$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa File: 707b5de7-4469-4150-b167-4708f1391d71.roa (raw, json) Hash identifier: 3tEIcWbXRjah/kSveAlwqPqja4eWpjDOburTsRsVoC4= Subject key identifier: EF:CA:14:7F:A8:23:49:8A:3E:36:81:5E:56:4C:28:61:BD:33:95:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6ED539B823F959FBF1458D7AA41257A213262CBF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 158.254.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:d5:39:b8:23:f9:59:fb:f1:45:8d:7a:a4:12:57:a2:13:26:2c:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=3f4d8dde8117a3664bf8e7252a022cacefe09779e45430f9096a19cacf9e20af, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3d:1d:fd:36:c4:23:4f:7a:96:f9:52:44:93: a6:46:0d:a2:b3:f2:c5:c9:a1:ff:85:1f:a8:e1:71: df:e8:63:af:1e:1e:0c:ba:de:da:f3:53:4c:95:04: 7a:97:bf:f3:7d:a0:e1:a6:c5:e5:28:f6:0c:03:f1: 2e:b4:72:2e:4c:4c:5c:1b:07:9c:28:a0:c6:cf:c8: eb:99:7f:d3:dd:83:30:85:a1:19:cd:4d:29:fb:13: c3:a9:8b:40:a9:a4:17:d7:39:23:62:29:db:53:d0: 68:d4:02:7f:14:5c:0d:c5:4b:bc:2f:50:2b:ae:56: cc:df:39:81:17:57:8f:b2:70:d6:1e:39:79:f7:6c: 2a:92:33:88:23:f6:ee:29:6a:f6:9c:34:46:ef:32: ef:05:6c:ca:b7:31:bc:04:9c:08:92:92:5c:3f:72: 29:95:15:3b:2d:d7:86:e0:60:86:ac:11:ba:d6:df: d9:47:20:1a:54:22:0c:7b:9f:e0:72:02:ff:f2:78: 5d:38:23:8e:23:78:a1:c0:c0:e5:d0:3b:23:a5:cb: ba:42:e6:6c:9e:a7:d2:5d:90:b4:67:9c:da:1d:cc: c2:0e:6a:75:37:5d:f3:7b:af:dd:37:bf:a8:df:b4: e3:63:ce:d0:bd:e3:ff:d8:73:91:75:a3:c1:2a:e4: 0f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:CA:14:7F:A8:23:49:8A:3E:36:81:5E:56:4C:28:61:BD:33:95:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.254.0.0/16 Signature Algorithm: sha256WithRSAEncryption 62:c2:57:04:e3:1a:cf:46:e4:45:8f:96:96:85:46:f6:cb:51: f6:a0:e5:40:aa:ea:e3:bf:88:e4:59:30:85:22:3b:94:ad:b2: 4e:6f:29:45:a0:47:9f:5e:0a:80:1b:02:f4:7d:f5:4c:88:24: c3:6e:ec:47:5b:26:b4:5c:0a:e1:e7:e6:19:05:fe:39:c8:10: 2a:78:59:fa:f1:69:41:15:9f:3f:1e:55:67:cd:2e:a6:6f:74: 74:71:38:25:4c:d3:24:a9:b8:7c:13:46:71:8d:94:50:17:53: a7:b4:a7:98:38:8e:ac:e5:be:a4:48:b1:dc:ce:4b:8f:54:25: ed:36:f6:09:a4:65:4d:63:ca:a7:23:ed:fb:71:e5:ca:70:9c: 3a:82:af:73:3b:c0:0d:ca:a2:cc:18:c0:72:4e:93:1d:a0:54: b3:80:7a:da:d2:1d:58:bc:d6:a0:9e:77:af:bc:36:56:33:12: 72:15:13:41:a6:f9:b7:9e:7e:f2:36:7e:5f:85:69:64:cc:57: 0e:32:30:8a:c0:ff:44:23:53:97:78:ce:94:e2:d8:89:28:e0: c4:f6:8b:bc:aa:fb:80:df:f4:a2:e3:58:d0:5f:b5:d1:61:9e: 6e:fb:d3:9b:99:ff:47:ac:6b:99:73:a8:14:a0:4b:1c:dc:5a: e9:d6:75:d9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbtU5uCP5WfvxRY16pBJXohMmLL8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjRkOGRkZTgxMTdhMzY2NGJmOGU3MjUyYTAyMmNhY2Vm ZTA5Nzc5ZTQ1NDMwZjkwOTZhMTljYWNmOWUyMGFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5PR39NsQjT3qW+VJEk6ZGDaKz8sXJof+FH6jhcd/oY68e Hgy63trzU0yVBHqXv/N9oOGmxeUo9gwD8S60ci5MTFwbB5wooMbPyOuZf9PdgzCF oRnNTSn7E8Opi0CppBfXOSNiKdtT0GjUAn8UXA3FS7wvUCuuVszfOYEXV4+ycNYe OXn3bCqSM4gj9u4pavacNEbvMu8FbMq3MbwEnAiSklw/cimVFTst14bgYIasEbrW 39lHIBpUIgx7n+ByAv/yeF04I44jeKHAwOXQOyOly7pC5myep9JdkLRnnNodzMIO anU3XfN7r903v6jftONjztC94//Yc5F1o8Eq5A+tAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU78oUf6gjSYo+NoFeVkwoYb0zlcowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwN2I1ZGU3LTQ0NjktNDE1MC1iMTY3LTQ3MDhmMTM5MWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCe/jANBgkqhkiG9w0BAQsFAAOCAQEAYsJXBOMaz0bkRY+WloVG9stR9qDl QKrq47+I5FkwhSI7lK2yTm8pRaBHn14KgBsC9H31TIgkw27sR1smtFwK4efmGQX+ OcgQKnhZ+vFpQRWfPx5VZ80upm90dHE4JUzTJKm4fBNGcY2UUBdTp7SnmDiOrOW+ pEix3M5Lj1Ql7Tb2CaRlTWPKpyPt+3HlynCcOoKvczvADcqizBjAck6THaBUs4B6 2tIdWLzWoJ53r7w2VjMSchUTQab5t55+8jZ+X4VpZMxXDjIwisD/RCNTl3jOlOLY iSjgxPaLvKr7gN/0ouNY0F+10WGebvvTm5n/R6xrmXOoFKBLHNxa6dZ12Q== -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:19 2024 by rpki-client on console-fra.rpki-client.org