$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f39db85-bb51-4b22-a180-8d268ddde2a8.roa File: 4f39db85-bb51-4b22-a180-8d268ddde2a8.roa (raw, json) Hash identifier: JkoKucr1GowXE2rHtmIirrmnf956jVobufGrC0TPYzU= Subject key identifier: DB:03:7D:DD:34:F9:02:67:F2:3E:FB:C1:3F:4A:4A:F4:5F:A2:64:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 22FF3EC1E4693858DAB96F2122A2DC10B8FE49D4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f39db85-bb51-4b22-a180-8d268ddde2a8.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 162.222.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ff:3e:c1:e4:69:38:58:da:b9:6f:21:22:a2:dc:10:b8:fe:49:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=a851cb1dfab8b49aaf4d3019709d1d91ca15c43daa4ef52845b25ab3e137d844, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:3f:1a:99:7d:14:1d:8e:0a:ca:59:10:4b:69: 38:93:ae:33:b0:5b:12:50:ba:15:8e:04:0f:df:fa: 68:58:f6:01:a3:69:56:df:fe:9d:49:6c:1f:7e:0e: 46:87:55:d2:2e:96:be:94:5d:d3:f2:ce:fc:0e:15: 96:9a:a8:2e:88:8b:fd:7d:cf:a8:2b:1d:74:cb:ee: 44:80:70:69:29:8c:47:6d:11:26:a7:bc:b6:be:a3: 48:13:fb:51:60:a2:5b:10:cb:b1:6e:0b:25:3e:27: 34:fb:01:ef:a2:1d:7e:49:48:82:19:f0:6b:ad:05: 39:db:42:44:f4:58:7f:1f:06:b9:7f:a5:0b:82:c3: e4:85:70:34:95:2a:36:1f:94:da:d7:34:ee:3f:9b: aa:34:10:ab:1f:47:68:39:02:37:df:9b:c0:bd:12: 15:66:ae:fa:ff:19:d5:b2:77:67:1f:6b:25:34:d8: 20:c8:b5:51:de:8b:57:64:59:52:d6:6f:54:8a:60: 1a:a6:13:fe:a2:94:34:41:98:af:ec:58:0d:11:a4: 2a:1e:28:a8:70:14:f1:8c:5b:cc:9a:8f:1f:0e:87: 9c:b3:2b:bb:19:92:ae:60:27:d8:0e:ba:06:d0:e5: 2a:f4:a3:de:96:c2:86:b8:2e:43:ff:d7:f8:51:c9: 42:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:03:7D:DD:34:F9:02:67:F2:3E:FB:C1:3F:4A:4A:F4:5F:A2:64:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f39db85-bb51-4b22-a180-8d268ddde2a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.222.148.0/22 Signature Algorithm: sha256WithRSAEncryption 66:f1:ee:13:b1:88:1b:6b:47:d1:a1:2b:f7:4e:88:98:dc:37: 1b:c5:3b:a0:d0:c5:37:6a:d0:b0:cd:54:d5:b0:4b:e6:e5:97: ba:df:0e:eb:a0:fd:3c:da:e5:55:ae:88:46:98:bd:15:78:6e: ac:58:c3:c4:72:20:9c:14:0c:d9:fb:04:3a:95:da:e8:20:d8: ef:ab:31:c5:86:74:78:7f:e0:b5:cb:8b:fc:86:22:27:18:37: ef:fc:dc:82:2f:eb:51:56:9f:42:c7:2b:c5:8c:a1:06:08:a8: db:94:01:57:d5:03:80:65:fb:d5:99:e6:55:0c:fc:45:06:41: 00:c1:05:e2:cc:48:ca:07:9c:f3:7e:f2:52:fe:2a:b4:99:cf: 58:3f:fb:9b:e3:32:b1:a8:c3:86:4c:11:d0:1d:41:e2:24:57: 22:cb:e6:42:fd:92:77:69:c2:65:24:67:2b:a3:b0:92:1f:e3: 1e:a9:b8:b0:9d:c5:af:db:c7:cb:3e:c0:23:96:39:5f:81:a4: 01:2d:e2:8d:b7:b1:e8:5b:34:d3:1c:e7:1b:ad:1f:2d:c0:46: ac:19:1b:c7:9a:67:e1:0c:c4:70:48:80:c7:c2:7f:56:90:3c: ce:dd:e0:f4:f4:e6:40:72:f7:e4:7f:a3:b6:85:de:3a:97:34: a8:0d:75:23 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIv8+weRpOFjauW8hIqLcELj+SdQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhODUxY2IxZGZhYjhiNDlhYWY0ZDMwMTk3MDlkMWQ5MWNh MTVjNDNkYWE0ZWY1Mjg0NWIyNWFiM2UxMzdkODQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwPxqZfRQdjgrKWRBLaTiTrjOwWxJQuhWOBA/f+mhY9gGj aVbf/p1JbB9+DkaHVdIulr6UXdPyzvwOFZaaqC6Ii/19z6grHXTL7kSAcGkpjEdt ESanvLa+o0gT+1FgolsQy7FuCyU+JzT7Ae+iHX5JSIIZ8GutBTnbQkT0WH8fBrl/ pQuCw+SFcDSVKjYflNrXNO4/m6o0EKsfR2g5Ajffm8C9EhVmrvr/GdWyd2cfayU0 2CDItVHei1dkWVLWb1SKYBqmE/6ilDRBmK/sWA0RpCoeKKhwFPGMW8yajx8Oh5yz K7sZkq5gJ9gOugbQ5Sr0o96Wwoa4LkP/1/hRyUJTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2wN93TT5AmfyPvvBP0pK9F+iZLQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmMzlkYjg1LWJiNTEtNGIyMi1hMTgwLThkMjY4ZGRkZTJhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKi3pQwDQYJKoZIhvcNAQELBQADggEBAGbx7hOxiBtrR9GhK/dOiJjcNxvF O6DQxTdq0LDNVNWwS+bll7rfDuug/Tza5VWuiEaYvRV4bqxYw8RyIJwUDNn7BDqV 2ugg2O+rMcWGdHh/4LXLi/yGIicYN+/83IIv61FWn0LHK8WMoQYIqNuUAVfVA4Bl +9WZ5lUM/EUGQQDBBeLMSMoHnPN+8lL+KrSZz1g/+5vjMrGow4ZMEdAdQeIkVyLL 5kL9kndpwmUkZyujsJIf4x6puLCdxa/bx8s+wCOWOV+BpAEt4o23sehbNNMc5xut Hy3ARqwZG8eaZ+EMxHBIgMfCf1aQPM7d4PT05kBy9+R/o7aF3jqXNKgNdSM= -----END CERTIFICATE-----Generated at Thu May 9 15:19:30 2024 by rpki-client on console-fra.rpki-client.org