$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e73af41-699f-4191-a5fd-61d8359ba3ae.roa File: 4e73af41-699f-4191-a5fd-61d8359ba3ae.roa (raw, json) Hash identifier: 4vVOGHtQK9AZzpDm/+74R1YnhOix1hR+QKVKWzPA9hY= Subject key identifier: 98:45:AB:F2:50:EC:1D:26:8C:EA:D5:E0:EB:87:C3:E7:01:80:97:2D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1BD338B17693CB543460B9C0DF130BFBA05F2D1F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e73af41-699f-4191-a5fd-61d8359ba3ae.roa Signing time: Sat 13 Apr 2024 00:00:00 +0000 ROA not before: Sat 13 Apr 2024 00:00:00 +0000 ROA not after: Sat 18 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 207.202.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d3:38:b1:76:93:cb:54:34:60:b9:c0:df:13:0b:fb:a0:5f:2d:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 13 00:00:00 2024 GMT Not After : May 18 23:59:59 2024 GMT Subject: serialNumber=b1605097b9296a6188bfe0de84e9cf58ebb03d73337621be765955e3929e1532, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bf:cc:b3:c8:39:3a:b2:a9:86:eb:5d:8a:fc: 4c:96:56:b6:2c:b8:fe:b4:1e:c6:32:2f:56:41:c9: 4f:ba:ca:14:08:18:37:3a:8d:63:e1:b7:a4:07:2d: cc:ef:80:aa:de:24:23:77:8a:40:6e:fb:88:dc:a4: 83:81:d8:23:e4:b4:79:33:dd:1f:f5:d6:4c:a3:53: c9:4e:d3:06:7e:ef:36:02:2a:6f:29:2e:ef:ce:ea: 31:db:4f:99:0a:f6:1b:9d:53:4d:5f:95:ee:13:e4: e2:66:71:12:51:fd:fd:7b:3c:c8:f9:9c:6b:3f:24: 9a:30:74:90:98:24:48:ef:c5:62:9c:d6:4b:0f:31: e0:60:9e:df:31:64:c9:61:71:35:42:17:ff:0c:da: bb:91:5c:2e:51:5c:c5:aa:c6:e6:59:e2:52:67:da: 36:8a:d0:0a:c6:ac:15:b0:49:3e:6f:76:6d:60:69: 1b:e9:9b:17:ff:78:27:02:22:36:15:08:ee:cb:9a: c3:35:35:a2:b7:4c:90:61:0c:11:4e:5c:d6:da:56: 70:37:f8:97:57:ea:4f:b9:f2:07:da:fd:9d:0b:26: 7c:b5:86:4c:53:c3:02:82:b7:c3:dc:0f:43:65:bf: a6:fb:e2:e3:d7:b4:65:59:55:b2:7a:56:0b:52:cf: 59:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:45:AB:F2:50:EC:1D:26:8C:EA:D5:E0:EB:87:C3:E7:01:80:97:2D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e73af41-699f-4191-a5fd-61d8359ba3ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.202.128.0/17 Signature Algorithm: sha256WithRSAEncryption a2:5d:3c:86:dc:a0:c0:84:be:f1:fd:fa:28:06:81:f7:c9:55: d5:10:8a:0b:98:1a:e6:cb:24:aa:4f:eb:2b:c3:96:24:c7:a3: ac:17:0c:45:1b:1a:44:d4:cc:f1:f2:04:24:66:59:b8:aa:c7: cb:c6:34:60:0b:63:4b:de:5f:fe:99:68:d5:35:19:d3:e9:34: c2:f5:cd:0c:51:31:fc:b4:69:02:36:ce:55:66:75:73:64:aa: 1e:f8:27:2a:46:d9:2f:c9:57:8d:40:1a:d2:0e:ee:94:b3:ff: 1a:ed:59:1f:f5:11:8a:0d:6c:47:3e:db:a5:73:fb:3f:86:b2: 5b:cd:8d:06:33:4c:8a:1d:2c:66:1c:15:6d:56:34:46:04:6e: 18:81:04:68:57:d5:00:fd:78:ef:88:e3:a3:f2:fa:64:08:af: 63:fb:17:c3:85:b7:60:f4:95:00:c8:b0:ed:e0:60:8e:56:a7: ff:5b:81:c6:9d:2d:8c:93:ef:b9:bd:93:f1:41:36:c4:ff:9d: 00:b0:ba:76:77:20:3f:43:19:9e:76:d8:05:1e:ea:c5:19:b6: 8b:4e:fa:07:6e:16:da:2d:66:36:0a:db:48:f9:fc:4e:63:34: d8:83:c1:7e:70:9b:21:ab:6c:c1:6e:fc:ac:9f:dd:b0:90:f8: e7:2c:eb:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG9M4sXaTy1Q0YLnA3xML+6BfLR8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEzMDAwMDAwWhcNMjQwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTYwNTA5N2I5Mjk2YTYxODhiZmUwZGU4NGU5Y2Y1OGVi YjAzZDczMzM3NjIxYmU3NjU5NTVlMzkyOWUxNTMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/v8yzyDk6sqmG612K/EyWVrYsuP60HsYyL1ZByU+6yhQI GDc6jWPht6QHLczvgKreJCN3ikBu+4jcpIOB2CPktHkz3R/11kyjU8lO0wZ+7zYC Km8pLu/O6jHbT5kK9hudU01fle4T5OJmcRJR/f17PMj5nGs/JJowdJCYJEjvxWKc 1ksPMeBgnt8xZMlhcTVCF/8M2ruRXC5RXMWqxuZZ4lJn2jaK0ArGrBWwST5vdm1g aRvpmxf/eCcCIjYVCO7LmsM1NaK3TJBhDBFOXNbaVnA3+JdX6k+58gfa/Z0LJny1 hkxTwwKCt8PcD0Nlv6b74uPXtGVZVbJ6VgtSz1nxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmEWr8lDsHSaM6tXg64fD5wGAly0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlNzNhZjQxLTY5OWYtNDE5MS1hNWZkLTYxZDgzNTliYTNhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfPyoAwDQYJKoZIhvcNAQELBQADggEBAKJdPIbcoMCEvvH9+igGgffJVdUQ iguYGubLJKpP6yvDliTHo6wXDEUbGkTUzPHyBCRmWbiqx8vGNGALY0veX/6ZaNU1 GdPpNML1zQxRMfy0aQI2zlVmdXNkqh74JypG2S/JV41AGtIO7pSz/xrtWR/1EYoN bEc+26Vz+z+GslvNjQYzTIodLGYcFW1WNEYEbhiBBGhX1QD9eO+I46Py+mQIr2P7 F8OFt2D0lQDIsO3gYI5Wp/9bgcadLYyT77m9k/FBNsT/nQCwunZ3ID9DGZ522AUe 6sUZtotO+gduFtotZjYK20j5/E5jNNiDwX5wmyGrbMFu/Kyf3bCQ+Ocs6/I= -----END CERTIFICATE-----Generated at Thu May 2 11:33:15 2024 by rpki-client on console-fra.rpki-client.org