$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa File: 8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa (raw, json) Hash identifier: M/9+qCwdh6eKNcH4MMOXWffuV7Xfgf22fG7IXcmcKLw= Subject key identifier: 76:E9:8B:F0:47:D8:01:9C:72:D0:BF:2C:CC:61:13:73:6F:7E:94:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09CC02D8ED89665CFFB84C320DFD3394ADAD3714 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa Signing time: Mon 15 Apr 2024 00:00:00 +0000 ROA not before: Mon 15 Apr 2024 00:00:00 +0000 ROA not after: Mon 20 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 56.138.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Apr 2024 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:cc:02:d8:ed:89:66:5c:ff:b8:4c:32:0d:fd:33:94:ad:ad:37:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:00 2024 GMT Not After : May 20 23:59:59 2024 GMT Subject: serialNumber=173241792a95b9a54657561e6a4df43a2298b131c467e444d85d940d480aabec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:35:e9:e8:3f:7e:1a:58:73:66:e0:0f:25:ff: 97:10:28:d7:41:aa:1b:dd:72:de:6a:f4:22:7b:cf: 6c:fe:82:36:47:06:98:39:fd:6f:b6:e6:f2:fa:52: cd:dd:42:e8:a6:5f:06:d3:e3:6a:8c:74:a1:5d:c4: c2:be:b4:f3:7a:54:48:29:f6:0d:71:cc:9d:ae:11: 48:aa:34:48:66:41:b3:c8:85:3b:46:ab:a6:91:e8: 9a:c2:88:37:0d:86:4d:38:b3:ab:d2:db:94:70:e7: f3:43:53:b5:97:f0:ba:7e:6f:47:94:00:89:f5:17: b8:98:90:5b:74:7c:a4:08:97:59:23:4b:99:9f:51: 9f:6a:5e:33:90:a4:66:41:39:da:d5:49:ee:a4:35: c1:bb:15:33:bb:ef:38:64:54:65:7e:a3:81:df:00: 64:25:02:29:b6:fd:96:55:b8:3b:dc:bd:4b:23:17: 72:91:c7:4f:2c:b0:ec:99:34:74:43:ad:40:9c:de: fc:b0:15:91:e3:3b:f1:d8:ae:ea:68:11:51:75:aa: 2f:10:bb:14:4b:26:78:b3:8d:b6:4a:c7:a9:ba:b1: 5a:39:15:b8:5b:43:0b:e7:c1:7e:cf:6f:74:ee:20: 6a:8e:03:61:61:0b:2b:ef:e6:10:33:3e:d1:b5:41: 1f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E9:8B:F0:47:D8:01:9C:72:D0:BF:2C:CC:61:13:73:6F:7E:94:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.138.0.0/16 Signature Algorithm: sha256WithRSAEncryption bf:02:12:6b:82:4a:f5:78:1e:e3:bc:d3:c4:a1:f3:c8:54:5d: 66:1d:0c:76:ca:47:5b:01:a3:8b:5f:39:4f:9d:ce:54:18:8f: 9b:bc:80:28:4f:7a:40:61:f5:f2:f3:79:f8:11:20:ac:fb:70: d9:b1:2b:c9:40:51:95:65:14:23:f6:44:35:4e:34:ed:9e:b8: 52:51:7d:40:03:4e:e1:49:9b:d2:92:cc:f4:4a:40:42:4a:a8: d3:82:df:02:3c:38:ff:00:d6:4d:9b:80:a3:09:c0:c6:44:3e: 73:1e:ff:1c:b7:56:cb:e8:7c:e0:71:44:a3:cd:b8:de:89:01: 40:e2:48:7a:27:98:84:70:11:1d:b6:b5:d3:d6:22:7b:e6:60: 86:f4:82:99:72:0c:35:8e:52:6a:34:a4:4e:7e:5f:57:3c:b8: f9:02:bb:6e:9e:2b:b2:56:62:f0:c5:b6:d4:b5:9d:80:6a:07: c3:89:ec:0a:87:46:b4:00:8b:bb:1a:1a:83:e7:c9:05:b1:bf: 32:9a:1f:79:c5:3d:88:27:3b:f3:c0:02:bb:b9:50:8b:a4:b5: 07:d1:a6:b0:8c:de:4d:de:44:f1:4d:5f:bd:ed:89:5c:e1:c3: d8:fa:ef:49:ac:cb:48:dc:cf:03:bc:f0:26:da:d6:11:7b:3e: 59:f5:1f:56 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCcwC2O2JZlz/uEwyDf0zlK2tNxQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQwNDE1MDAwMDAwWhcNMjQwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzMyNDE3OTJhOTViOWE1NDY1NzU2MWU2YTRkZjQzYTIy OThiMTMxYzQ2N2U0NDRkODVkOTQwZDQ4MGFhYmVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDENenoP34aWHNm4A8l/5cQKNdBqhvdct5q9CJ7z2z+gjZH Bpg5/W+25vL6Us3dQuimXwbT42qMdKFdxMK+tPN6VEgp9g1xzJ2uEUiqNEhmQbPI hTtGq6aR6JrCiDcNhk04s6vS25Rw5/NDU7WX8Lp+b0eUAIn1F7iYkFt0fKQIl1kj S5mfUZ9qXjOQpGZBOdrVSe6kNcG7FTO77zhkVGV+o4HfAGQlAim2/ZZVuDvcvUsj F3KRx08ssOyZNHRDrUCc3vywFZHjO/HYrupoEVF1qi8QuxRLJnizjbZKx6m6sVo5 FbhbQwvnwX7Pb3TuIGqOA2FhCyvv5hAzPtG1QR+BAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdumL8EfYAZxy0L8szGETc29+lDcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmNjFjNWEzLTAzYjQtNDk1My1hNWUxLWVhMDk3NWQxYjhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ijANBgkqhkiG9w0BAQsFAAOCAQEAvwISa4JK9Xge47zTxKHzyFRdZh0M dspHWwGji185T53OVBiPm7yAKE96QGH18vN5+BEgrPtw2bEryUBRlWUUI/ZENU40 7Z64UlF9QANO4Umb0pLM9EpAQkqo04LfAjw4/wDWTZuAownAxkQ+cx7/HLdWy+h8 4HFEo8243okBQOJIeieYhHARHba109Yie+ZghvSCmXIMNY5SajSkTn5fVzy4+QK7 bp4rslZi8MW21LWdgGoHw4nsCodGtACLuxoag+fJBbG/MpofecU9iCc788ACu7lQ i6S1B9GmsIzeTd5E8U1fve2JXOHD2PrvSazLSNzPA7zwJtrWEXs+WfUfVg== -----END CERTIFICATE-----Generated at Fri Apr 19 00:31:24 2024 by rpki-client on console-fra.rpki-client.org