:3e:ea:83:67:ae:8a:4c:03:d6: b6:de:49:f0:57:78:5d:1b:68:0b:6c:32:70:c3:1c:c1:76:62: 75:62:f0:83:65:33:0b:1c:22:01:6e:ec:c2:97:e8:ac:1d:1c: 5d:a6:95:90:81:b0:03:b0:c4:f6:b1:94:ee:26:46:2f:ba:36: 75:5b:63:b4:38:b9:a3:92:34:4d:c9:d0:bb:74:d5:ba:07:cf: 0b:9e:53:2c:0f:59:95:f6:c2:4d:8f:d0:c8:d0:40:ee:1c:ba: 8a:a3:93:e8:e5:95:18:d6:70:19:e4:c3:1d:cc:53:71:05:93: 63:ed:0e:93:79:cc:78:ce:b2:5b:f3:3b:a9:5e:98:e3:7d:9d: a2:e0:c3:fa:96:5c:57:55:7b:1d:98:4d:17:19:03:ed:19:9c: a5:79:ed:30:0d:51:f5:9b:4c:a8:23:26:48:9f:5a:1c:d4:6e: 91:f9:aa:51:07:7e:b5:43:f9:a0:33:5d:89:4f:b6:2d:96:9e: 7c:83:58:b5:b7:55:6b:36:74:bd:72:2c:6b:4b:46:b4:ff:e0: b3:c4:07:48:0a:e1:8a:77:e7:d0:3f:69:f9:73:31:1d:36:44: 33:51:e5:9a:e0:86:66:6b:6b:1b:02:be:10:62:45:95:e7:7e: 91:da:fe:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTtQhKf77QNfOLzWzRJMferG3seMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzk4MWExNzk0YTBlOGZlY2VmYjYwZWY1MTk2NjVlYmQw M2I1MGY2NzUxMWViZGE2ZmE0ZGY4Njc0YzI3NmYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmo1xksMCmSfMoCCm5wUS41VJs9to5mdW+33OdsTkr8IYg iZUcOet/UQp5Wa/Ej+gEUw5DYzVgiBDv9iStWRnSWcqriPBpgsrcAm1sBG3DMYqS 3JTmZKIdCtd+rVUQysTQXvZ9tCLSRknxDa2qz73CUcuFTvh+8RRkkjtAp4k0bunx 9KL3m44QNfwpdUvebHfjwABygI7kXq+IxgdPfXDXAq4EbhBiZ4VgPyilX5bo9/H0 ZG5vq2S92kDCvdhICqWYtOafI43oB6Ic5Wb6N47o9+Su+kZPMOi9g+9tW+XsqTHX lQ/SxQGrFdtlUImax/X1eSzwiBpfMFgqD8UCOio9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUng9uKbi2lAvd7Q1ZFfxAgwLmtjMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4NmY3NGJlLWM5NTMtNGVkNi04MDhiLTVmMjNlOGEwYTZkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsZygwDQYJKoZIhvcNAQELBQADggEBALmAWsWCM8Y9dD7qg2euikwD1rbe SfBXeF0baAtsMnDDHMF2YnVi8INlMwscIgFu7MKX6KwdHF2mlZCBsAOwxPaxlO4m Ri+6NnVbY7Q4uaOSNE3J0Lt01boHzwueUywPWZX2wk2P0MjQQO4cuoqjk+jllRjW cBnkwx3MU3EFk2PtDpN5zHjOslvzO6lemON9naLgw/qWXFdVex2YTRcZA+0ZnKV5 7TANUfWbTKgjJkifWhzUbpH5qlEHfrVD+aAzXYlPti2WnnyDWLW3VWs2dL1yLGtL RrT/4LPEB0gK4Yp359A/aflzMR02RDNR5ZrghmZraxsCvhBiRZXnfpHa/sc= -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:09 2024 by rpki-client on console-fra.rpki-client.org