$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/539c58cf-2ad7-4928-8c1a-bd80887751a7.roa File: 539c58cf-2ad7-4928-8c1a-bd80887751a7.roa (raw, json) Hash identifier: e6zUhRI+kRYFnCYce2O6jJ32338U14i5X3spLjMGPZ4= Subject key identifier: FD:BF:AC:26:7D:4A:DD:01:EE:8B:E5:2D:A4:C1:64:1F:51:A9:83:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 483B69514D3E2BBB61D03C6DB5574BFFD3BB5EBD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/539c58cf-2ad7-4928-8c1a-bd80887751a7.roa Signing time: Mon 13 May 2024 00:00:00 +0000 ROA not before: Mon 13 May 2024 00:00:00 +0000 ROA not after: Mon 17 Jun 2024 23:59:59 +0000 asID: 19047 IP address blocks: 70.130.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 25 May 2024 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:3b:69:51:4d:3e:2b:bb:61:d0:3c:6d:b5:57:4b:ff:d3:bb:5e:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 13 00:00:00 2024 GMT Not After : Jun 17 23:59:59 2024 GMT Subject: serialNumber=efe9a1453d65ca1464ad3f282e6c461d0f1c0ff756aee6d56970dc1ff7dcfd14, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a3:c8:7a:f6:be:91:56:74:20:ec:18:4b:97: 96:b5:6e:a1:34:c2:04:17:99:5a:6c:58:ee:86:de: 4a:16:a0:0f:05:7f:15:36:f9:b9:f8:e7:29:01:24: 2c:ab:50:1b:36:08:db:cb:e5:7e:1b:39:5c:fb:2e: b9:62:13:38:b9:cb:f8:b9:4c:75:a4:61:c4:4a:c7: b0:e4:4d:c8:20:b3:b9:24:30:77:79:5c:38:f4:35: 32:d9:bf:f8:33:3e:e1:a8:f9:f1:1f:6a:1f:37:81: 06:0c:c7:62:0f:75:a4:e4:b5:3b:7f:89:d7:ea:0c: 05:9a:b9:f4:d0:4d:6c:6e:6c:a0:05:f7:f5:6d:e4: f1:7a:e6:d5:3a:c1:3b:51:86:63:28:25:31:92:37: 88:d3:f8:87:a5:86:68:98:f6:8e:6d:e3:e4:c2:25: 2b:d2:21:7e:95:3b:f5:16:e9:61:64:84:1a:9c:be: 86:f7:36:9b:86:c9:51:08:90:af:4c:0e:9e:80:78: 06:4d:17:7b:88:6a:b7:05:cb:7f:49:f1:59:44:6e: 49:64:a4:8d:cb:93:b4:06:b6:4d:5a:b3:20:dd:06: 02:b8:4a:b2:3e:cd:8a:fa:69:30:ac:e0:54:df:a2: 4b:41:ec:7a:37:f8:c3:93:38:d8:9b:ab:d6:06:f3: df:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:BF:AC:26:7D:4A:DD:01:EE:8B:E5:2D:A4:C1:64:1F:51:A9:83:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/539c58cf-2ad7-4928-8c1a-bd80887751a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.130.219.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:8a:18:7d:bf:eb:d8:18:c3:ba:02:dc:d6:94:9c:cf:f5:d8: 88:95:58:f6:bc:fe:46:25:d5:de:40:a2:47:68:78:2b:d8:13: 4f:3c:bc:26:e6:3c:87:68:6d:40:6a:cb:b6:8c:cd:ad:4c:a3: 28:49:ec:b8:50:e8:42:ca:56:c5:3f:70:07:34:8a:ce:43:98: 9e:7b:51:27:b9:b4:40:dc:55:65:d6:81:ed:18:a2:a0:c3:ff: 40:4e:17:0c:9c:6a:03:93:85:5c:13:b1:a4:88:e2:d7:37:a9: 23:eb:af:b7:ae:a8:24:84:d5:c7:b0:b7:b8:36:f0:6f:56:ab: 6a:ca:ba:2e:08:e5:b2:f3:32:03:65:29:e1:bb:c5:a2:fd:00: e7:11:17:b6:a4:1b:2c:bf:f9:0a:4b:a0:91:5a:d0:0d:e8:32: f3:e2:9a:66:8e:cd:df:86:6e:cf:0e:c5:42:d2:22:db:de:c6: 70:c6:d2:67:ab:63:a2:69:58:42:95:1a:61:68:70:6d:86:06: 06:fc:d5:1f:bf:aa:fb:35:34:e7:71:e2:54:a8:93:b1:c0:2b: a7:22:24:5a:0b:4a:9d:10:50:d5:08:eb:92:1b:96:51:a5:8f: b9:b9:c3:7b:d3:39:30:0a:04:49:81:d0:07:a7:24:6d:e4:61: 17:ef:a7:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSDtpUU0+K7th0DxttVdL/9O7Xr0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTEzMDAwMDAwWhcNMjQwNjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZmU5YTE0NTNkNjVjYTE0NjRhZDNmMjgyZTZjNDYxZDBm MWMwZmY3NTZhZWU2ZDU2OTcwZGMxZmY3ZGNmZDE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCao8h69r6RVnQg7BhLl5a1bqE0wgQXmVpsWO6G3koWoA8F fxU2+bn45ykBJCyrUBs2CNvL5X4bOVz7LrliEzi5y/i5THWkYcRKx7DkTcggs7kk MHd5XDj0NTLZv/gzPuGo+fEfah83gQYMx2IPdaTktTt/idfqDAWaufTQTWxubKAF 9/Vt5PF65tU6wTtRhmMoJTGSN4jT+IelhmiY9o5t4+TCJSvSIX6VO/UW6WFkhBqc vob3NpuGyVEIkK9MDp6AeAZNF3uIarcFy39J8VlEbklkpI3Lk7QGtk1asyDdBgK4 SrI+zYr6aTCs4FTfoktB7Ho3+MOTONibq9YG898DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/b+sJn1K3QHui+UtpMFkH1Gpg1IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzOWM1OGNmLTJhZDctNDkyOC04YzFhLWJkODA4ODc3NTFhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABGgtswDQYJKoZIhvcNAQELBQADggEBAJ6KGH2/69gYw7oC3NaUnM/12IiV WPa8/kYl1d5AokdoeCvYE088vCbmPIdobUBqy7aMza1MoyhJ7LhQ6ELKVsU/cAc0 is5DmJ57USe5tEDcVWXWge0YoqDD/0BOFwycagOThVwTsaSI4tc3qSPrr7euqCSE 1cewt7g28G9Wq2rKui4I5bLzMgNlKeG7xaL9AOcRF7akGyy/+QpLoJFa0A3oMvPi mmaOzd+Gbs8OxULSItvexnDG0merY6JpWEKVGmFocG2GBgb81R+/qvs1NOdx4lSo k7HAK6ciJFoLSp0QUNUI65IbllGlj7m5w3vTOTAKBEmB0AenJG3kYRfvpxw= -----END CERTIFICATE-----Generated at Fri May 24 00:21:49 2024 by rpki-client on console-fra.rpki-client.org