$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa File: 7d8956ca-c7c5-4819-a13e-59940ce8965b.roa (raw, json) Hash identifier: APjVBRN3cpSPJqjihQCNJ03yAAnrkBCWQve+x+zdcYg= Subject key identifier: EA:5E:D2:B8:AB:8B:25:25:91:DC:92:91:72:F3:8D:F5:2F:0B:4D:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44D2A7D3110AF058C1310365DD19AEAAEFE7C188 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.55.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:d2:a7:d3:11:0a:f0:58:c1:31:03:65:dd:19:ae:aa:ef:e7:c1:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=3f69e8439f74ec7e601fe37859df76d33fd9001d520a31efcc0cd3a7ec982c8c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:08:d1:c3:75:56:3b:8d:6f:af:07:9f:4e:7a: 33:23:37:79:f5:fb:a3:fc:65:39:34:fc:53:1d:14: 5e:82:d2:1f:de:4a:13:8c:18:79:db:30:40:46:68: 8b:50:50:0e:ea:47:b0:1d:69:08:92:e3:3f:f3:09: 5f:1e:a0:7c:f1:17:14:c4:2d:f2:75:ca:66:6d:40: b9:05:89:1b:cf:18:ce:10:91:33:9d:30:a7:0d:6b: af:4e:3a:27:97:ed:78:c6:6d:55:b3:f1:e8:d5:7d: e1:db:5f:80:56:1b:4a:a0:77:07:38:bc:8b:47:54: d7:38:f7:67:4c:ed:bc:a7:c3:90:e6:5b:3f:24:dc: dc:f3:b2:e8:4f:75:8b:1a:ee:c8:07:5e:ac:e2:0c: 6e:38:a6:6d:61:5b:e2:8c:54:c3:5b:04:01:41:d0: fd:63:f0:82:a0:97:58:b2:92:38:f4:9d:50:d5:ec: e5:fe:08:60:48:13:bf:e2:19:6b:bd:bb:12:00:0b: 30:4c:ba:7e:46:31:c1:1c:aa:01:bf:c8:1d:e6:bf: e4:11:03:7c:33:2b:93:3c:ce:d2:ec:5c:07:cc:3e: 49:2e:30:20:b4:71:8f:60:d3:b7:8b:06:55:87:9d: 93:dc:11:3e:74:fb:cd:d5:0e:07:0e:57:89:5a:ed: de:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:5E:D2:B8:AB:8B:25:25:91:DC:92:91:72:F3:8D:F5:2F:0B:4D:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d8956ca-c7c5-4819-a13e-59940ce8965b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.55.0.0/16 Signature Algorithm: sha256WithRSAEncryption 65:bf:9a:69:ca:f3:fb:89:5b:2d:02:54:36:f7:05:e9:0d:b5: 9d:72:bd:47:b4:00:cd:1d:56:c9:a1:74:8f:4a:c0:0e:b8:70: 96:37:86:86:ae:c9:55:e9:0a:4c:00:11:e2:70:79:56:94:c0: 5e:00:52:f6:5e:02:db:2c:53:69:6f:30:22:b6:52:06:23:1f: 1b:54:2b:98:a4:2e:9e:83:cf:64:f1:14:66:d2:c1:b0:85:b2: 38:03:66:73:2a:8d:33:a9:89:99:bd:0f:dc:cc:be:8e:49:20: 91:76:13:e4:c9:67:da:3a:e8:1e:4d:df:6c:35:2d:5e:70:e4: 5b:11:bc:c3:6d:5f:4b:2d:32:38:9a:ee:c8:0b:56:4b:a8:db: f1:ee:b9:cf:9f:54:45:ac:df:bb:38:e3:be:55:2c:da:ee:fa: 72:bc:35:7e:8e:b8:5a:59:64:04:51:35:8f:e1:ff:d3:82:3a: ef:17:01:2b:38:4e:b5:01:da:ee:88:90:64:76:7b:79:ff:4a: 3e:d4:cb:ac:6a:99:b0:e3:38:9e:b8:f6:ba:03:95:c5:48:d1: a4:23:0f:ae:a9:08:f6:82:ad:30:3a:98:02:03:8a:18:a0:97: d9:c3:03:b2:11:90:6b:a4:c8:5d:80:c6:71:fb:40:7f:d4:c2: 0f:31:b6:6e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURNKn0xEK8FjBMQNl3Rmuqu/nwYgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjY5ZTg0MzlmNzRlYzdlNjAxZmUzNzg1OWRmNzZkMzNm ZDkwMDFkNTIwYTMxZWZjYzBjZDNhN2VjOTgyYzhjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWCNHDdVY7jW+vB59OejMjN3n1+6P8ZTk0/FMdFF6C0h/e ShOMGHnbMEBGaItQUA7qR7AdaQiS4z/zCV8eoHzxFxTELfJ1ymZtQLkFiRvPGM4Q kTOdMKcNa69OOieX7XjGbVWz8ejVfeHbX4BWG0qgdwc4vItHVNc492dM7bynw5Dm Wz8k3NzzsuhPdYsa7sgHXqziDG44pm1hW+KMVMNbBAFB0P1j8IKgl1iykjj0nVDV 7OX+CGBIE7/iGWu9uxIACzBMun5GMcEcqgG/yB3mv+QRA3wzK5M8ztLsXAfMPkku MCC0cY9g07eLBlWHnZPcET50+83VDgcOV4la7d41AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6l7SuKuLJSWR3JKRcvON9S8LTX0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdkODk1NmNhLWM3YzUtNDgxOS1hMTNlLTU5OTQwY2U4OTY1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4NzANBgkqhkiG9w0BAQsFAAOCAQEAZb+aacrz+4lbLQJUNvcF6Q21nXK9 R7QAzR1WyaF0j0rADrhwljeGhq7JVekKTAAR4nB5VpTAXgBS9l4C2yxTaW8wIrZS BiMfG1QrmKQunoPPZPEUZtLBsIWyOANmcyqNM6mJmb0P3My+jkkgkXYT5Mln2jro Hk3fbDUtXnDkWxG8w21fSy0yOJruyAtWS6jb8e65z59URazfuzjjvlUs2u76crw1 fo64WllkBFE1j+H/04I67xcBKzhOtQHa7oiQZHZ7ef9KPtTLrGqZsOM4nrj2ugOV xUjRpCMPrqkI9oKtMDqYAgOKGKCX2cMDshGQa6TIXYDGcftAf9TCDzG2bg== -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:20 2024 by rpki-client on console-fra.rpki-client.org