$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6302a5ad-7203-4a28-9edc-aef0cebf8d18.roa File: 6302a5ad-7203-4a28-9edc-aef0cebf8d18.roa (raw, json) Hash identifier: Db7f7AGkstjjrmH8+hDQoXP54DBVewldjPINSoyBYT4= Subject key identifier: CD:E3:0A:81:22:41:9A:08:57:35:07:D0:C3:51:1A:8B:8A:6A:5A:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B1141FADA8C59218CD10E194872DB2A3D657203 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6302a5ad-7203-4a28-9edc-aef0cebf8d18.roa Signing time: Wed 10 Apr 2024 00:00:00 +0000 ROA not before: Wed 10 Apr 2024 00:00:00 +0000 ROA not after: Wed 15 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 139.96.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:11:41:fa:da:8c:59:21:8c:d1:0e:19:48:72:db:2a:3d:65:72:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 10 00:00:00 2024 GMT Not After : May 15 23:59:59 2024 GMT Subject: serialNumber=84380d16f0f79953771e5932a647683b05c58fc00312e3c4ea88dba5bd433698, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:00:f8:27:a1:f3:04:54:3c:7c:4f:df:46:62: 7b:91:4b:0d:c3:90:74:f5:e7:d7:4f:0f:7f:30:64: a2:46:33:2f:78:d5:71:4e:51:0b:22:3b:4b:21:df: 00:b6:02:02:7f:7d:94:21:f4:49:65:07:73:d4:56: 00:66:fc:45:bb:64:85:64:7a:2b:9c:5d:82:cf:36: 09:5f:93:a5:9a:c2:d4:0b:1d:46:ef:9d:c5:2e:d8: 8d:de:fe:17:04:83:29:63:99:5a:28:1b:8a:c1:b1: 87:30:38:ef:0e:b4:d0:2b:ed:6c:fa:b5:03:d0:fb: 71:72:b0:d3:b7:7c:4d:7c:fd:9e:f8:a9:0c:dd:33: 8b:41:cf:bc:df:40:ce:27:e5:b1:9a:50:32:77:91: 85:56:69:29:e5:f3:66:50:a0:2b:71:b3:3b:aa:0b: d3:7a:7e:47:ec:78:32:a5:28:80:3e:98:0b:a0:6f: 92:49:a8:08:92:6c:a4:18:9c:e8:d3:1e:e2:f0:97: 72:97:45:38:67:ee:48:b0:21:67:24:fb:85:95:be: 05:73:c6:66:b7:c1:8d:f0:f3:93:05:38:97:41:52: f4:d4:b0:c1:25:df:9e:75:aa:81:ae:db:5d:65:1e: 21:06:9b:58:fd:05:d3:96:f3:4f:8e:a8:b4:e7:d6: b1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E3:0A:81:22:41:9A:08:57:35:07:D0:C3:51:1A:8B:8A:6A:5A:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6302a5ad-7203-4a28-9edc-aef0cebf8d18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7f:d6:16:b8:2e:6e:14:3c:53:de:9b:7e:ff:50:40:21:2a:90: 9d:98:c9:e0:bf:60:15:e9:50:9f:8a:05:4e:ee:64:52:b9:6f: 03:87:d7:e6:c8:84:ac:0c:ce:36:df:b1:e6:85:a3:eb:a9:9c: 46:6a:69:a3:01:6f:0d:db:71:dc:6d:74:36:20:c7:90:36:2c: de:34:e7:b5:de:42:f8:e0:42:8e:4f:69:e7:a6:8f:37:58:96: c3:2b:4c:94:2a:6b:08:18:6c:e9:c3:02:13:a2:bf:f0:12:ed: 07:c9:19:93:d9:35:5b:c7:72:05:d5:1c:51:1e:05:6e:c2:bd: 46:a2:9c:84:c2:ed:a9:b1:10:6e:86:98:a4:02:58:ca:80:9a: 9b:a5:03:39:bb:d9:06:37:a0:40:e7:14:c7:ce:7d:40:41:c0: c5:40:53:7d:a1:c0:f5:11:c2:95:65:14:f7:59:21:e3:6e:d7: 0a:22:1b:48:eb:47:c1:4b:3e:50:1e:3c:6a:02:16:ed:26:b5: 68:93:9c:f8:c9:e8:54:47:ac:50:8a:d9:a1:7d:30:1c:71:7d: 0d:17:d0:56:ed:25:dc:62:78:62:33:88:fe:e5:4a:13:5e:bd: bb:c9:5c:2a:bd:2a:58:ea:df:0d:32:d2:da:69:39:87:ea:e9: 70:06:cf:df -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSxFB+tqMWSGM0Q4ZSHLbKj1lcgMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEwMDAwMDAwWhcNMjQwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDM4MGQxNmYwZjc5OTUzNzcxZTU5MzJhNjQ3NjgzYjA1 YzU4ZmMwMDMxMmUzYzRlYTg4ZGJhNWJkNDMzNjk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsAPgnofMEVDx8T99GYnuRSw3DkHT159dPD38wZKJGMy94 1XFOUQsiO0sh3wC2AgJ/fZQh9EllB3PUVgBm/EW7ZIVkeiucXYLPNglfk6WawtQL HUbvncUu2I3e/hcEgyljmVooG4rBsYcwOO8OtNAr7Wz6tQPQ+3FysNO3fE18/Z74 qQzdM4tBz7zfQM4n5bGaUDJ3kYVWaSnl82ZQoCtxszuqC9N6fkfseDKlKIA+mAug b5JJqAiSbKQYnOjTHuLwl3KXRThn7kiwIWck+4WVvgVzxma3wY3w85MFOJdBUvTU sMEl3551qoGu211lHiEGm1j9BdOW80+OqLTn1rEzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzeMKgSJBmghXNQfQw1Eai4pqWncwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzMDJhNWFkLTcyMDMtNGEyOC05ZWRjLWFlZjBjZWJmOGQxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLYDANBgkqhkiG9w0BAQsFAAOCAQEAf9YWuC5uFDxT3pt+/1BAISqQnZjJ 4L9gFelQn4oFTu5kUrlvA4fX5siErAzONt+x5oWj66mcRmppowFvDdtx3G10NiDH kDYs3jTntd5C+OBCjk9p56aPN1iWwytMlCprCBhs6cMCE6K/8BLtB8kZk9k1W8dy BdUcUR4FbsK9RqKchMLtqbEQboaYpAJYyoCam6UDObvZBjegQOcUx859QEHAxUBT faHA9RHClWUU91kh427XCiIbSOtHwUs+UB48agIW7Sa1aJOc+MnoVEesUIrZoX0w HHF9DRfQVu0l3GJ4YjOI/uVKE169u8lcKr0qWOrfDTLS2mk5h+rpcAbP3w== -----END CERTIFICATE-----Generated at Thu May 2 11:33:17 2024 by rpki-client on console-fra.rpki-client.org