$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba4f922-5b17-4233-add8-fdd64b141cce.roa File: 6ba4f922-5b17-4233-add8-fdd64b141cce.roa (raw, json) Hash identifier: rnTOy8q2HA2Fb68VTUyqUWKjnNmf1zj9BTjGjB0VH94= Subject key identifier: 9C:70:91:70:97:C8:C6:B7:12:21:88:66:19:E4:51:6C:8A:54:44:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 213330FF4D356B6B465FDC01DB8FE5D5474696E9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba4f922-5b17-4233-add8-fdd64b141cce.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 194.21.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:33:30:ff:4d:35:6b:6b:46:5f:dc:01:db:8f:e5:d5:47:46:96:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=20e888da3c081833e5b330b0fcadadf6b64135e49443c36c17619780b4ef9e8e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:57:f9:e2:d8:fc:1f:e8:6a:bd:94:c1:71:a7: 03:38:c6:a5:5b:7c:ec:dd:71:5f:7a:ea:24:48:7f: dc:1f:37:d0:fa:f3:2e:f0:a1:43:a0:2f:26:ec:a5: 63:a3:f0:f5:a8:6a:7b:c0:b3:a0:e4:b3:b6:fb:94: c9:20:22:17:79:6b:91:f1:92:49:56:02:1c:cb:9f: 3a:da:5f:e8:9c:fd:f4:a4:8b:49:ff:53:ca:f6:d8: 76:af:67:b0:a2:72:3f:9d:fe:9f:25:ab:4f:a0:2e: 2e:69:00:a4:ed:42:eb:b7:25:da:d9:1d:92:8e:98: 82:4c:ea:f9:c4:4d:e9:b4:d1:a5:42:36:8a:46:38: b8:fb:a4:8d:50:1d:74:ca:5a:57:fa:bc:aa:bc:dd: 58:ae:be:8b:4b:f0:48:08:bf:46:2d:bf:4c:22:e9: 3d:41:dd:b1:62:58:d5:d4:57:45:de:ac:df:63:ec: ed:f9:72:0d:04:f9:f1:d5:15:b7:e3:66:f6:8a:86: 22:58:f4:8b:5e:79:0b:e8:e9:5f:fa:88:1c:b3:64: 6d:be:98:b9:31:08:b4:21:1b:86:5a:c6:7c:50:a0: 5b:0b:b0:b6:67:56:f9:4a:9a:e1:e8:37:fa:2a:eb: 1b:bb:a9:f1:fe:7f:f2:1f:59:47:6e:5e:73:4c:9d: da:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:70:91:70:97:C8:C6:B7:12:21:88:66:19:E4:51:6C:8A:54:44:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ba4f922-5b17-4233-add8-fdd64b141cce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.21.128.0/18 Signature Algorithm: sha256WithRSAEncryption 49:b6:4f:03:5a:99:a0:ef:02:9b:59:63:89:a7:62:15:99:4d: c6:eb:aa:c7:37:7c:12:c7:36:52:bb:64:6c:7a:98:95:9b:f1: 63:d7:68:b8:f7:d6:c5:8e:f1:d5:37:8a:95:6d:30:db:cd:87: 80:b9:e0:d2:2b:41:bf:c2:cc:d3:64:a9:47:83:cb:d3:81:52: e5:c4:b7:40:a5:32:23:47:f2:5c:59:60:bc:b1:8a:81:e2:d8: 9d:ee:44:6c:fc:64:19:a0:75:8d:85:d9:ce:ad:43:8d:23:71: 6b:96:ea:f9:c7:3f:33:5c:12:40:2f:e6:c7:6f:d3:7f:54:78: 2c:32:9f:18:75:07:20:65:45:c1:92:d8:2f:c3:2b:03:3d:db: eb:f5:e9:69:dd:b5:9d:3e:5e:8e:e6:c1:ba:b8:b5:b7:7b:46: d9:f2:f4:0c:3b:1f:db:62:35:5c:1e:43:cd:68:db:f7:a9:d3: 2c:52:47:cc:ae:2e:ce:8d:30:56:32:9a:ca:ce:8d:a5:1d:97: da:62:b2:bd:cf:0b:d8:1c:fd:ee:6c:26:6e:69:45:77:4c:af: 4e:d9:26:6c:51:b7:34:9b:8b:bc:fb:87:05:21:04:ca:00:e7: 8a:77:3c:35:62:01:0b:3e:ce:d0:02:9c:76:46:57:ec:8e:d7: f6:1c:d3:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUITMw/001a2tGX9wB24/l1UdGlukwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMGU4ODhkYTNjMDgxODMzZTViMzMwYjBmY2FkYWRmNmI2 NDEzNWU0OTQ0M2MzNmMxNzYxOTc4MGI0ZWY5ZThlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTV/ni2Pwf6Gq9lMFxpwM4xqVbfOzdcV966iRIf9wfN9D6 8y7woUOgLybspWOj8PWoanvAs6Dks7b7lMkgIhd5a5HxkklWAhzLnzraX+ic/fSk i0n/U8r22HavZ7Cicj+d/p8lq0+gLi5pAKTtQuu3JdrZHZKOmIJM6vnETem00aVC NopGOLj7pI1QHXTKWlf6vKq83ViuvotL8EgIv0Ytv0wi6T1B3bFiWNXUV0XerN9j 7O35cg0E+fHVFbfjZvaKhiJY9IteeQvo6V/6iByzZG2+mLkxCLQhG4ZaxnxQoFsL sLZnVvlKmuHoN/oq6xu7qfH+f/IfWUduXnNMndqTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnHCRcJfIxrcSIYhmGeRRbIpURN8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiYTRmOTIyLTViMTctNDIzMy1hZGQ4LWZkZDY0YjE0MWNjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbCFYAwDQYJKoZIhvcNAQELBQADggEBAEm2TwNamaDvAptZY4mnYhWZTcbr qsc3fBLHNlK7ZGx6mJWb8WPXaLj31sWO8dU3ipVtMNvNh4C54NIrQb/CzNNkqUeD y9OBUuXEt0ClMiNH8lxZYLyxioHi2J3uRGz8ZBmgdY2F2c6tQ40jcWuW6vnHPzNc EkAv5sdv039UeCwynxh1ByBlRcGS2C/DKwM92+v16WndtZ0+Xo7mwbq4tbd7Rtny 9Aw7H9tiNVweQ81o2/ep0yxSR8yuLs6NMFYymsrOjaUdl9pisr3PC9gc/e5sJm5p RXdMr07ZJmxRtzSbi7z7hwUhBMoA54p3PDViAQs+ztACnHZGV+yO1/Yc03c= -----END CERTIFICATE-----Generated at Thu May 2 17:41:10 2024 by rpki-client on console-fra.rpki-client.org