$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a717dc1-351f-48ad-b1d5-4ea4e5f0e0b3.roa File: 7a717dc1-351f-48ad-b1d5-4ea4e5f0e0b3.roa (raw, json) Hash identifier: En9dIJFGMYfdJk0IrJBh23IC/t5JfsYpMj3Gup94tew= Subject key identifier: EA:F6:36:70:B0:08:79:7D:BD:AD:50:D1:3C:32:C5:67:09:D6:FA:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0305374240A27675FE547431FA2E1B63D232EAF6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a717dc1-351f-48ad-b1d5-4ea4e5f0e0b3.roa Signing time: Mon 06 May 2024 00:00:00 +0000 ROA not before: Mon 06 May 2024 00:00:00 +0000 ROA not after: Mon 10 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 16.187.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:05:37:42:40:a2:76:75:fe:54:74:31:fa:2e:1b:63:d2:32:ea:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:00:00 2024 GMT Not After : Jun 10 23:59:59 2024 GMT Subject: serialNumber=75ca91744b4b86bb363085a997c9c1878b17844ed034d78eac83e67f8b5ad4d6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0a:ef:10:a1:7f:c3:2d:25:25:07:85:24:1a: a3:3c:49:c5:70:2a:76:50:6c:e1:09:a6:9a:1d:c2: 09:c1:5c:80:c6:4d:be:fc:80:e8:7b:13:52:42:e4: 67:73:60:07:0f:85:8e:0c:25:44:6a:a2:b6:ef:4f: 2f:19:c4:84:d5:34:f9:32:16:5c:28:72:e0:50:27: 94:63:2c:20:9e:87:d0:9d:91:57:71:bb:0d:a6:27: fb:42:68:72:f6:be:9e:3b:9c:12:fd:e4:a2:75:ac: de:5b:02:e4:e9:a3:8e:17:ef:8a:be:fd:81:b0:ba: 5e:51:b1:62:10:cc:70:74:7b:49:72:d4:38:39:3e: 0b:5b:29:85:0d:41:43:a4:ea:e6:98:1b:ca:ee:aa: 5b:c8:7a:0c:96:6a:20:98:31:48:76:a8:72:ef:d0: 1f:91:8c:02:10:98:45:c6:7c:0f:1f:7c:fb:0a:8d: 54:8d:dd:7b:1b:46:59:c0:ec:e0:d1:5a:c6:7b:9b: 01:33:c7:e7:75:e8:7e:bd:e1:f2:59:71:9d:43:32: 65:c2:82:46:db:bc:55:de:21:b8:eb:f6:e9:6a:06: a2:3e:93:87:0a:06:33:57:aa:fb:b8:c7:74:6a:6b: 4c:4c:a0:6f:51:e6:97:5b:93:d6:12:dc:26:0a:5d: e1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F6:36:70:B0:08:79:7D:BD:AD:50:D1:3C:32:C5:67:09:D6:FA:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a717dc1-351f-48ad-b1d5-4ea4e5f0e0b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.187.0.0/16 Signature Algorithm: sha256WithRSAEncryption 42:3b:e3:9b:aa:06:ca:71:2e:4c:6e:2f:29:ce:5d:17:84:02: 7d:6b:b3:46:12:1a:2a:0f:f6:85:3e:a2:c4:a7:94:b2:57:e7: 3e:f0:7f:d1:61:51:13:31:74:c2:a9:e0:bd:51:fe:d5:c5:f1: b9:24:bd:ad:44:56:fc:d4:d3:f1:55:70:19:c8:8c:69:cf:4c: 6c:3a:ad:f4:58:6d:c2:94:2d:24:36:3c:c5:d0:09:ce:32:97: 82:10:fa:bd:33:bc:37:80:dd:4b:06:12:07:cf:d1:05:45:47: ad:96:bf:b1:af:af:25:21:bf:03:96:14:07:41:8a:60:21:bf: 45:21:72:53:ab:91:eb:6e:04:38:4b:20:52:0d:dd:bc:65:cd: 2d:35:7b:74:84:82:0e:f5:bd:3d:bf:5c:27:41:00:d4:b8:c9: 2c:31:76:9c:56:15:ca:3f:21:33:57:e5:a0:77:64:32:61:b1: cf:5d:14:c9:e9:dc:c1:44:7a:ad:dd:73:be:3c:78:22:8e:1e: 5a:91:48:f7:6b:03:73:09:c1:25:f2:4f:41:25:5c:51:c1:c2: 28:f7:ee:11:a8:34:61:19:62:ed:a0:36:02:03:d5:af:fe:89: 77:02:3e:0c:86:9c:d9:cb:be:c9:26:f3:34:e6:70:69:d2:32: ee:0a:4d:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAwU3QkCidnX+VHQx+i4bY9Iy6vYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA2MDAwMDAwWhcNMjQwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NWNhOTE3NDRiNGI4NmJiMzYzMDg1YTk5N2M5YzE4Nzhi MTc4NDRlZDAzNGQ3OGVhYzgzZTY3ZjhiNWFkNGQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtCu8QoX/DLSUlB4UkGqM8ScVwKnZQbOEJppodwgnBXIDG Tb78gOh7E1JC5GdzYAcPhY4MJURqorbvTy8ZxITVNPkyFlwocuBQJ5RjLCCeh9Cd kVdxuw2mJ/tCaHL2vp47nBL95KJ1rN5bAuTpo44X74q+/YGwul5RsWIQzHB0e0ly 1Dg5PgtbKYUNQUOk6uaYG8ruqlvIegyWaiCYMUh2qHLv0B+RjAIQmEXGfA8ffPsK jVSN3XsbRlnA7ODRWsZ7mwEzx+d16H694fJZcZ1DMmXCgkbbvFXeIbjr9ulqBqI+ k4cKBjNXqvu4x3Rqa0xMoG9R5pdbk9YS3CYKXeGbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6vY2cLAIeX29rVDRPDLFZwnW+jIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhNzE3ZGMxLTM1MWYtNDhhZC1iMWQ1LTRlYTRlNWYwZTBiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQuzANBgkqhkiG9w0BAQsFAAOCAQEAQjvjm6oGynEuTG4vKc5dF4QCfWuz RhIaKg/2hT6ixKeUslfnPvB/0WFREzF0wqngvVH+1cXxuSS9rURW/NTT8VVwGciM ac9MbDqt9FhtwpQtJDY8xdAJzjKXghD6vTO8N4DdSwYSB8/RBUVHrZa/sa+vJSG/ A5YUB0GKYCG/RSFyU6uR624EOEsgUg3dvGXNLTV7dISCDvW9Pb9cJ0EA1LjJLDF2 nFYVyj8hM1floHdkMmGxz10UyencwUR6rd1zvjx4Io4eWpFI92sDcwnBJfJPQSVc UcHCKPfuEag0YRli7aA2AgPVr/6JdwI+DIac2cu+ySbzNOZwadIy7gpNQg== -----END CERTIFICATE-----Generated at Thu May 9 01:25:35 2024 by rpki-client on console-fra.rpki-client.org