$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a173c8d-27ec-47af-bd48-493bbce258c8.roa File: 6a173c8d-27ec-47af-bd48-493bbce258c8.roa (raw, json) Hash identifier: 4spGU4wZoMB6zuRmZI0OzTEGPNlolGthmZb+5Ru14XQ= Subject key identifier: F1:2D:2A:7E:CE:40:58:9A:24:D3:A4:68:9F:53:30:D7:DB:0B:A7:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0483519FBD8298277C8059F4CCFCD7A16CC531FC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a173c8d-27ec-47af-bd48-493bbce258c8.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 8987 IP address blocks: 54.47.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:83:51:9f:bd:82:98:27:7c:80:59:f4:cc:fc:d7:a1:6c:c5:31:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=be2bbe4528b3d1d09df615f2040125c84342bb23d165e8bcf490933dd6a5612c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:1b:0f:8c:59:74:f4:6f:d9:ab:22:dd:a7:62: 4e:c2:06:d5:53:7b:41:6b:0b:24:06:b3:fd:70:34: 3b:e8:71:a3:ba:b2:6e:02:9f:af:11:ce:37:92:f1: 55:ff:c6:50:87:8a:6b:8c:ba:a1:8c:85:8b:32:85: 41:8b:15:15:5d:46:7b:f1:bb:73:3e:2c:2c:b3:8a: 87:11:a4:d2:e9:6f:ff:22:be:00:cf:a0:74:0c:34: 7d:d1:19:65:c7:7d:85:73:bc:3f:8b:88:25:3e:a6: a8:cc:a8:7d:17:e4:70:e5:b9:8d:ef:f7:81:12:fd: 58:0b:61:c8:83:e5:f0:5c:2a:2d:2e:4d:34:88:f5: 55:d1:fc:3a:a2:84:25:0a:c7:26:45:7f:e8:9a:e5: e8:92:51:3e:ee:2e:43:75:4e:83:92:03:32:1a:c9: f4:c9:50:7f:ba:54:b8:62:be:33:24:09:5e:fe:68: a9:7f:23:26:70:7b:d0:9e:fa:36:57:31:0d:35:3e: 0b:23:a4:53:62:41:a2:9a:f5:86:e0:75:ae:7f:85: a0:46:ce:16:21:c7:85:82:ce:07:7c:8b:15:c2:ca: 7e:1b:e2:56:03:6a:4a:38:4a:91:f2:87:32:34:fc: 33:af:1b:57:b1:0b:af:55:cd:2d:dd:cf:96:6d:a4: ed:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:2D:2A:7E:CE:40:58:9A:24:D3:A4:68:9F:53:30:D7:DB:0B:A7:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a173c8d-27ec-47af-bd48-493bbce258c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.47.0.0/16 Signature Algorithm: sha256WithRSAEncryption 08:58:db:96:28:6e:c7:ab:da:f9:3c:2c:23:2d:56:8e:5c:0e: 96:70:01:51:1d:66:2e:d2:4b:34:02:3f:ef:27:d3:9d:79:48: 8e:39:97:1c:73:81:33:c9:dc:ee:7c:6e:0b:49:b8:38:0d:60: 27:9b:28:a1:51:b9:0f:d3:e0:20:34:9f:95:21:78:c2:24:8b: 35:4b:7a:3f:7d:c9:b3:9e:a5:46:30:d9:72:34:00:5c:b7:d2: 8d:33:e3:22:44:f6:f2:a3:f0:15:f6:6f:db:04:7e:46:81:f9: b8:c9:8e:23:a8:b5:b4:15:fd:1f:9d:45:1d:22:8c:3d:ae:18: 5f:f7:14:24:54:c1:ee:b1:71:71:af:46:b8:1f:b7:95:6e:10: d1:97:42:5c:45:d6:4f:4b:90:2f:51:83:66:f0:cb:e5:41:72: 91:d9:15:95:5e:76:62:76:00:30:90:02:ad:52:9f:e2:72:f3: 74:99:02:ac:f3:31:d1:12:26:3d:31:9f:68:ee:00:57:fb:19: ba:fb:d1:32:6f:b3:28:3f:98:49:0b:3a:8c:0f:15:ab:a8:20: ad:4e:75:24:4b:94:bb:b0:e0:eb:23:78:e9:47:df:8f:db:8a: e6:28:5d:86:34:23:2e:46:ed:41:ef:1d:ba:82:c7:a8:56:97: 63:75:31:10 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBINRn72CmCd8gFn0zPzXoWzFMfwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTJiYmU0NTI4YjNkMWQwOWRmNjE1ZjIwNDAxMjVjODQz NDJiYjIzZDE2NWU4YmNmNDkwOTMzZGQ2YTU2MTJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKGw+MWXT0b9mrIt2nYk7CBtVTe0FrCyQGs/1wNDvocaO6 sm4Cn68RzjeS8VX/xlCHimuMuqGMhYsyhUGLFRVdRnvxu3M+LCyziocRpNLpb/8i vgDPoHQMNH3RGWXHfYVzvD+LiCU+pqjMqH0X5HDluY3v94ES/VgLYciD5fBcKi0u TTSI9VXR/DqihCUKxyZFf+ia5eiSUT7uLkN1ToOSAzIayfTJUH+6VLhivjMkCV7+ aKl/IyZwe9Ce+jZXMQ01PgsjpFNiQaKa9Ybgda5/haBGzhYhx4WCzgd8ixXCyn4b 4lYDako4SpHyhzI0/DOvG1exC69VzS3dz5ZtpO3XAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8S0qfs5AWJok06Ron1Mw19sLp5UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhMTczYzhkLTI3ZWMtNDdhZi1iZDQ4LTQ5M2JiY2UyNThjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2LzANBgkqhkiG9w0BAQsFAAOCAQEACFjblihux6va+TwsIy1WjlwOlnAB UR1mLtJLNAI/7yfTnXlIjjmXHHOBM8nc7nxuC0m4OA1gJ5sooVG5D9PgIDSflSF4 wiSLNUt6P33Js56lRjDZcjQAXLfSjTPjIkT28qPwFfZv2wR+RoH5uMmOI6i1tBX9 H51FHSKMPa4YX/cUJFTB7rFxca9GuB+3lW4Q0ZdCXEXWT0uQL1GDZvDL5UFykdkV lV52YnYAMJACrVKf4nLzdJkCrPMx0RImPTGfaO4AV/sZuvvRMm+zKD+YSQs6jA8V q6ggrU51JEuUu7Dg6yN46Uffj9uK5ihdhjQjLkbtQe8duoLHqFaXY3UxEA== -----END CERTIFICATE-----Generated at Thu May 9 01:25:33 2024 by rpki-client on console-fra.rpki-client.org