$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5956bb2a-8518-472e-bea8-f957550c1b7a.roa File: 5956bb2a-8518-472e-bea8-f957550c1b7a.roa (raw, json) Hash identifier: OT10QgH1keAl+V63ikP+SdUVutcOG/ZuL5ZeldrHAJk= Subject key identifier: 20:B5:D0:FE:FD:CF:F5:E9:E5:D1:35:4E:26:0B:52:C1:E4:CE:01:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06744FE2095B5D86DD470D25C1366616192F4571 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5956bb2a-8518-472e-bea8-f957550c1b7a.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 170.26.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:74:4f:e2:09:5b:5d:86:dd:47:0d:25:c1:36:66:16:19:2f:45:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=36b9187a58212e767fee2d963108434ee290017946b1a98fb320f7eb68ac9756, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:df:51:4d:53:5a:42:1a:4c:0f:98:9e:61:6f: e7:10:2f:ba:8e:aa:ea:2b:cb:54:90:39:1f:64:e8: c8:01:aa:cc:33:42:19:81:a8:51:f2:81:4b:9d:a3: 0f:f5:81:9e:75:16:3a:d1:6c:a4:59:48:d0:73:2e: 7d:4d:72:e3:88:3e:1c:2e:06:81:3d:a2:8c:23:aa: c2:06:1f:be:e5:88:86:58:fc:ea:79:e5:e3:c6:d9: 6a:83:11:88:c7:cd:5e:c0:fa:67:ee:fa:e4:6b:ae: c0:ca:22:49:a1:73:e0:78:e1:c8:ac:c0:1d:c2:bd: bc:ab:8b:42:d2:c3:7c:5c:3f:05:a9:4c:4c:61:c0: 7a:10:2b:e0:50:4b:25:ab:45:83:60:6d:31:74:a7: 78:78:67:d5:9f:07:c7:b8:d2:48:73:6e:ad:f0:8a: d9:e2:3a:3d:5f:97:49:94:ca:07:59:7c:1d:b0:92: 30:de:b8:d1:03:35:d9:a5:7b:7c:59:8e:50:6a:9d: 4d:3c:e1:17:b2:2c:b5:c0:41:78:48:93:81:33:3b: a6:07:b1:11:c3:3d:22:ca:6b:57:87:e9:00:67:a6: 65:ef:23:a5:f9:14:97:d6:ef:27:5d:58:00:75:57: f6:09:53:4f:01:06:ab:0e:54:78:b3:0e:92:b1:91: c5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B5:D0:FE:FD:CF:F5:E9:E5:D1:35:4E:26:0B:52:C1:E4:CE:01:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5956bb2a-8518-472e-bea8-f957550c1b7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.26.0.0/16 Signature Algorithm: sha256WithRSAEncryption b4:49:39:01:8c:39:b0:f4:76:30:87:e9:8b:b7:eb:11:a4:0d: 6a:9a:56:b4:d4:22:ca:88:44:13:20:94:2b:b4:a6:88:fb:fe: 62:69:95:d7:8d:04:24:c4:1d:cc:3a:b6:04:b3:d9:82:35:bc: 63:65:30:69:d4:25:0b:90:b8:aa:2d:77:c7:69:70:09:78:9d: cc:15:82:5d:f7:97:15:26:a8:16:8c:ed:03:93:6d:01:49:ae: f3:7a:2d:d5:b7:e3:58:fe:91:7a:4b:0b:d5:18:36:35:62:ea: b7:92:4f:93:e4:10:6f:75:58:e9:8c:0b:03:75:2b:5e:51:35: ee:90:b9:30:b8:8d:8f:a2:8e:92:a6:aa:4c:f7:e1:40:8b:18: 13:78:50:7e:fc:b4:36:26:3e:32:cd:93:71:21:58:48:b2:a8: 17:a7:91:08:91:f5:a7:ba:fa:b9:91:57:68:bb:78:fe:3f:54: 7f:24:ce:5a:a5:b5:0c:0f:a9:dc:6e:44:07:40:62:c3:d3:e7: 74:28:12:de:21:bb:f6:2f:50:24:86:ab:1d:4b:b5:63:04:96: 44:fc:98:12:d9:73:2b:7a:49:43:e1:39:08:11:69:db:20:e8: 8d:c0:02:e4:27:0f:94:f3:2c:a4:3a:bf:a6:48:3c:3a:2c:8b: f0:9d:dc:30 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBnRP4glbXYbdRw0lwTZmFhkvRXEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmI5MTg3YTU4MjEyZTc2N2ZlZTJkOTYzMTA4NDM0ZWUy OTAwMTc5NDZiMWE5OGZiMzIwZjdlYjY4YWM5NzU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx31FNU1pCGkwPmJ5hb+cQL7qOquory1SQOR9k6MgBqswz QhmBqFHygUudow/1gZ51FjrRbKRZSNBzLn1NcuOIPhwuBoE9oowjqsIGH77liIZY /Op55ePG2WqDEYjHzV7A+mfu+uRrrsDKIkmhc+B44ciswB3Cvbyri0LSw3xcPwWp TExhwHoQK+BQSyWrRYNgbTF0p3h4Z9WfB8e40khzbq3witniOj1fl0mUygdZfB2w kjDeuNEDNdmle3xZjlBqnU084ReyLLXAQXhIk4EzO6YHsRHDPSLKa1eH6QBnpmXv I6X5FJfW7yddWAB1V/YJU08BBqsOVHizDpKxkcVhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUILXQ/v3P9enl0TVOJgtSweTOAc8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5NTZiYjJhLTg1MTgtNDcyZS1iZWE4LWY5NTc1NTBjMWI3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCqGjANBgkqhkiG9w0BAQsFAAOCAQEAtEk5AYw5sPR2MIfpi7frEaQNappW tNQiyohEEyCUK7SmiPv+YmmV140EJMQdzDq2BLPZgjW8Y2UwadQlC5C4qi13x2lw CXidzBWCXfeXFSaoFoztA5NtAUmu83ot1bfjWP6ReksL1Rg2NWLqt5JPk+QQb3VY 6YwLA3UrXlE17pC5MLiNj6KOkqaqTPfhQIsYE3hQfvy0NiY+Ms2TcSFYSLKoF6eR CJH1p7r6uZFXaLt4/j9UfyTOWqW1DA+p3G5EB0Biw9PndCgS3iG79i9QJIarHUu1 YwSWRPyYEtlzK3pJQ+E5CBFp2yDojcAC5CcPlPMspDq/pkg8OiyL8J3cMA== -----END CERTIFICATE-----Generated at Thu May 2 01:05:33 2024 by rpki-client on console-fra.rpki-client.org