$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa File: 6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa (raw, json) Hash identifier: UfkJokzaAD6qXW9twMDKqUjKQhpOAmywlYRdJ/MFoV8= Subject key identifier: 7B:D2:8A:46:92:5D:05:C6:9E:8E:A7:E4:48:FE:0B:6F:14:AA:AE:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2818AFCC5712CC99EE3B164ABF09E5A4F9D709A5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 136.8.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:18:af:cc:57:12:cc:99:ee:3b:16:4a:bf:09:e5:a4:f9:d7:09:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=3c844a8140b9bc5fa3eb240e8bd385a1648b22f5adf030474e6478586175ffad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:16:09:68:60:d8:0e:19:51:03:f9:1a:ff:53: e7:0a:7a:79:82:70:30:9c:51:9e:4c:68:5e:2a:37: a0:b7:26:eb:5b:4c:63:81:95:12:05:95:9d:91:a0: 57:8c:c3:cc:97:6d:d0:0a:22:5d:12:78:0d:34:14: 5f:20:80:8b:4e:58:de:68:c5:36:65:96:f7:9d:7d: b5:49:78:b3:e8:38:4c:cc:7a:d4:0d:d8:1b:17:d8: 2e:24:93:d2:6b:db:da:5e:f3:73:b4:73:05:5c:a1: ac:c5:2a:7f:1c:4a:95:27:2e:ea:c6:50:b9:2c:a4: fd:1d:ed:1c:8f:f4:ef:e7:55:c7:96:fe:07:aa:72: af:bc:59:bc:e7:38:f0:19:c6:28:05:3c:14:80:ca: 9e:b0:37:cf:0d:df:83:52:be:bb:6b:cd:c5:ae:b0: a8:fd:8e:f3:ef:0b:17:6b:ef:92:e0:cd:60:77:aa: 28:e9:78:0d:ed:96:c4:6c:b8:5e:a3:bb:85:a0:5e: 0b:80:9c:d4:aa:7b:01:15:53:15:60:06:cc:01:a4: fb:e1:7a:89:84:97:85:b9:58:c6:1e:6e:33:82:f7: 71:d1:ba:ce:d1:de:8f:23:21:ca:84:12:27:4c:30: 48:95:04:5c:0d:a7:de:23:b8:6c:6b:03:52:4f:67: d3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D2:8A:46:92:5D:05:C6:9E:8E:A7:E4:48:FE:0B:6F:14:AA:AE:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.8.0.0/15 Signature Algorithm: sha256WithRSAEncryption 3c:fb:d4:46:93:4e:9c:4e:d9:f5:80:74:7d:b0:cf:df:d6:46: 1e:ae:3f:f2:df:72:59:15:78:3e:26:98:a5:d2:8f:97:a7:b8: e3:9d:b3:2f:2a:a7:64:6f:43:31:84:6e:01:5b:ac:ba:12:f6: a9:5b:7d:65:78:72:28:de:23:f1:a1:ca:65:8a:5e:3d:27:66: 61:d1:ae:a1:b5:92:65:6a:e9:a5:4f:5a:f6:de:72:3b:1b:9d: 52:05:b3:eb:2d:40:6c:17:83:aa:7e:a9:01:5e:83:5e:d8:84: ef:67:98:2d:3c:7f:29:5b:d7:ad:79:36:df:ab:2b:63:6f:17: 8b:de:af:a2:24:61:3b:d9:29:17:1d:1c:16:b9:d1:e3:a8:89: 30:58:e6:04:dd:8c:9a:98:4e:47:72:74:b0:31:a7:c3:d6:9f: de:11:84:2b:e4:7b:9c:e6:07:93:d3:66:ce:c6:27:3f:4e:81: 50:94:d7:35:18:2f:86:c3:20:32:29:55:e1:72:d5:18:2c:10: 08:7d:5d:a7:8a:47:72:c1:05:dc:e2:b2:6f:e0:23:06:b4:e1: 62:d3:91:51:80:70:f8:ff:d3:71:f0:fd:68:74:6d:6b:f7:5e: f6:7d:0b:4f:24:a2:7f:62:fc:16:69:41:16:19:ed:22:8e:8c: 22:fa:b9:a5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKBivzFcSzJnuOxZKvwnlpPnXCaUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzg0NGE4MTQwYjliYzVmYTNlYjI0MGU4YmQzODVhMTY0 OGIyMmY1YWRmMDMwNDc0ZTY0Nzg1ODYxNzVmZmFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbFgloYNgOGVED+Rr/U+cKenmCcDCcUZ5MaF4qN6C3Jutb TGOBlRIFlZ2RoFeMw8yXbdAKIl0SeA00FF8ggItOWN5oxTZllvedfbVJeLPoOEzM etQN2BsX2C4kk9Jr29pe83O0cwVcoazFKn8cSpUnLurGULkspP0d7RyP9O/nVceW /geqcq+8WbznOPAZxigFPBSAyp6wN88N34NSvrtrzcWusKj9jvPvCxdr75LgzWB3 qijpeA3tlsRsuF6ju4WgXguAnNSqewEVUxVgBswBpPvheomEl4W5WMYebjOC93HR us7R3o8jIcqEEidMMEiVBFwNp94juGxrA1JPZ9MjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUe9KKRpJdBcaejqfkSP4LbxSqroYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmOWU0Yzk5LTE3NDUtNDFhNS1hMzZiLWNkZDdmNDY2ZDYwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwGICDANBgkqhkiG9w0BAQsFAAOCAQEAPPvURpNOnE7Z9YB0fbDP39ZGHq4/ 8t9yWRV4PiaYpdKPl6e4452zLyqnZG9DMYRuAVusuhL2qVt9ZXhyKN4j8aHKZYpe PSdmYdGuobWSZWrppU9a9t5yOxudUgWz6y1AbBeDqn6pAV6DXtiE72eYLTx/KVvX rXk236srY28Xi96voiRhO9kpFx0cFrnR46iJMFjmBN2MmphOR3J0sDGnw9af3hGE K+R7nOYHk9NmzsYnP06BUJTXNRgvhsMgMilV4XLVGCwQCH1dp4pHcsEF3OKyb+Aj BrThYtORUYBw+P/TcfD9aHRta/de9n0LTySif2L8FmlBFhntIo6MIvq5pQ== -----END CERTIFICATE-----Generated at Sat Apr 20 03:56:25 2024 by rpki-client on console-fra.rpki-client.org