$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41d8f17f-253c-4de5-9e72-2c25b82d8db8.roa File: 41d8f17f-253c-4de5-9e72-2c25b82d8db8.roa (raw, json) Hash identifier: 9oj9RKsr7pMQyKkl7sXnNiNtqbz2rI8gd4vdBGdKEBI= Subject key identifier: 50:49:06:3F:10:B4:67:D8:D0:35:70:EA:1F:D6:8B:36:55:B5:F4:3D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FD039522F6696AFEC5798B1223CF926774C3854 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41d8f17f-253c-4de5-9e72-2c25b82d8db8.roa Signing time: Tue 16 Apr 2024 00:00:00 +0000 ROA not before: Tue 16 Apr 2024 00:00:00 +0000 ROA not after: Tue 21 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.176.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d0:39:52:2f:66:96:af:ec:57:98:b1:22:3c:f9:26:77:4c:38:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:00 2024 GMT Not After : May 21 23:59:59 2024 GMT Subject: serialNumber=41f88dd126f704a532a6cc8f5d7e41f601bcb6994314b1b34d8b3ef5be38a158, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5f:0e:98:f5:38:69:bb:84:19:0b:6e:63:82: bc:69:96:52:45:53:4b:a2:35:2a:49:34:5b:88:09: f1:c9:5a:dc:55:b6:4e:89:5c:77:38:89:33:7e:de: e2:88:e8:e2:19:84:2b:83:61:5f:d0:78:e8:5f:c9: db:6e:2e:62:56:65:21:28:49:f9:1d:60:d0:58:1e: 2a:db:4f:e0:4b:5a:24:a9:64:db:0f:81:9e:d2:2d: 98:5c:83:00:a7:31:86:62:df:ff:23:e1:32:b8:40: 4e:79:32:15:9a:fe:4f:82:43:9d:8b:58:cd:b3:84: c8:17:36:c8:92:b2:b9:f7:04:5b:50:7f:dd:83:7a: 5b:23:b0:ec:29:08:53:f2:9c:10:26:de:d9:ec:5d: c6:ad:1d:07:60:e2:f2:d1:5f:1e:0b:d9:20:f1:b6: 6a:8d:a5:d7:35:67:77:e4:49:b2:0f:d5:cc:06:dc: 79:aa:b3:48:e6:1f:6f:00:cb:b1:fa:8d:1c:39:92: 14:af:40:91:c0:e3:47:ff:0b:4c:f9:6d:67:6f:c3: 1a:0b:c5:ff:73:a6:b3:2f:e1:9f:09:49:bb:b9:57: ee:aa:9d:9f:a5:a7:0c:72:56:3b:31:9a:3c:3f:16: 10:28:c0:99:ba:d4:79:ce:03:c2:6a:97:0c:1e:99: 52:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:49:06:3F:10:B4:67:D8:D0:35:70:EA:1F:D6:8B:36:55:B5:F4:3D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41d8f17f-253c-4de5-9e72-2c25b82d8db8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.176.0.0/16 Signature Algorithm: sha256WithRSAEncryption 31:57:3e:d2:fd:0c:8a:9e:79:da:6c:6a:69:4a:78:6d:24:1d: f8:0b:a2:e4:06:5c:31:61:79:78:8b:02:c6:92:d2:da:87:b0: 1e:3f:63:13:43:56:17:f2:c9:db:a0:05:03:d4:46:1c:f7:e6: 0b:d8:d3:ad:81:ec:63:17:54:15:44:6b:ea:c2:dc:0a:0f:30: c1:db:6e:86:52:de:eb:d1:55:da:e9:b9:f3:15:05:a8:16:63: 1b:14:10:7c:25:3d:24:48:4c:88:02:f6:3c:48:39:60:6d:83: 4f:db:61:18:b5:3d:35:88:bf:d9:fe:64:e3:95:5a:5c:40:99: 1c:12:14:e3:49:fb:58:e6:70:2b:e0:1c:d3:a6:74:0f:f8:f3: 5e:6d:8e:b4:96:b5:05:5b:9a:47:75:3b:93:2c:4d:f3:5d:0e: be:d9:3c:e5:da:de:a8:21:8b:a2:7a:7f:a8:50:a9:e7:c7:32: 35:eb:e1:e7:df:bd:74:24:9d:8a:22:0f:a8:c2:23:62:54:47: 15:10:14:74:e3:dd:5f:59:70:65:8e:7c:9a:53:45:cc:f9:42: 75:b9:8f:41:20:ac:1a:7f:9b:1b:05:1a:33:bf:25:11:66:73: 67:6e:62:e8:bd:ca:cc:37:8b:a7:ff:88:70:03:7d:5c:c9:89: 0b:bf:a0:92 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUL9A5Ui9mlq/sV5ixIjz5JndMOFQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE2MDAwMDAwWhcNMjQwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MWY4OGRkMTI2ZjcwNGE1MzJhNmNjOGY1ZDdlNDFmNjAx YmNiNjk5NDMxNGIxYjM0ZDhiM2VmNWJlMzhhMTU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHXw6Y9Thpu4QZC25jgrxpllJFU0uiNSpJNFuICfHJWtxV tk6JXHc4iTN+3uKI6OIZhCuDYV/QeOhfydtuLmJWZSEoSfkdYNBYHirbT+BLWiSp ZNsPgZ7SLZhcgwCnMYZi3/8j4TK4QE55MhWa/k+CQ52LWM2zhMgXNsiSsrn3BFtQ f92DelsjsOwpCFPynBAm3tnsXcatHQdg4vLRXx4L2SDxtmqNpdc1Z3fkSbIP1cwG 3Hmqs0jmH28Ay7H6jRw5khSvQJHA40f/C0z5bWdvwxoLxf9zprMv4Z8JSbu5V+6q nZ+lpwxyVjsxmjw/FhAowJm61HnOA8JqlwwemVLLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUEkGPxC0Z9jQNXDqH9aLNlW19D0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxZDhmMTdmLTI1M2MtNGRlNS05ZTcyLTJjMjViODJkOGRiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAosDANBgkqhkiG9w0BAQsFAAOCAQEAMVc+0v0Mip552mxqaUp4bSQd+Aui 5AZcMWF5eIsCxpLS2oewHj9jE0NWF/LJ26AFA9RGHPfmC9jTrYHsYxdUFURr6sLc Cg8wwdtuhlLe69FV2um58xUFqBZjGxQQfCU9JEhMiAL2PEg5YG2DT9thGLU9NYi/ 2f5k45VaXECZHBIU40n7WOZwK+Ac06Z0D/jzXm2OtJa1BVuaR3U7kyxN810Ovtk8 5dreqCGLonp/qFCp58cyNevh59+9dCSdiiIPqMIjYlRHFRAUdOPdX1lwZY58mlNF zPlCdbmPQSCsGn+bGwUaM78lEWZzZ25i6L3KzDeLp/+IcAN9XMmJC7+gkg== -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:48 2024 by rpki-client on console-fra.rpki-client.org