$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa File: 7f4aece0-320f-46a2-ae45-69cd23b5c314.roa (raw, json) Hash identifier: jmgbnOR2ImcbxUu4KECx692PZnj9uv7/0bJ6rWKDkjk= Subject key identifier: 8F:33:11:5B:73:A3:39:7B:93:A9:DB:1B:0A:CE:9D:84:29:EA:40:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01659750F900FE15F5466475DCE64A2210FD1613 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa Signing time: Sat 13 Apr 2024 00:00:00 +0000 ROA not before: Sat 13 Apr 2024 00:00:00 +0000 ROA not after: Sat 18 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 149.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 27 Apr 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:65:97:50:f9:00:fe:15:f5:46:64:75:dc:e6:4a:22:10:fd:16:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 13 00:00:00 2024 GMT Not After : May 18 23:59:59 2024 GMT Subject: serialNumber=53cbe1f2128a48c0db83633abe5d635526a12824d2cbbdc8c5f150fa732188ce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:77:93:6a:bd:d1:f0:1f:3d:00:60:aa:05:ff: cf:06:f3:90:3a:06:a1:ce:57:29:23:5d:ce:e3:6d: 02:cf:e1:f1:2a:bc:60:c5:b8:4e:09:12:5c:da:8f: 35:1d:58:e1:34:17:51:e4:e1:c0:0a:d3:74:2b:56: 16:41:ec:da:74:56:54:0f:50:a5:d8:0e:7d:de:34: 34:54:f2:fb:b0:9e:02:0b:1a:b6:6e:c6:56:98:a0: 5a:79:a7:36:fa:a2:f4:35:05:71:50:70:70:25:d7: 03:12:ca:b7:49:46:a4:63:3e:48:fa:11:f1:69:c2: 20:21:a1:ab:15:c9:07:ce:0d:7b:bf:e1:72:8c:a4: 19:31:67:a8:22:75:44:21:d1:b9:33:52:45:9f:f3: cc:c9:8c:47:88:c5:f6:a5:97:71:89:3c:df:33:da: f9:60:94:01:76:20:a0:0a:ed:86:17:73:5c:2d:21: 59:16:3b:af:d8:84:66:23:83:28:47:d5:77:34:57: b7:5d:c2:f9:7a:a5:b2:ee:39:e3:53:11:c5:6b:db: 04:96:51:c5:20:9b:2e:75:83:f5:3a:9f:a6:52:79: d7:85:ca:23:7b:95:0f:76:e6:58:b7:86:0b:56:0d: 4c:87:d0:1f:15:0d:a7:55:c0:ca:b4:c7:6f:e6:d2: 76:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:33:11:5B:73:A3:39:7B:93:A9:DB:1B:0A:CE:9D:84:29:EA:40:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption af:ea:2d:0b:7f:1d:bf:03:92:59:a3:5a:e8:b0:7e:00:f4:5d: 9b:c0:6a:c9:ef:5f:fd:06:22:c9:22:e3:72:5e:b1:c8:79:ce: 09:30:37:81:e4:5f:36:8c:e2:a4:10:a1:cf:c4:68:8e:0c:83: cc:d3:5e:3c:92:1e:b2:cb:c3:b3:63:60:7f:b4:2e:e6:96:38: e4:72:5a:0f:92:a1:fa:57:51:65:23:a6:2a:ae:a0:a2:34:18: 66:fa:35:7a:a8:8c:90:d2:ef:44:2d:4e:dd:c5:cd:e3:70:b6: 56:a8:97:68:4f:ae:df:0f:b1:8d:50:e7:c8:ba:e1:b0:18:4e: d7:60:b9:fb:48:17:4e:a0:24:9d:b5:82:fb:c5:98:0e:bc:75: 44:e3:8f:f7:6d:68:87:2a:da:65:45:19:4c:3b:03:52:2d:7a: 7f:11:44:47:e7:ab:e1:d2:d7:a7:99:35:ca:e1:ae:a1:ce:23: 25:c0:53:4d:4f:fa:5c:42:18:ea:88:b3:17:f0:f9:9c:87:1d: b0:48:46:2d:16:ef:84:bb:12:8c:d3:d9:47:aa:28:99:67:4c: 6d:7e:e6:6b:76:d2:f7:1e:65:44:eb:95:14:77:4f:12:3d:8e: 91:3b:43:1c:67:d1:9d:a7:ec:74:1b:2e:33:6c:ff:2c:35:75: 67:a9:7e:33 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAWWXUPkA/hX1RmR13OZKIhD9FhMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDEzMDAwMDAwWhcNMjQwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1M2NiZTFmMjEyOGE0OGMwZGI4MzYzM2FiZTVkNjM1NTI2 YTEyODI0ZDJjYmJkYzhjNWYxNTBmYTczMjE4OGNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyd5NqvdHwHz0AYKoF/88G85A6BqHOVykjXc7jbQLP4fEq vGDFuE4JElzajzUdWOE0F1Hk4cAK03QrVhZB7Np0VlQPUKXYDn3eNDRU8vuwngIL GrZuxlaYoFp5pzb6ovQ1BXFQcHAl1wMSyrdJRqRjPkj6EfFpwiAhoasVyQfODXu/ 4XKMpBkxZ6gidUQh0bkzUkWf88zJjEeIxfall3GJPN8z2vlglAF2IKAK7YYXc1wt IVkWO6/YhGYjgyhH1Xc0V7ddwvl6pbLuOeNTEcVr2wSWUcUgmy51g/U6n6ZSedeF yiN7lQ925li3hgtWDUyH0B8VDadVwMq0x2/m0nYpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjzMRW3OjOXuTqdsbCs6dhCnqQJYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdmNGFlY2UwLTMyMGYtNDZhMi1hZTQ1LTY5Y2QyM2I1YzMxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVvDANBgkqhkiG9w0BAQsFAAOCAQEAr+otC38dvwOSWaNa6LB+APRdm8Bq ye9f/QYiySLjcl6xyHnOCTA3geRfNozipBChz8RojgyDzNNePJIessvDs2Ngf7Qu 5pY45HJaD5Kh+ldRZSOmKq6gojQYZvo1eqiMkNLvRC1O3cXN43C2VqiXaE+u3w+x jVDnyLrhsBhO12C5+0gXTqAknbWC+8WYDrx1ROOP921ohyraZUUZTDsDUi16fxFE R+er4dLXp5k1yuGuoc4jJcBTTU/6XEIY6oizF/D5nIcdsEhGLRbvhLsSjNPZR6oo mWdMbX7ma3bS9x5lROuVFHdPEj2OkTtDHGfRnafsdBsuM2z/LDV1Z6l+Mw== -----END CERTIFICATE-----Generated at Fri Apr 26 00:40:20 2024 by rpki-client on console-fra.rpki-client.org