$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa File: 42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa (raw, json) Hash identifier: Vt+ebtL21DmVVV8xc447DCnu09jDzeayoAugQ8S5Bhg= Subject key identifier: 77:E8:3C:64:C5:ED:59:84:50:56:03:E2:74:9A:2F:50:45:D9:79:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 133738BE032B981A15D7963B3A334A0DC02EB3FE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 40.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:37:38:be:03:2b:98:1a:15:d7:96:3b:3a:33:4a:0d:c0:2e:b3:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=08c2dbd3f83a31d5afbd26283867c687092a301526a63d6374b6033bac818ccb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:17:de:98:00:03:d9:0c:2a:66:b0:3f:38:e0: 2c:d3:e1:9c:5e:64:b2:3b:23:99:6c:be:35:a0:70: cd:e9:51:fa:da:05:e6:d9:43:7c:b4:70:37:3f:35: 00:2a:ac:19:d2:62:84:c6:bf:74:74:33:47:74:11: 08:38:47:fd:fb:9e:96:95:6b:9f:ea:37:cf:d2:ac: 54:ce:32:37:c4:14:24:4e:e5:43:4f:18:9a:9b:5f: fc:fb:f1:b2:02:38:56:f0:24:fc:4a:bf:8f:66:33: 10:c4:63:55:8d:5d:73:3a:28:b8:1b:9d:20:09:ce: 16:51:cd:96:55:73:f7:3c:d8:26:b6:23:fc:41:ca: d5:0e:cf:2a:8b:8f:25:eb:6e:1a:6c:90:6b:ae:b1: 4b:b7:db:67:25:01:eb:60:d6:e7:94:e9:77:a7:c3: 6a:a8:54:81:70:de:ec:f5:ee:08:61:0e:06:89:9b: a9:c4:9a:3a:a1:a2:37:5d:9f:ca:c4:b9:16:2e:b5: 5c:e0:02:c7:95:94:3b:b7:c0:91:40:8d:15:81:12: 1b:cc:97:ce:da:f8:61:e3:50:3c:a4:0b:4d:68:1e: 62:16:b0:38:93:9e:0b:0d:90:90:b6:4c:ac:cb:6a: a3:72:d4:96:71:9a:44:9e:f8:3a:c3:4b:7b:48:eb: ca:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E8:3C:64:C5:ED:59:84:50:56:03:E2:74:9A:2F:50:45:D9:79:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 90:ce:1f:04:76:0d:25:ca:64:43:97:d5:14:d1:a1:e8:af:e4: 57:ef:8a:a2:2f:10:86:0c:3e:c0:79:4c:36:a3:ee:a3:b5:67: 30:8e:bc:a9:e9:90:07:a6:5f:bb:75:b0:ae:26:d1:4f:26:5f: b9:8a:2b:1a:c9:2b:94:cd:2a:02:b0:9e:47:e0:87:b9:31:d3: 2e:f9:9c:d2:b3:82:92:50:2b:4f:1a:fe:d4:c2:ab:54:0d:2f: 69:a1:62:e5:a5:bd:4d:f3:40:24:8b:6e:0e:af:f6:96:0f:a1: 19:7b:7a:af:f8:fd:fd:4b:c2:dc:64:3b:94:71:c9:f8:b4:d3: a0:d7:9b:56:7f:9a:9f:69:82:44:0b:9a:75:b3:ce:f2:ad:0e: 16:62:76:62:2e:a6:27:3a:d3:e1:c7:10:df:0c:a5:20:02:21: 0f:70:9f:63:8f:b7:59:64:79:90:a0:8c:ee:07:ee:0e:c6:43: 06:39:8a:1f:42:9f:11:70:82:51:7b:ff:b8:26:9b:1f:8b:e6: 9d:ea:3c:d1:76:55:3f:8d:0c:90:66:14:9d:3d:a6:3c:38:b4: 25:b6:61:6c:92:9c:39:bb:24:71:00:a4:2b:0d:53:e5:bd:dc: b4:94:c7:81:31:9d:7d:ab:fe:4f:c3:34:7e:5c:12:92:ce:c0: 0e:7b:13:59 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEzc4vgMrmBoV15Y7OjNKDcAus/4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEwMDAwMDAwWhcNMjQwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGMyZGJkM2Y4M2EzMWQ1YWZiZDI2MjgzODY3YzY4NzA5 MmEzMDE1MjZhNjNkNjM3NGI2MDMzYmFjODE4Y2NiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCF96YAAPZDCpmsD844CzT4ZxeZLI7I5lsvjWgcM3pUfra BebZQ3y0cDc/NQAqrBnSYoTGv3R0M0d0EQg4R/37npaVa5/qN8/SrFTOMjfEFCRO 5UNPGJqbX/z78bICOFbwJPxKv49mMxDEY1WNXXM6KLgbnSAJzhZRzZZVc/c82Ca2 I/xBytUOzyqLjyXrbhpskGuusUu322clAetg1ueU6Xenw2qoVIFw3uz17ghhDgaJ m6nEmjqhojddn8rEuRYutVzgAseVlDu3wJFAjRWBEhvMl87a+GHjUDykC01oHmIW sDiTngsNkJC2TKzLaqNy1JZxmkSe+DrDS3tI68qZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUd+g8ZMXtWYRQVgPidJovUEXZedowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyY2ZjOGY4LWE0YjYtNDhjMi1hYWMzLTk1ZTExMTZhNjMwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAopjANBgkqhkiG9w0BAQsFAAOCAQEAkM4fBHYNJcpkQ5fVFNGh6K/kV++K oi8Qhgw+wHlMNqPuo7VnMI68qemQB6Zfu3WwribRTyZfuYorGskrlM0qArCeR+CH uTHTLvmc0rOCklArTxr+1MKrVA0vaaFi5aW9TfNAJItuDq/2lg+hGXt6r/j9/UvC 3GQ7lHHJ+LTToNebVn+an2mCRAuadbPO8q0OFmJ2Yi6mJzrT4ccQ3wylIAIhD3Cf Y4+3WWR5kKCM7gfuDsZDBjmKH0KfEXCCUXv/uCabH4vmneo80XZVP40MkGYUnT2m PDi0JbZhbJKcObskcQCkKw1T5b3ctJTHgTGdfav+T8M0flwSks7ADnsTWQ== -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:17 2024 by rpki-client on console-fra.rpki-client.org