$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7affe5fc-3c66-4843-b69f-e5a95d517a06.roa File: 7affe5fc-3c66-4843-b69f-e5a95d517a06.roa (raw, json) Hash identifier: oBNUawm1svwnvj3DsvkhC6MFOlor7Swl9zkjjqIYtOs= Subject key identifier: 7D:EE:F5:13:0D:B4:8F:4A:61:DF:B6:23:D2:29:CC:8D:ED:38:7E:FB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 64959C8FB63580FC1E6B4B97D95C040720CFC1F5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7affe5fc-3c66-4843-b69f-e5a95d517a06.roa Signing time: Fri 03 May 2024 00:00:00 +0000 ROA not before: Fri 03 May 2024 00:00:00 +0000 ROA not after: Fri 07 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 56.252.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:95:9c:8f:b6:35:80:fc:1e:6b:4b:97:d9:5c:04:07:20:cf:c1:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:00:00 2024 GMT Not After : Jun 7 23:59:59 2024 GMT Subject: serialNumber=2b4f0bb5a316a3b1adadde0978b0b4c53d27fc87fda780a48a8e15b7c73ece7b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:89:2f:d8:a0:2e:6b:8e:20:37:08:90:cb:cb: cd:5b:7f:58:35:19:e3:2e:10:38:e2:89:3f:3d:c9: 80:30:ae:f6:b1:a6:d8:59:21:80:ff:ca:b1:08:46: 18:dd:c4:5a:c8:de:09:72:71:62:95:83:fc:d7:9b: 0c:36:7b:b6:90:fc:12:a9:26:5f:49:d8:f8:b2:4b: 8a:06:4b:e1:aa:ba:83:92:47:23:4d:d8:8a:21:e1: 10:9b:b2:d2:d4:b7:21:82:3a:36:0f:35:7c:f4:c7: a1:18:21:cb:21:81:f5:fc:bc:9f:3b:eb:10:e5:45: 6d:c9:0d:cf:f6:01:70:93:86:5c:a9:d0:0e:e3:a2: 43:02:04:86:ca:bc:c3:55:ba:ae:41:9a:d5:6f:1e: 3a:a7:4c:0a:90:6c:2a:f5:b1:1c:db:25:8f:01:1c: ff:16:ce:25:97:99:c7:ad:8a:7f:6c:46:b2:12:d8: a7:ec:d2:8e:5a:94:88:54:1f:93:77:73:11:1e:5a: ce:d2:29:13:6a:0f:7c:8c:8b:a4:aa:d3:88:47:4c: 74:c2:ee:b1:2f:03:c4:7d:f3:d8:09:54:ca:38:9b: 6a:0e:1e:55:19:d4:5c:77:cc:a6:d1:b2:65:47:0f: e9:3b:49:f3:cb:30:be:e1:f0:b6:f4:33:d4:ad:43: 76:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:EE:F5:13:0D:B4:8F:4A:61:DF:B6:23:D2:29:CC:8D:ED:38:7E:FB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7affe5fc-3c66-4843-b69f-e5a95d517a06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.252.0.0/16 Signature Algorithm: sha256WithRSAEncryption 57:a8:14:b0:a7:d3:6b:42:35:47:73:bc:de:b5:ce:b5:ce:dc: f7:df:39:20:14:1d:4f:71:f5:02:d5:c6:11:90:87:e0:af:51: 78:cc:4f:a4:a7:61:14:2a:b5:4f:2b:98:d8:0f:7d:77:73:ca: 9a:69:70:82:83:24:20:86:ff:5d:d2:20:85:f1:9b:06:df:a4: 57:f2:96:5f:da:b0:7a:46:70:09:f3:1e:90:30:85:8b:92:96: e1:17:45:32:4a:dc:d1:b9:3d:4a:46:61:b0:bf:f7:4b:35:63: 5b:23:5a:fd:ec:5b:fb:22:04:c2:20:9e:56:56:98:b4:3a:c0: bc:af:6b:c1:6d:0e:15:20:58:54:3e:89:c5:12:4b:1f:6a:a1: c7:66:48:35:b3:5e:fd:a3:5c:d9:53:00:02:f8:98:3e:dd:a7: 50:f1:48:2d:7b:1e:4d:ca:5b:1e:46:09:2d:a4:61:12:81:7a: f4:c4:78:3e:7a:9a:dc:75:e2:87:97:b1:80:ed:28:76:0c:9c: 05:93:75:e4:2c:b9:9e:b2:2a:9e:4e:53:b9:b7:a0:9b:c0:38: af:10:57:82:d7:21:2b:a4:1e:16:c0:e7:3e:64:a2:a8:c3:45: 45:75:5c:4f:e9:53:c8:4a:01:48:c0:cc:be:53:cf:15:f6:70: 11:38:fa:31 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZJWcj7Y1gPwea0uX2VwEByDPwfUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTAzMDAwMDAwWhcNMjQwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjRmMGJiNWEzMTZhM2IxYWRhZGRlMDk3OGIwYjRjNTNk MjdmYzg3ZmRhNzgwYTQ4YThlMTViN2M3M2VjZTdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTiS/YoC5rjiA3CJDLy81bf1g1GeMuEDjiiT89yYAwrvax pthZIYD/yrEIRhjdxFrI3glycWKVg/zXmww2e7aQ/BKpJl9J2PiyS4oGS+GquoOS RyNN2Ioh4RCbstLUtyGCOjYPNXz0x6EYIcshgfX8vJ876xDlRW3JDc/2AXCThlyp 0A7jokMCBIbKvMNVuq5BmtVvHjqnTAqQbCr1sRzbJY8BHP8WziWXmcetin9sRrIS 2Kfs0o5alIhUH5N3cxEeWs7SKRNqD3yMi6Sq04hHTHTC7rEvA8R989gJVMo4m2oO HlUZ1Fx3zKbRsmVHD+k7SfPLML7h8Lb0M9StQ3ZLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfe71Ew20j0ph37Yj0inMje04fvswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhZmZlNWZjLTNjNjYtNDg0My1iNjlmLWU1YTk1ZDUxN2EwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4/DANBgkqhkiG9w0BAQsFAAOCAQEAV6gUsKfTa0I1R3O83rXOtc7c9985 IBQdT3H1AtXGEZCH4K9ReMxPpKdhFCq1TyuY2A99d3PKmmlwgoMkIIb/XdIghfGb Bt+kV/KWX9qwekZwCfMekDCFi5KW4RdFMkrc0bk9SkZhsL/3SzVjWyNa/exb+yIE wiCeVlaYtDrAvK9rwW0OFSBYVD6JxRJLH2qhx2ZINbNe/aNc2VMAAviYPt2nUPFI LXseTcpbHkYJLaRhEoF69MR4Pnqa3HXih5exgO0odgycBZN15Cy5nrIqnk5Tubeg m8A4rxBXgtchK6QeFsDnPmSiqMNFRXVcT+lTyEoBSMDMvlPPFfZwETj6MQ== -----END CERTIFICATE-----Generated at Thu May 9 01:25:35 2024 by rpki-client on console-fra.rpki-client.org