$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a88b58b-3e28-4123-bc14-f0898160e546.roa File: 5a88b58b-3e28-4123-bc14-f0898160e546.roa (raw, json) Hash identifier: FUg6ImAtIP+0wPBxutdYGMfAB+9vzA411o9ipzvFJHM= Subject key identifier: 7E:E7:AA:84:E8:0A:D0:F3:1B:07:A1:E5:45:2D:88:78:20:F4:8C:66 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BF55586CD5497E1DE39551591E4170DDAD30061 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a88b58b-3e28-4123-bc14-f0898160e546.roa Signing time: Tue 07 May 2024 00:00:00 +0000 ROA not before: Tue 07 May 2024 00:00:00 +0000 ROA not after: Tue 11 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 71.143.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:f5:55:86:cd:54:97:e1:de:39:55:15:91:e4:17:0d:da:d3:00:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:00 2024 GMT Not After : Jun 11 23:59:59 2024 GMT Subject: serialNumber=b4e1a5470c51a70d562c4a6842a094618a86733eab536664e405610f150b1636, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:7a:2a:7d:d6:a3:bb:33:00:e2:23:45:73:94: bd:b8:37:13:a8:7a:5c:97:02:1d:f0:d2:3d:f3:c5: f7:81:cc:07:94:b2:ec:c7:22:4e:e9:ea:ea:19:c5: c1:8f:8e:28:35:53:54:56:94:e1:a9:95:4b:d9:87: 44:93:5d:0a:94:de:ae:48:ba:94:09:ac:72:a9:c2: 56:fe:60:82:db:48:0e:a1:3a:87:9c:ec:d0:0e:60: 6c:14:4a:e6:c7:fc:92:3b:52:ef:e9:4b:72:15:c9: 5a:95:8e:42:de:5c:64:f9:89:16:2d:f0:88:ce:04: 55:e9:86:aa:5f:e8:45:3d:43:ae:a9:45:a5:cb:f2: f0:75:2d:74:c1:37:e7:67:95:20:f4:ff:b6:a6:92: 94:71:94:55:98:58:08:50:a0:26:37:7c:f5:ea:51: 1e:22:f2:6c:b1:b1:30:e6:65:b0:34:b4:66:2f:9d: 07:72:08:b0:be:e0:e5:31:2a:00:31:42:92:3f:20: a3:3a:d5:0a:3d:4e:ec:a7:4d:92:ca:02:4e:39:38: 1d:3b:20:d4:b1:ec:24:19:ba:c7:82:c7:ee:53:e9: bd:bb:b2:54:1b:6b:81:55:13:12:7e:c8:c9:ec:25: 65:18:0d:87:c3:25:5f:70:3f:c4:10:52:23:68:63: de:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E7:AA:84:E8:0A:D0:F3:1B:07:A1:E5:45:2D:88:78:20:F4:8C:66 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a88b58b-3e28-4123-bc14-f0898160e546.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.143.0.0/18 Signature Algorithm: sha256WithRSAEncryption 5c:96:9c:6c:6c:71:e9:18:62:2c:99:80:39:22:d0:00:4b:73: 91:1b:65:da:d1:10:1e:f7:e6:27:8b:e1:3a:31:fc:e4:77:d3: b6:16:b4:46:b7:fa:59:6a:87:76:bf:d7:de:db:a6:6c:81:8e: 5f:b1:e6:79:d5:3b:d0:e1:08:fb:9d:7f:16:24:fa:a5:96:ae: 12:01:b4:6b:1a:36:16:13:59:43:f0:ab:c5:ce:1a:86:ec:02: 75:c9:6d:ee:34:93:f8:65:ef:71:e8:c1:30:ac:3b:81:b3:7b: bb:b8:26:9a:d8:d0:2a:4f:51:be:48:2d:65:81:b7:4a:86:1e: 56:55:d1:d6:33:b2:24:f9:23:fd:76:08:22:fd:42:d1:b0:e6: 3b:4f:51:f3:16:ae:6e:f7:d3:78:29:0a:d6:3b:37:1e:9c:23: e7:17:cc:81:54:ad:04:a1:aa:61:55:c0:33:48:89:d9:5a:36: cc:a6:30:31:cf:b6:c4:2a:82:13:11:2f:95:1f:7e:01:80:5c: 17:1c:36:25:bd:95:a0:f7:5f:f1:e1:67:60:d7:12:07:48:59: 97:4c:a4:17:84:6d:25:8f:ff:bf:d0:b4:fa:be:9f:d5:18:e1: db:38:9b:f6:84:27:8a:3f:78:5d:c8:07:15:9d:4d:41:f5:37: dc:f4:36:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe/VVhs1Ul+HeOVUVkeQXDdrTAGEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA3MDAwMDAwWhcNMjQwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNGUxYTU0NzBjNTFhNzBkNTYyYzRhNjg0MmEwOTQ2MThh ODY3MzNlYWI1MzY2NjRlNDA1NjEwZjE1MGIxNjM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZeip91qO7MwDiI0VzlL24NxOoelyXAh3w0j3zxfeBzAeU suzHIk7p6uoZxcGPjig1U1RWlOGplUvZh0STXQqU3q5IupQJrHKpwlb+YILbSA6h Ooec7NAOYGwUSubH/JI7Uu/pS3IVyVqVjkLeXGT5iRYt8IjOBFXphqpf6EU9Q66p RaXL8vB1LXTBN+dnlSD0/7amkpRxlFWYWAhQoCY3fPXqUR4i8myxsTDmZbA0tGYv nQdyCLC+4OUxKgAxQpI/IKM61Qo9TuynTZLKAk45OB07INSx7CQZuseCx+5T6b27 slQba4FVExJ+yMnsJWUYDYfDJV9wP8QQUiNoY96jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfueqhOgK0PMbB6HlRS2IeCD0jGYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhODhiNThiLTNlMjgtNDEyMy1iYzE0LWYwODk4MTYwZTU0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZHjwAwDQYJKoZIhvcNAQELBQADggEBAFyWnGxscekYYiyZgDki0ABLc5Eb ZdrREB735ieL4Tox/OR307YWtEa3+llqh3a/197bpmyBjl+x5nnVO9DhCPudfxYk +qWWrhIBtGsaNhYTWUPwq8XOGobsAnXJbe40k/hl73HowTCsO4Gze7u4JprY0CpP Ub5ILWWBt0qGHlZV0dYzsiT5I/12CCL9QtGw5jtPUfMWrm7303gpCtY7Nx6cI+cX zIFUrQShqmFVwDNIidlaNsymMDHPtsQqghMRL5UffgGAXBccNiW9laD3X/HhZ2DX EgdIWZdMpBeEbSWP/7/QtPq+n9UY4ds4m/aEJ4o/eF3IBxWdTUH1N9z0Nmg= -----END CERTIFICATE-----Generated at Thu May 9 01:25:30 2024 by rpki-client on console-fra.rpki-client.org