$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7840150d-90b6-4a97-8609-5a40556c4e1b.roa File: 7840150d-90b6-4a97-8609-5a40556c4e1b.roa (raw, json) Hash identifier: RZQYTMUHT4wTzC7T+Jk6aMpUw5LeewhK0erzW2Xzkwo= Subject key identifier: B4:12:09:B1:59:09:F2:2F:B5:F7:0D:70:D6:AC:4F:2E:37:16:AE:74 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AB90393B5F90EF50487C413545710802A8C9DB3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7840150d-90b6-4a97-8609-5a40556c4e1b.roa Signing time: Sat 20 Apr 2024 00:00:00 +0000 ROA not before: Sat 20 Apr 2024 00:00:00 +0000 ROA not after: Sat 25 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 205.149.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:b9:03:93:b5:f9:0e:f5:04:87:c4:13:54:57:10:80:2a:8c:9d:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 20 00:00:00 2024 GMT Not After : May 25 23:59:59 2024 GMT Subject: serialNumber=b9cf1c5b1b5560ee63c8ada5e7ab68dd36884cc943657d019a298e6d2f78e7de, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:fe:c5:f6:9d:5d:fc:1c:ec:c4:f8:7a:83:f0: e5:7a:bc:d9:8d:ee:73:ba:a2:3f:a6:20:83:45:17: 8a:f9:7d:b3:02:1f:01:7b:af:af:31:ea:d3:f1:f1: 17:61:9d:94:f9:02:b2:1c:02:24:74:af:12:c0:0d: 8e:1e:0a:5c:d1:f5:7e:84:af:e2:0d:6a:90:b2:9e: 11:82:90:4c:95:59:4f:74:bb:fa:f4:af:24:ab:0f: fa:b2:18:3d:d1:78:41:f7:f5:5b:bd:bb:f2:ff:10: 73:b5:9f:70:0a:79:24:5a:98:6f:db:f6:ab:d2:37: ae:51:10:ba:b2:92:70:ed:17:be:17:13:e4:76:c3: f9:5e:0b:c7:a5:99:cc:7b:e0:3e:ec:0e:79:cc:4b: 12:db:90:a5:08:f6:cf:e6:fa:c3:6d:d6:c9:58:aa: 33:1d:fb:5d:61:ba:a2:17:9c:3f:c1:91:8b:1b:7a: d9:54:20:5f:02:47:93:19:1a:e7:0d:4a:40:10:60: 2d:93:75:82:49:aa:61:ad:52:4e:64:e5:a8:d7:f0: 68:b9:2b:8a:96:eb:bc:55:ac:b2:3f:14:4d:c2:1c: 73:c2:31:6a:fc:27:df:de:02:a9:70:62:02:e4:d5: 10:b0:eb:ac:60:96:aa:71:fb:4b:aa:76:6c:69:ea: e4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:12:09:B1:59:09:F2:2F:B5:F7:0D:70:D6:AC:4F:2E:37:16:AE:74 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7840150d-90b6-4a97-8609-5a40556c4e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.149.32.0/19 Signature Algorithm: sha256WithRSAEncryption 85:7e:7f:2c:e1:51:b1:47:6c:d8:a2:55:16:34:d0:4d:f7:3b: 1f:8f:37:96:00:44:1f:99:66:4d:71:70:f2:e5:44:eb:c2:d6: fc:e9:ca:95:21:07:57:21:52:45:5e:bb:6c:bf:28:99:d3:b5: ac:d0:e2:0e:d0:b2:be:ee:09:01:1b:56:41:09:f5:9a:45:be: db:73:44:65:fa:3e:27:b7:42:9a:63:46:f5:c0:a3:31:15:f7: 8a:2e:0a:95:d4:51:cb:da:c8:c8:05:e5:3b:1e:18:e7:2d:24: 02:80:c6:71:1d:60:8e:b2:53:35:5e:9e:2b:81:4b:0c:76:ea: ef:65:5d:20:a7:c9:9c:58:8e:ea:6a:a2:f9:91:1b:5c:68:9e: b6:5f:c9:08:1d:f8:56:3c:32:f3:de:6b:ba:a3:89:70:8b:5d: 5f:bf:b6:4a:93:de:23:70:52:ac:3b:3e:2f:17:85:b0:d2:f1: 40:6f:ae:9c:f1:af:02:e1:8a:3b:c9:2a:f9:f9:69:77:85:35: 8e:e9:3a:7a:e2:47:b7:00:f5:e5:63:4f:1b:05:55:72:e6:c9: de:c7:e0:c7:99:2c:ae:ef:e3:d9:33:58:5e:14:23:4a:b2:e4: 74:a2:39:97:95:eb:24:27:68:a7:fe:16:91:a0:b3:d7:4c:28: 78:46:67:21 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKrkDk7X5DvUEh8QTVFcQgCqMnbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDIwMDAwMDAwWhcNMjQwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOWNmMWM1YjFiNTU2MGVlNjNjOGFkYTVlN2FiNjhkZDM2 ODg0Y2M5NDM2NTdkMDE5YTI5OGU2ZDJmNzhlN2RlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCR/sX2nV38HOzE+HqD8OV6vNmN7nO6oj+mIINFF4r5fbMC HwF7r68x6tPx8RdhnZT5ArIcAiR0rxLADY4eClzR9X6Er+INapCynhGCkEyVWU90 u/r0rySrD/qyGD3ReEH39Vu9u/L/EHO1n3AKeSRamG/b9qvSN65RELqyknDtF74X E+R2w/leC8elmcx74D7sDnnMSxLbkKUI9s/m+sNt1slYqjMd+11huqIXnD/BkYsb etlUIF8CR5MZGucNSkAQYC2TdYJJqmGtUk5k5ajX8Gi5K4qW67xVrLI/FE3CHHPC MWr8J9/eAqlwYgLk1RCw66xglqpx+0uqdmxp6uT9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtBIJsVkJ8i+19w1w1qxPLjcWrnQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4NDAxNTBkLTkwYjYtNGE5Ny04NjA5LTVhNDA1NTZjNGUxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXNlSAwDQYJKoZIhvcNAQELBQADggEBAIV+fyzhUbFHbNiiVRY00E33Ox+P N5YARB+ZZk1xcPLlROvC1vzpypUhB1chUkVeu2y/KJnTtazQ4g7Qsr7uCQEbVkEJ 9ZpFvttzRGX6Pie3QppjRvXAozEV94ouCpXUUcvayMgF5TseGOctJAKAxnEdYI6y UzVeniuBSwx26u9lXSCnyZxYjupqovmRG1xonrZfyQgd+FY8MvPea7qjiXCLXV+/ tkqT3iNwUqw7Pi8XhbDS8UBvrpzxrwLhijvJKvn5aXeFNY7pOnriR7cA9eVjTxsF VXLmyd7H4MeZLK7v49kzWF4UI0qy5HSiOZeV6yQnaKf+FpGgs9dMKHhGZyE= -----END CERTIFICATE-----Generated at Thu May 2 20:48:40 2024 by rpki-client on console-fra.rpki-client.org