$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa File: 8e2ea47c-7af2-420d-8695-f2f769b2008c.roa (raw, json) Hash identifier: iKmOoVUtIZIbuQqu0gj/VDW6J07iXxUT+7ETFZizFoc= Subject key identifier: 18:29:95:84:3D:21:79:55:0A:25:4D:8A:98:7E:E0:80:E4:4D:6D:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1087DA4D78E0CA4FB994986CC49CCF59554ED202 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa Signing time: Mon 08 Apr 2024 00:00:00 +0000 ROA not before: Mon 08 Apr 2024 00:00:00 +0000 ROA not after: Mon 13 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.245.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 04 May 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:87:da:4d:78:e0:ca:4f:b9:94:98:6c:c4:9c:cf:59:55:4e:d2:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:00:00 2024 GMT Not After : May 13 23:59:59 2024 GMT Subject: serialNumber=b60b414a53ec7e5b7d93336788b220272fec0193cc83f2a0a1f5f34996ad3ad9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:87:4f:df:b3:10:59:76:d4:22:85:fe:f8:7f: ba:3b:75:56:ce:83:8a:5d:67:89:1e:11:8c:cb:c8: 7f:44:3b:14:47:39:7e:57:6b:1e:6c:47:f5:18:e3: 3e:5d:dd:bc:c5:d7:f7:86:2c:3f:2f:68:83:94:39: 85:20:51:f6:40:9c:6e:c5:99:0c:b3:2e:cc:c5:92: 30:5b:ea:f9:10:cf:f8:59:08:f4:21:a5:d9:28:f1: 55:53:88:67:07:72:ec:3b:83:a5:45:31:18:ba:89: 19:e8:8b:be:73:7b:ee:21:f0:f8:20:9f:d0:ac:d3: 84:e7:33:71:0d:89:7d:dd:65:3f:f8:82:7d:38:4c: 6c:d5:93:88:3e:92:fb:b1:10:75:48:89:b4:4b:81: 2e:d1:7a:aa:fc:9d:39:71:dc:8c:ce:38:4f:92:d5: 26:cb:b0:ff:55:56:81:a6:fb:8a:68:a3:5b:d3:2b: 43:98:ba:b5:d1:ac:27:0e:ad:33:e2:07:3b:ce:ae: 80:3f:df:d8:4b:97:49:b3:ca:09:c4:0f:68:08:d5: 90:3a:b6:73:b4:95:1f:2e:55:b3:98:c0:05:3e:65: 54:4d:a7:84:43:39:ea:4a:b0:ae:d7:33:65:a8:90: be:dc:54:e1:22:4e:12:73:43:21:74:2d:9e:62:c5: 36:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:29:95:84:3D:21:79:55:0A:25:4D:8A:98:7E:E0:80:E4:4D:6D:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e2ea47c-7af2-420d-8695-f2f769b2008c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.245.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:f0:d3:5b:7e:35:51:54:52:46:70:12:41:27:99:5c:77:14: 2b:5e:91:00:43:51:c6:0c:bc:2f:92:65:58:43:10:48:66:44: e5:f6:99:5c:6a:32:ea:f0:a2:c3:30:89:6f:79:2c:ad:26:96: 4f:2d:20:fd:b4:bc:83:cf:5e:45:d5:75:a3:81:e0:30:11:8c: 35:74:05:33:5e:bf:6d:d0:d5:9e:93:1e:9a:5c:52:c1:c5:f5: d0:7d:af:54:50:e8:17:74:e3:2d:4e:d0:33:24:3a:b1:a1:b0: ef:90:a3:eb:ea:61:87:a9:b8:17:b1:69:4c:6a:30:36:eb:f9: 12:55:d6:47:ed:07:a6:2d:e1:30:5c:a9:96:37:ec:40:bc:cd: fb:db:d5:10:14:a6:31:18:b6:57:74:50:78:cf:8d:7f:fc:48: 61:2e:6e:95:34:af:ac:42:51:84:3a:d3:4d:4a:f8:f6:09:00: c5:0b:7d:74:b4:a8:fc:cb:b1:b7:3a:85:a7:74:91:f8:11:65: 71:60:e6:b4:6b:dc:22:45:c6:ca:fc:94:72:0a:10:16:13:a0: d4:d9:8b:00:b3:ed:bf:d8:b8:b2:95:2e:c7:6c:f6:83:5a:ce: 80:4c:51:9e:df:53:e5:68:59:1c:5d:80:5f:49:c2:ad:08:7a: 78:4f:a0:5c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEIfaTXjgyk+5lJhsxJzPWVVO0gIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDA4MDAwMDAwWhcNMjQwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjBiNDE0YTUzZWM3ZTViN2Q5MzMzNjc4OGIyMjAyNzJm ZWMwMTkzY2M4M2YyYTBhMWY1ZjM0OTk2YWQzYWQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXh0/fsxBZdtQihf74f7o7dVbOg4pdZ4keEYzLyH9EOxRH OX5Xax5sR/UY4z5d3bzF1/eGLD8vaIOUOYUgUfZAnG7FmQyzLszFkjBb6vkQz/hZ CPQhpdko8VVTiGcHcuw7g6VFMRi6iRnoi75ze+4h8Pggn9Cs04TnM3ENiX3dZT/4 gn04TGzVk4g+kvuxEHVIibRLgS7Reqr8nTlx3IzOOE+S1SbLsP9VVoGm+4poo1vT K0OYurXRrCcOrTPiBzvOroA/39hLl0mzygnED2gI1ZA6tnO0lR8uVbOYwAU+ZVRN p4RDOepKsK7XM2WokL7cVOEiThJzQyF0LZ5ixTYrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGCmVhD0heVUKJU2KmH7ggORNbYYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlMmVhNDdjLTdhZjItNDIwZC04Njk1LWYyZjc2OWIyMDA4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA49TANBgkqhkiG9w0BAQsFAAOCAQEAQ/DTW341UVRSRnASQSeZXHcUK16R AENRxgy8L5JlWEMQSGZE5faZXGoy6vCiwzCJb3ksrSaWTy0g/bS8g89eRdV1o4Hg MBGMNXQFM16/bdDVnpMemlxSwcX10H2vVFDoF3TjLU7QMyQ6saGw75Cj6+phh6m4 F7FpTGowNuv5ElXWR+0Hpi3hMFypljfsQLzN+9vVEBSmMRi2V3RQeM+Nf/xIYS5u lTSvrEJRhDrTTUr49gkAxQt9dLSo/MuxtzqFp3SR+BFlcWDmtGvcIkXGyvyUcgoQ FhOg1NmLALPtv9i4spUux2z2g1rOgExRnt9T5WhZHF2AX0nCrQh6eE+gXA== -----END CERTIFICATE-----Generated at Fri May 3 01:28:00 2024 by rpki-client on console-fra.rpki-client.org