$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/771d0086-a619-4286-84e0-41fa321a83a0.roa File: 771d0086-a619-4286-84e0-41fa321a83a0.roa (raw, json) Hash identifier: Hh675jG37HY6qqZw4CZwwMVllxXCsSpIWMnHw14Twk8= Subject key identifier: BE:47:9D:B8:73:6E:35:18:B3:69:DA:50:6E:98:47:C1:16:E0:1D:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2238776D7B17F6B06FDFCD6CB7B1EAEA78F17D7B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/771d0086-a619-4286-84e0-41fa321a83a0.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 14618 IP address blocks: 40.179.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:38:77:6d:7b:17:f6:b0:6f:df:cd:6c:b7:b1:ea:ea:78:f1:7d:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=1c52806b9372631438a166528d8114a5458870eba20c21e19f1a58c66a42350b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:b0:9a:46:b2:38:64:13:38:ae:c1:ff:b6:e0: 32:91:d0:b3:0b:94:93:11:22:70:03:89:9a:17:94: e0:23:d9:05:28:73:e7:71:38:98:02:d9:c2:01:b2: cf:2e:9c:ad:37:6e:2a:66:25:a7:1a:14:cd:64:72: 81:5d:00:c3:cd:ba:9d:f6:bb:2c:10:a2:e8:33:0c: 5e:e4:f6:fb:66:9e:c9:62:8d:b6:8f:f4:78:27:52: f4:2b:21:a6:21:f0:05:c2:6e:d1:e9:cc:14:b8:79: 52:2c:80:7d:fe:c1:bb:dc:e9:f9:92:e0:28:cb:a2: 98:71:36:37:bf:da:30:23:7d:99:6a:88:35:93:51: 3e:19:dc:fc:05:67:c5:3b:b8:16:8b:06:ba:d2:1c: b2:70:51:f3:11:51:c1:44:bc:ad:88:b1:9d:4b:6a: 68:27:e5:36:d2:13:4d:ea:00:e1:db:b1:8d:62:35: 38:98:c2:51:4b:5f:14:f5:4f:94:b6:44:aa:3d:59: be:ac:f6:8b:27:4d:8f:72:a1:a0:96:03:b8:ce:53: 39:a0:ef:93:ed:c1:81:f2:c6:95:9f:17:21:3b:1d: ec:fc:b8:69:a4:82:29:8b:27:cf:31:24:03:ee:89: aa:06:98:0a:2a:68:92:41:22:41:1f:e0:c7:54:6d: 4b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:47:9D:B8:73:6E:35:18:B3:69:DA:50:6E:98:47:C1:16:E0:1D:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/771d0086-a619-4286-84e0-41fa321a83a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.179.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0f:3c:db:7e:9e:cd:71:52:74:6a:b3:b5:b2:b1:03:00:6d:8c: 29:61:80:09:d3:f2:59:82:3d:e4:5d:63:c7:28:4e:ed:13:a4: 9d:f4:f1:41:c9:7a:23:1c:16:03:cc:55:19:a6:9f:39:44:73: 50:b7:dd:64:e0:90:60:15:9e:7a:4b:4b:ce:29:f0:ef:b3:b0: f2:73:9f:ec:62:2c:3f:e6:bb:7e:3a:e6:b8:a0:ae:0d:5f:37: cc:fd:fd:1f:4f:0b:e2:fd:ac:2b:3e:48:dc:f8:9d:ef:d9:ac: c4:7c:24:16:90:6a:21:06:fd:22:f1:46:ac:8a:75:aa:5e:bb: f3:77:ae:27:b0:83:74:c5:a9:cf:de:7c:28:35:0c:fd:31:29: 04:be:b5:f5:29:90:55:f9:e2:b8:9a:17:82:2d:10:ef:78:02: e9:f4:f2:49:c7:a1:6c:f0:f4:59:23:a2:55:c6:8f:bc:99:fd: a6:28:fa:16:b3:c4:cc:bf:21:e8:ab:48:9a:c0:59:41:cb:64: 12:51:b7:76:87:f9:b3:66:41:fa:b8:51:7d:e9:4a:69:09:31: 01:68:5a:59:31:4c:4b:50:7a:b6:6e:bd:18:d0:dd:d5:c4:a9: 5c:a4:ac:1e:6b:9e:f9:4a:45:16:94:35:03:c4:d3:e0:35:20: 85:02:41:d1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIjh3bXsX9rBv381st7Hq6njxfXswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzUyODA2YjkzNzI2MzE0MzhhMTY2NTI4ZDgxMTRhNTQ1 ODg3MGViYTIwYzIxZTE5ZjFhNThjNjZhNDIzNTBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNsJpGsjhkEziuwf+24DKR0LMLlJMRInADiZoXlOAj2QUo c+dxOJgC2cIBss8unK03bipmJacaFM1kcoFdAMPNup32uywQougzDF7k9vtmnsli jbaP9HgnUvQrIaYh8AXCbtHpzBS4eVIsgH3+wbvc6fmS4CjLophxNje/2jAjfZlq iDWTUT4Z3PwFZ8U7uBaLBrrSHLJwUfMRUcFEvK2IsZ1Lamgn5TbSE03qAOHbsY1i NTiYwlFLXxT1T5S2RKo9Wb6s9osnTY9yoaCWA7jOUzmg75PtwYHyxpWfFyE7Hez8 uGmkgimLJ88xJAPuiaoGmAoqaJJBIkEf4MdUbUs7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUvkeduHNuNRizadpQbphHwRbgHf0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc3MWQwMDg2LWE2MTktNDI4Ni04NGUwLTQxZmEzMjFhODNhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoszANBgkqhkiG9w0BAQsFAAOCAQEADzzbfp7NcVJ0arO1srEDAG2MKWGA CdPyWYI95F1jxyhO7ROknfTxQcl6IxwWA8xVGaafOURzULfdZOCQYBWeektLzinw 77Ow8nOf7GIsP+a7fjrmuKCuDV83zP39H08L4v2sKz5I3Pid79msxHwkFpBqIQb9 IvFGrIp1ql6783euJ7CDdMWpz958KDUM/TEpBL619SmQVfniuJoXgi0Q73gC6fTy ScehbPD0WSOiVcaPvJn9pij6FrPEzL8h6KtImsBZQctkElG3dof5s2ZB+rhRfelK aQkxAWhaWTFMS1B6tm69GNDd1cSpXKSsHmue+UpFFpQ1A8TT4DUghQJB0Q== -----END CERTIFICATE-----Generated at Thu May 2 04:02:36 2024 by rpki-client on console-fra.rpki-client.org