$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b853ac2-828f-4aaf-9728-f1a950d4f541.roa File: 5b853ac2-828f-4aaf-9728-f1a950d4f541.roa (raw, json) Hash identifier: Uice1nNfunBhjRhKl9cdsrNRTwhkz0OxrDmhAg1QNCg= Subject key identifier: 18:35:B8:FD:4D:70:B5:54:1F:D3:6F:3A:27:10:E4:F0:5D:FA:3C:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41DC0D44F07CEBEC5C3A900417F8F9E02FC01648 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b853ac2-828f-4aaf-9728-f1a950d4f541.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 108.156.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:dc:0d:44:f0:7c:eb:ec:5c:3a:90:04:17:f8:f9:e0:2f:c0:16:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=6b57880b445d95e17f21eca0e9e19e00d1fa2b071870d778dee409b747842739, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:de:f6:ae:4d:63:1e:5e:7e:5c:da:36:47:cd: 42:94:22:51:80:4f:d1:1d:c5:79:d4:a9:ec:63:25: 39:a4:23:92:a8:36:ef:1f:97:6b:16:be:a3:0d:f6: 11:64:9d:4c:1f:cd:84:bc:77:e5:dc:9b:89:e1:ed: cc:e8:a5:46:40:58:a0:35:3b:09:41:7d:d5:d8:09: b4:05:15:f2:e5:dd:37:a6:9e:90:87:07:af:94:3a: 8b:1c:9c:0a:81:c1:9f:6f:40:f4:ef:e3:48:10:15: be:c8:61:b5:a3:40:0a:07:ca:b1:12:6b:aa:d3:10: 37:17:d6:b4:5e:b5:90:e6:7a:55:60:b8:47:1c:98: e6:4a:fa:07:37:25:f5:43:83:d0:d9:03:c8:73:85: 93:95:14:b2:fd:f9:53:3d:87:05:8b:2b:f7:d9:c3: 3e:e6:f5:91:51:a7:49:12:f9:c3:fe:8a:e3:f4:6d: 40:b6:f9:2d:02:a1:3a:52:97:31:02:6f:c3:0d:c5: 95:06:dd:9e:ae:b2:ed:3f:0e:eb:35:fc:c8:fb:35: a1:e1:82:46:13:7e:61:05:01:80:b3:2b:67:9d:a7: 7c:dc:95:d5:94:8e:1e:64:54:e5:25:0b:f6:8b:6c: 7f:db:54:e9:47:85:af:ab:b0:b6:46:47:dc:fc:69: c3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:35:B8:FD:4D:70:B5:54:1F:D3:6F:3A:27:10:E4:F0:5D:FA:3C:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b853ac2-828f-4aaf-9728-f1a950d4f541.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.156.0.0/14 Signature Algorithm: sha256WithRSAEncryption 97:52:d3:25:95:55:6f:04:80:8b:ae:dd:91:bf:b6:20:79:16: 37:f0:28:21:e3:43:0e:98:93:af:68:e2:0f:34:79:a3:84:ce: 47:96:23:0b:48:49:ed:b8:9b:9f:14:15:30:86:94:0e:f9:bb: 6a:46:26:b1:08:6a:e2:87:7c:c7:e4:da:f0:07:f1:8b:d2:8c: 5c:57:54:be:cf:09:e5:fe:8a:6f:16:3c:ba:ab:b5:7e:ea:93: 0a:52:dc:64:ba:00:5a:43:8e:19:51:cb:74:54:bd:f8:93:4c: 10:3b:50:47:7c:d2:c1:ac:4a:34:f5:85:45:92:6c:a1:31:4a: 96:57:6e:3d:95:9d:e5:37:dc:e8:f7:24:35:a9:2e:3f:32:61: 19:cc:76:61:f4:e9:c1:4b:6c:b5:ae:84:73:59:6c:1c:28:79: de:70:d5:98:55:85:0c:5f:d9:eb:bf:2e:01:5e:f3:2b:56:56: 94:99:9f:a6:d5:85:54:68:e5:42:e0:d9:b6:06:44:c1:41:b0: 4d:5a:56:11:de:49:9f:7f:cd:a6:9f:dd:06:05:a9:57:8c:7b: 3a:e5:9f:eb:fe:a9:81:5c:58:4d:da:a6:cc:df:31:10:32:bc: f4:2e:6b:e9:86:6f:20:50:0a:03:b9:88:8a:49:b4:6c:9e:b3: 9e:41:a3:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQdwNRPB86+xcOpAEF/j54C/AFkgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjU3ODgwYjQ0NWQ5NWUxN2YyMWVjYTBlOWUxOWUwMGQx ZmEyYjA3MTg3MGQ3NzhkZWU0MDliNzQ3ODQyNzM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDj3vauTWMeXn5c2jZHzUKUIlGAT9EdxXnUqexjJTmkI5Ko Nu8fl2sWvqMN9hFknUwfzYS8d+Xcm4nh7czopUZAWKA1OwlBfdXYCbQFFfLl3Tem npCHB6+UOoscnAqBwZ9vQPTv40gQFb7IYbWjQAoHyrESa6rTEDcX1rRetZDmelVg uEccmOZK+gc3JfVDg9DZA8hzhZOVFLL9+VM9hwWLK/fZwz7m9ZFRp0kS+cP+iuP0 bUC2+S0CoTpSlzECb8MNxZUG3Z6usu0/Dus1/Mj7NaHhgkYTfmEFAYCzK2edp3zc ldWUjh5kVOUlC/aLbH/bVOlHha+rsLZGR9z8acPvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGDW4/U1wtVQf0286JxDk8F36PN0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViODUzYWMyLTgyOGYtNGFhZi05NzI4LWYxYTk1MGQ0ZjU0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJsnDANBgkqhkiG9w0BAQsFAAOCAQEAl1LTJZVVbwSAi67dkb+2IHkWN/Ao IeNDDpiTr2jiDzR5o4TOR5YjC0hJ7bibnxQVMIaUDvm7akYmsQhq4od8x+Ta8Afx i9KMXFdUvs8J5f6KbxY8uqu1fuqTClLcZLoAWkOOGVHLdFS9+JNMEDtQR3zSwaxK NPWFRZJsoTFKllduPZWd5Tfc6PckNakuPzJhGcx2YfTpwUtsta6Ec1lsHCh53nDV mFWFDF/Z678uAV7zK1ZWlJmfptWFVGjlQuDZtgZEwUGwTVpWEd5Jn3/Npp/dBgWp V4x7OuWf6/6pgVxYTdqmzN8xEDK89C5r6YZvIFAKA7mIikm0bJ6znkGjKw== -----END CERTIFICATE-----Generated at Thu May 2 06:12:37 2024 by rpki-client on console-fra.rpki-client.org