$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/399b4f0e-8822-48d9-9c9e-c82f55e2d4ca.roa File: 399b4f0e-8822-48d9-9c9e-c82f55e2d4ca.roa (raw, json) Hash identifier: NczNzBTFNok2J1yOPvWItDObmV+S1YxZ/KkJCbyLqF0= Subject key identifier: F3:A0:AA:D3:14:85:62:B8:10:B5:11:51:C3:09:29:6A:D1:8E:F5:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 336A7E5A0051A708632B82F933509ACEC78F1749 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/399b4f0e-8822-48d9-9c9e-c82f55e2d4ca.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 136.1.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:6a:7e:5a:00:51:a7:08:63:2b:82:f9:33:50:9a:ce:c7:8f:17:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=9c7110e3f61d4af8a33a2c2700a51ad9ade6071d7925b184a95eeff5ad30add7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:24:37:24:ef:2e:42:66:8b:dd:56:da:bc:44: f8:9b:ac:49:59:f0:57:39:1e:a2:f7:37:a3:98:56: 41:20:e0:f3:14:2f:0a:dd:04:ef:07:4c:ad:de:15: 12:92:30:79:4a:f5:c7:9a:91:40:8a:6f:c8:4f:6e: fc:4b:df:16:6b:9e:13:43:1f:64:fd:34:3e:b4:00: 95:f3:d3:d7:3a:80:d6:7f:ae:66:9f:ff:6d:b1:8e: 9e:fc:0b:2e:bf:28:1a:35:32:f1:fa:e4:d6:51:18: b2:5b:b9:ce:53:1b:cd:a1:40:f1:cf:fa:4b:85:ad: dd:6d:ca:1d:58:f5:d0:64:42:dd:6a:43:4f:aa:f0: c0:e3:55:9e:73:8a:af:ce:6e:0d:5c:0d:a5:0a:98: 2b:af:9c:2e:d1:6b:73:80:1c:f8:37:09:61:c7:e8: ce:25:cf:71:e9:df:b5:3b:57:88:f7:8c:9b:51:25: 1c:f4:de:cb:76:a4:e0:98:65:d6:da:4e:a8:b5:73: 43:60:81:f5:14:0b:ea:45:b7:a6:a5:bc:5d:98:fb: 1c:c8:d8:6e:b3:70:bc:6f:09:9e:d9:18:0b:1b:20: f5:10:70:95:39:cc:df:19:97:a6:29:7c:97:2c:b1: ed:b1:09:47:d9:0b:c4:f8:60:7c:99:09:04:5c:30: ba:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A0:AA:D3:14:85:62:B8:10:B5:11:51:C3:09:29:6A:D1:8E:F5:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/399b4f0e-8822-48d9-9c9e-c82f55e2d4ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.1.0.0/16 Signature Algorithm: sha256WithRSAEncryption 01:cc:f9:f9:12:20:16:6e:58:a5:af:73:ec:bb:70:45:7c:7f: 7f:17:79:47:a1:84:93:ea:d3:92:1c:8b:78:9c:7f:26:75:15: ba:e9:19:7a:de:94:85:1d:18:14:e0:8b:bd:16:c7:65:6c:ae: d4:ed:06:d2:58:a7:81:40:6b:2e:66:40:a1:95:d3:e2:68:b1: 93:bd:f2:3f:c7:78:32:9f:92:f6:00:63:2c:5f:a6:68:ee:71: 84:67:af:7e:52:70:64:c5:7f:69:1f:51:e6:42:c3:9d:68:ac: 24:de:d8:e3:8d:65:94:f5:72:5d:0e:c2:af:41:a2:fa:4c:51: 37:e0:2d:af:93:08:c6:3e:cc:aa:09:39:48:8f:2d:19:1c:c6: 56:3b:f6:fc:9f:7a:54:df:c5:88:a7:f6:aa:64:9d:4c:87:4c: ab:7f:e7:ec:50:2e:2a:b7:03:55:5a:17:c7:1d:76:47:17:12: eb:da:05:80:80:fc:a8:1c:aa:87:df:e1:e7:e9:0e:24:29:e6: ee:ff:f9:f0:3b:fe:ed:42:b8:e8:8c:33:07:f9:76:b9:93:56: c3:55:1a:cc:61:4b:2b:f5:aa:61:53:6c:97:11:8b:75:a3:6b: d0:d1:a1:7d:9e:a6:5a:76:77:db:d2:a6:3b:34:9f:48:3a:0d: 6f:b5:92:71 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUM2p+WgBRpwhjK4L5M1CazsePF0kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzcxMTBlM2Y2MWQ0YWY4YTMzYTJjMjcwMGE1MWFkOWFk ZTYwNzFkNzkyNWIxODRhOTVlZWZmNWFkMzBhZGQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6JDck7y5CZovdVtq8RPibrElZ8Fc5HqL3N6OYVkEg4PMU LwrdBO8HTK3eFRKSMHlK9ceakUCKb8hPbvxL3xZrnhNDH2T9ND60AJXz09c6gNZ/ rmaf/22xjp78Cy6/KBo1MvH65NZRGLJbuc5TG82hQPHP+kuFrd1tyh1Y9dBkQt1q Q0+q8MDjVZ5ziq/Obg1cDaUKmCuvnC7Ra3OAHPg3CWHH6M4lz3Hp37U7V4j3jJtR JRz03st2pOCYZdbaTqi1c0NggfUUC+pFt6alvF2Y+xzI2G6zcLxvCZ7ZGAsbIPUQ cJU5zN8Zl6YpfJcsse2xCUfZC8T4YHyZCQRcMLppAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU86Cq0xSFYrgQtRFRwwkpatGO9YowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM5OWI0ZjBlLTg4MjItNDhkOS05YzllLWM4MmY1NWUyZDRjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCIATANBgkqhkiG9w0BAQsFAAOCAQEAAcz5+RIgFm5Ypa9z7LtwRXx/fxd5 R6GEk+rTkhyLeJx/JnUVuukZet6UhR0YFOCLvRbHZWyu1O0G0lingUBrLmZAoZXT 4mixk73yP8d4Mp+S9gBjLF+maO5xhGevflJwZMV/aR9R5kLDnWisJN7Y441llPVy XQ7Cr0Gi+kxRN+Atr5MIxj7Mqgk5SI8tGRzGVjv2/J96VN/FiKf2qmSdTIdMq3/n 7FAuKrcDVVoXxx12RxcS69oFgID8qByqh9/h5+kOJCnm7v/58Dv+7UK46IwzB/l2 uZNWw1UazGFLK/WqYVNslxGLdaNr0NGhfZ6mWnZ329KmOzSfSDoNb7WScQ== -----END CERTIFICATE-----Generated at Thu May 2 11:33:13 2024 by rpki-client on console-fra.rpki-client.org