$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64c19aa3-f04a-4ad3-a8af-582cef894edf.roa File: 64c19aa3-f04a-4ad3-a8af-582cef894edf.roa (raw, json) Hash identifier: s0B+ko2ZhMMJmFmiblwyAOzMajLEHW3XlYhqF2LUm0c= Subject key identifier: 13:6C:45:EC:26:32:15:EC:53:33:5D:0B:32:0E:05:65:FB:CD:6A:5C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E20D48435C1248D62D50790909D2338B903DD9D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64c19aa3-f04a-4ad3-a8af-582cef894edf.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 161.228.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:20:d4:84:35:c1:24:8d:62:d5:07:90:90:9d:23:38:b9:03:dd:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=1d9d9253970dde5953510fb1e7704708d16ae8ad944ae45200c22e9a7e28e53f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c4:ec:3c:73:df:78:27:06:7d:3e:45:32:b7: 8b:5a:b1:db:de:41:4b:9c:22:67:8e:df:6d:6a:48: f1:42:8b:70:60:35:6c:b3:d7:a8:77:fd:44:da:29: 45:28:14:0f:99:6f:09:0a:0d:d2:0b:68:ee:51:bb: c0:6a:3b:e4:73:89:57:c1:2c:66:74:98:ad:ee:be: d3:d7:d5:cf:92:95:6d:42:63:9d:19:6b:9c:9b:aa: b4:03:78:0d:54:1f:da:c0:9f:b0:17:5a:f0:e5:18: fe:49:06:42:3f:f6:f0:ff:a2:61:19:a8:3a:90:d2: 2a:92:8d:9a:3d:99:c0:54:f9:eb:f4:5c:f2:cd:75: e6:0d:dc:8c:e6:fe:b0:13:0a:63:69:c3:9c:d9:f1: 89:1c:8e:90:ef:55:ad:37:43:7d:2d:bd:46:6c:fc: a8:68:0c:90:32:a1:bd:08:f8:5f:cc:33:5e:f1:41: 5c:cd:ec:35:3e:81:7d:30:e6:ae:dd:54:37:ed:81: 2f:03:82:b4:50:e5:a8:f0:1c:7f:4a:98:77:ce:18: 96:f6:64:cf:a2:84:62:68:cf:75:72:f8:7c:6d:24: 3a:34:37:69:ac:3a:a1:4f:42:9d:9a:38:d1:6d:6e: 0c:22:9b:4e:50:f0:4a:b5:8e:60:eb:10:d7:e1:a2: fd:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:6C:45:EC:26:32:15:EC:53:33:5D:0B:32:0E:05:65:FB:CD:6A:5C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64c19aa3-f04a-4ad3-a8af-582cef894edf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.228.192.0/18 Signature Algorithm: sha256WithRSAEncryption ce:df:3d:c7:ac:e3:4d:31:d4:4d:d4:ca:5e:9a:64:16:81:a0: 7e:8e:27:b2:d9:fd:1d:fa:ae:a3:3f:eb:d2:08:97:2e:5a:20: 0e:1b:3e:97:0d:9b:55:88:bc:36:58:e4:8d:7e:6e:df:ab:f6: ff:3a:ca:9c:15:25:29:d1:5f:f3:f5:ef:0d:86:e7:7a:ce:5a: f4:47:bb:46:7a:ac:10:a2:ad:a8:cf:81:ed:44:1f:56:fd:ce: fa:82:91:d7:a1:29:79:1e:92:5d:8c:33:ae:9f:e0:7a:cb:e2: d6:d2:08:b3:02:f8:40:4d:2a:de:b5:a7:01:8f:b7:39:1d:e5: cc:4a:a4:de:fb:c8:5f:e2:ae:67:56:ab:9f:aa:67:34:60:12: b9:d2:62:a8:4d:b2:71:22:8a:08:80:fd:81:7f:d4:79:f7:33: 7c:d6:ee:8b:98:ee:4c:38:00:ea:84:80:bc:b7:5c:03:44:80: 04:7d:f0:db:bb:ac:51:ec:a0:12:98:2f:92:c8:09:a8:29:4d: ad:79:16:1a:c4:04:07:c3:da:05:bb:5e:64:37:f0:0c:57:30: ae:61:f2:0b:91:97:0d:df:cf:7e:f6:b7:d8:17:e4:31:6a:48: 37:11:a1:48:f4:56:d8:f3:fa:d6:f5:65:bb:a5:53:fd:e6:ec: 9c:2e:a8:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXiDUhDXBJI1i1QeQkJ0jOLkD3Z0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDlkOTI1Mzk3MGRkZTU5NTM1MTBmYjFlNzcwNDcwOGQx NmFlOGFkOTQ0YWU0NTIwMGMyMmU5YTdlMjhlNTNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClxOw8c994JwZ9PkUyt4tasdveQUucImeO321qSPFCi3Bg NWyz16h3/UTaKUUoFA+ZbwkKDdILaO5Ru8BqO+RziVfBLGZ0mK3uvtPX1c+SlW1C Y50Za5ybqrQDeA1UH9rAn7AXWvDlGP5JBkI/9vD/omEZqDqQ0iqSjZo9mcBU+ev0 XPLNdeYN3Izm/rATCmNpw5zZ8YkcjpDvVa03Q30tvUZs/KhoDJAyob0I+F/MM17x QVzN7DU+gX0w5q7dVDftgS8DgrRQ5ajwHH9KmHfOGJb2ZM+ihGJoz3Vy+HxtJDo0 N2msOqFPQp2aONFtbgwim05Q8Eq1jmDrENfhov0nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE2xF7CYyFexTM10LMg4FZfvNalwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0YzE5YWEzLWYwNGEtNGFkMy1hOGFmLTU4MmNlZjg5NGVkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAah5MAwDQYJKoZIhvcNAQELBQADggEBAM7fPces400x1E3Uyl6aZBaBoH6O J7LZ/R36rqM/69IIly5aIA4bPpcNm1WIvDZY5I1+bt+r9v86ypwVJSnRX/P17w2G 53rOWvRHu0Z6rBCirajPge1EH1b9zvqCkdehKXkekl2MM66f4HrL4tbSCLMC+EBN Kt61pwGPtzkd5cxKpN77yF/irmdWq5+qZzRgErnSYqhNsnEiigiA/YF/1Hn3M3zW 7ouY7kw4AOqEgLy3XANEgAR98Nu7rFHsoBKYL5LICagpTa15FhrEBAfD2gW7XmQ3 8AxXMK5h8guRlw3fz372t9gX5DFqSDcRoUj0Vtjz+tb1ZbulU/3m7JwuqOs= -----END CERTIFICATE-----Generated at Thu May 9 01:25:32 2024 by rpki-client on console-fra.rpki-client.org