$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5895ff12-479c-40e5-a434-0ce3f74b9aff.roa File: 5895ff12-479c-40e5-a434-0ce3f74b9aff.roa (raw, json) Hash identifier: 11h1Z5RBdTrRtzN7dsifdSAPo7PFIYCtG5omyYv+/wQ= Subject key identifier: A1:EB:16:E4:82:FD:00:86:56:E4:D5:13:F9:CF:4C:1A:12:92:DD:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 276A6D4CF74CC0EBBF71BE0B7D04A0B844654779 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5895ff12-479c-40e5-a434-0ce3f74b9aff.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 173.83.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:6a:6d:4c:f7:4c:c0:eb:bf:71:be:0b:7d:04:a0:b8:44:65:47:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=277e074662fc8b114188fad609f850f21eb8e34165d4afecbaad2a690c092542, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e3:19:37:66:bb:3f:e8:f0:ad:be:d1:6e:e5: 60:e8:32:bb:ce:7e:b4:29:45:89:80:37:e6:28:9a: 5f:1d:c0:d1:e6:ac:cd:dc:d4:db:a3:f5:85:8f:88: cd:fb:03:7a:50:18:a3:80:31:25:71:4c:19:5b:43: 04:13:7f:08:3e:fe:0e:7d:3d:30:7e:d4:f5:ef:51: 65:1d:9a:85:48:e6:00:e9:b7:33:d0:9d:16:ce:b6: c5:d9:12:72:1b:f6:36:9f:4b:f1:cc:33:a3:0c:90: a4:3e:56:21:5b:ee:0b:61:55:a3:41:30:f9:d6:fa: b4:6c:e5:34:2d:46:fe:17:7e:c0:64:6d:9c:b7:e0: 1e:98:b5:68:72:c0:c5:28:96:d1:d1:e8:bf:d3:b8: 54:99:aa:be:e8:79:27:88:0c:8a:86:6e:71:b4:2f: 71:1e:e2:fc:52:fb:2e:68:a3:d7:47:30:74:cc:52: 10:09:a9:b6:71:d3:af:b4:b4:a5:c7:e9:8f:16:b6: f6:23:78:8b:03:2a:57:b1:d9:5f:46:f2:56:16:5a: 40:31:24:57:8c:1d:a8:dc:1c:92:c0:95:28:d1:6d: ad:b8:0d:c0:72:9b:5d:b5:61:68:45:7f:b1:13:29: 8b:79:30:01:ea:96:a9:ef:f9:f5:0b:97:3d:d9:80: a2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:EB:16:E4:82:FD:00:86:56:E4:D5:13:F9:CF:4C:1A:12:92:DD:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5895ff12-479c-40e5-a434-0ce3f74b9aff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.83.0.0/16 Signature Algorithm: sha256WithRSAEncryption cd:59:28:6c:14:ec:90:f4:f4:70:3e:7c:2b:64:7b:65:7f:99: 81:2d:96:b7:9f:da:4e:59:39:a9:a1:6c:75:e8:de:c0:41:37: 13:fa:16:23:7e:f1:08:20:ff:49:84:93:03:ba:51:c6:ab:09: a8:4a:f9:d6:60:b8:5f:7c:b2:2c:66:fe:ce:5b:cd:a2:6e:56: 72:b1:74:20:75:d0:d5:6f:80:c7:c8:ea:2c:7c:1c:3c:99:01: 09:21:63:fb:e8:6b:96:99:03:0e:3d:01:63:dd:8e:fc:f5:98: e5:39:e5:bf:02:43:c0:48:a7:ee:fc:c0:c6:cc:00:5f:17:db: 3e:2f:34:19:c2:e8:d3:5a:f5:b0:33:98:84:94:a6:fb:d1:27: 60:07:c2:a2:a4:38:19:4f:b4:09:d2:42:3b:44:14:e4:8e:68: 2b:79:20:ee:8a:da:58:02:34:82:b3:04:5c:49:ab:3c:f5:5d: b2:12:8e:d0:ec:d3:57:45:f6:e5:42:f9:39:fd:e0:12:2e:52: 47:a6:8f:03:c4:aa:a6:d0:ea:b8:93:c6:8a:88:c5:7d:b2:8f: 40:1e:2b:a4:25:8e:f8:df:47:32:72:ca:80:6a:ca:62:e0:dd: 2e:d6:5e:bd:47:1a:4e:d9:84:2d:54:e1:ba:5c:f0:22:d9:85: b2:9a:a5:f2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJ2ptTPdMwOu/cb4LfQSguERlR3kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzdlMDc0NjYyZmM4YjExNDE4OGZhZDYwOWY4NTBmMjFl YjhlMzQxNjVkNGFmZWNiYWFkMmE2OTBjMDkyNTQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI4xk3Zrs/6PCtvtFu5WDoMrvOfrQpRYmAN+Yoml8dwNHm rM3c1Nuj9YWPiM37A3pQGKOAMSVxTBlbQwQTfwg+/g59PTB+1PXvUWUdmoVI5gDp tzPQnRbOtsXZEnIb9jafS/HMM6MMkKQ+ViFb7gthVaNBMPnW+rRs5TQtRv4XfsBk bZy34B6YtWhywMUoltHR6L/TuFSZqr7oeSeIDIqGbnG0L3Ee4vxS+y5oo9dHMHTM UhAJqbZx06+0tKXH6Y8WtvYjeIsDKlex2V9G8lYWWkAxJFeMHajcHJLAlSjRba24 DcBym121YWhFf7ETKYt5MAHqlqnv+fULlz3ZgKJzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUoesW5IL9AIZW5NUT+c9MGhKS3YkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4OTVmZjEyLTQ3OWMtNDBlNS1hNDM0LTBjZTNmNzRiOWFmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCtUzANBgkqhkiG9w0BAQsFAAOCAQEAzVkobBTskPT0cD58K2R7ZX+ZgS2W t5/aTlk5qaFsdejewEE3E/oWI37xCCD/SYSTA7pRxqsJqEr51mC4X3yyLGb+zlvN om5WcrF0IHXQ1W+Ax8jqLHwcPJkBCSFj++hrlpkDDj0BY92O/PWY5TnlvwJDwEin 7vzAxswAXxfbPi80GcLo01r1sDOYhJSm+9EnYAfCoqQ4GU+0CdJCO0QU5I5oK3kg 7oraWAI0grMEXEmrPPVdshKO0OzTV0X25UL5Of3gEi5SR6aPA8SqptDquJPGiojF fbKPQB4rpCWO+N9HMnLKgGrKYuDdLtZevUcaTtmELVThulzwItmFspql8g== -----END CERTIFICATE-----Generated at Thu May 9 01:25:30 2024 by rpki-client on console-fra.rpki-client.org