$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/533f99b1-b818-4380-8b49-b128210a3f25.roa File: 533f99b1-b818-4380-8b49-b128210a3f25.roa (raw, json) Hash identifier: 5hY6crk5unnNsb0Lh6ML6aN4UUv/6nniZlrF9+pGZ28= Subject key identifier: 3D:12:8D:64:1D:28:83:79:81:96:D7:0E:F5:CE:06:E7:0C:A6:98:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C725E485BB8C82F3110D38E83D53D2AAA406ABE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/533f99b1-b818-4380-8b49-b128210a3f25.roa Signing time: Thu 18 Apr 2024 00:00:00 +0000 ROA not before: Thu 18 Apr 2024 00:00:00 +0000 ROA not after: Thu 23 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 207.221.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:72:5e:48:5b:b8:c8:2f:31:10:d3:8e:83:d5:3d:2a:aa:40:6a:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:00:00 2024 GMT Not After : May 23 23:59:59 2024 GMT Subject: serialNumber=04c796151432b42396063533e29ed14ee6f6210b478f38bcde03625145fe30be, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f9:c1:f6:92:04:49:68:76:f2:35:89:2a:95: 5c:8d:e0:7e:71:f8:41:58:cf:e8:dc:a9:8a:3b:17: 08:46:0b:d2:b3:b2:b2:5b:4b:38:51:0b:10:21:ef: a7:b7:a1:84:6e:2f:f5:cb:c9:01:2d:3b:d5:97:69: ec:fb:e9:94:68:e1:11:8c:63:be:90:41:70:71:13: 5f:a1:8a:76:79:69:ab:b6:5b:9e:b6:ef:a1:18:d9: 07:96:93:1a:8c:4f:1d:c4:48:e0:dc:09:a1:35:10: 96:1b:06:41:9b:51:98:44:fd:54:6e:51:af:38:de: 97:5b:d7:c6:05:b9:42:9c:2f:8c:8d:dc:63:32:89: 26:0a:a1:d1:44:16:38:0f:c2:05:99:a6:a2:1a:f2: 9f:a4:23:20:67:b3:21:ef:a1:b0:14:cf:f4:68:0e: 8b:cd:f5:e8:95:62:d7:07:e8:1c:52:4e:56:fa:75: 0a:95:70:d3:a4:67:46:b5:e1:11:5d:f3:cf:44:e9: 25:e2:f2:11:90:ad:cd:de:78:3c:6e:0b:49:e1:30: 6c:de:32:8e:5c:3e:14:a5:84:e2:b0:7d:79:25:b7: 95:d9:61:73:db:b1:0c:5e:50:29:f7:8f:9d:17:10: db:b4:fe:df:29:54:a9:c0:44:4d:e0:82:bb:c2:b1: 03:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:12:8D:64:1D:28:83:79:81:96:D7:0E:F5:CE:06:E7:0C:A6:98:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/533f99b1-b818-4380-8b49-b128210a3f25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.221.0.0/19 Signature Algorithm: sha256WithRSAEncryption a9:c4:55:8a:1b:ff:4f:80:28:3e:ae:17:6d:22:8f:a0:18:e4: d4:54:0a:03:10:e8:d7:ed:0f:57:ea:e4:5a:41:6b:16:e8:9c: 68:f7:37:19:dd:9f:89:3f:08:a6:f0:db:b9:8d:d0:8e:91:09: 82:09:d7:7e:94:5a:cd:4a:84:4b:64:55:fe:35:1e:ee:58:60: 09:df:4c:7c:a3:e6:9b:35:97:ff:a5:48:a7:4e:22:ed:66:30: 3c:b8:63:b4:c3:eb:80:79:0a:77:f9:3d:80:29:bb:3a:81:10: 89:30:18:82:9c:f7:db:dd:9d:5a:7b:00:c4:bf:21:4b:a3:0d: 09:07:61:af:75:5c:1f:52:f0:82:23:84:f4:e9:36:8e:69:55: ed:d9:e9:13:c7:02:e2:a2:a0:25:42:5e:74:45:6c:2f:4d:49: dd:4d:de:a5:11:fb:8a:8e:8d:a6:85:96:09:c7:3f:d4:14:60: cd:de:ca:8b:14:d4:2b:4f:82:6d:df:68:ae:a1:63:fa:34:b2: 14:8b:18:ce:b9:f8:14:02:9c:92:1d:57:7e:7d:94:8f:4f:ed: 9c:4b:fc:74:e7:05:8f:fe:67:8e:79:17:30:c6:a4:b5:2f:01: d7:c8:a7:5d:9d:51:1b:25:17:7d:67:e7:75:18:0e:1d:56:7f: 82:2e:ea:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHHJeSFu4yC8xENOOg9U9KqpAar4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE4MDAwMDAwWhcNMjQwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNGM3OTYxNTE0MzJiNDIzOTYwNjM1MzNlMjllZDE0ZWU2 ZjYyMTBiNDc4ZjM4YmNkZTAzNjI1MTQ1ZmUzMGJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD+cH2kgRJaHbyNYkqlVyN4H5x+EFYz+jcqYo7FwhGC9Kz srJbSzhRCxAh76e3oYRuL/XLyQEtO9WXaez76ZRo4RGMY76QQXBxE1+hinZ5aau2 W56276EY2QeWkxqMTx3ESODcCaE1EJYbBkGbUZhE/VRuUa843pdb18YFuUKcL4yN 3GMyiSYKodFEFjgPwgWZpqIa8p+kIyBnsyHvobAUz/RoDovN9eiVYtcH6BxSTlb6 dQqVcNOkZ0a14RFd889E6SXi8hGQrc3eeDxuC0nhMGzeMo5cPhSlhOKwfXklt5XZ YXPbsQxeUCn3j50XENu0/t8pVKnARE3ggrvCsQMFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPRKNZB0og3mBltcO9c4G5wymmO8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzM2Y5OWIxLWI4MTgtNDM4MC04YjQ5LWIxMjgyMTBhM2YyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXP3QAwDQYJKoZIhvcNAQELBQADggEBAKnEVYob/0+AKD6uF20ij6AY5NRU CgMQ6NftD1fq5FpBaxbonGj3Nxndn4k/CKbw27mN0I6RCYIJ136UWs1KhEtkVf41 Hu5YYAnfTHyj5ps1l/+lSKdOIu1mMDy4Y7TD64B5Cnf5PYApuzqBEIkwGIKc99vd nVp7AMS/IUujDQkHYa91XB9S8IIjhPTpNo5pVe3Z6RPHAuKioCVCXnRFbC9NSd1N 3qUR+4qOjaaFlgnHP9QUYM3eyosU1CtPgm3faK6hY/o0shSLGM65+BQCnJIdV359 lI9P7ZxL/HTnBY/+Z455FzDGpLUvAdfIp12dURslF31n53UYDh1Wf4Iu6ms= -----END CERTIFICATE-----Generated at Fri May 3 01:27:55 2024 by rpki-client on console-fra.rpki-client.org