$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/633246d9-165c-4d33-a44d-b32b4bd508ba.roa File: 633246d9-165c-4d33-a44d-b32b4bd508ba.roa (raw, json) Hash identifier: gGZuKiT8gCmzDt3mqKvbwSDOMKEwO9khlptr2CcJE3k= Subject key identifier: AD:BA:20:CD:20:CD:82:F5:BD:EF:49:D2:87:82:2C:F8:2D:AA:74:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 75B1BB0CA66203CEDFFF85E53E1BAF9F4AC190F3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/633246d9-165c-4d33-a44d-b32b4bd508ba.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 149.180.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:b1:bb:0c:a6:62:03:ce:df:ff:85:e5:3e:1b:af:9f:4a:c1:90:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=aa8a5ced61f3786fdad00a22737bb0b8d640980643f3c168a4229c16f8df8db6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:34:0b:4b:97:f3:2f:27:2a:d0:f0:30:04:e0: 13:fe:6e:0a:88:bf:b5:77:c8:90:5f:53:c4:a0:43: da:ba:6e:58:e3:27:86:43:9d:09:19:2a:e5:57:40: 9e:42:46:63:6c:17:53:b3:74:1d:30:e3:7a:54:41: 98:f8:3a:4d:e7:ff:90:ce:94:3c:bf:3d:3c:45:02: 59:64:81:3d:45:2d:2c:30:42:c0:76:f8:34:d7:cf: 2f:c9:f9:e9:a8:b4:98:5b:f7:f0:9e:dd:b5:37:0f: 8a:35:b1:f2:1c:4d:2e:ac:33:0b:44:da:92:be:f2: 8f:9f:3f:ad:28:35:db:0a:7e:bf:f6:cd:6e:3d:af: 94:a0:f5:15:87:fc:76:b5:56:1f:5f:04:e0:27:17: 2d:e3:ca:ba:aa:33:4c:85:bb:71:92:83:ca:72:2a: e0:c7:08:c9:90:4f:e0:9d:e3:d4:f8:a1:1d:f7:3c: 5d:1c:66:c2:68:62:1e:6b:79:59:22:75:e4:eb:00: 88:1a:36:02:20:bc:2e:e2:af:dc:2c:d2:3c:01:f6: 2a:ad:fe:32:2a:55:32:23:05:d5:73:97:56:a1:40: bb:8b:fe:1d:73:eb:f1:de:87:c1:50:a9:a3:6f:c6: 09:c8:19:1f:c9:fe:35:3c:8c:d0:33:96:6f:c9:d7: 5b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:BA:20:CD:20:CD:82:F5:BD:EF:49:D2:87:82:2C:F8:2D:AA:74:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/633246d9-165c-4d33-a44d-b32b4bd508ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.180.0.0/17 Signature Algorithm: sha256WithRSAEncryption 31:3b:9c:0e:80:a1:40:27:fc:6c:7c:96:71:43:55:bf:f6:65: ee:6e:c2:a6:ee:69:57:b5:8c:19:85:89:ad:6a:c0:d8:68:9e: f6:0b:54:ff:a1:9f:74:5e:45:fb:0f:b1:be:f2:63:7e:22:73: ac:c1:7c:a3:e3:9d:85:53:19:27:3f:b6:90:2e:7e:c2:03:5e: 81:75:ac:34:cd:2e:76:b5:af:48:60:bd:a0:e7:60:7d:e3:9d: c2:32:83:ba:49:95:5d:94:4b:80:7d:67:8f:bb:70:50:68:d1: 8d:2f:f8:27:0c:87:ee:e3:5b:02:bc:da:d2:ba:9e:3e:9f:ab: bb:3a:d5:7f:b6:b8:fd:cd:c5:6d:39:6e:c6:4e:ea:8d:a3:d5: f4:6d:7d:f6:a4:5d:ff:69:e9:8b:35:78:c2:9b:4b:f8:17:2d: c9:0d:6f:dc:d4:12:ce:ba:92:6d:69:05:fa:d1:58:c9:ed:b2: bb:37:fb:0f:be:d8:d5:68:cc:fd:01:bd:47:2c:c9:9e:13:a4: 7f:f5:4e:6a:a6:2d:ba:23:a2:eb:be:d6:96:a8:eb:eb:8a:0a: 40:13:68:94:72:b8:44:c0:9d:f9:37:98:bd:96:57:3c:65:3c: 86:cf:58:fd:7c:f7:6b:dd:84:af:63:e8:25:4b:b8:8d:dc:45: b0:68:5b:af -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdbG7DKZiA87f/4XlPhuvn0rBkPMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYThhNWNlZDYxZjM3ODZmZGFkMDBhMjI3MzdiYjBiOGQ2 NDA5ODA2NDNmM2MxNjhhNDIyOWMxNmY4ZGY4ZGI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5NAtLl/MvJyrQ8DAE4BP+bgqIv7V3yJBfU8SgQ9q6bljj J4ZDnQkZKuVXQJ5CRmNsF1OzdB0w43pUQZj4Ok3n/5DOlDy/PTxFAllkgT1FLSww QsB2+DTXzy/J+emotJhb9/Ce3bU3D4o1sfIcTS6sMwtE2pK+8o+fP60oNdsKfr/2 zW49r5Sg9RWH/Ha1Vh9fBOAnFy3jyrqqM0yFu3GSg8pyKuDHCMmQT+Cd49T4oR33 PF0cZsJoYh5reVkideTrAIgaNgIgvC7ir9ws0jwB9iqt/jIqVTIjBdVzl1ahQLuL /h1z6/Heh8FQqaNvxgnIGR/J/jU8jNAzlm/J11u9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrbogzSDNgvW970nSh4Is+C2qdCwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzMzI0NmQ5LTE2NWMtNGQzMy1hNDRkLWIzMmI0YmQ1MDhiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeVtAAwDQYJKoZIhvcNAQELBQADggEBADE7nA6AoUAn/Gx8lnFDVb/2Ze5u wqbuaVe1jBmFia1qwNhonvYLVP+hn3ReRfsPsb7yY34ic6zBfKPjnYVTGSc/tpAu fsIDXoF1rDTNLna1r0hgvaDnYH3jncIyg7pJlV2US4B9Z4+7cFBo0Y0v+CcMh+7j WwK82tK6nj6fq7s61X+2uP3NxW05bsZO6o2j1fRtffakXf9p6Ys1eMKbS/gXLckN b9zUEs66km1pBfrRWMntsrs3+w++2NVozP0BvUcsyZ4TpH/1TmqmLbojouu+1pao 6+uKCkATaJRyuETAnfk3mL2WVzxlPIbPWP1892vdhK9j6CVLuI3cRbBoW68= -----END CERTIFICATE-----Generated at Thu May 2 11:33:17 2024 by rpki-client on console-fra.rpki-client.org