$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ac78a6c-d4e9-41a2-a8a0-2c70e836558d.roa File: 7ac78a6c-d4e9-41a2-a8a0-2c70e836558d.roa (raw, json) Hash identifier: IT706q0Y4D8aK+vGlA8RaFs3WLTNVCDcQZWrjkIJ5f0= Subject key identifier: 74:D8:D4:1B:BD:6C:35:C0:93:37:5D:8C:C8:8D:22:1B:7A:22:02:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FE7DD857287DF92C196CE2354D855036FEEAED3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ac78a6c-d4e9-41a2-a8a0-2c70e836558d.roa Signing time: Wed 24 Apr 2024 00:00:00 +0000 ROA not before: Wed 24 Apr 2024 00:00:00 +0000 ROA not after: Wed 29 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.70.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 03 May 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:e7:dd:85:72:87:df:92:c1:96:ce:23:54:d8:55:03:6f:ee:ae:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 24 00:00:00 2024 GMT Not After : May 29 23:59:59 2024 GMT Subject: serialNumber=7ff1e85a61c475772a87c6e1229ff6370041e559cd75328702acb413e24ef9c3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3e:89:a6:af:2d:0e:b0:8e:89:9c:30:e5:eb: fd:af:b7:76:d2:96:01:d7:74:9b:45:65:8e:2f:2d: 94:44:8b:de:0e:63:3e:9f:81:f2:cc:5c:f5:df:3e: e1:3d:09:89:01:9d:fe:8a:4d:e8:7a:22:83:b1:5a: 89:e0:a0:f2:c9:26:00:7c:4e:09:d5:0f:f3:11:64: 64:26:70:66:80:fa:b5:76:53:44:d3:82:2c:24:d7: 67:8c:f2:5b:61:2a:d3:4a:8b:af:97:53:18:37:83: e5:b2:13:73:ab:e0:7e:06:91:ad:13:b6:ec:be:43: 42:4b:95:c7:e5:4d:84:88:16:e5:2e:bc:ed:16:09: ad:14:85:d4:b6:7f:77:e1:b7:66:ff:d0:d3:b0:d7: 3c:60:33:10:c4:3f:cb:f1:66:3d:e0:7d:c2:4d:c3: c5:a5:21:be:79:b0:4e:08:70:bf:c6:40:4c:f0:ec: 1a:60:f3:e3:01:e7:d0:bf:84:c0:aa:24:e1:0b:cc: bb:13:bb:66:68:f5:e3:67:ab:13:64:71:1f:26:0c: 1e:7f:a5:03:68:dc:3f:fc:59:b1:67:a5:a5:31:00: e1:18:e4:e3:c6:cb:ac:e3:bc:38:b0:69:f8:6f:58: 1d:13:59:ff:20:60:de:49:37:1c:82:97:3c:02:5f: f3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D8:D4:1B:BD:6C:35:C0:93:37:5D:8C:C8:8D:22:1B:7A:22:02:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ac78a6c-d4e9-41a2-a8a0-2c70e836558d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption d3:e7:e1:0e:38:c0:63:25:f1:28:31:af:6e:a4:45:ab:a8:e1: 74:f5:2f:e7:ad:8a:bb:95:92:46:43:c8:e7:ef:ad:61:4f:74: f2:d8:c5:8d:38:01:2a:f9:39:2f:03:3c:24:8d:89:ca:5c:53: ea:3b:87:cc:c6:35:90:4c:9a:4e:22:a1:51:cd:10:e3:01:37: 7a:ea:1f:5b:5f:d6:2d:ee:77:26:8b:15:c6:bc:df:72:3a:a4: a9:03:0a:98:e4:71:d9:86:84:4c:70:eb:63:db:5b:a6:64:e1: 68:02:0c:9b:b6:59:72:67:2b:1f:8d:b6:9d:f3:ae:b5:76:95: 0d:20:90:ab:72:a9:8b:91:45:c5:d9:17:e2:f8:47:16:ea:0c: 33:ce:ed:b4:9a:93:0a:78:ff:06:ef:65:49:1c:3d:7c:c6:92: 81:c0:bc:d1:56:fb:4b:83:35:eb:1c:1b:7e:9c:4e:d9:81:e8: 06:d8:26:df:b2:5d:f4:26:76:dc:3d:8d:b3:2d:99:d6:ec:79: 46:06:9e:e6:b0:f9:ec:c2:d3:36:9f:7a:aa:9e:d8:36:06:d1: 0e:14:25:ff:f4:88:d3:7f:a9:98:53:e6:fa:01:9f:36:5e:73: 81:c9:e6:3f:49:b2:1e:b3:a5:45:29:78:24:6c:ac:26:e8:78: 9d:60:06:79 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT+fdhXKH35LBls4jVNhVA2/urtMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDI0MDAwMDAwWhcNMjQwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZmYxZTg1YTYxYzQ3NTc3MmE4N2M2ZTEyMjlmZjYzNzAw NDFlNTU5Y2Q3NTMyODcwMmFjYjQxM2UyNGVmOWMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyPommry0OsI6JnDDl6/2vt3bSlgHXdJtFZY4vLZREi94O Yz6fgfLMXPXfPuE9CYkBnf6KTeh6IoOxWongoPLJJgB8TgnVD/MRZGQmcGaA+rV2 U0TTgiwk12eM8lthKtNKi6+XUxg3g+WyE3Or4H4Gka0Ttuy+Q0JLlcflTYSIFuUu vO0WCa0UhdS2f3fht2b/0NOw1zxgMxDEP8vxZj3gfcJNw8WlIb55sE4IcL/GQEzw 7Bpg8+MB59C/hMCqJOELzLsTu2Zo9eNnqxNkcR8mDB5/pQNo3D/8WbFnpaUxAOEY 5OPGy6zjvDiwafhvWB0TWf8gYN5JNxyClzwCX/NlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdNjUG71sNcCTN12MyI0iG3oiAhAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhYzc4YTZjLWQ0ZTktNDFhMi1hOGEwLTJjNzBlODM2NTU4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4RjANBgkqhkiG9w0BAQsFAAOCAQEA0+fhDjjAYyXxKDGvbqRFq6jhdPUv 562Ku5WSRkPI5++tYU908tjFjTgBKvk5LwM8JI2JylxT6juHzMY1kEyaTiKhUc0Q 4wE3euofW1/WLe53JosVxrzfcjqkqQMKmORx2YaETHDrY9tbpmThaAIMm7ZZcmcr H422nfOutXaVDSCQq3Kpi5FFxdkX4vhHFuoMM87ttJqTCnj/Bu9lSRw9fMaSgcC8 0Vb7S4M16xwbfpxO2YHoBtgm37Jd9CZ23D2Nsy2Z1ux5Rgae5rD57MLTNp96qp7Y NgbRDhQl//SI03+pmFPm+gGfNl5zgcnmP0myHrOlRSl4JGysJuh4nWAGeQ== -----END CERTIFICATE-----Generated at Thu May 2 11:33:19 2024 by rpki-client on console-fra.rpki-client.org