$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/807004a1-9fca-450c-b773-bdaf30407d8a.roa File: 807004a1-9fca-450c-b773-bdaf30407d8a.roa (raw, json) Hash identifier: QDjbYWcEMqm3nNntM5G5BYjwhHfO8TsiQGlHcABy/AE= Subject key identifier: 98:06:5B:7F:28:58:DD:7C:6E:9D:4E:8B:B7:AA:52:DD:77:AE:00:ED Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 75F56121E680879421DD630BB8F7C50831EA7F30 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/807004a1-9fca-450c-b773-bdaf30407d8a.roa Signing time: Mon 06 May 2024 00:00:00 +0000 ROA not before: Mon 06 May 2024 00:00:00 +0000 ROA not after: Mon 10 Jun 2024 23:59:59 +0000 asID: 8987 IP address blocks: 204.123.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 10 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:f5:61:21:e6:80:87:94:21:dd:63:0b:b8:f7:c5:08:31:ea:7f:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:00:00 2024 GMT Not After : Jun 10 23:59:59 2024 GMT Subject: serialNumber=953fe143c5e4a900906e3f27ef4e6d01c81f471c1707fa0f7407d10f8afec569, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:de:19:12:78:63:74:1d:56:7e:bc:7f:d5:75: 3d:ae:fd:73:81:aa:72:5b:ff:4f:ce:59:c7:a1:05: 24:7f:f6:19:81:ae:05:e6:5c:c5:15:4f:f3:44:6a: e2:8c:03:68:25:e1:98:d5:38:5a:04:41:ce:1a:67: 65:90:5e:23:39:69:b3:22:78:c2:3a:29:25:fa:22: 5f:24:4a:c5:a9:22:47:21:eb:88:f0:6e:09:e2:e7: 53:b3:57:56:6c:f2:87:e0:db:7f:52:69:09:6d:34: 61:63:f3:d6:f8:03:b2:75:60:c3:43:cd:1a:71:94: 73:23:6a:3f:59:b4:5a:3e:75:fa:2b:73:e5:e8:1d: 1b:63:ad:ec:9f:ea:41:1e:30:d6:44:02:86:fa:ca: 1a:a2:91:58:3c:ec:e5:38:e8:cd:e9:b3:82:71:02: 14:65:03:47:23:b0:f3:52:d3:32:a0:ff:4d:68:c6: 9e:9c:79:44:cc:a9:9b:88:43:65:cd:19:c6:40:06: 74:b8:a3:c6:7e:06:9b:8f:e1:37:5d:e6:4f:15:44: 98:53:5a:a2:a8:fd:41:8f:a1:a9:fe:8f:88:20:af: 0a:97:4c:bb:87:e4:fe:4d:0c:ed:34:42:1a:42:04: 27:d1:f9:ef:7f:75:33:e5:2d:49:4d:fc:b9:6b:a2: 06:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:06:5B:7F:28:58:DD:7C:6E:9D:4E:8B:B7:AA:52:DD:77:AE:00:ED X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/807004a1-9fca-450c-b773-bdaf30407d8a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.123.0.0/16 Signature Algorithm: sha256WithRSAEncryption 23:ac:bd:82:ec:2f:ec:6f:32:08:69:0b:5b:25:e8:19:d2:65: f7:c9:51:7a:29:56:6b:81:cd:c9:da:e4:31:c3:60:b3:83:03: 5d:fa:17:f4:1f:16:55:1a:6d:f1:f1:a8:7e:8b:76:05:8a:46: 74:85:1f:48:ac:2c:57:07:f7:2a:58:e0:45:3a:74:15:08:ed: 0a:02:85:bc:b7:b5:9b:b0:79:1b:15:85:36:ea:67:fa:2f:6e: 08:d8:e2:92:ab:31:7d:56:c1:73:be:86:ef:b3:40:2c:f8:98: fb:c0:cb:0f:91:2d:bb:aa:52:b8:95:57:bd:11:33:aa:84:b5: d7:72:8e:4b:25:cc:09:05:15:fc:fb:50:62:29:37:12:f1:cd: 97:83:60:3d:6e:42:25:fe:66:ed:b9:72:61:78:ad:5f:dd:2d: ec:1a:2f:b3:a5:36:29:09:d5:34:2a:5e:35:0e:be:08:f6:d8: 52:2c:e1:69:cb:e9:06:23:25:67:2a:0d:98:39:04:93:95:7c: b2:67:60:b3:5d:29:ae:64:b0:63:53:f0:8d:32:3f:8f:94:79: a5:01:ec:dc:2c:cf:10:13:8e:e8:98:e1:db:15:3f:4d:16:af: b7:d2:7e:94:8e:14:31:5a:9d:8a:8a:1b:f8:7f:66:74:2e:54: 9f:f9:83:23 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdfVhIeaAh5Qh3WMLuPfFCDHqfzAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNTA2MDAwMDAwWhcNMjQwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTNmZTE0M2M1ZTRhOTAwOTA2ZTNmMjdlZjRlNmQwMWM4 MWY0NzFjMTcwN2ZhMGY3NDA3ZDEwZjhhZmVjNTY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU3hkSeGN0HVZ+vH/VdT2u/XOBqnJb/0/OWcehBSR/9hmB rgXmXMUVT/NEauKMA2gl4ZjVOFoEQc4aZ2WQXiM5abMieMI6KSX6Il8kSsWpIkch 64jwbgni51OzV1Zs8ofg239SaQltNGFj89b4A7J1YMNDzRpxlHMjaj9ZtFo+dfor c+XoHRtjreyf6kEeMNZEAob6yhqikVg87OU46M3ps4JxAhRlA0cjsPNS0zKg/01o xp6ceUTMqZuIQ2XNGcZABnS4o8Z+BpuP4Tdd5k8VRJhTWqKo/UGPoan+j4ggrwqX TLuH5P5NDO00QhpCBCfR+e9/dTPlLUlN/LlrogZZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmAZbfyhY3XxunU6Lt6pS3XeuAO0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgwNzAwNGExLTlmY2EtNDUwYy1iNzczLWJkYWYzMDQwN2Q4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDMezANBgkqhkiG9w0BAQsFAAOCAQEAI6y9guwv7G8yCGkLWyXoGdJl98lR eilWa4HNydrkMcNgs4MDXfoX9B8WVRpt8fGofot2BYpGdIUfSKwsVwf3KljgRTp0 FQjtCgKFvLe1m7B5GxWFNupn+i9uCNjikqsxfVbBc76G77NALPiY+8DLD5Etu6pS uJVXvREzqoS113KOSyXMCQUV/PtQYik3EvHNl4NgPW5CJf5m7blyYXitX90t7Bov s6U2KQnVNCpeNQ6+CPbYUizhacvpBiMlZyoNmDkEk5V8smdgs10prmSwY1PwjTI/ j5R5pQHs3CzPEBOO6Jjh2xU/TRavt9J+lI4UMVqdioob+H9mdC5Un/mDIw== -----END CERTIFICATE-----Generated at Thu May 9 01:25:36 2024 by rpki-client on console-fra.rpki-client.org