$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dee3f1a-6740-49ae-981e-1b2103f8f324.roa File: 3dee3f1a-6740-49ae-981e-1b2103f8f324.roa (raw, json) Hash identifier: XTey6qtnm0lGOrb3UmWtlvxxWH1TN9ot75Us6u9D4SU= Subject key identifier: 79:4D:DD:8B:C3:FF:8D:85:7E:8A:E2:DD:26:9B:1F:83:40:47:E7:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D849B8CD01D6B252FBDB5D41CE9D1BC1CE34491 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dee3f1a-6740-49ae-981e-1b2103f8f324.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 57.89.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:84:9b:8c:d0:1d:6b:25:2f:bd:b5:d4:1c:e9:d1:bc:1c:e3:44:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=7470b619fc4d5aeb412b73a63a69bcfb746e726951bb192a20bf605b7c506421, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d2:b3:ab:56:14:95:6a:4b:28:b2:15:20:f9: 5a:f2:d4:72:23:94:ed:2d:29:a9:09:02:ac:13:a6: 8f:b9:7f:82:f8:ef:e2:54:4c:5f:52:f1:ac:ba:a9: 8f:87:9c:c6:74:54:13:91:22:26:f1:b2:6c:ff:57: 7c:3d:1e:21:b0:d8:38:c0:4f:95:47:ba:25:08:26: 32:0c:ba:af:68:ce:32:74:ea:6d:aa:5d:a0:0e:56: 2d:4e:f7:62:2e:0a:0c:b8:d2:aa:ed:05:fb:03:34: 04:c5:bf:a3:82:90:02:2b:ae:c9:e5:d4:76:68:14: 9e:14:4c:c6:d2:c4:fb:e0:98:49:88:a5:f2:f8:4f: cf:1a:e0:eb:ca:a5:6b:cb:5c:26:b3:d7:63:3f:54: a6:de:43:d3:b2:81:39:42:21:f6:70:f8:d8:2b:00: d4:34:36:a4:46:f7:d4:8e:34:07:69:cc:46:39:30: 47:8d:ef:ea:c2:63:34:d9:63:ee:82:f5:74:3b:47: a7:74:44:0d:7c:e0:3c:3e:ba:07:d4:99:d4:40:2e: 31:77:77:2d:4c:10:40:38:c8:d8:3b:b3:f3:0a:93: 96:06:98:0d:e4:8e:1c:df:5e:89:d8:1e:24:f6:7a: b1:c7:57:d4:cf:6f:65:36:5e:b3:7a:08:72:ae:56: 8d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:4D:DD:8B:C3:FF:8D:85:7E:8A:E2:DD:26:9B:1F:83:40:47:E7:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dee3f1a-6740-49ae-981e-1b2103f8f324.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:c8:56:71:f8:76:73:ea:d0:5e:0d:f1:de:21:be:13:bd:76: 22:79:97:da:64:7a:8a:a4:d3:2e:10:a6:15:67:1f:c5:7c:8f: 8c:71:45:54:8f:1b:fa:58:78:7f:af:53:31:34:ee:ec:b1:dc: 49:6d:cd:c1:2c:cf:ff:03:9c:f6:15:cc:62:23:00:e9:2c:21: cc:ca:37:91:70:bb:f3:7f:4f:30:9a:25:ad:30:8a:b9:6f:6d: 2f:99:b5:1d:f5:75:1a:a5:2c:e0:2d:b2:4f:fc:d0:de:c6:13: 81:ef:c8:3d:07:fe:f7:b2:4e:2a:d0:98:66:c1:e0:a8:16:14: 49:7f:74:73:93:8a:fd:27:9c:8d:3b:12:d6:e2:5c:24:29:98: 3c:0e:4f:05:16:16:66:a9:ba:fb:c6:85:a4:de:09:80:27:ea: f1:97:27:24:40:ee:63:55:69:54:6b:b1:30:90:95:20:76:59: af:8a:46:db:67:7c:26:5b:f4:72:4a:40:4a:a6:1e:6d:10:90: da:e7:0d:09:b9:1e:01:86:f2:d2:19:26:f0:93:8d:ff:3a:3a: 5f:07:31:f4:85:01:53:db:94:9b:7a:ef:52:13:58:28:cb:81: dc:5e:ca:52:dd:ba:84:b8:9e:24:ac:5b:ce:f9:e7:a7:d9:fb: c8:dd:5f:1a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTYSbjNAdayUvvbXUHOnRvBzjRJEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDcwYjYxOWZjNGQ1YWViNDEyYjczYTYzYTY5YmNmYjc0 NmU3MjY5NTFiYjE5MmEyMGJmNjA1YjdjNTA2NDIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD0rOrVhSVaksoshUg+Vry1HIjlO0tKakJAqwTpo+5f4L4 7+JUTF9S8ay6qY+HnMZ0VBORIibxsmz/V3w9HiGw2DjAT5VHuiUIJjIMuq9ozjJ0 6m2qXaAOVi1O92IuCgy40qrtBfsDNATFv6OCkAIrrsnl1HZoFJ4UTMbSxPvgmEmI pfL4T88a4OvKpWvLXCaz12M/VKbeQ9OygTlCIfZw+NgrANQ0NqRG99SONAdpzEY5 MEeN7+rCYzTZY+6C9XQ7R6d0RA184Dw+ugfUmdRALjF3dy1MEEA4yNg7s/MKk5YG mA3kjhzfXonYHiT2erHHV9TPb2U2XrN6CHKuVo3nAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeU3di8P/jYV+iuLdJpsfg0BH568wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkZWUzZjFhLTY3NDAtNDlhZS05ODFlLTFiMjEwM2Y4ZjMyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5WTANBgkqhkiG9w0BAQsFAAOCAQEAQ8hWcfh2c+rQXg3x3iG+E712InmX 2mR6iqTTLhCmFWcfxXyPjHFFVI8b+lh4f69TMTTu7LHcSW3NwSzP/wOc9hXMYiMA 6SwhzMo3kXC7839PMJolrTCKuW9tL5m1HfV1GqUs4C2yT/zQ3sYTge/IPQf+97JO KtCYZsHgqBYUSX90c5OK/SecjTsS1uJcJCmYPA5PBRYWZqm6+8aFpN4JgCfq8Zcn JEDuY1VpVGuxMJCVIHZZr4pG22d8Jlv0ckpASqYebRCQ2ucNCbkeAYby0hkm8JON /zo6Xwcx9IUBU9uUm3rvUhNYKMuB3F7KUt26hLieJKxbzvnnp9n7yN1fGg== -----END CERTIFICATE-----Generated at Thu May 9 01:25:26 2024 by rpki-client on console-fra.rpki-client.org