$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65649c04-0115-4320-9008-f7f0ddd275cc.roa File: 65649c04-0115-4320-9008-f7f0ddd275cc.roa (raw, json) Hash identifier: Hnykrh1ZHYR8nKHPKYnOPPfDy4zu5oaq6C8SURfnPc0= Subject key identifier: 2C:F5:E1:27:95:7F:9C:C8:1E:AF:16:E9:BD:8F:C2:B1:DC:3A:AC:2D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 53E23DEFE2EFA9CCE3BD316EFBCFB30E7E00B484 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65649c04-0115-4320-9008-f7f0ddd275cc.roa Signing time: Thu 18 Apr 2024 00:00:00 +0000 ROA not before: Thu 18 Apr 2024 00:00:00 +0000 ROA not after: Thu 23 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 207.95.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e2:3d:ef:e2:ef:a9:cc:e3:bd:31:6e:fb:cf:b3:0e:7e:00:b4:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:00:00 2024 GMT Not After : May 23 23:59:59 2024 GMT Subject: serialNumber=2771114f52ac7f8757348dff45708830ff61d0eb75fb430938fe5bb1c11a067c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b3:c2:c6:84:96:1e:4c:43:9b:e6:14:3d:c7: 9b:63:b0:53:be:ba:c2:ee:97:97:05:e4:e4:82:79: 34:52:96:40:43:6a:36:7b:d2:fa:74:50:98:17:7a: 57:5e:56:fb:04:a3:76:fd:b4:41:f0:7a:74:dc:76: 1c:0c:8a:79:5a:c4:42:13:27:be:c6:af:de:dd:11: c8:3b:be:b3:2c:09:45:4d:86:25:6f:93:f0:cb:bc: ff:02:5a:73:ad:73:ba:54:b2:14:49:c9:60:ef:43: 16:b9:12:7d:03:12:a8:1c:b5:a2:2d:82:c3:c9:21: 70:de:f4:d5:d0:ea:fc:88:e9:bd:df:d8:83:38:46: 81:64:e6:f7:36:fa:6b:7e:b7:9b:7f:ab:79:61:7c: d7:bc:78:41:a0:7f:58:d1:dd:31:3d:3b:7f:40:47: 58:fc:68:e9:f1:59:f0:ea:e3:f8:4a:d2:c6:b2:27: 44:69:29:61:6a:e2:0e:ab:d2:a1:02:42:5b:ce:16: 0a:78:7f:d0:f1:96:e4:c5:a5:e8:92:5e:33:b3:b4: 08:d2:b2:3e:ff:c4:f6:d6:64:ce:a3:7b:e4:e3:00: 4f:2c:50:ba:03:bb:ca:80:01:93:55:1c:ee:89:b9: d8:90:0f:7b:a0:05:c5:ac:d8:ef:c7:72:e5:dc:e6: 34:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:F5:E1:27:95:7F:9C:C8:1E:AF:16:E9:BD:8F:C2:B1:DC:3A:AC:2D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65649c04-0115-4320-9008-f7f0ddd275cc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.95.192.0/19 Signature Algorithm: sha256WithRSAEncryption b3:c1:d5:71:0b:7d:2a:2f:97:d0:ff:5b:af:b3:f5:4a:33:9b: 7c:ca:7f:7d:04:51:96:05:a2:33:13:3d:6d:f0:62:1d:5e:bc: 6e:ec:54:8a:f1:af:b4:6c:26:a6:ce:22:2e:27:d9:c3:73:b8: 84:18:84:cb:0f:62:30:8f:59:42:e1:02:f7:77:a7:e1:eb:d9: 12:ca:8e:98:94:19:f6:c5:27:7a:62:6b:ce:8b:e3:87:da:4f: 4f:42:6f:76:89:c8:11:1b:93:06:d6:c0:b0:f6:bc:67:e5:0a: 82:df:15:51:ae:a7:78:08:be:8d:10:39:c5:65:d1:f5:dd:9c: b7:91:7d:ca:c9:1d:f5:e2:69:8c:0f:62:b5:2a:f1:3e:17:94: 14:0f:00:96:9c:53:ce:a8:13:c5:23:1a:36:a6:19:f5:2d:e8: a2:f9:ae:3d:27:f7:89:09:90:c4:97:db:33:21:26:63:30:46: 25:70:d1:4b:fb:22:a2:cb:5c:dd:0b:49:93:e6:65:7c:c5:27: 02:69:ec:73:5a:7e:02:23:19:da:66:89:5f:9e:f8:4b:2d:85: a7:6e:e0:28:31:ab:3c:04:aa:82:f9:56:d5:2d:11:b3:97:f2: ea:e5:44:ea:6f:05:92:f1:45:e1:6f:46:37:e6:b2:c7:e0:f7: c3:46:8c:0c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU+I97+LvqczjvTFu+8+zDn4AtIQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE4MDAwMDAwWhcNMjQwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzcxMTE0ZjUyYWM3Zjg3NTczNDhkZmY0NTcwODgzMGZm NjFkMGViNzVmYjQzMDkzOGZlNWJiMWMxMWEwNjdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCys8LGhJYeTEOb5hQ9x5tjsFO+usLul5cF5OSCeTRSlkBD ajZ70vp0UJgXeldeVvsEo3b9tEHwenTcdhwMinlaxEITJ77Gr97dEcg7vrMsCUVN hiVvk/DLvP8CWnOtc7pUshRJyWDvQxa5En0DEqgctaItgsPJIXDe9NXQ6vyI6b3f 2IM4RoFk5vc2+mt+t5t/q3lhfNe8eEGgf1jR3TE9O39AR1j8aOnxWfDq4/hK0say J0RpKWFq4g6r0qECQlvOFgp4f9DxluTFpeiSXjOztAjSsj7/xPbWZM6je+TjAE8s ULoDu8qAAZNVHO6JudiQD3ugBcWs2O/HcuXc5jRhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULPXhJ5V/nMgerxbpvY/Csdw6rC0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1NjQ5YzA0LTAxMTUtNDMyMC05MDA4LWY3ZjBkZGQyNzVjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXPX8AwDQYJKoZIhvcNAQELBQADggEBALPB1XELfSovl9D/W6+z9Uozm3zK f30EUZYFojMTPW3wYh1evG7sVIrxr7RsJqbOIi4n2cNzuIQYhMsPYjCPWULhAvd3 p+Hr2RLKjpiUGfbFJ3pia86L44faT09Cb3aJyBEbkwbWwLD2vGflCoLfFVGup3gI vo0QOcVl0fXdnLeRfcrJHfXiaYwPYrUq8T4XlBQPAJacU86oE8UjGjamGfUt6KL5 rj0n94kJkMSX2zMhJmMwRiVw0Uv7IqLLXN0LSZPmZXzFJwJp7HNafgIjGdpmiV+e +Esthadu4CgxqzwEqoL5VtUtEbOX8urlROpvBZLxReFvRjfmssfg98NGjAw= -----END CERTIFICATE-----Generated at Thu May 2 22:12:08 2024 by rpki-client on console-fra.rpki-client.org