$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67d2516f-54fd-4d78-ade4-170b44e700f9.roa File: 67d2516f-54fd-4d78-ade4-170b44e700f9.roa (raw, json) Hash identifier: lFDATp5MlCY/T23MyRPB4b6z0QX+9cQ5FzcamYuCpVw= Subject key identifier: 8E:57:37:05:A8:40:B0:02:DB:17:5C:F7:3A:71:F8:93:16:A9:B5:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B3107E10AFBD5FCB19782C665D0A8D7893BBF1B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67d2516f-54fd-4d78-ade4-170b44e700f9.roa Signing time: Thu 18 Apr 2024 00:00:00 +0000 ROA not before: Thu 18 Apr 2024 00:00:00 +0000 ROA not after: Thu 23 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 204.30.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:31:07:e1:0a:fb:d5:fc:b1:97:82:c6:65:d0:a8:d7:89:3b:bf:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:00:00 2024 GMT Not After : May 23 23:59:59 2024 GMT Subject: serialNumber=7be3017be42111fe2cbfe83d3da72a6cf71b6d76e3d36dbd9e060830c92e62b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8f:24:8d:8e:39:ad:a5:18:f9:4a:57:45:8e: 32:68:d7:25:c8:a8:51:e1:6c:a3:4a:a2:f4:9c:aa: 61:0e:4f:fb:5e:0e:55:99:da:57:a3:b4:a0:6e:11: 65:18:88:11:ee:ad:82:17:8a:5e:5c:a3:b0:99:96: 84:d9:d9:70:17:7e:f5:6e:c6:23:96:b4:f8:db:37: 9d:31:5e:1a:77:4b:88:b1:d5:7d:71:5a:d7:b7:62: af:5b:f0:2f:ab:eb:4f:a3:de:60:61:21:4f:6d:8a: b0:61:d8:ba:6a:1a:ef:01:4f:5a:5f:20:48:f3:21: 3b:bc:67:f0:8c:14:47:3d:fb:f1:27:a0:a2:cf:65: b3:30:ab:99:e4:21:fd:6f:6a:4b:4f:75:42:61:b5: 82:85:fa:2c:16:db:ac:7f:fb:1d:16:86:32:fe:c9: 34:14:39:e5:91:16:78:8c:53:9c:55:c4:83:04:69: a6:f8:af:db:99:6c:18:71:9e:33:d9:d5:c5:c9:bf: 50:55:b5:08:22:e5:04:61:a0:a4:83:52:e3:f6:e1: fa:c1:71:18:fa:a4:7a:88:38:02:0a:3b:6f:5d:75: fe:3a:dd:9a:26:82:7a:49:2a:1e:c8:d1:e4:d4:01: 44:3d:0b:23:e6:5c:a0:fa:3d:62:cb:33:1f:7e:a4: 20:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:57:37:05:A8:40:B0:02:DB:17:5C:F7:3A:71:F8:93:16:A9:B5:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67d2516f-54fd-4d78-ade4-170b44e700f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.30.32.0/20 Signature Algorithm: sha256WithRSAEncryption 6b:10:38:72:3c:7c:ba:f6:35:47:9d:99:93:4e:55:55:21:75: b2:77:61:fc:6a:20:f4:46:be:ac:1a:cd:72:cf:48:e5:85:c0: b4:85:6e:73:fa:5c:1a:b2:89:d6:40:e5:b6:95:a2:87:d8:a3: 58:57:77:87:6e:c2:71:a6:41:34:9d:e8:79:a3:36:5e:60:52: 0e:4a:d9:d8:51:59:f6:a0:c0:51:b7:41:4c:19:7a:bf:b0:5a: 25:ee:19:2c:1e:a6:5d:ce:c1:94:30:d3:a8:ab:f2:d4:41:62: 93:10:ae:b2:32:f5:74:c6:dd:e0:1a:c3:86:7b:4b:21:99:cb: e2:f1:db:e8:2b:59:37:df:c7:05:42:0d:13:7d:9a:d8:78:81: 33:e4:ce:d4:a4:8c:56:89:98:f3:c9:cb:3f:9f:5f:1f:44:76: a1:f5:fd:05:96:3b:a9:cf:2c:89:b8:73:f4:09:d3:a3:b6:91: 02:48:01:2c:f1:6e:bc:7b:a4:5d:98:f0:5e:49:f4:c7:7b:ec: 1b:b7:d6:f4:d6:f8:ce:0c:61:0d:33:31:94:2a:6f:fd:4d:03: 42:dd:26:73:2b:e5:56:eb:ed:b2:eb:70:83:26:03:63:31:8c: d0:85:9e:1b:82:34:96:2b:58:60:f5:cf:0b:c7:b8:7c:36:db: 38:6d:e7:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCzEH4Qr71fyxl4LGZdCo14k7vxswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE4MDAwMDAwWhcNMjQwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YmUzMDE3YmU0MjExMWZlMmNiZmU4M2QzZGE3MmE2Y2Y3 MWI2ZDc2ZTNkMzZkYmQ5ZTA2MDgzMGM5MmU2MmI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgjySNjjmtpRj5SldFjjJo1yXIqFHhbKNKovScqmEOT/te DlWZ2lejtKBuEWUYiBHurYIXil5co7CZloTZ2XAXfvVuxiOWtPjbN50xXhp3S4ix 1X1xWte3Yq9b8C+r60+j3mBhIU9tirBh2LpqGu8BT1pfIEjzITu8Z/CMFEc9+/En oKLPZbMwq5nkIf1vaktPdUJhtYKF+iwW26x/+x0WhjL+yTQUOeWRFniMU5xVxIME aab4r9uZbBhxnjPZ1cXJv1BVtQgi5QRhoKSDUuP24frBcRj6pHqIOAIKO29ddf46 3ZomgnpJKh7I0eTUAUQ9CyPmXKD6PWLLMx9+pCA/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjlc3BahAsALbF1z3OnH4kxaptYgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3ZDI1MTZmLTU0ZmQtNGQ3OC1hZGU0LTE3MGI0NGU3MDBmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATMHiAwDQYJKoZIhvcNAQELBQADggEBAGsQOHI8fLr2NUedmZNOVVUhdbJ3 YfxqIPRGvqwazXLPSOWFwLSFbnP6XBqyidZA5baVoofYo1hXd4duwnGmQTSd6Hmj Nl5gUg5K2dhRWfagwFG3QUwZer+wWiXuGSwepl3OwZQw06ir8tRBYpMQrrIy9XTG 3eAaw4Z7SyGZy+Lx2+grWTffxwVCDRN9mth4gTPkztSkjFaJmPPJyz+fXx9EdqH1 /QWWO6nPLIm4c/QJ06O2kQJIASzxbrx7pF2Y8F5J9Md77Bu31vTW+M4MYQ0zMZQq b/1NA0LdJnMr5Vbr7bLrcIMmA2MxjNCFnhuCNJYrWGD1zwvHuHw22zht5zE= -----END CERTIFICATE-----Generated at Thu May 2 11:33:17 2024 by rpki-client on console-fra.rpki-client.org