$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa File: 5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa (raw, json) Hash identifier: UpqWzXkb04aXdsfwqlJIutoNlQPt2PHvpBPZ8/AnF+o= Subject key identifier: 1B:B5:7C:A5:57:20:62:F0:92:5A:DC:8E:C3:86:75:65:45:2C:C3:39 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6FB3CA00A0C1A261BB02D81A26952075E9F6F7B0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.52.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:b3:ca:00:a0:c1:a2:61:bb:02:d8:1a:26:95:20:75:e9:f6:f7:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=6a09dab58fc8bea2dffe405e9720a253db9d45dd5f15c0df070ca948adaac3de, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:63:97:58:73:2a:00:2d:6a:87:be:07:4b:82: d9:0e:0f:35:d7:8b:31:fe:a2:46:1c:eb:9a:89:8d: 1b:e8:5f:4a:b1:21:25:1f:7f:7b:53:c9:d9:6e:6e: af:4f:16:30:80:60:e8:77:01:36:0e:06:64:ec:03: 18:ae:17:f9:77:55:ab:0d:b7:0e:3f:2a:a9:6e:0e: 9b:37:c4:cb:88:93:6b:e7:1a:92:7f:cb:cf:e7:44: 80:bc:9f:02:ae:5e:b6:53:ce:49:e7:4a:0f:41:a6: 90:2e:7a:78:44:24:5c:63:1d:7d:e5:5c:47:32:09: c0:57:87:cd:89:b3:33:a2:6f:ac:62:17:4b:fb:73: 4e:59:ec:f0:33:85:23:75:2d:21:03:8c:35:8d:e6: 0f:9e:2c:af:24:d8:1f:b7:24:af:40:61:46:c7:70: c3:e7:3e:15:26:ca:b4:dd:c3:a9:ed:63:17:13:1a: cf:68:f2:63:90:7b:5f:17:30:de:aa:66:a6:21:b4: 30:cf:1a:a7:13:1b:2d:0e:d3:a5:00:6e:43:cf:45: b3:cf:12:87:4e:b4:fc:6f:fb:07:d0:43:d2:06:ae: 7f:9e:41:c9:ff:ca:10:fa:48:d8:3e:ef:5c:75:09: 0f:4f:05:98:59:e5:9c:20:10:d7:b8:a1:24:73:f8: 98:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B5:7C:A5:57:20:62:F0:92:5A:DC:8E:C3:86:75:65:45:2C:C3:39 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a474b2e-a6fd-4298-b5df-ff9caa26f91c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:86:9a:48:3d:df:62:b7:76:8e:00:59:4f:2e:2c:eb:d1:96: 65:e5:5d:76:e1:16:fa:df:fb:c3:f1:80:49:ad:da:6f:52:70: ae:b7:2a:ba:50:a9:9a:87:5d:55:64:a4:5c:3a:22:04:3a:f7: 48:a3:01:02:8a:53:6c:09:da:d4:38:4d:ca:51:24:0f:8a:ca: 0f:b0:55:9b:c4:6e:0e:7e:97:19:92:f5:6c:15:63:04:d7:26: 1c:35:ee:48:71:0c:07:69:72:de:10:4d:3c:b3:73:cd:c8:cf: a0:d9:b2:3d:7b:e7:21:56:7b:8b:14:6d:fb:32:6c:78:a0:3c: 52:20:a9:6b:4e:91:22:0c:d5:87:ad:ef:fc:26:1c:8d:a2:04: 6d:28:2e:ce:5b:3f:6a:35:9a:10:1f:bb:e5:5e:13:b8:d1:1e: c6:40:da:0b:7b:94:96:2e:44:d0:93:40:79:3f:40:77:f4:b8: 03:f1:b2:25:23:2a:e0:3c:6e:ac:d2:f8:e7:9d:3b:56:88:65: 96:27:c5:d1:d8:53:c3:9e:15:ba:70:d3:98:a5:77:c3:07:ca: 2d:7b:22:c1:69:b9:08:36:69:e8:b1:e4:22:f8:05:10:0b:6d: c9:1f:54:9d:65:f9:66:7f:10:e2:a7:01:29:e5:db:d6:2b:5a: 55:c9:d8:16 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUb7PKAKDBomG7AtgaJpUgden297AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTA5ZGFiNThmYzhiZWEyZGZmZTQwNWU5NzIwYTI1M2Ri OWQ0NWRkNWYxNWMwZGYwNzBjYTk0OGFkYWFjM2RlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCIY5dYcyoALWqHvgdLgtkODzXXizH+okYc65qJjRvoX0qx ISUff3tTydlubq9PFjCAYOh3ATYOBmTsAxiuF/l3VasNtw4/KqluDps3xMuIk2vn GpJ/y8/nRIC8nwKuXrZTzknnSg9BppAuenhEJFxjHX3lXEcyCcBXh82JszOib6xi F0v7c05Z7PAzhSN1LSEDjDWN5g+eLK8k2B+3JK9AYUbHcMPnPhUmyrTdw6ntYxcT Gs9o8mOQe18XMN6qZqYhtDDPGqcTGy0O06UAbkPPRbPPEodOtPxv+wfQQ9IGrn+e Qcn/yhD6SNg+71x1CQ9PBZhZ5ZwgENe4oSRz+JgdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUG7V8pVcgYvCSWtyOw4Z1ZUUswzkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhNDc0YjJlLWE2ZmQtNDI5OC1iNWRmLWZmOWNhYTI2ZjkxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4NDANBgkqhkiG9w0BAQsFAAOCAQEAjYaaSD3fYrd2jgBZTy4s69GWZeVd duEW+t/7w/GASa3ab1JwrrcqulCpmoddVWSkXDoiBDr3SKMBAopTbAna1DhNylEk D4rKD7BVm8RuDn6XGZL1bBVjBNcmHDXuSHEMB2ly3hBNPLNzzcjPoNmyPXvnIVZ7 ixRt+zJseKA8UiCpa06RIgzVh63v/CYcjaIEbSguzls/ajWaEB+75V4TuNEexkDa C3uUli5E0JNAeT9Ad/S4A/GyJSMq4DxurNL45507VohllifF0dhTw54VunDTmKV3 wwfKLXsiwWm5CDZp6LHkIvgFEAttyR9UnWX5Zn8Q4qcBKeXb1itaVcnYFg== -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:15 2024 by rpki-client on console-fra.rpki-client.org