$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41241b60-7ab8-4677-9f4f-dc4402b95d0d.roa File: 41241b60-7ab8-4677-9f4f-dc4402b95d0d.roa (raw, json) Hash identifier: gc2MAYBA2DeTpr+v7b9xVtl7OubjGGctUA+DScDUPNw= Subject key identifier: 6A:D7:0A:99:96:2B:5F:72:ED:1E:58:45:31:E4:C7:58:DB:DC:24:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E2FB0AA9E76D767D6FD90C72CB970212C533CA4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41241b60-7ab8-4677-9f4f-dc4402b95d0d.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.221.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:2f:b0:aa:9e:76:d7:67:d6:fd:90:c7:2c:b9:70:21:2c:53:3c:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=a1d3edb306f845bf7bba47edbfd262df03f04eece979889b720b648c39e60e6d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0d:a4:9a:3b:db:e4:fb:90:7b:9f:ea:ec:54: 77:9e:93:31:fb:4c:72:b3:89:40:6f:55:6d:f0:5a: 82:4b:19:8d:9a:0e:d6:07:48:1e:4c:d5:e8:c3:7d: c0:bd:72:af:d4:9a:7c:b6:c1:0b:62:e4:4b:9b:30: 45:a9:ad:2e:cb:ca:00:b2:51:7e:cd:9c:b0:28:18: ed:1f:14:3d:a0:fb:1e:71:c4:02:de:d4:85:a3:0e: 4f:5d:5f:4b:d1:69:e7:e4:7b:fe:07:ef:0d:41:e0: c1:33:bf:ec:e1:38:76:41:00:02:86:7d:18:a6:d2: e2:b5:9a:89:ad:82:48:7e:6f:dc:be:b8:63:ad:52: 09:52:b7:1d:ac:7e:a2:e8:ad:cf:56:62:60:79:d6: 1d:11:06:5d:8c:7e:5a:6b:30:57:85:d4:1e:51:07: c1:74:05:e5:00:70:f2:5f:11:ce:25:a8:64:af:36: a6:0b:06:08:59:14:df:62:6d:28:8b:20:de:a4:b0: 55:df:7f:33:5f:ea:6c:b7:ea:b9:35:04:26:30:90: d8:0e:63:80:24:ff:a9:49:0b:9a:00:6c:de:f3:d5: 24:6f:18:4e:38:2e:fb:d2:10:32:67:ec:69:ca:25: 0f:b3:32:11:5a:ba:f8:67:e1:be:45:aa:77:9e:04: 76:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:D7:0A:99:96:2B:5F:72:ED:1E:58:45:31:E4:C7:58:DB:DC:24:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41241b60-7ab8-4677-9f4f-dc4402b95d0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.221.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:fd:f6:c1:3f:51:b8:34:1c:94:5a:e0:18:74:82:d2:da:69: 61:1a:a8:2a:b4:3d:af:c1:41:5b:0e:ea:fb:57:04:0f:b5:79: 31:ef:da:e3:6d:7e:70:9b:67:d4:49:f5:c8:28:0b:a8:05:4d: fb:fe:3b:41:ef:7e:db:b4:46:a9:f0:3a:09:9f:2a:b2:5a:61: 36:f9:ed:1c:f8:ea:ad:8c:39:ee:21:ee:54:c7:a2:54:99:fb: 03:ad:d6:f1:46:16:37:f3:34:1f:cf:17:fa:90:55:dc:67:f9: 25:44:25:5b:27:5f:ea:7b:70:87:de:78:1a:25:92:56:7a:ad: 9b:36:ae:5f:03:e0:f8:d2:0d:6c:a5:a3:ef:9b:19:17:ae:5d: 97:c0:88:03:3d:0c:64:e9:47:e0:fc:38:7b:de:9a:93:cf:84: ba:2f:5d:e4:91:8c:59:00:90:2c:5e:e6:f2:1c:0e:da:4f:59: ca:c1:3d:5e:db:eb:d4:78:56:c2:c6:eb:c0:3e:0c:df:21:8e: b7:8e:c1:96:47:60:02:c2:b1:6e:a7:b5:ff:a2:ff:64:94:3a: 94:20:8d:3e:9f:4d:12:f7:d9:4e:93:5d:33:58:6a:84:b8:79: 66:7c:95:cf:e5:31:8f:88:34:68:f2:ff:b4:81:f7:98:2b:f1: 65:35:81:75 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULi+wqp5212fW/ZDHLLlwISxTPKQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMWQzZWRiMzA2Zjg0NWJmN2JiYTQ3ZWRiZmQyNjJkZjAz ZjA0ZWVjZTk3OTg4OWI3MjBiNjQ4YzM5ZTYwZTZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqDaSaO9vk+5B7n+rsVHeekzH7THKziUBvVW3wWoJLGY2a DtYHSB5M1ejDfcC9cq/Umny2wQti5EubMEWprS7LygCyUX7NnLAoGO0fFD2g+x5x xALe1IWjDk9dX0vRaefke/4H7w1B4MEzv+zhOHZBAAKGfRim0uK1momtgkh+b9y+ uGOtUglStx2sfqLorc9WYmB51h0RBl2MflprMFeF1B5RB8F0BeUAcPJfEc4lqGSv NqYLBghZFN9ibSiLIN6ksFXffzNf6my36rk1BCYwkNgOY4Ak/6lJC5oAbN7z1SRv GE44LvvSEDJn7GnKJQ+zMhFauvhn4b5FqneeBHbtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUatcKmZYrX3LtHlhFMeTHWNvcJAkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxMjQxYjYwLTdhYjgtNDY3Ny05ZjRmLWRjNDQwMmI5NWQwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA43TANBgkqhkiG9w0BAQsFAAOCAQEAPf32wT9RuDQclFrgGHSC0tppYRqo KrQ9r8FBWw7q+1cED7V5Me/a421+cJtn1En1yCgLqAVN+/47Qe9+27RGqfA6CZ8q slphNvntHPjqrYw57iHuVMeiVJn7A63W8UYWN/M0H88X+pBV3Gf5JUQlWydf6ntw h954GiWSVnqtmzauXwPg+NINbKWj75sZF65dl8CIAz0MZOlH4Pw4e96ak8+Eui9d 5JGMWQCQLF7m8hwO2k9ZysE9Xtvr1HhWwsbrwD4M3yGOt47BlkdgAsKxbqe1/6L/ ZJQ6lCCNPp9NEvfZTpNdM1hqhLh5ZnyVz+Uxj4g0aPL/tIH3mCvxZTWBdQ== -----END CERTIFICATE-----Generated at Thu May 2 11:33:14 2024 by rpki-client on console-fra.rpki-client.org